connect/ca/roots endpoint do not return the intermediate cert when using vault provider #10532
Labels
theme/certificates
Related to creating, distributing, and rotating certificates in Consul
theme/connect
Anything related to Consul Connect, Service Mesh, Side Car Proxies
type/bug
Feature does not function as expected
When using a vault provider with consul and starting a new server. the call to
v1/connect/ca/roots
will not return an intermediate cert until half the root cert life time passed.This happen because in
getIntermediateCAPrimary
we don't store the generated intermediate in raftThe text was updated successfully, but these errors were encountered: