Rotate tls secret - Ingress - kubernetes [closed] - ssl-certificate

Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 1 year ago.
Improve this question
I need to update my tls secrets, there is any best practices to do that?,
The steps considered by now are:
Create new secrets
Update the ingress definition in order it could take the new tls secrets.
I canĀ“t use cert-manager with letsencript.
Any advice?

I need to update my tls secrets, there is any best practices to do
that?, by now, I think, I have to create new secrets and update my
ingress definition in order it could take the new tls secrets.
Yes you are right Or else you can update the existing secret directly and no changes will be required to do the ingress side.
Create the YAML file with same name of secret and changes will get over write.

Related

Design patterns for hosting multi rest apis on kubernetes [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 15 days ago.
Improve this question
Looking for some suggestions on designing the multi rest api hosted application on kubernetes.
Would like to understand how should I deploy multi container apps to serve different api requests from end user. As I am new to K8 want to check from you to get ideas around basic patterns for running these containers within one pod or multi pods or nodes needed.

Is it mandatory to use Secret Manager for storing Microsoft External logIn ClientId and ClientSecret [closed]

Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 4 years ago.
Improve this question
I have followed Microsoft's instructions on setting up a Microsoft external login for ASP.Net Core, but I have directly pasted my Client Id and Client Secret in my code's Startup.cs. All works fine, but I am concerned about security. Is this bad practice / not recommended? Or should I definitely use Secret Manager and reference them from there?
I have researched and found the answer here: source
No, it is not mandatory but rather strongly recommended for security purposes.
Microsoft suggests to Never store passwords or other sensitive data in source code, which is common sense, but this resource as a whole incorporates client id's and secrets.
Also, the resource mentions Secret Manager to be used for Development purposes only. Storage of the Microsoft App Id (Client Id) and secrets for Production use can be done in Azure Key Vault (development too if you wish).

When you type data into a form when is it encrypted? [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
This is a theory based question as opposed to any code related question.
I'm trying to establish how data is encrypted and differences client side to server side.
Is the data encrypted when it is added to the database/server?
Or are we just relying on data to be secure due to HTTPS which surely does not apply when the data is transmitted from the form to the database? or does it?
What kind of encryption is mostly used these days?
The data is not encrypted in the client. When HTTPS is used all data is encrypted during transport over the Internet. When the server application receives the data is has already been decrypted. If you need to store the data the server app will need to perform that encryption.
By this question it is clear you do not understand security so you are not ready to create a system that needs security. The solution is to hire a security professional to help you seeding the security. Security is very difficult to get correct and your users rely on and expect a secure system, please provide that.

WSO2 - Governance registry API [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
I am trying to document web service operations using WSO2 governance registry specifically api manager. What I am suppose to provide for the following fields - provider, name, context. I am not able to find any description of these fields any where on the help document.
Is there a more appropriate option to document web service operations? i.e rest services schema, operation name, description etc?
-ap
http://docs.wso2.org/wiki/display/AM100/Adding+an+API
provides information for you query. The link provides comprehensive documentation on WSO2 APIM.
Regards,
/Nuwan

if i lose the private key generated with a csr, does that mean i need to have a new certificate issued? [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
i was in the process of installing a new ssl certificate via plesk and deleted it, i forgot to save the private key that was generated with the csr that was used to issue the certificate. does that mean i now have to generate a new csr, and have the certificate provider re-issue a new one?
Yes, you'd need to start over. Certificate Authorities usually offer a second (backup) try for free (for cases like yours).