Skip to content

Commit

Permalink
🐛 Fix GKE cloud test
Browse files Browse the repository at this point in the history
`GitHubSecurityLab/actions-permissions/monitor` added a MITM proxy to intercept calls.
This proxy signed the GKE API cert which lead to errors:
```
Unable to connect to the server: tls: failed to verify certificate: x509: certificate signed by unknown authority
```

Signed-off-by: Christian Zunker <[email protected]>
  • Loading branch information
czunker committed Nov 8, 2023
1 parent b3dff07 commit ab70b42
Show file tree
Hide file tree
Showing 3 changed files with 165 additions and 176 deletions.
2 changes: 2 additions & 0 deletions .github/terraform/gke/main.tf
Original file line number Diff line number Diff line change
Expand Up @@ -12,11 +12,13 @@ resource "google_container_cluster" "cluster" {

remove_default_node_pool = true
initial_node_count = 1
deletion_protection = false
}

resource "google_container_node_pool" "node_pool" {
name = "mondoo-operator-pool-${random_string.suffix.result}"
location = "us-central1-a"
project = var.project_id
cluster = google_container_cluster.cluster.id
node_count = 1

Expand Down
2 changes: 1 addition & 1 deletion .github/terraform/gke/outputs.tf
Original file line number Diff line number Diff line change
Expand Up @@ -2,4 +2,4 @@ resource "local_file" "kubeconfig" {
depends_on = [google_container_cluster.cluster]
content = module.gke_auth.kubeconfig_raw
filename = "kubeconfig"
}
}
Loading

0 comments on commit ab70b42

Please sign in to comment.