Closed nak3 closed 1 year ago
Current certificate rotation is inside the reconcile loop.
https://github.com/knative-sandbox/control-protocol/blob/dc4b66fe6d6223a1710f5ae13eb80644172a784e/pkg/certificates/reconciler/certificates.go#L63
But the reconcile loop is not triggered without touching the secret. And unfortunately the certificate secret is not touched automatically even when it is expired.
Side note, the current rotationThreshold is too short.
rotationThreshold
https://github.com/knative-sandbox/control-protocol/blob/dc4b66fe6d6223a1710f5ae13eb80644172a784e/pkg/certificates/reconciler/certificates.go#L42
Current certificate rotation is inside the reconcile loop.
https://github.com/knative-sandbox/control-protocol/blob/dc4b66fe6d6223a1710f5ae13eb80644172a784e/pkg/certificates/reconciler/certificates.go#L63
But the reconcile loop is not triggered without touching the secret. And unfortunately the certificate secret is not touched automatically even when it is expired.
Side note, the current
rotationThresholdis too short.https://github.com/knative-sandbox/control-protocol/blob/dc4b66fe6d6223a1710f5ae13eb80644172a784e/pkg/certificates/reconciler/certificates.go#L42