Skip to content

security: Have TLS auto-join/init code use CertificateManager #64884

Open
Open
security: Have TLS auto-join/init code use CertificateManager#64884
Labels
A-authenticationPertains to authn subsystemsC-cleanupTech debt, refactors, loose ends, etc. Solution not expected to significantly change behavior.T-server-and-securityDB Server & Security
@itsbilal

Description

@itsbilal
itsbilal
opened on May 7, 2021

Currently, the TLS auto-join/init code in pkg/{server,security}/auto_tls_init.go uses
CertsLocator directly and does file-level reads/writes. Many of these instances,
especially in the read path, can and should use CertificateManager instead.
This allows for easier testing as well as less code repetition.

Stems from #60632. Related to, but distinct from, #64883

Jira issue: CRDB-7326
Epic: CRDB-6663

Metadata

Metadata

Assignees

No one assigned

    Labels

    A-authenticationPertains to authn subsystemsC-cleanupTech debt, refactors, loose ends, etc. Solution not expected to significantly change behavior.T-server-and-securityDB Server & Security

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions