Request:

This ticket is a feature request or improvement to the mongod and mongos configuration file options and parameters for SSL/TLS settings.

Requesting the ability to target the TLS server public certificate (as well as cluster TLS certificate and other TLS options) and corresponding private key as separate filepaths and fields in the configuration file.

Justification:

When using popular TLS certificate management utilities, such as cert-manager in k8s and certbot from EFF, standards result in separate tls.crt and tls.key files on disk or in k8s secrets (which are mounted as separate files).

By pointing the mongod or mongos configuration directly to these file locations for the certificate and key, we can obviate the need for manual or scripted steps of concatenating the key and cert into a single file.