Reload TLS certificate from disk without server restart

jooby-project / jooby

The modular web framework for Java and Kotlin

https://jooby.io

Apache License 2.0

1.7k stars 200 forks source link

Reload TLS certificate from disk without server restart #3410

Closed U1F984 closed 2 months ago

U1F984 commented 4 months ago

We would like to change our short-lived certificates without restarting the server.

Previous work in other projects: https://github.com/Hakky54/sslcontext-kickstart?tab=readme-ov-file#support-for-reloading-ssl-at-runtime

U1F984 commented 2 months ago

Alternative implementation idea: the SSLContext could be set as an option into the server context, overriding any other SSL config. I would be willing to contribute this alternative, as I think the original idea requires much deeper integration.

jknack commented 2 months ago

like it, yea. Please send a PR