fork to support Chinese encryption set

Go to file

Brad Davidson fdf983a935 Don't merge expired certs over the top of an unexpired cert Fixes an issue where an expired Kubernetes secret would replace the renewed locally-cached cert after cluster startup. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>		2022-07-21 14:08:16 -07:00
cert	always use CATTLE_NEW_SIGNED_CERT_EXPIRATION_DAYS when generating a certificate	2022-07-20 12:07:31 -07:00
factory	Don't merge expired certs over the top of an unexpired cert	2022-07-21 14:08:16 -07:00
server	Pass context to http server as BaseContext	2021-06-15 22:42:42 -07:00
storage	Send complete certificate chain, not just the leaf cert	2022-05-20 12:21:30 -07:00
.drone.yml	Implement drone-plugin-fossa	2022-03-31 16:28:22 -04:00
filter.go	Add filter helper method	2020-11-09 21:52:17 -07:00
go.mod	Move Kubernetes Secrets storage update to goroutine	2022-05-02 18:48:48 -07:00
go.sum	Fix listenAndServe certificate expiration by preloading certs	2021-11-23 23:38:49 -08:00
LICENSE	Initial Commit	2019-05-09 12:36:03 -07:00
listener.go	We support IPv6 now, don't skip adding IPv6 address SANs	2022-05-20 12:21:30 -07:00
README.md	Add README	2021-11-19 13:50:48 -05:00
redirect.go	Fix acme listener	2020-02-07 14:20:45 -07:00
tcp.go	Refactor to not include a server by default	2019-10-30 19:14:34 -07:00

README.md

dynamiclistener

This README is a work in progress; aimed towards providing information for navigating the contents of this repository.

Changing the Expiration Days for Newly Signed Certificates

By default, a newly signed certificate is set to expire 365 days (1 year) after its creation time and date. You can use the CATTLE_NEW_SIGNED_CERT_EXPIRATION_DAYS environment variable to change this value.

Please note: the value for the aforementioned variable must be a string representing an unsigned integer corresponding to the number of days until expiration (i.e. X509 "NotAfter" value).