Skip to content

docs(mender-gateway): clarification regarding intermediate ca#2744

Open
oldgiova wants to merge 1 commit intomendersoftware:masterfrom
oldgiova:mender-hub-question
Open

docs(mender-gateway): clarification regarding intermediate ca#2744
oldgiova wants to merge 1 commit intomendersoftware:masterfrom
oldgiova:mender-hub-question

Conversation

@oldgiova
Copy link
Copy Markdown
Contributor

@oldgiova oldgiova commented Feb 4, 2026
edited
Loading

The intermediate CA could stay at the client side, and it's a suggested approach for easy certificate rotation. This new section should clarify that.

External Contributor Checklist

🚨 Please review the guidelines for contributing to this repository.

  • Make sure that all commits follow the conventional commit specification for the Mender project.

The majority of our contributions are fixes, which means your commit should have
the form below:

fix: <SHORT DESCRIPTION OF FIX>

<OPTIONAL LONGER DESCRIPTION>

Changelog: <USER-FRIENDLY-CHANGE-DESCRIPTION> or <None>
Ticket: <TICKET NUMBER> or <None>
  • Make sure that all commits are signed with git --signoff. Also note that the signoff author must match the author of the commit.

Description

The intermediate CA could stay at the client side, and it's a suggested approach for easy certificate rotation. This new section should clarify that.

Thank you!

Co-authored-with: Claude

@oldgiova
docs(mender-gateway): clarification regarding intermediate ca
b6c3d48 
The intermediate CA could stay at the client side, and it's a suggested
approach for easy certificate rotation. This new section should clarify
that.

Signed-off-by: Roberto Giovanardi <roberto.giovanardi@northern.tech>
@oldgiova
Copy link
Copy Markdown
Contributor Author

oldgiova commented Feb 4, 2026

Test rendering:
image

nt-alan
nt-alan requested changes Feb 10, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@nt-alan nt-alan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AFAIC a table only makes it too complicated to practically digest and is crammed in the wrong section (section tries to solve too many things at once).

I would rather have it here:
https://docs.mender.io/server-integration/mender-gateway/mutual-tls-authentication
as a separate chapter on gateway cert rotations.

And instead of a table a working example.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nt-alan nt-alan nt-alan requested changes

@kjaskiewiczz kjaskiewiczz Awaiting requested review from kjaskiewiczz

@tactmaster tactmaster Awaiting requested review from tactmaster

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@oldgiova @nt-alan