Actions
Architecture #14861
open
We should make certificates expire on 31 dec 2037
Pull Request:
Effort required:
Name check:
Fix check:
Regression:
Description
Today, we make certificate expires after 10 years. But this is an arbitrary value, which has just the advantage to bu sufficiently long to let people know that Rudder is not a PKI, and that they should manage their certificate life cycle by themselves (which is good, it's what we intent).
But for people who are not, they certainly don't want to have all their agent broke at some point in time without easy to understand reason. So we should set for all our certificate the same expiration date, ie 2037-12-31 (which is the end of the epoch, and so the end of the world for current certificate norm).
Updated by Benoît PECCATTE over 5 years ago
x509 are encoded in asn1, time can be an UTCtime with a limit to end of 2049, or Generalized time with a limit to far far away
Updated by Vincent MEMBRÉ about 5 years ago
- Target version changed from 6.0.0~beta1 to 6.0.0
Updated by Alexis Mousset almost 5 years ago
- Target version changed from 6.0.0 to 6.0.1
Updated by Vincent MEMBRÉ almost 5 years ago
- Target version changed from 6.0.1 to 6.0.2
Updated by Vincent MEMBRÉ almost 5 years ago
- Target version changed from 6.0.2 to 6.0.3
Updated by Vincent MEMBRÉ almost 5 years ago
- Target version changed from 6.0.3 to 6.0.4
Updated by Vincent MEMBRÉ over 4 years ago
- Target version changed from 6.0.4 to 6.0.5
Updated by Vincent MEMBRÉ over 4 years ago
- Target version changed from 6.0.5 to 6.0.6
Updated by Benoît PECCATTE over 4 years ago
- Target version changed from 6.0.6 to 6.2.0~beta1
Updated by Vincent MEMBRÉ about 4 years ago
- Target version changed from 6.2.0~beta1 to 6.2.0~rc1
Updated by François ARMAND about 4 years ago
- Target version changed from 6.2.0~rc1 to 7.0.0~beta1
Updated by Alexis Mousset over 3 years ago
- Target version changed from 7.0.0~beta1 to Ideas (not version specific)
Actions