status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

fix typo and add a TODO section for the remaining stuff

This commit is contained in:
Dhia Ayachi 2021-07-09 15:24:16 -04:00 committed by Daniel Nephin
parent b843a98890
commit 28d4b2316a
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
docs/service-mesh/ca/README.md
View File

@ -1,6 +1,6 @@
# Certificate Authority (Connect CA) # Certificate Authority (Connect CA)
The Certificate Authority subsystem manages a CA trust chain for issuing certificates to The Certificate Authority Subsystem manages a CA trust chain for issuing certificates to
services and client agents (via auto-encrypt and auto-config). services and client agents (via auto-encrypt and auto-config).
The code for the Certificate Authority is in the following packages: The code for the Certificate Authority is in the following packages:
@ -93,10 +93,11 @@ Periodic (or background) opeartions are started automatically by the Consul lead
2. (via in-process call to `RPC.ConnectCA.Sign`) - called by auto-encrypt to sign a leaf cert for a client agent 2. (via in-process call to `RPC.ConnectCA.Sign`) - called by auto-encrypt to sign a leaf cert for a client agent
3. called by Auto-Config to sign a leaf cert for a client agent 3. called by Auto-Config to sign a leaf cert for a client agent
### detailed call flow ## detailed call flow
![CA Leader Sequence](./ca-leader-sequence.svg) ![CA Leader Sequence](./ca-leader-sequence.svg)
<sup>[source](./ca-leader-sequence.mmd)</sup> <sup>[source](./ca-leader-sequence.mmd)</sup>
####TODO:
- sequence diagram for leaf signing - sequence diagram for leaf signing
- sequence diagram for CA cert rotation - sequence diagram for CA cert rotation