TLS Options Documentation Not Working with v20.03.1

diggy · May 2, 2020, 6:16pm

Moved from GitHub dgraph/5350

Posted by darkn3rd:

Documentation

The documentation for TLS Options does not work in curent version v20.03.1

Specifically this no longer works:

# Now, connect to server using TLS
$ dgraph live --tls_dir tls -s 21million.schema -f 21million.rdf.gz

Workaround

The correct command depends on how the certificate was setup, and also the host that the service is running on. I was able to get it working with this:

dgraph live \
  --tls_cacert ./tls/ca.crt \
  --tls_cert ./tls/client.user.crt \
  --tls_key ./tls/client.user.key \
  --tls_server_name "$(hostname -f)" \
  -s 21million.schema \
  -f 21million.rdf.gz

I setup my environment with this:

curl -sSf https://get.dgraph.io | VERSION="v20.03.1" bash
dgraph cert
dgraph cert -n $(hostname -f)
dgraph cert -c user
dgraph zero --my="$(hostname -f):5080" --idx 1
dgraph alpha --my=$(hostname -f):7080 \
 --zero $(hostname -f):5080 \
  --lru_mb 2048 \
  --tls_dir=./tls \
  --tls_client_auth=REQUIREANDVERIFY

diggy · May 7, 2020, 12:47am

darkn3rd commented :

I was hoping an engineer could look at this, verify if this was a feature at all. But in mean time editing documentation to show another path.

diggy · June 24, 2020, 5:45am

gumupaier commented :

I had the same problem,

Error: unknown flag: --tls_dir

Topic		Replies	Views
Dgraph + TLS is not working Users	17	1307	June 3, 2020
TLS Self Signed Certificate Docs for Dgraph Live Dgraph dgraph , kind:enhancement , status:accepted , kind:bug , area:documentation	1	617	June 30, 2021
TLS handshake error Dgraph	14	909	February 18, 2020
How I can use :8080/admin/export with TLS Dgraph	16	1386	March 4, 2020
TLS Configuration - Deploy Documentation	0	544	August 29, 2020

TLS Options Documentation Not Working with v20.03.1

Documentation

Workaround

Related Topics