When a user provides his own CA certificates (both cluster and/or clients), the renewal process didn't work as explained by ENTMQST-2331
After got the fix through upstream PR [1] we need to have proper system tests for checking that if user provides a new cluster or clients CA, the renewal process runs as expected by the CO (rolling pods, trusting CAs, generate new certs, ...). It needs to be tested in both case with a new private key or using the current one to sign the new CA certificates.
[1] https://github.com/strimzi/strimzi-kafka-operator/pull/6180
- relates to
-
ENTMQST-2331 Zookeeper, Kafka, and EntityOperator certs are not renewed when to use an own cluster ca cert
-
- Closed
-