kic-reference-architectures
kic-reference-architectures copied to clipboard
feat: add in ability to use acme for cert generation
Is your feature request related to a problem? Please describe. We currently use a self-signed certificate for a number of reasons, one of which is tied directly to AWS and the length of the hostname provided by the ELB which exceeds the max length for ACME.
Describe the solution you'd like The certificate type should be configurable:
- Self signed (the current behavior)
- Using HTTP01 challenges from acme to create an actual certificate
- Using DNS01 challenges (this is a stretch, but we should make sure we leave room for it to be added down the road)
The standard configuration file should be used for managing this feature.
Describe alternatives you've considered None.
Additional context None.