Uploaded image for project: 'Apache Ozone'
  1. Apache Ozone
  2. HDDS-7391 Phase I - Automated live rotation of CA certificates in a cluster with established trust
  3. HDDS-8589

Prepare TrustManagers to handle multiple root CA certficates

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • None
    • Security

    Description

      TrustManagers right now on client side only ever expect 1 root CA certificate to exist. When root CA certificate rotation is implemented it's necessary to trust at least 2 root CA certificates temporarily. The goal here is to enable clients' TrustManagers to do so.

      Attachments

        Issue Links

          Is contained by

          Sub-task - The sub-task of the issue HDDS-8588 Add initialization logic in CertificateClient to handle more than one rootCA certificate

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              sgal Szabolcs Gál
              sgal Szabolcs Gál
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: