Add an ability to communicate with Vault via mTLS #2926
Labels
area/vault
Indicates a PR directly modifies the Vault Issuer code
kind/feature
Categorizes issue or PR as related to a new feature.
lifecycle/rotten
Denotes an issue or PR that has aged beyond stale and will be auto-closed.
priority/important-longterm
Important over the long term, but may not be staffed and/or may need multiple releases to complete.
Is your feature request related to a problem? Please describe.
Vault server can be configured to request client certificates:
https://www.vaultproject.io/docs/configuration/listener/tcp
(tls_client_ca_file, tls_disable_client_certs)
When Vault is configured in the way above, there is no possibility to properly configure Vault Issuer by using existing CRDs.
Describe the solution you'd like
As a cert-manager user I want to have an ability to provide client certificate for Vault Issuer.
Describe alternatives you've considered
No alternatives when Vault requests client certificates.
Environment details (if applicable):
/kind feature
The text was updated successfully, but these errors were encountered: