Jon Skarpeteig
Jon Skarpeteig
I'm also seeing this issue
There's two advantages to this approach as I see it: 1. We get to leverage the already implemented path of adding OCSP response for Envoy staple on the TLS handshake...
The online certificate status protocol (OCSP) is a more efficient way of check if a certificate is revoked than looking up Certificate Revocation Lists. By stapling the OCSP response directly...
We currently have a few hundred that we wish to manage with cert-manager instead of semi-manually. Our target is to support a few thousand. (OCSP stapling needed due to specific...
I haven't tested the project itself, but as far as I can tell it's an out-of-band solution? I see at least two challenges with this for our use-case: - Every...
Any progress on this issue?