Skip to content

This issue was moved to a discussion.

You can continue the conversation there. Go to discussion →

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

the right way to update the image and enable SSL (including cert/key file and pg_hba.conf) #1081

Closed
andreaaizza opened this issue May 13, 2023 · 2 comments
Closed

the right way to update the image and enable SSL (including cert/key file and pg_hba.conf) #1081

andreaaizza opened this issue May 13, 2023 · 2 comments

Comments

@andreaaizza
Copy link

Hi,

any doc describing what in subject?

It should basically boil down to:

  1. update postgresql.conf: ssl=on... set cert and key file names
  2. upload cert and key files in the image
  3. update pg_hba.conf with hostssl ...

But, where in the image filesystem should I put postgresql.conf and pg_hba.conf? What ever iss in /var/lib/postgresql/data/ is ovewritten. I can set arguments to docker run... but I need to run this on kubernetes and would like to have that in a custom image. Also, some customisation can be done via POSTGRES_HOST_AUTH_METHOD, but I cannot use that for SSL.

Therefore the question in subject. Can anybody help?

Cheers,
Andrea
@ImreSamu
Copy link
Contributor

Hi Andrea
In my opinion, you can use this example for SSL support: #989 (comment)

@andreaaizza
Copy link
Author

Hi @ImreSamu,

thanks. I think that covers parms of postgresql.conf via command line, and cert/key file. Good! I'm wondering, how is that solution implementing the customization of pg_hba.conf? It should at least include "hostssl...", and in some cases some more finetuning.

Regards,
Andrea

@docker-library docker-library locked and limited conversation to collaborators May 15, 2023
@tianon tianon converted this issue into discussion #1083 May 15, 2023

This issue was moved to a discussion.

You can continue the conversation there. Go to discussion →

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ImreSamu @andreaaizza