Uploaded image for project: 'OpenShift API Server'
  1. OpenShift API Server
  2. API-1689

Create TLS artifacts registry

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Critical Critical
    • None
    • None
    • None
    • Create TLS artifacts registry
    • Strategic Product Work
    • 13
    • False
    • None
    • False
    • Not Selected
    • In Progress
    • OCPSTRAT-709 - [internal] All OCP internal certificate chains must have clear ownership
    • 75% To Do, 0% In Progress, 25% Done
    • XL

      In order to keep track of existing certs/CA bundles and ensure that they adhere to requirements we need to have a TLS artifact registry setup.

      The registry would:

      • have a test which automatically collects existing certs/CA bundles from secrets/configmaps/files on disk
      • have a test which collects necessary metedata from them (from cert contents or annotations)
      • ensure that new certs match expected metadata and have necessary annotations on when a new cert is added

      Ref: API-1622

              vrutkovs@redhat.com Vadim Rutkovsky
              vrutkovs@redhat.com Vadim Rutkovsky
              Ke Wang Ke Wang
              Ramon Acedo Ramon Acedo
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: