The old Perl TO UI provided SSL key versioning functionality for delivery services where the current `ssl_key_version` was tracked on the delivery service and incremented whenever new ssl keys were added or generated. The new keys were then stored in Riak under the incremented `ssl_key_version`, as well as the version `latest`, so that the full history of SSL keys was stored in Riak indefinitely. This meant that you could always go back to using a previous version of the ssl keys if need be.
This feature was missed in the TO Perl API implementation, so adding new SSL keys to a delivery service actually overwrites the current SSL keys in Riak, meaning you no longer get the full history of SSL keys for that delivery service. I think this was done accidentally and that we should make sure this DS SSL key versioning from the old TO UI gets added into the TO Go API implementation. [ Full content available at: https://github.com/apache/trafficcontrol/issues/2855 ] This message was relayed via gitbox.apache.org for [email protected]
