L3 - Default Value Proposition Statement
Use Self-Signed certificates for connection to Elastic across the Camunda Platform stack
User Problem
Currently self-signed certifictes are not suppported when connection elastic
User Stories
As a Admin / SRE I can configured self-signed certificates for connection to Elastic.
ATs:
- Docs are updated
- Self-signed certificates can be used
Testing Notes:
- Create a self-signed certificate: https://community.pivotal.io/s/article/Generating-a-self-signed-SSL-certificate-using-the-Java-keytool-command?language=en_US
- Set the es.security.ssl.certificate config to be the path to the file created above
- Set es.security.ssl.selfSigned to be false. Connection to ES should not work (This can also be set with the CAMUNDA_OPTIMIZE_ELASTICSEARCH_SECURITY_SSL_SELF_SIGNED env var)
- Set es.security.ssl.selfSigned to be true. Connection to ES should work (This can also be set with the CAMUNDA_OPTIMIZE_ELASTICSEARCH_SECURITY_SSL_SELF_SIGNED env var)