This change moves the existing {client,server}_certificate and {client,server}_private_key into {client,server}_key_pair.inline.certificate and {client,server}_key_pair.inline.private_key
This change adds an alternate strategy for specifying certificates/private keys by using {client,server}_key_pair.files.certificate_path and {client,server}_key_pair.files.private_key_path which should reference PEM files on disk. A refresh_interval must also be specified to dictate the interval at which the files should be read and used in place of the existing certificate/key if such files have been changed.
In kubernetes for example, this allows a side-car to rotate certificate based on user's needs.
…d on an interval.
Incompatible Changes:
This change moves the existing
{client,server}_certificate
and{client,server}_private_key
into{client,server}_key_pair.inline.certificate
and{client,server}_key_pair.inline.private_key
This change adds an alternate strategy for specifying certificates/private keys by using
{client,server}_key_pair.files.certificate_path
and{client,server}_key_pair.files.private_key_path
which should reference PEM files on disk. A refresh_interval must also be specified to dictate the interval at which the files should be read and used in place of the existing certificate/key if such files have been changed.In kubernetes for example, this allows a side-car to rotate certificate based on user's needs.