Summary: install wildcard Let's Encrypt certificate on PHX load balancer
Key: OVIRT-1934
URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1934
Project: oVirt - virtualization made easy
Issue Type: Task
Reporter: Evgheni Dereveanchin
Assignee: infra
Let's Encrypt announced that wildcard support is now live: https://community.letsencrypt.org/t/acme-v2-production-environment-wildcards/55578
It's a great opportunity to secure all of our traffic by putting traffic through a reverse proxy. We already have a HAProxy load balancer installed for OpenShift and can re-use it for this purpose.
Opening this ticket to investigate the details:
client software required
DNS changes required
reliability questions (make an HA cluster with HAProxies? How do certs get renewed and shared then?)
— This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100082)