Skip to content

CLOUDP-111968: Watch for changes in CA certificate #910

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Mar 8, 2022
Merged

CLOUDP-111968: Watch for changes in CA certificate #910

merged 6 commits into from
Mar 8, 2022

Conversation

@mircea-cosbuc
Copy link
Member

@mircea-cosbuc mircea-cosbuc commented Mar 2, 2022
edited
Loading

All Submissions:

This patch triggers a reconciliation loop when the CA certificate changes.
NOTE: The server certificates should be valid under both the old and new CA certificate chains for a zero-downtime update.
This also closes #874.

  • Have you opened an Issue before filing this PR?
  • Have you signed our CLA?
  • Have you checked to ensure there aren't other open Pull Requests for the same update/change?
  • Put closes #XXXX in your comment to auto-close the issue that your PR fixes (if such).

@mircea-cosbuc mircea-cosbuc force-pushed the CLOUDP-111968_reconcile-on-ca-crt-change branch from f362a5a to 5f9a8f5 Compare March 2, 2022 13:34
rodrigovalin
rodrigovalin approved these changes Mar 2, 2022
View reviewed changes
Copy link
Contributor

@rodrigovalin rodrigovalin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

irajdeep
irajdeep reviewed Mar 8, 2022
View reviewed changes
irajdeep
irajdeep reviewed Mar 8, 2022
View reviewed changes
irajdeep
irajdeep reviewed Mar 8, 2022
View reviewed changes
irajdeep
irajdeep reviewed Mar 8, 2022
View reviewed changes
Copy link
Contributor

@irajdeep irajdeep left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM -- with some minor comments inline

irajdeep
irajdeep approved these changes Mar 8, 2022
View reviewed changes
Copy link
Contributor

@irajdeep irajdeep left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM -- nice work.

@mircea-cosbuc mircea-cosbuc merged commit 5086aac into master Mar 8, 2022
@mircea-cosbuc mircea-cosbuc deleted the CLOUDP-111968_reconcile-on-ca-crt-change branch March 8, 2022 10:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatton chatton Awaiting requested review from chatton

@ciprian-tibulca ciprian-tibulca Awaiting requested review from ciprian-tibulca

@priyolahiri priyolahiri Awaiting requested review from priyolahiri

@rodrigovalin rodrigovalin Awaiting requested review from rodrigovalin

1 more reviewer

@irajdeep irajdeep irajdeep approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

TLS certificate content update fails to rollout automation config update

4 participants

@mircea-cosbuc @rodrigovalin @irajdeep