When working with service meshes on various platforms, there is a benefit in supporting multiple methods for accessing secrets. Some platforms (like Kubernetes and OpenShift) provide means of securely storing secrets and mounting them in to running containers.
Others, like AWS ECS and the AWS Secrets manager, don't support such easy operations. To support operations on these other platforms, the Grey Matter Proxy contains functionality to parse a limited selection of Base64 encoded SSL certificates and write them directly to disk.
Variable
Default
Description
INGRESS_TLS_CERT
""
Written out to ./certs/ingress_localhost.crt
Need help with SSL cert parsing?
Create an account at to reach our team.
INGRESS_TLS_KEY
""
Written out to ./certs/ingress_localhost.key
INGRESS_TLS_TRUST
""
Written out to ./certs/ingress_intermediate.crt
EGRESS_TLS_CERT
""
Written out to ./certs/egress_localhost.crt
EGRESS_TLS_KEY
""
Written out to ./certs/egress_localhost.key
EGRESS_TLS_TRUST
""
Written out to ./certs/egress_intermediatet.c