KUKSA.val SSL client certificate has expired

Fixed

Description

As reported to me by Markus Wolf of AVL, and confirmed with testing locally, the SSL client certificate that we're getting from KUKSA.val 0.2.1, which is used for WebSocket API access, has expired. It had 1 year validity and it expired a little over a week ago, I believe. The server certificate would have as well, but I regenerated that one last July to add the subjectAltName DNS attribute to fix use by some clients. I am getting close with the KUKSA.val 0.3.1 upgrade, but looking at it, the certificates in it at the moment will expire in September, so it is likely better to just switch to certificates for the demo that have a longer validity, perhaps something like 2 - 5 years. Something along those lines will be needed for Needlefish, and maybe an additional release build to include it...

Environment

None

Activity

Show:

Walt Miner
May 11, 2023 at 3:50 PM

Close for OO 15.0.2

Scott Murray
April 20, 2023 at 1:18 AM

Mentioning and to add them to the watch list.

Resize issue view side panel

Details

Assignee

Scott Murray

Reporter

Scott Murray

Fix versions

Octopus 15.0.2

Needlefish 14.0.5

Labels

Contract ID

Components

Affects versions

Octopus 15.0.1

Needlefish 14.0.4

Priority

Major

Created April 20, 2023 at 1:17 AM

Updated May 11, 2023 at 3:50 PM

Resolved May 4, 2023 at 1:00 PM