Uploaded image for project: 'OpenShift GitOps'
  1. OpenShift GitOps
  2. GITOPS-2375

OpenShift-GitOps should pick up the renewed certificates without server restart

XMLWordPrintable

    • 8
    • False
    • None
    • False
    • Hide
      Before this update, when the `argocd-server-tls` secret was updated with a new certificate Argo CD was not always picking up this secret. As a result, the old expired certificate was presented. This update fixes the issue with a new `GetCertificate` function and ensures that the latest version of certificates is in use. When adding new certificates, now Argo CD picks them up automatically without the user having to restart the `argocd-server` pod.
      Show
      Before this update, when the `argocd-server-tls` secret was updated with a new certificate Argo CD was not always picking up this secret. As a result, the old expired certificate was presented. This update fixes the issue with a new `GetCertificate` function and ensures that the latest version of certificates is in use. When adding new certificates, now Argo CD picks them up automatically without the user having to restart the `argocd-server` pod.
    • GITOPS Sprint 231, GITOPS Sprint 232

      As an OpenShift GitOps user, I would like Argo CD to pick up the renewed certificates with out the need to Argo CD Server restart.

      There is an existing issue on Argo CD Upstream project but it is not considered as part of Argo CD v2.5.0. Customer is looking at Red Hat to get this fixed asap.
      https://github.com/argoproj/argo-cd/issues/10707

      Slack Discussion on #forum-openshift-gitops provides additional information.
      https://coreos.slack.com/archives/CMP95ST2N/p1666350701408579

      Acceptance Criteria:
      Look into the Upstream issue and Red Hat customer issue and get the fix into the upstream.

            pgeorgia Panagiotis Georgiadis (Inactive)
            aveerama@redhat.com Abhishek Veeramalla
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated:
              Resolved: