we tried to configure a new route on Openshift Origin 3.6 to expose a pod where the SSL termination is enabled. We have a problem to configure a re-encrypt route because we noticed that the application is not present on the router and after some investigation we discovered that the problem is related to pod certificate chain. The chain is formed by:
- root certificate sha1
- intermediate certificate sha256
- server certificate sha256
We have update the root certificate to sha256 and all works fine.
Could you confirm if the Openshift router doesn't support the sha1 certificate?