Remove 'tls_insecure_skip_verify' in vault config

This commit removes the tls_insecure_skip_verify field in the vault config template. This was added as a workaround for a bug in the vault's etcd client before 1.4.0 release. Since all channels now uses 1.5 or newer versions of vault, this line can be removed. Change-Id: I64f1c2c9ced8ae4dff2bf232c6e673b596f84a14 Closes-Bug: #1979582
2023-10-02 10:27:56 +02:00 · 2023-10-02 10:27:56 +02:00 · d81b3d7a10
parent 1648b976da
commit d81b3d7a10
1 changed files with 0 additions and 3 deletions
--- a/src/templates/vault.hcl.j2
+++ b/src/templates/vault.hcl.j2
@ -30,9 +30,6 @@ ha_storage "etcd" {
  tls_ca_file = "{{ etcd_tls_ca_file }}"
  tls_cert_file = "{{ etcd_tls_cert_file }}"
  tls_key_file = "{{ etcd_tls_key_file }}"
-  # Use tls_insecure_skip_verify due to https://github.com/hashicorp/vault/issues/4961
-  # tls_insecure_skip_verify is currently only supported in the snap version of vault.
-  tls_insecure_skip_verify = "true"
  etcd_api = "v3"
 }