Alternative over generating TLS certificates for Vault

kelseyhightower / vault-on-google-kubernetes-engine

How to guide on running HashiCorp's Vault on Google Kubernetes Engine

387 stars 57 forks source link

Alternative over generating TLS certificates for Vault #16

Closed sandromello closed 1 year ago

sandromello commented 5 years ago

This PR adds an alternative approach over generating TLS certificate for vault, instead of generating a new CA, uses the certificate CSR API of Kubernetes to obtain a valid certificate.

Tested with 1.12.5-gke.5.