dbalikhin
commented
1 year ago We can have automatic cert management with a custom store. Check this: https://docs.duendesoftware.com/identityserver/v6/reference/stores/signing_key_store/
Open dbalikhin opened 2 years ago
dbalikhin
commented
1 year ago We can have automatic cert management with a custom store. Check this: https://docs.duendesoftware.com/identityserver/v6/reference/stores/signing_key_store/
Use static key management and load the key from the Vault. Think about rotation.
https://docs.duendesoftware.com/identityserver/v5/fundamentals/keys/
We need a way to support automatic scaling, I cannot see how we can do it without storing a key in a container. Even with enabled DataProtection, it doesn't look great.