Open ialidzhikov opened 5 months ago
How to categorize this issue?
/area security /kind enhancement
What would you like to be added: Right now the deployed registry caches server requests over plain http. We could potentially use https to prevent any Man-in-the-middle attacks.
The registry does not reload the certificates when they are changed on the file system: https://github.com/distribution/distribution/issues/3712
Why is this needed: See above.
Tasks:
How to categorize this issue?
/area security /kind enhancement
What would you like to be added: Right now the deployed registry caches server requests over plain http. We could potentially use https to prevent any Man-in-the-middle attacks.
The registry does not reload the certificates when they are changed on the file system: https://github.com/distribution/distribution/issues/3712
Why is this needed: See above.
Tasks: