feat: reload server keypair every 10 minutes

2025-09-18 22:16:02 +00:00 · 2021-11-25 14:53:54 -08:00
parent 71427f23e2
commit d4f5a04865
2 changed files with 60 additions and 3 deletions
--- a/cmd/server.go
+++ b/cmd/server.go
@@ -38,7 +38,7 @@ func server(config *serverConfig) {
 		tlsConfig = tc
 	} else {
 		// Local cert mode
-		cert, err := tls.LoadX509KeyPair(config.CertFile, config.KeyFile)
+		kpl, err := newKeypairLoader(config.CertFile, config.KeyFile)
 		if err != nil {
 			logrus.WithFields(logrus.Fields{
 				"error": err,
@@ -47,8 +47,8 @@ func server(config *serverConfig) {
 			}).Fatal("Failed to load the certificate")
 		}
 		tlsConfig = &tls.Config{
-			Certificates: []tls.Certificate{cert},
-			MinVersion:   tls.VersionTLS13,
+			GetCertificate: kpl.GetCertificateFunc(),
+			MinVersion:     tls.VersionTLS13,
 		}
 	}
 	if config.ALPN != "" {