Configure Operatr with HTTPS, allowing SSL termination at the instance without a reverse proxy.
Once configured, Operatr serves all content via HTTPS.
That means you must update any configured integrations including Prometheus scrapers, SSO providers (e.g.
OPENID_LANDING_URI and callback-urls within the provider) as https://.
Operatr is powered by Jetty which uses Java KeyStores (JKS) to manage certificates.
Refer the Jetty documentation for instructions on using the keytool to import certificates (e.g. a
.pem file) into a KeyStore.
Set the following environment variable and start Operatr with SSL connections.
ENABLE_HTTPS=trueOnce set Operatr will serve only HTTPS traffic on the
HTTPS_KEYSTORE=The location of your KeyStore, e.g.
HTTPS_KEYSTORE_TYPE=The type of KeyStore (eg,
HTTPS_KEYSTORE_PASSWORD=The password of the KeyStore.
HTTPS_TRUSTSTORE=- (optional) The location of your Truststore e.g.
HTTPS_TRUSTSTORE_TYPE=(optional) The type of TrustStore.
HTTPS_TRUSTSTORE_PASSWORD=(optional) The password of the TrustStore.