Re-generate certificates

Question

Re-generate certificates

Opened this issue 6 years ago · 3 comments

The current self-signed certificates expired on 14 August 2017.

The certificate is not trusted because the issuer certificate is unknown. The server
might not be sending the appropriate intermediate certificates. An additional root
certificate may need to be imported. The certificate expired on 14 August 2017, 
00:37:51 GMT+2. The current time is 22 November 2018, 20:59. Error code:
SEC_ERROR_UNKNOWN_ISSUER

We should re-generated them.

Answer 1 · 2018-11-28T23:41:51.000Z

The scripts are kind of a pain in the butt.

It may be better to replace them with a single builder that creates key stores / trust stores from https://github.com/tersesystems/securitybuilder or using the SSLConfig FakeKeyStore set.

Answer 2 · 2018-11-29T07:16:57.000Z

Yes, indeed. I will have a look on your suggestion.

Thanks @wsargent

Answer 3 · 2018-11-29T20:41:53.000Z

+1 to using FakeKeyStore more.

Anything we improve in this sample to create certificates on the fly could eventually be picked up by akka-grpc samples apps too.