Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Configurable expire dates on certificates #57
Currently all certificates expire 5 years after creation.
Do we want to utilize a parameter for this value? Also, maybe a separate parameter specifically for the common authority certificates for
Maybe also have another parameter for forcing recreation of common authorities,
When the time comes to renew certificates (common authorities specifically) it would be nice with a zero-downtime routine. I'll see if I can try to test this routine (as soon as I have time). If it only means downtime for state updates (such as Ingress controller config and node updates and similar), I think it's OK. As long as traffic are still routed properly to the containers.