Uploaded image for project: 'AMQ Streams'
  1. AMQ Streams
  2. ENTMQST-2548

User-certificate renewal never triggered when it expires independently on the CA

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Done
    • 1.4.0.GA, 1.5.0.GA, 1.6.0.GA
    • 1.7.0.GA
    • None
    • None
    • False
    • False
    • Undefined

    Description

      It can happen that the user configures the Kafka cluster with a custom clients CA and also configures some certificate validity which is shorter than the CA validity. In such case, the user certificate needs to renew even when the CA does not change. This does not work in the User Operator because it never checks the expiration of the certificate. It just waits for the CA certificate to change (which would if the CA expires, but not with a custom CA which might have different validity then the user certs).

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              scholzj JAkub Scholz
              Michal Toth Michal Toth
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: