Skip to content

RA refactor #1000

New issue
New issue
Open
Open
RA refactor#1000
Labels
enhancementneeds triageWaiting for discussion / prioritization by team
Milestone
Backlog
@maraino

Description

@maraino
maraino
opened on Aug 5, 2022

Description

Instead of using a JWK/X5c provisioner to request the signing of the certificate to the CA, we can implement some kind of authenticated API similar to Google CAS that defines the certificate that we want to sign.

The CA should always have the right to enforce a template, but the RA should be able to suggest one, as well as be able to define the provisioner extension.

We should add support RA support for SSH certificates.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementneeds triageWaiting for discussion / prioritization by team

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions