kic-reference-architectures icon indicating copy to clipboard operation
kic-reference-architectures copied to clipboard

Published 20 hours ago verified publisher icon nginxinc

feat: add in ability to use acme for cert generation

Open qdzlug opened this issue 2 years ago • 0 comments

Is your feature request related to a problem? Please describe. We currently use a self-signed certificate for a number of reasons, one of which is tied directly to AWS and the length of the hostname provided by the ELB which exceeds the max length for ACME.

Describe the solution you'd like The certificate type should be configurable:

  1. Self signed (the current behavior)
  2. Using HTTP01 challenges from acme to create an actual certificate
  3. Using DNS01 challenges (this is a stretch, but we should make sure we leave room for it to be added down the road)

The standard configuration file should be used for managing this feature.

Describe alternatives you've considered None.

Additional context None.

qdzlug avatar Feb 04 '22 17:02 qdzlug