weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

Uses ParseCertificateChainPEM for ACME Order Response

Browse Source 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
This commit is contained in:
joshvanl 2021-05-10 19:37:34 +01:00
parent 68aeb330b7
commit 33fcf0d082
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
pkg/controller/certificaterequests/acme/acme.go
View File

@ -206,11 +206,18 @@ func (a *ACME) Sign(ctx context.Context, cr *v1.CertificateRequest, issuer v1.Ge
return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{})
}
bundle, err := pki.ParseCertificateChainPEM(order.Status.Certificate)
if err != nil {
log.Error(err, "failed to successfully build a certificate chain from data on Order resource.")
return nil, a.acmeClientV.Orders(order.Namespace).Delete(ctx, order.Name, metav1.DeleteOptions{})
}
log.V(logf.InfoLevel).Info("certificate issued")
// Order valid, return cert. The calling controller will update with ready if its happy with the cert.
return &issuerpkg.IssueResponse{
Certificate: order.Status.Certificate,
Certificate: bundle.ChainPEM,
CA: bundle.CAPEM,
}, nil
}