Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
API changes to rotate swarm root CA #32993
This is the first stab the CLI command to actually rotate the root CA cert. I added a new one, because we want to optionally take a root certificate and key, and/or external CAs, but we also want the user to be able to tell swarm to generate one. So:
Sample progress bar here, copied styling from the synchronous service create progress bar: https://asciinema.org/a/dcpy5y2fcueb8fpmokxvf3vec
Note: I originally thought about just doing
Also a suggestion from @NathanMcCauley: if we have service identities, and those could be rotated, do we want to use the same command to view/rotate those as well?
referenced this pull request
May 4, 2017
Also pinging @cpuguy83 for review: since you reviewed the last API changes that included TLS info (sorry, no good deed goes unpunished :)) - this is the follow up that will trigger the root rotation that can make use of the TLS info.