pvarki / docker-rasenmaeher-integration

Compositions etc to integrate all the pieces (CA, Keycload, LDAP, Database, REST API) into something cosmic
0 stars 0 forks source link

[Bug] rmtak-api internal mTLS certificate expires before others, so everything but fetching tak zips works after that #107

Open benjamsf opened 3 months ago

benjamsf commented 3 months ago

What

Rmtak-api internal mTLS certs do expire before others.

What I expected

Successfully downloaded TAK client zips from RMUI.

What happened instead

UI returns errors on attempting to fetch TAK client zips.

Logs

From my memory,

Why?

Previously diagnosed but forgotten to write a bug report of, the reason for this is rmtakapi mTLS expirydate, vs. expirydate of other mTLS certs in the composition & the CA. The bug started happening after making it possible to move expirydate for other components' certificates by an env flag, so this is probably caused by the effect of that env flag not extending to rmtakapi aswell.

Workaround