Replies: 2 comments 1 reply
-
|
this also need to change default value, or have sanity check that use notafter logic if configured value will fall outside of cert's validity period |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
This can be fixed by implementing ARI. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
it still need more sane fallback renewal date even with ARI, as we can't expect ARI on every CA , (ex: ZeroSSL or BuyPass doesn't support ARI) , and ARI fails if one ask ARI info of cert from different CA. |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
It would be finally nice to accept the PR #4457 to allow defining renewal days before expiry. The lifetime are changing for TLS certificates to 47 days in the next few years.
https://www.digicert.com/blog/tls-certificate-lifetimes-will-officially-reduce-to-47-days
Please add support for negative value for days.
Thanks.
Beta Was this translation helpful? Give feedback.
All reactions