Credhub does not output concatenated ca-s
Closed this issue · 2 comments
What version of the credhub server you are using?
2.5.2
What version of the credhub cli you are using?
2.5.2
If you were attempting to accomplish a task, what was it you were attempting to do?
Tried to rotate certificates according to this guide: https://github.com/pivotal-cf/credhub-release/blob/master/docs/ca-rotation.md
What did you expect to happen?
generated the transitional uaa_ca certificate and reconfigured credhub to concatenate_Cas
bosh/0:/var/vcap/jobs/credhub/config/application# cat server.yml
server:
certificates:
concatenate_cas: true
What was the actual behavior?
Only one certificate is outputted to cf-deployment and not a concatenated certificate
Please confirm where necessary:
credhub curl -p "/api/v1/data?name=/uaa_ca¤t=true"
{
"data": [
{
"certificate_authority": true,
"expiry_date": "2021-02-20T12:59:33Z",
"id": "06d0f7c6-d67f-4483-9f79-01e68c9e073d",
"name": "/uaa_ca",
"self_signed": true,
"transitional": false,
"type": "certificate",
"value": {
"ca": "-----BEGIN CERTIFICATE-----\nMIIFIzCCAwugAwIBAgIUH4O
,
{
"certificate_authority": true,
"expiry_date": "2021-03-04T07:31:37Z",
"generated": true,
"id": "46c4ede0-7651-4cbe-96e6-a815c3c60479",
"name": "/uaa_ca",
"self_signed": true,
"transitional": true,
"type": "certificate",
"value": {
"ca": "-----BEGIN CERTIFICATE-----\nMIIFIzCCAwugAwIBAgIUZPgKE6vyukF9
credhub get -n /uaa_ca
value:
ca: |
-----BEGIN CERTIFICATE-----
MIIFIzCCAwugAwIBAgIUH4O
only one is shown here.
We have created an issue in Pivotal Tracker to manage this:
https://www.pivotaltracker.com/story/show/168285974
The labels on this github issue will be updated when the story is started.
problem solved in the next cf-deployment manifests.