mitchell852 opened a new issue #1841: Loosen permissions on fetching/uploading/generating SSL keys for a delivery service URL: https://github.com/apache/incubator-trafficcontrol/issues/1841 Currently, to fetch, upload or generate the SSL keys (Private Key, Certificate Signing Request and Certificate) for a delivery service where protocol > 0 (HTTPS, HTTP AND HTTPS, or HTTP TO HTTPS), you need to have the ADMIN role. This doesn't lend itself very well to self-service. IMO delivery service owners should be able to manage the SSL keys of their own DS's. My suggestion is to fetch, upload or generate the SSL keys for a delivery service you must: A. Have the proper tenancy. I.e. you can't update SSL keys for delivery services outside of your tenant scope B. You must have higher than the read-only role
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
