Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Gatekeeper creates a certificate that expires in 10 years #1072

Closed
ycao56 opened this issue Jan 20, 2021 · 3 comments
Closed

Gatekeeper creates a certificate that expires in 10 years #1072

ycao56 opened this issue Jan 20, 2021 · 3 comments
Labels
bug Something isn't working

Comments

@ycao56
Copy link

ycao56 commented Jan 20, 2021

Any special reason that the certificate duration by default is 10 years here?

It's better to shorten the default duration to 2 years or less for best practice.

@ycao56 ycao56 added the bug Something isn't working label Jan 20, 2021
@ritazh
Copy link
Member

ritazh commented Jan 20, 2021

This might be a better issue for https://github.com/open-policy-agent/cert-controller/issues

There was no particular reasons for why 10 years. I think we discussed this in the past where it can be made configurable.

@grosser
Copy link
Contributor

grosser commented Jan 20, 2021

open-policy-agent/cert-controller#20 for configurable interval

@ritazh
Copy link
Member

ritazh commented Jan 20, 2021

Closing this in favor open-policy-agent/cert-controller#20

@ritazh ritazh closed this as completed Jan 20, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Something isn't working
Projects
None yet
Development

No branches or pull requests

3 participants