openhie / datim-auto-cert-updater

Automates certificate renewal for the interconnected software in a datim network
0 stars 0 forks source link

Document ability to reduce cert validity time for cron testing purposes #7

Open uladkasach opened 6 years ago

uladkasach commented 6 years ago

Instead of waiting 2 months to test that the cronjob works it would be prudent to enable a reduction in cert validity time so that the fully automated process can be tested in a reasonable time frame.

uladkasach commented 6 years ago

As of october 2017 there is still no support for shorter certificate lifespans : https://community.letsencrypt.org/t/shorter-certificate-lifetimes/44840/6

uladkasach commented 6 years ago

Revocation does not yet lead to renewal. A question about this has been asked here https://github.com/certbot/certbot/issues/5343

uladkasach commented 6 years ago

A possible solution may entail changing the server time, as pointed out in this comment. If the certificate validation check occurs locally, this should be successful.