search

cloudfoundry-community / safe-boshrelease

A simplified HA Vault intended to be used with `safe`
MIT License
8 stars 9 forks source link

safe-boshrelease upgrade #39

Closed norman-abramovitz closed 2 years ago

norman-abramovitz commented 2 years ago
  1. Upgraded strongbox to the latest release of go
  2. Upgraded consul to a later release 1.11.3
  3. Upgraded vault to 1.9.3
  4. Consul has an issue with self-signed certificates and we added a temporary workaround by adding the spec variable safe.peer.tls.use_self_signed_certs property
    1. Added rspecs for the manifest testing
    2. Moved unsigned cert generation to a pre-start script
    3. The self signed certs included text that was not part of the rfc5280.