Change private key size of the certificate of the default API Gateway to 4096 bits

[TorstenD-SAP]

Description

The size of the private key used for the default certificate (kyma-gateway-certs) of the default API Gateway (kyma-gateway) must be set to 4096bits. Atm, it defaults to the value of 2048bits.

Reasons

SAP Security Requirement

DoD:

• [ ] Provide unit and integration tests.
• [ ] Provide documentation.
• [ ] Verify if the solution works for both open-source Kyma and SAP BTP, Kyma runtime.
• [ ] If you changed the resource limits, explain why it was needed.
• [ ] Verify that your contributions don't decrease code coverage. If they do, explain why this is the case.
• [ ] Add release notes.

Attachments

[strekm]

API Gateway module does not use cert-manager.io. instead gardener certificate management is used. atm it is not possible to configure key size but gardener guys are working on it in https://github.com/gardener/cert-management/pull/168 PR.