Description of request. As wildcard certificates are most places illegal, and in Red Hat IDM deprecated, a solution will have to be made in order to automate certificate generation from outside CA's. Most customers want self signed or public certs for openshift, going more and more away from the OCP signed certificates. A valid solution could be having a service like storage-provider, which could provide OCP with the required settings for requesting certificates for new routes. This could be from providers like IDM, LetsEncrypt etc. This function should also be able to renew certificates on expire.
With the introduction of OpenShift 4, Red Hat has delivered or roadmapped a substantial number of features based on feedback by our customers. Many of the enhancements encompass specific RFEs which have been requested, or deliver a comparable solution to a customer problem, rendering an RFE redundant. This bz (RFE) has been identified as a feature request not yet planned or scheduled for an OpenShift release and is being closed. If this feature is still an active request that needs to be tracked, Red Hat Support can assist in filing a request in the new JIRA RFE system, as well as provide you with updates as the RFE progress within our planning processes. Please open a new support case: https://access.redhat.com/support/cases/#/case/new Opening a New Support Case: https://access.redhat.com/support/cases/#/case/new As the new Jira RFE system is not yet public, Red Hat Support can help answer your questions about your RFEs via the same support case system.