Supposing that you have an IBMCloud Kubernetes pod and you use TLS certificate - from IBM Cloud Certificate Manager - to encrypt your connection.
A potentially painful operation could be certificate regeneration which involves:
- TLS Certificate retrieval
- Pod restart
We are going to provide a container which manages the TLS certificate renewal, performing those actions:
- IBM Cloud login
- old secret backup
- download TLS certificate from IBM Cloud Certificate Manager
- create a new secret based on downloaded certificate
- Kubernetes deployment restart