Skip to content

Comments

[WIP] cluster: Secure cluster traffic via mutual TLS#1819

Closed
mxinden wants to merge 1 commit intoprometheus:mainfrom
mxinden:memberlist-tls-transport
Closed

[WIP] cluster: Secure cluster traffic via mutual TLS#1819
mxinden wants to merge 1 commit intoprometheus:mainfrom
mxinden:memberlist-tls-transport

Conversation

@mxinden
Copy link
Member

@mxinden mxinden commented Mar 29, 2019

Use github.com/mxinden/memberlist-tls-transport to optionally secure the
Alertmanager cluster traffic via mutual tls.

This is an early work-in-progress version, but one can already test it out locally. I added everything to get up and running quickly:

  1. go get -u github.com/cloudflare/cfssl/cmd/...
  2. cd examples/ha/tls/ && make start

@mxinden
cluster: Secure cluster traffic via mutual TLS
340756c 
Use github.com/mxinden/memberlist-tls-transport to optionally secure the
Alertmanager cluster traffic via mutual tls.

Signed-off-by: Max Leonard Inden <IndenML@gmail.com>
brian-brazil
brian-brazil reviewed Mar 29, 2019
View reviewed changes
cluster/cluster.go
p.setInitialFailed(resolvedPeers, bindAddr)
}

// TODO: Don't just dereference.
Copy link
Contributor

@brian-brazil brian-brazil Mar 29, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We're handling all this differently in the node exporter tls stuff, which you should probably vendor/hack in here to keep things in line

Copy link
Member Author

@mxinden mxinden Apr 1, 2019

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

For sure. I will align this once prometheus/node_exporter#1277 is merged.

@simonpasquier simonpasquier self-requested a review April 2, 2019 12:33
@mxinden mxinden mentioned this pull request Apr 12, 2019
Closed
@stale stale bot added the stale label Feb 17, 2020
@mxinden mxinden mentioned this pull request Mar 22, 2020
Closed
@hooten
Copy link
Contributor

hooten commented Mar 30, 2020

@mxinden Do you plan to pick this back up? If not, I would like to. Thanks!

@stale stale bot removed the stale label Mar 30, 2020
@mxinden
Copy link
Member Author

mxinden commented Mar 31, 2020

@hooten I have no plans to work on this, but I am more than happy to answer any questions in case you would like to continue the effort. Would be great to see this in master at some point.

As far as I am aware this is still aligned with the Alertmanager roadmap. I am //CCing @simonpasquier here just to make sure.

@sharadgaur
Copy link
Contributor

sharadgaur commented Mar 31, 2020

@hooten Love to pair with you on this :)

@hooten hooten mentioned this pull request Apr 1, 2020
Closed
@hooten hooten mentioned this pull request Apr 20, 2020
Merged
@stale stale bot added the stale label May 30, 2020
@mxinden mxinden mentioned this pull request Oct 9, 2020
Closed
@mxinden
Copy link
Member Author

mxinden commented Oct 3, 2021

With #2237 merged, I am closing here.

@mxinden mxinden closed this Oct 3, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@simonpasquier simonpasquier Awaiting requested review from simonpasquier

1 more reviewer

@brian-brazil brian-brazil brian-brazil left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

stale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mxinden @hooten @sharadgaur @brian-brazil