Hi, We built a new certificate controller at https://github.com/kubeup/kube-remote-signer
Iit's a proof of concept of: - Using external CA to enhance the security of the certificate signing process - Replacing internal controller with standalone one for functionality customization We also built a experimental CA at https://github.com/kubeup/kube-ca which runs in Google App Engine and encrypts the CA private key with Google Cloud KMS. Hope this could be useful for Kubernetes users who want to protect their CA private key. Currently it only provides the basic function but you can modify it easily to suit your needs. If you have any suggestions or ideas about certificates management for Kubernetes, please share with us so that we can improve the current solution. Regards, Ivan -- You received this message because you are subscribed to the Google Groups "Kubernetes user discussion and Q&A" group. To unsubscribe from this group and stop receiving emails from it, send an email to kubernetes-users+unsubscr...@googlegroups.com. To post to this group, send email to kubernetes-users@googlegroups.com. Visit this group at https://groups.google.com/group/kubernetes-users. For more options, visit https://groups.google.com/d/optout.
