[jira] [Commented] (MESOS-7499) Allow "insecure registry" in Mesos containerizer through some operator configuration
[ https://issues.apache.org/jira/browse/MESOS-7499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16366348#comment-16366348 ] Chun-Hung Hsiao commented on MESOS-7499: [~gilbert] Is there any plan on supporting non-SSL registry on any port? > Allow "insecure registry" in Mesos containerizer through some operator > configuration > > > Key: MESOS-7499 > URL: https://issues.apache.org/jira/browse/MESOS-7499 > Project: Mesos > Issue Type: Improvement >Reporter: Zhitao Li >Priority: Major > > Similar to {{--insecure-registry}} for docker daemon, Mesos containerizer > should allow cluster operator to relax https requirement on certain docker > registries. > A practical use case is internal registry addresses hosted on private network > in a corp: we often trust these addresses and do not want to configure extra > cert for them. -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (MESOS-7499) Allow "insecure registry" in Mesos containerizer through some operator configuration
[ https://issues.apache.org/jira/browse/MESOS-7499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16005384#comment-16005384 ] Aaron Wood commented on MESOS-7499: --- It'd also be nice to bypass the check for self signed certificates. Here are my thoughts on enhancing the functionality: - Allow for non-TLS traffic on any port - Allow for TLS traffic on any port - Allow for TLS but bypass the certificate check (a simple -k to curl would do) for endpoints that are using self signed certificates > Allow "insecure registry" in Mesos containerizer through some operator > configuration > > > Key: MESOS-7499 > URL: https://issues.apache.org/jira/browse/MESOS-7499 > Project: Mesos > Issue Type: Bug >Reporter: Zhitao Li > > Similar to {{--insecure-registry}} for docker daemon, Mesos containerizer > should allow cluster operator to relax https requirement on certain docker > registries. > A practical use case is internal registry addresses hosted on private network > in a corp: we often trust these addresses and do not want to configure extra > cert for them. -- This message was sent by Atlassian JIRA (v6.3.15#6346)