Uploaded image for project: 'Apache Ozone'
  1. Apache Ozone
  2. HDDS-7401

Cover the PKI system with docker based integration tests

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Critical
    • Resolution: Unresolved
    • None
    • None
    • Security

    Description

      We should cover the new PKI system with integration tests properly.

      The following scenarios we should surely include, but additional ones might be defined later as we go:

      • regular security bootstrap
      • certificate rotation before expiration
      • rootCA certificate rotation before expiration
      • rootCA certificate revocation
      • subordinate CA certificate revocation
      • revocation of all subordinate CA certs that are signed by the rootCA
      • revocation of a single certificate

      Attachments

        Issue Links

          Activity

            People

              pifta István Fajth
              pifta István Fajth
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: