Skip to content

Add Puma config support for SSL key decryption

Stan Hu requested to merge sh-puma-key-password into master

What does this MR do?

This commit adds support for a PUMA_SSL_KEY_PASSWORD_COMMAND environment variable that will make it possible to store encrypted SSL certificates on disk.

This requires Puma v6.3.0 (https://github.com/puma/puma/pull/3133) to work: gitlab-org/gitlab!122200 (merged).

Related issues

Relates to:

  1. gitlab-org/omnibus-gitlab#7799 (closed)
  2. gitlab-org/charts/gitlab#4794

Checklist

See Definition of done.

For anything in this list which will not be completed, please provide a reason in the MR discussion

Required

  • Merge Request Title, and Description are up to date, accurate, and descriptive
  • MR targeting the appropriate branch
  • MR has a green pipeline on GitLab.com
  • When ready for review, MR is labeled "~workflow::ready for review" per the Distribution MR workflow

Expected (please provide an explanation if not completing)

  • Test plan indicating conditions for success has been posted and passes
  • Documentation created/updated
  • Integration tests added to GitLab QA
  • The impact any change in container size has should be evaluated
Edited by Stan Hu

Merge request reports