mirror of
https://github.com/holos-run/holos.git
synced 2026-03-19 08:44:58 +00:00
224adffa15
To establish the canonical https://login.ois.run identity issuer on the core cluster pair. Custom resources for PGO have been imported with: timoni mod vendor crds -f deploy/clusters/core2/components/prod-pgo-crds/prod-pgo-crds.gen.yaml Note, the zitadel tls connection took some considerable effort to get working. We intentionally use pgo issued certs to reduce the toil of managing certs issued by cert manager. The default tls configuration of pgo is pretty good with verify full enabled.