Critical Prompted by https://issues.redhat.com/browse/PROJQUAY-5174, we need to comb through all of Quay and identify where we create or rely on certificates that will expire and need to be rotated. This spike is meant to capture all locations so we can put together follow up stories to implement rotation.
https://github.com/omertuc/recert/ might be helpful in identifying configmaps and secrets that contain certs.
- impacts account
-
PROJQUAY-5174 Quay Operator doesn't trust internal service CA when it is rotated.
-
- Closed
-