Uploaded image for project: 'OpenShift Service Mesh'
  1. OpenShift Service Mesh
  2. OSSM-2744

[Security] Document certificate use in service mesh

XMLWordPrintable

      Epic in Jira = OSSM-13 , MAISTRA-89

      Google doc for Epic = https://docs.google.com/document/d/1Rmf87AQKGEicCc3Bk4KSU2WzyAp0z-xJz8RMEYgwsCQ/edit#heading=h.9khfep37qdjo

      User Story =As a developer I want to use the default cluster certificate for inbound requests so that I can have a secure "default" without having to request a certificate just for my application

      As a sysadmin I want the service mesh to utilize the cluster available CA so that I have fewer root certificates to manage/install for external resources.

      Research references = https://istio.io/docs/tasks/security/citadel-config/plugin-ca-cert/

      https://istio.io/latest/docs/tasks/security/cert-management/

      https://archive.istio.io/v1.4/docs/tasks/security/citadel-config/plugin-ca-cert/
      https://issues.redhat.com/browse/MAISTRA-1358 for awareness

              ntimpe@redhat.com Neal Timpe
              jstickler Julie Stickler (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: