István Fajth created HDDS-7453:
----------------------------------
Summary: Check certificate expiration at service startup, renew if
necessary
Key: HDDS-7453
URL: https://issues.apache.org/jira/browse/HDDS-7453
Project: Apache Ozone
Issue Type: Improvement
Components: Security
Reporter: István Fajth
Assignee: István Fajth
At service startup there is a possibility to ease the problem with the expiring
internal SSL certificates.
The idea here is to check the expiration date of the certificate during
initialization, and remove the key and certificate material if the certificate
is expired or is about to expire, then recreate and re-initialize the
certificate client of the service, with that as there won't be certificate
material there, it would re-create the keys and file a CSR to the SCM, and get
a new certificate.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
