From 1678d0833e9bfeea94271b96d192d2050ae06995 Mon Sep 17 00:00:00 2001 From: joshvanl Date: Wed, 2 Jun 2021 12:21:50 +0100 Subject: [PATCH] Reverts ACME issuer from forming a chain bundle and populating the ca.crt Signed-off-by: joshvanl --- pkg/controller/certificaterequests/acme/acme.go | 10 +--------- 1 file changed, 1 insertion(+), 9 deletions(-) diff --git a/pkg/controller/certificaterequests/acme/acme.go b/pkg/controller/certificaterequests/acme/acme.go index 2d2f2b148..e72dd7216 100644 --- a/pkg/controller/certificaterequests/acme/acme.go +++ b/pkg/controller/certificaterequests/acme/acme.go @@ -206,20 +206,12 @@ func (a *ACME) Sign(ctx context.Context, cr *v1.CertificateRequest, issuer v1.Ge return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{}) } - bundle, err := pki.ParseSingleCertificateChainPEM(order.Status.Certificate) - if err != nil { - log.Error(err, "failed to successfully build a certificate chain from data on Order resource.") - return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{}) - } - log.V(logf.InfoLevel).Info("certificate issued") // Order valid, return cert. The calling controller will update with ready if its happy with the cert. return &issuerpkg.IssueResponse{ - Certificate: bundle.ChainPEM, - CA: bundle.CAPEM, + Certificate: order.Status.Certificate, }, nil - } // Build order. If we error here it is a terminating failure.