Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refresh TLS certificates automatically #1878

Open
uhthomas opened this issue Aug 31, 2023 · 0 comments
Open

Refresh TLS certificates automatically #1878

uhthomas opened this issue Aug 31, 2023 · 0 comments

Comments

@uhthomas
Copy link
Contributor

Describe the bug

Athens supports TLS, but will only read the certificates once on startup. Environments like Kubernetes with cert-manager may automatically rotate the given certificate, where Athens will continue to use the old certificate. There are numerous linked issues:

It may be better for Athens to support this natively. There seems to be a good Go package which facilitates this behaviour:

https://github.com/cloudflare/certinel

Error Message

N/A

To Reproduce

N/A

Expected behavior

Athens should use new certificates if available.

Environment (please complete the following information):

  • OS: Linux (Kubernetes)
  • Go version: N/A
  • Proxy version: v0.12.1
  • Storage: N/A

Additional context

N/A
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@uhthomas