From e4a622c67ebe17b1e2e00a44181560c72f286365 Mon Sep 17 00:00:00 2001 From: Ken Dreyer Date: Tue, 23 Feb 2021 16:45:22 -0700 Subject: [PATCH] doc: note SSL CA requirement for kojid kojid hosts must have the CA that signed an HTTPS topurl in the system-wide store. --- docs/source/server_howto.rst | 3 +++ 1 file changed, 3 insertions(+) diff --git a/docs/source/server_howto.rst b/docs/source/server_howto.rst index 7746b01c..36c4695e 100644 --- a/docs/source/server_howto.rst +++ b/docs/source/server_howto.rst @@ -1122,6 +1122,9 @@ value that you've configured for Koji clients (above):: # The URL for the file access topurl=http://koji-filesystem.example.com/kojifiles +If the "topurl" setting uses an HTTPS URL with a cert signed by a custom CA, +the Koji builder must trust the CA system-wide. + You may change "workdir", but it may not be the same as KojiDir on the ``kojihub.conf`` file. It can be something under KojiDir, just not the same as KojiDir.