Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move current gateway key id from environment variable to datastore #49

Closed
gnarea opened this issue Jun 11, 2020 · 1 comment · Fixed by #680
Closed

Move current gateway key id from environment variable to datastore #49

gnarea opened this issue Jun 11, 2020 · 1 comment · Fixed by #680
Labels
enhancement New feature or request released
Milestone
General Availability

Comments

@gnarea
Copy link
Member

gnarea commented Jun 11, 2020
edited
Loading

Specifying the current key id in the GATEWAY_KEY_ID environment variable makes it extremely cumbersome to bootstrap a new environment or do key rotation, so we should store that pointer to the current key id in a persistent data store like etcd or MongoDB.

Equivalent issue in pong service: relaycorp/awala-pong#26
@gnarea gnarea added the enhancement New feature or request label Jun 11, 2020
@gnarea gnarea added this to the Production release milestone Jun 11, 2020
@gnarea gnarea mentioned this issue Nov 25, 2021
Merged
1 task
kodiakhq bot pushed a commit to relaycorp/relaynet-core-js that referenced this issue Nov 26, 2021
@gnarea
feat: Move certificate storage from PrivateKeyStore to new Certificat…
020e40c 
…eStore (#372)

To help implement relaycorp/awala-gateway-internet#49 and relaycorp/awala-pong#26

Fixes #55.

TODO

- [x] Remove certs from private key store.
github-actions bot pushed a commit to relaycorp/relaynet-core-js that referenced this issue Nov 26, 2021
@kodiakhq
feat: Move certificate storage from PrivateKeyStore to new Certificat…
38dcc07 
…eStore (#372)

To help implement relaycorp/awala-gateway-internet#49 and relaycorp/awala-pong#26

Fixes #55.

TODO

- [x] Remove certs from private key store. [skip ci] 020e40c
@gnarea gnarea mentioned this issue Nov 30, 2021
Merged
6 tasks
@kodiakhq kodiakhq bot closed this as completed in #680 Nov 30, 2021
kodiakhq bot pushed a commit that referenced this issue Nov 30, 2021
@gnarea
feat: Integrate certificate store (#680)
5a78d88 
So that we can rotate certificates.

Fixes #49

TODO

- [x] Move certificates from private key store to certificate store.
- [x] Write migration script.
- [x] Delete all references to `GATEWAY_KEY_ID` env var
- [x] Alter `/cogrpc/service.spec.ts` to use real MongoDB instead of complicated mocks.
- [x] Remove `retrieveOwnCertificates`.
- [x] Remove all `VAULT_*` env vars from functional test dir.
@github-actions
Copy link

🎉 This issue has been resolved in version 1.27.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request released
Projects
None yet
Milestone
General Availability
Development

Successfully merging a pull request may close this issue.

feat: Integrate certificate store relaycorp/awala-gateway-internet
1 participant
@gnarea