[MXS-4274] maxctrl reload tls does not reload JWT signature keys Created: 2022-09-05 Updated: 2022-09-05 Resolved: 2022-09-05 |
|
| Status: | Closed |
| Project: | MariaDB MaxScale |
| Component/s: | REST-API |
| Affects Version/s: | 22.08.0 |
| Fix Version/s: | 22.08.1 |
| Type: | Bug | Priority: | Major |
| Reporter: | markus makela | Assignee: | markus makela |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Description |
|
The maxctrl reload tls command does not reload the keys used to sign the JWTs that the /auth endpoint generates. The expected behavior is that the REST API also regenerates any random keys whenever the certificates are loaded. This is especially important if one of the public key algorithms is used as certificate rotation is done during the lifetime of MaxScale. |