Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-80741

Support rotating TLS certificates used by the gRPC server

    XMLWordPrintableJSON

Details

    • Icon: New Feature New Feature
    • Resolution: Fixed
    • Icon: Major - P3 Major - P3
    • 7.2.0-rc0
    • None
    • None
    • None
    • Fully Compatible
    • Service Arch 2023-10-02, Service Arch 2023-10-16, Service Arch 2023-10-30

    Description

      The current gRPC Server implementation only supports reading a certificate at startup and using it for the duration of its lifetime. We should extend this to allow rotating certificates without restarting the server through the rotateCertificates command, similar to what can be done today with asio.

      See the design for details.

      https://www.mongodb.com/docs/manual/reference/command/rotateCertificates/

      Attachments

        Activity

          People

            erin.mcnulty@mongodb.com Erin McNulty
            patrick.freed@mongodb.com Patrick Freed
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: