membphis commented on issue #11845:
URL: https://github.com/apache/apisix/issues/11845#issuecomment-2558825847
@praswicaksono I carefully review your proposal. There are one basic
question we need to answer first.
> Only able to use one method to manage SSL certificate, either it manual or
automatic
I think this is unacceptable, here is my explanation:
The APISIX had supported those cases at same time:
1. Allow to store the SSL certificates in the etcd(set through by Admin
API): https://apisix.apache.org/docs/apisix/ssl-protocol/#examples
2. Allow to reference the SSL certificates from the ENV:
https://apisix.apache.org/docs/apisix/terminology/secret/#use-environment-variables-to-manage-secrets
3. Allow to reference the SSL certificates from the Vault:
https://apisix.apache.org/blog/2023/07/09/apisix-integrates-with-vault/#deploy-and-configure-vault-service
In my opinion, those are the thing we should do:
1. Support ACME, it is ok
2. Allows ACME to be used with other SSL certificate management methods at
the same time, it should be ok too
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
