Details
-
Bug
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
22.08.0
-
None
Description
The maxctrl reload tls command does not reload the keys used to sign the JWTs that the /auth endpoint generates. The expected behavior is that the REST API also regenerates any random keys whenever the certificates are loaded. This is especially important if one of the public key algorithms is used as certificate rotation is done during the lifetime of MaxScale.