[
https://issues.apache.org/jira/browse/HDDS-8593?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Szabolcs Gál updated HDDS-8593:
-------------------------------
Description: As the final step for Root CA rotation, the
RootCARotationPoller needs to be integrated into the certificate client. With
this, the polling mechanism should be kicked off once the client starts, and
the root CA rotation should be automatically handled. (was: Once the clients
received their root CA certificate and added it into their TrustManagers, a new
certificate rotation process needs to be kicked off to get a signed certificate
from the SCM. Code for this already exists and is invoked through
CertificateLifeTimeMonitor, but it needs to be refactored to be called on
demand when a new root CA is ready to be used.)
> Add RootCARotationPoller to CertClient
> --------------------------------------
>
> Key: HDDS-8593
> URL: https://issues.apache.org/jira/browse/HDDS-8593
> Project: Apache Ozone
> Issue Type: Sub-task
> Components: Security
> Reporter: Szabolcs Gál
> Priority: Major
> Labels: pki, pull-request-available
>
> As the final step for Root CA rotation, the RootCARotationPoller needs to be
> integrated into the certificate client. With this, the polling mechanism
> should be kicked off once the client starts, and the root CA rotation should
> be automatically handled.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
