celesteking

Another point I'd like to bring up is the renewal trigger time. As per docs: > Vault Agent renews the certificate at half the lease duration of the original. But...

That PR hasn't made into RPM yet thus I can't try. All this Vault PKI thing isn't Enterprise ready. It looks like there are no Enterprise customers who are using...

That's absolutely good news. Bullet 2) can be taken off the table then. But the first one is still relevant.

This is a deficiency on flutter's Navigator1/MaterialApp side when [ `routes` table](https://github.com/flutter/flutter/blob/1aafb3a8b9/packages/flutter/lib/src/material/app.dart#L172) is being used. This isn't documented anywhere, but it should've been. The workaround is to stop providing `pushNamed`...

While on it, can we kick someone at EPEL to get the latest package built and released? Right now EL8 is shipping strongswan 5.9.10 package which contains buggy EAP-TLS implementation,...

To sum it up, this module is not a 1:1 replacement.

Can we please get configurable ocsp request timeouts? Imagine ocsp responder being down (firewalled, incorrectly configured, etc), your ocsp client would be banging it 5 times before giving up. And...

> Wow, indeed I completely missed this. I suppose implementing this feature like this is a no go then. It's not your fault, it's Hashicorp's and they don't want to...

in this case they failed both because they were supposed to be present in `Authentication-Results`, AFAIK. Unless you've asked opendmarc to do the spf resolution itself. But I agree that...

> Failed to connect by sigv4, so retry to connect by signature version 2 Maybe you should stop downgrading proto to sigv2 which is missing in new AWS regions.