Giters

StackStorm / st2

StackStorm (aka "IFTTT for Ops") is event-driven automation for auto-remediation, incident responses, troubleshooting, deployments, and more for DevOps and SREs. Includes rules engine, workflow, 160 integration packs with 6000+ actions (see https://exchange.stackstorm.org) and ChatOps. Installer at https://docs.stackstorm.com/install/index.html

Home Page:https://stackstorm.com/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Renew test SSL CA + Cert

cognifloyd opened this issue · comments

commented

Our test SSL CA+cert just expired. We need to renew it and document how to do so.

https://github.com/StackStorm/st2/tree/master/st2tests/st2tests/fixtures/ssl_certs

Since this is for testing, I think we could do something like a 15 year duration.

commented

Is it better to make it a once of task every 15 years or automate it and have it renew every 3 months? There is no security consideration here, just a question of practicality. If it breaks after 3 months, our memories may be fresh enough to know what to fix.

commented

I probably won't remember all of this in 3 months... so, in #6138 I did both:

  • a script that takes care of running openssl (this can be the thing that helps me remember how)
  • 15 year cert expiration (because its a test cert, so who cares?)