-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cert-Manager support and TLS periodic reload #41501
Conversation
This comment has been minimized.
This comment has been minimized.
🙈 The PR is closed and the preview is expired. |
extensions/tls-registry/runtime/src/main/java/io/quarkus/tls/runtime/TlsCertificateUpdater.java
Outdated
Show resolved
Hide resolved
extensions/tls-registry/runtime/src/main/java/io/quarkus/tls/runtime/TlsCertificateUpdater.java
Show resolved
Hide resolved
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks nice!
Asked a small question
Provide a way to periodically reload certificates from the file system and document how to implement your own reloader.
ae5e11c
to
32fc596
Compare
Status for workflow
|
Status for workflow
|
@Certificate(name = "reload-A", formats = Format.PEM), | ||
@Certificate(name = "reload-B", formats = Format.PEM, duration = 365), | ||
}) | ||
@DisabledOnOs(OS.WINDOWS) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why is this test disabled on Windows?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It is just to avoid complexity in the tests with / vs \ in paths.
@TestHTTPResource(value = "/hello", tls = true) | ||
URL url; | ||
|
||
public static final File temp = new File("target/test-certificates-" + UUID.randomUUID()); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We can use Path
here and avoid java.io.File
entirely, but that can be done in a separate PR
cert-manager