Home Explore Help
Sign In
logic855
/
helm-external-secrets
mirror of https://github.com/external-secrets/external-secrets
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

fix: mention custom SANs are out of scope for out-of-cluster providers

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Moritz Johner 7 months ago
parent
3dfa2224fb
commit
aa2a53ac6c
1 changed files with 2 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      design/014/mTLS.md

+ 2 - 0
design/014/mTLS.md
View File 

@@ -263,6 +263,8 @@ DNS SANs in server certificate:
 
 
 Covers all Kubernetes DNS resolution patterns. The `cluster.local` must be configurable, as some clusters have custom cluster domains.
 
 
+Note: We do NOT want to support custom SANs at this point. Certificates with custom SANs is out of scope and users should use other tooling for that.
 
+
 
 ## Certificate Lifecycle
 
 
 ### Controller: Rotation Triggers