Skip to content

Distribute trust across openMCP clusters #474

New issue
New issue
Open
Open
Distribute trust across openMCP clusters#474
Labels
kind/taskGeneral task that needs to be done.needs/validationVerify Issue and Prio with POsig/coreAll topics related to the special interests group openMCP core
Milestone
Q2/26
@ValentinGerlach

Description

@ValentinGerlach
ValentinGerlach
opened on Feb 6, 2026

Understand the Task

Description

A custom CA bundle should be available in most clusters of an openMCP landscape. There should be a controller which distributes it to all namespaces of the platform cluster as well as to other clusters.

This mechanism could be implemented as a platform service with the help of existing software such as cert-manager's trust-manager.

Any further valuable resources.

No response

What is required to accept the Task as done.

Done Criteria

  • Custom CA bundle can be defined in a central location
  • CA bundle is synchronized to all namespaces of the platform cluster
  • CA bundle is synchronized to all namespaces of most other clusters belonging to the landscape (purpose filter)

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/taskGeneral task that needs to be done.needs/validationVerify Issue and Prio with POsig/coreAll topics related to the special interests group openMCP core

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions