gateway-api icon indicating copy to clipboard operation
gateway-api copied to clipboard
verified publisher icon kubernetes-sigs

GEP: Certificate Revocation Lists for Certificate Validation

Open snorwin opened this issue 6 months ago • 4 comments

Extend the TLS Validation defined in GEP-91 (#91) and in GEP-1897 (#1897) by introducing support for Certificate Revocation Lists (CRLs). This allows operators to configure a set of CRLs that the Gateway uses during TLS validation for client and server certificates to ensure that presented certificates have not been revoked by the issuing CA.

snorwin avatar Sep 10 '25 08:09 snorwin

/assign @snorwin

snorwin avatar Sep 10 '25 08:09 snorwin

The Kubernetes project currently lacks enough contributors to adequately respond to all issues.

This bot triages un-triaged issues according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

  • Mark this issue as fresh with /remove-lifecycle stale
  • Close this issue with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

k8s-triage-robot avatar Dec 09 '25 09:12 k8s-triage-robot

/remove-lifecycle stale

snorwin avatar Dec 09 '25 09:12 snorwin

in the title of this issue "Validiation" is misspelled.

PT-GD avatar Dec 15 '25 21:12 PT-GD