SSL certificate skipped in Centos and GitLab 11.3.6

ssl

#1

I’m trying to configure https in centos-release-7-5.1804.5.el7.centos.x86_64 and GitLab Community Edition 11.3.6 3c1fdf6 but it skips the trusted certificate (godaddy).

Recipe: gitlab::add_trusted_certs
  * directory[/etc/gitlab/trusted-certs] action create (up to date)
  * directory[/opt/gitlab/embedded/ssl/certs] action create (up to date)
  * file[/opt/gitlab/embedded/ssl/certs/README] action create (up to date)
  * ruby_block[Move existing certs and link to /opt/gitlab/embedded/ssl/certs] action run

  * Moving existing certificates found in /opt/gitlab/embedded/ssl/certs

  * Symlinking existing certificates found in /etc/gitlab/trusted-certs

    Skipping /etc/gitlab/trusted-certs/cacert.pem.

    Skipping /etc/gitlab/trusted-certs/godaddycert.pem.

- execute the ruby block Move existing certs and link to /opt/gitlab/embedded/ssl/certs

The command:

    /opt/gitlab/embedded/bin/openssl x509 -in /etc/gitlab/trusted-certs/cacert.pem -text -noout

looks good.

Any ideas?

Edit:

With version 11.4.5 (f5536c6) the output is:

Recipe: gitlab::add_trusted_certs
  * directory[/etc/gitlab/trusted-certs] action create (up to date)
  * directory[/opt/gitlab/embedded/ssl/certs] action create (up to date)
  * file[/opt/gitlab/embedded/ssl/certs/README] action create (up to date)
  * ruby_block[Move existing certs and link to /opt/gitlab/embedded/ssl/certs] action run (skipped due to only_if)

And it doesn’t work


#2

Fixed in 11.7.4