From 0b192631872ab51232a8bd9cb86c658b98df258e Mon Sep 17 00:00:00 2001 From: Alex Misstear Date: Thu, 6 Jun 2024 09:27:57 -0400 Subject: [PATCH] Add warning about skipping TLS verification --- .../get-supported-ephemeral-cluster-versions/0.1/README.md | 2 +- .../0.1/get-supported-ephemeral-cluster-versions.yaml | 4 +++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/stepactions/get-supported-ephemeral-cluster-versions/0.1/README.md b/stepactions/get-supported-ephemeral-cluster-versions/0.1/README.md index 05caa35282..21e60978e9 100644 --- a/stepactions/get-supported-ephemeral-cluster-versions/0.1/README.md +++ b/stepactions/get-supported-ephemeral-cluster-versions/0.1/README.md @@ -6,7 +6,7 @@ This StepAction queries the hub cluster used to provision ephemeral clusters for |name|description|default value|required| |---|---|---|---| |kubeconfigSecretLabelSelector|A label selector used to identify the secret containing the EaaS hub cluster kubeconfig|toolchain.dev.openshift.com/spacerequest=eaas|false| -|insecureSkipTLSVerify|Skip TLS verification when accessing the EaaS hub cluster|false|false| +|insecureSkipTLSVerify|Skip TLS verification when accessing the EaaS hub cluster. This should not be set to "true" in a production environment.|false|false| ## Results |name|description| diff --git a/stepactions/get-supported-ephemeral-cluster-versions/0.1/get-supported-ephemeral-cluster-versions.yaml b/stepactions/get-supported-ephemeral-cluster-versions/0.1/get-supported-ephemeral-cluster-versions.yaml index a7899de672..e4ce01a219 100644 --- a/stepactions/get-supported-ephemeral-cluster-versions/0.1/get-supported-ephemeral-cluster-versions.yaml +++ b/stepactions/get-supported-ephemeral-cluster-versions/0.1/get-supported-ephemeral-cluster-versions.yaml @@ -16,7 +16,9 @@ spec: - name: insecureSkipTLSVerify type: string default: "false" - description: Skip TLS verification when accessing the EaaS hub cluster + description: >- + Skip TLS verification when accessing the EaaS hub cluster. + This should not be set to "true" in a production environment. env: - name: LABEL_SELECTOR value: "$(params.kubeconfigSecretLabelSelector)"