Code Review / aaf / sms.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | inline | side by side
Using SNI for service names to support k8s
[aaf/sms.git] / sms-service / src / quorumclient / quorumclient.go
diff --git a/sms-service/src/quorumclient/quorumclient.go b/sms-service/src/quorumclient/quorumclient.go
index 9db6da8..9ef8f00 100644 (file)
--- a/sms-service/src/quorumclient/quorumclient.go
+++ b/sms-service/src/quorumclient/quorumclient.go
@@ -105,12 +105,13 @@ func main() {
 
        //Struct to read json configuration file
        type config struct {
-               BackEndURL string `json:"url"`
-               CAFile     string `json:"cafile"`
-               ClientCert string `json:"clientcert"`
-               ClientKey  string `json:"clientkey"`
-               TimeOut    string `json:"timeout"`
-               DisableTLS bool   `json:"disable_tls"`
+               BackEndURL        string `json:"url"`
+               BackendServerName string `json:"servername"`
+               CAFile            string `json:"cafile"`
+               ClientCert        string `json:"clientcert"`
+               ClientKey         string `json:"clientkey"`
+               TimeOut           string `json:"timeout"`
+               DisableTLS        bool   `json:"disable_tls"`
        }
 
        //Load the config File for reading
@@ -155,6 +156,12 @@ func main() {
                }
        }
 
+       // Allow https connection in k8s where servername does not match
+       // certificate server name
+       if cfg.BackendServerName != "" {
+               transport.TLSClientConfig.ServerName = cfg.BackendServerName
+       }
+
        client := &http.Client{
                Transport: &transport,
        }
Secret Management Service that will contain the webservice as well as client code for managing and accessing secrets.