weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

Reverts ACME issuer from forming a chain bundle and populating the

Browse Source 
ca.crt

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
This commit is contained in:
joshvanl 2021-06-02 12:21:50 +01:00
parent 528305b5ed
commit 1678d0833e
1 changed files with 1 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
pkg/controller/certificaterequests/acme/acme.go
View File

@ -206,20 +206,12 @@ func (a *ACME) Sign(ctx context.Context, cr *v1.CertificateRequest, issuer v1.Ge
return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{})
}
bundle, err := pki.ParseSingleCertificateChainPEM(order.Status.Certificate)
if err != nil {
log.Error(err, "failed to successfully build a certificate chain from data on Order resource.")
return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{})
}
log.V(logf.InfoLevel).Info("certificate issued")
// Order valid, return cert. The calling controller will update with ready if its happy with the cert.
return &issuerpkg.IssueResponse{
Certificate: bundle.ChainPEM,
CA: bundle.CAPEM,
Certificate: order.Status.Certificate,
}, nil
}
// Build order. If we error here it is a terminating failure.