Skip to content

Commit 341f8ec

Browse files
sivanel97sivanel97
authored
Merge pull request #2878 from port-labs/r_uoStC8xH6rKv0Y81-add-multi-cert-support-port-agent
Enhance SSL certificate configuration documentation for port-agent
2 parents aee6786 + c156820 commit 341f8ec

File tree

1 file changed

+17
-3
lines changed
  • docs/actions-and-automations/setup-backend/webhook/port-execution-agent

1 file changed

+17
-3
lines changed

docs/actions-and-automations/setup-backend/webhook/port-execution-agent/usage.md

Lines changed: 17 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,6 @@ For example:
2222
```json showLineNumbers
2323
{ "type": "WEBHOOK", "agent": true, "url": "URL_TO_API_INSIDE_YOUR_NETWORK" }
2424
```
25-
2625
:::
2726

2827
Well Done! **Port Agent** is now running in your environment and will trigger any webhook that you've configured (for self-service actions, or changes in the software catalog).
@@ -56,7 +55,7 @@ env:
5655
VAR_NAME: VAR_VALUE
5756
```
5857
59-
### Proxy configuration
58+
### Proxy configuration
6059
6160
#### `HTTP_PROXY`, `HTTPS_PROXY` & `ALL_PROXY`
6261
`HTTP_PROXY`, `HTTPS_PROXY`, and `ALL_PROXY` are environment variables used to specify a proxy server for handling HTTP, HTTPS, or all types of requests, respectively. The values assigned to these settings should be the URL of the proxy server.
@@ -81,7 +80,13 @@ For more information take a look at the Requests [proxy configuration documentat
8180

8281
### SSL Environment Configuration
8382

84-
#### `REQUESTS_CA_BUNDLE`
83+
### Certificate Configuration
84+
85+
#### Self-signed certificate
86+
87+
Use the following Helm values:
88+
- Set `selfSignedCertificate.enabled` to `true`.
89+
- Put your PEM-encoded CA content in `selfSignedCertificate.certificate`.
8590

8691
`REQUESTS_CA_BUNDLE` is an environment variable used to specify a custom Certificate Authority (CA) bundle for verifying SSL/TLS certificates in HTTPS requests.
8792

@@ -94,6 +99,15 @@ REQUESTS_CA_BUNDLE=/path/to/cacert.pem
9499

95100
This configuration directs the `requests` library to use the specified CA bundle for SSL/TLS certificate verification, overriding default system settings. It's useful for trusting self-signed certificates or certificates from a private CA.
96101

102+
#### Multiple certificates
103+
104+
Use the following Helm values:
105+
- Keep your certificate via `selfSignedCertificate` as above.
106+
- Add other certificates by supplying files via `extraVolumes` and mounting them with `extraVolumeMounts` into the container.
107+
108+
:::info Certificate file requirement
109+
Each certificate must be provided in a separate PEM file. Files containing multiple certificates are not supported.
110+
:::
97111

98112
## Next Steps
99113

0 commit comments

Comments
 (0)