Hi Gabor, I have this draft PR (https://github.com/ashangit/flink/pull/2) to enable certificate reload on Flink (still need to implement unittest). Would be nice if you could throw an eye on it and let me know if it will be possible to merge it to Flink and how I should proceed (just push a PR to flink repo or should I need a FLIP for such change)?
Regards, Nicolas On Mon, Feb 10, 2025 at 11:27 AM Gabor Somogyi <gabor.g.somo...@gmail.com> wrote: > Hi Nicolas, > > This is only supported by the operator but not by Flink. It's on my list > but not yet reached this to actually do it. > > BR, > G > > > On Mon, Feb 10, 2025 at 10:41 AM Nicolas Fraison via user < > user@flink.apache.org> wrote: > >> Hi, >> >> We are looking into enabling SSL on our flink jobs. >> Following the flink documentation >> https://nightlies.apache.org/flink/flink-docs-master/docs/deployment/security/security-ssl/ >> is working fine but we have a specific constraint with ssl certificates >> having only a one day validity. >> Due to that we need flink to take in account updates of those >> certificates without having to restart the flink jobs every day. >> Looking into the configs and source code it doesn't seem that flink >> supports this. >> I'm wondering if there are some initiatives to support certificate reload >> or any concern to take into account to add this into flink? >> >> -- >> >> Nicolas Fraison (he/him) >> >> DNAP >> >> DATADOG >> >> 21 Rue de Châteaudun 6th Floor, Paris, 75009 France >> <https://maps.google.com/?q=21%20Rue%20de%20Ch%C3%A2teaudun%206th%20Floor,%20Paris,%20%2075009%20France> >> >> Twitter | <https://twitter.com/datadoghq/> Instagram | >> <https://www.instagram.com/datadoghq/> YouTube | >> <https://www.youtube.com/user/DatadogHQ/> LinkedIn | >> <https://www.linkedin.com/company/datadog/> We're Hiring >> <https://careers.datadoghq.com/> >> >
