|
|
|
|
|
|
by mholt
1180 days ago
|
|
|
> Short certificate lifetimes (e.g. 1 hour) is not valid-for-a-single-request as the GP asked. I'm aware :) Don't get hung up on the 1 hour figure. All I'm saying is that we already do < 1 hour quite often, and it doesn't work well because clients don't handle it well. I wasn't saying 1 hour is how you do ephemeral certs. Caddy is capable of second-long certs if needed. With our current logic, it's easy enough to turn off certificate management and just make the certs ephemeral. |
|
|