How is decryption done in NGINX when SSL is offloaded to GCP Cloud KMS?
I'm investigating possibility to offload SSL to GCP Cloud KMS. If we look at a guide https://cloud.google.com/kms/docs/reference/pkcs11-nginx we can see that asymmetric-signing key is created in KMS. gcloud kms keys create nginx-key --keyring "KEYRING" --project "PROJECT" --location "LOCATION" --purpose "asymmetric-signing"…