Lower certificate validity period

cnoe-io / idpbuilder

Spin up a complete internal developer platform with only Docker required as a dependency.

https://cloud-native.slack.com/archives/C05TN9WFN5S

Apache License 2.0

168 stars 51 forks source link

Lower certificate validity period #353

Open nabuskey opened 1 month ago

nabuskey commented 1 month ago

Currently, the self-signed certificates are valid for 1 year. We can probably lower it since we don't expect these clusters to live for months. I'd say a month is long enough.

https://github.com/cnoe-io/idpbuilder/blob/71fefc7e458b4a41886a60cff4ae12eee60e1538/pkg/build/tls.go#L29

cmoulliard commented 1 month ago

We can probably lower it since we don't expect these clusters to live for months. I'd say a month is long enough.

Default could be 1month but user should be able to configure it using a ConfigFile (see thread PR discussion around templating support - https://github.com/cnoe-io/idpbuilder/pull/336)