Update cert without restarting server

bolcom / libunftp

Extensible, async, cloud orientated FTP(S) server library and the core of unFTP: https://github.com/bolcom/unFTP. Follow up and talk to us on https://t.me/unftp

Apache License 2.0

178 stars 32 forks source link

Update cert without restarting server #523

Open RCW679 opened 3 days ago

RCW679 commented 3 days ago

Currently, in libunftp, you can't update the TLS cert without either restarting the server or patching libunftp. This issue tracks the progress of automatically updating the TLS cert.

RCW679 commented 3 days ago

The first step is to merge #522. After it is merged, you can make a rustls ConfigBuilder with a custom ResolvesServerCert and supply the ServerConfig to ftps_manual. This makes it possible to update the certificate without disruptions.