heatherezell
commented
1 year ago Closing as the linked PR was merged. :)
Closed jeroenvdheuvel closed 1 year ago
heatherezell
commented
1 year ago Closing as the linked PR was merged. :)
The JWT signing algorithm ES384 became unsupported after switch from golang-jwt to cap+jose. Likely due to a typo the RS384 algorithm is supported twice while ES384 is no longer supported.
Kubernetes officially supports this algorithm. That means that Kubernetes clusters that use this algorithm aren't able to upgrade to Vault 1.11 successfully. Because Vault 1.11. is using version 1.13. of the vault-plugin-auth-kubernetes.