[
https://issues.apache.org/jira/browse/HDDS-8594?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Szabolcs Gál updated HDDS-8594:
-------------------------------
Description: The current solution will use the mechanism of
signAndStoreCertificate which stores the old pki material in a backup
directory, but from the main directory the necessary material are removed.
(was: After a root CA certificate rotation has been successfully performed and
the client also received a signed certificate, the old key/certificate material
can be cleaned up from this service.)
> Add cleanup in the certificate renewal logic to remove old pki material.
> ------------------------------------------------------------------------
>
> Key: HDDS-8594
> URL: https://issues.apache.org/jira/browse/HDDS-8594
> Project: Apache Ozone
> Issue Type: Sub-task
> Components: Security
> Reporter: Szabolcs Gál
> Assignee: Szabolcs Gál
> Priority: Major
> Labels: pki
>
> The current solution will use the mechanism of signAndStoreCertificate which
> stores the old pki material in a backup directory, but from the main
> directory the necessary material are removed.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
