Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for Custom CA with RSA Keys #994

Open
2 of 4 tasks
randmonkey opened this issue Jan 13, 2025 · 0 comments · Fixed by #1081 · May be fixed by Kong/docs.konghq.com#8386
Open
2 of 4 tasks

Support for Custom CA with RSA Keys #994

randmonkey opened this issue Jan 13, 2025 · 0 comments · Fixed by #1081 · May be fixed by Kong/docs.konghq.com#8386
Assignees
@pmalek
Labels
area/feature New feature or request release/required
Milestone
KGO v1.5.x

Comments

@randmonkey
Copy link
Contributor

randmonkey commented Jan 13, 2025
edited by pmalek
Loading

Problem Statement

From FTI-6433.

Customers attempting to use their own Certificate Authority (CA) with RSA (non-EC) keys to install the Kong Gateway Operator encounter failures. This issue is due to the operator's current limitation, which enforces Elliptic Curve (EC) cryptography for custom certificates. As a result, customers cannot proceed with installation if their CA uses RSA keys, even when the certificates are otherwise valid and secure.

Proposed Solution

  • Develop a patch or feature update to include RSA support.
  • Provide clear documentation and guidelines for customers on supported cryptographic algorithms.

Additional Information

Acceptance Criteria
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@pmalek pmalek

Labels
area/feature New feature or request release/required
Projects
None yet
Milestone
KGO v1.5.x
3 participants
@lahabana @pmalek @randmonkey