cert-manager

Author	SHA1	Message	Date
Tim Ramlot	6458aaf518	stop using deprecated klog functions Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 16:18:35 +01:00
jetstack-bot	e9a4793ba4	Merge pull request #6589 from inteon/rename_feature_gates Rename UseCertificateRequestNameConstraints to NameConstraints	2024-01-03 15:04:22 +00:00
Tim Ramlot	41404a7fd7	rename UseCertificateRequestNameConstraints to NameConstraints Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 15:49:18 +01:00
jetstack-bot	9d5ed5752f	Merge pull request #6120 from inteon/cleanup_test_context_builder add comments explaining the Sync function & small test bugfix	2024-01-03 14:33:22 +00:00
jetstack-bot	cc8925ae9f	Merge pull request #6404 from SpectralHiss/hef/otherNameSANs Other name sans support in Certificates	2024-01-03 14:16:23 +00:00
jetstack-bot	4af78fe98a	Merge pull request #6548 from snorwin/modern-pkcs12 New option to specify encryption and MAC algorithms for PKCS#12 keystores.	2024-01-03 12:54:22 +00:00
Tim Ramlot	8223df9e91	rename Algorithms to Profile Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 13:45:02 +01:00
Tim Ramlot	914c2dd169	add comments explaining the Sync function & small bugfixes Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 11:15:27 +01:00
Richard Wall	036e3a8e74	Replace all uses of sets.String with the generic sets.Set Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 17:24:38 +00:00
Richard Wall	19ade4b79e	Replace all calls to RandStringBytes and RandStringRunes With k8s.io/apimachinery/pkg/util/rand#String instead Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 15:41:07 +00:00
Richard Wall	4aa373b733	Deprecate RandStringBytes and RandStringRunes Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 15:02:14 +00:00
Richard Wall	d468830b23	Fix gosec G404 Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 12:33:46 +00:00
jetstack-bot	c7714e65f0	Merge pull request #6551 from wallrj/gosec-601 Fix gosec G601: Implicit memory aliasing of items from a range statement	2023-12-20 18:21:37 +00:00
Richard Wall	4de9e956e5	Fix gosec G601: Implicit memory aliasing of items from a range statement Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-12-20 17:25:41 +00:00
Adam Talbot	247a034116	feat: update gateway api to v1 Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-18 21:00:42 +00:00
Norwin Schnyder	ebf58b9967	apply PR feedback Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-15 10:52:57 +01:00
SpectralHiss	4bdee5f010	Rename otherNameSANs to otherNames * Improve the CRD godoc comments Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>	2023-12-13 16:21:56 +00:00
Norwin Schnyder	b8ad8a3704	apply PR feedback Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-13 12:00:39 +00:00
Tim Ramlot	721f71ed60	Refactor the solution Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-12-13 09:37:21 +00:00
Norwin Schnyder	56dcb3e1dd	enhance unit tests Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-12 15:06:57 +00:00
Norwin Schnyder	b8f4f3b518	pkcs12 encoding with different algorithms Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-12 14:27:00 +00:00
tanujd11	589030dec1	feature: added name constraints Signed-off-by: tanujd11 <dwiveditanuj41@gmail.com>	2023-12-07 22:27:31 +05:30
Tim Ramlot	6f7ebbed7b	replace deprecated pkcs12 function call with pkcs12.LegacyRC2 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-27 12:32:19 +01:00
jetstack-bot	c9e028f3db	Merge pull request #6347 from lauraseidler/fix/gateway-warning-http Do not process Gateway listeners that do not support TLS	2023-11-17 16:18:19 +01:00
Jeremy Campbell	dc876fef16	Add x509 v3 CA Issuers Extension Signed-off-by: Jeremy Campbell <jeremy.campbell@okta.com>	2023-11-16 12:45:16 -06:00
jetstack-bot	6fddbe538f	Merge pull request #6433 from vinny-sabatini/issue-5782 fix error message when setting up vault issuer	2023-11-14 16:30:01 +01:00
Tim Ramlot	4c94f3ef10	create ad-hoc schemes instead of sharing global ones Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-06 21:58:24 +01:00
Vincent Sabatini	298ceb3b2a	fix error message when setting up vault issuer * Ensure Vault URL can be parsed * Separate generic http errors from vault specific errors when checking health endpoint Signed-off-by: Vincent Sabatini <vincent.sabatini@gmail.com>	2023-10-19 08:23:04 -05:00
Max Brauer	432430b311	Rename webhookConfig to controllerConfig Signed-off-by: Max Brauer <mbrauer@vmware.com>	2023-10-18 15:28:14 +02:00
Tim Ramlot	15bc387da6	make changes based on feedback Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-13 19:42:13 +02:00
Tim Ramlot	e63d061269	add tests Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-11 13:48:01 +02:00
Tim Ramlot	d40dae9d67	Fix DuplicateSecretName issue Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-11 13:47:44 +02:00
Laura Seidler	6ac88fd6b9	Do not process Gateway listeners that do not support TLS Otherwise, these will raise warnings in the next steps (e.g. about empty TLS blocks, which are not supported for HTTP listeners). Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:55 +02:00
Laura Seidler	6240ecbea3	Add test case to explicitly support TLS listeners Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:45 +02:00
Laura Seidler	9165f186cb	Use constants instead of strings for gateway protocol types These were already used in some places, this makes the usage more consistent and easier to grep where different protocols are being used. Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:39 +02:00
Tim Ramlot	ef3bd7d3b2	upgrade all dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-28 12:07:27 +02:00
Tim Ramlot	860df2294b	fix feedback: make hash secure Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-21 13:24:07 +02:00
Tim Ramlot	fa2d9333e3	BUGFIX: CertificateRequest short names must be unique. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-20 14:51:24 +02:00
jetstack-bot	3216d18f84	Merge pull request #6298 from inteon/feature_gates Feature gates: promote StableCertificateRequestName and SecretsFilteredCaching to Beta	2023-08-30 19:25:45 +02:00
Tim Ramlot	cf8e37291a	replace k8s.io/utils/pointer with k8s.io/utils/ptr Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-28 09:33:10 +02:00
Tim Ramlot	68cbbf8c42	update tests to work with StableCertificateRequestName featuregate being enabled by default Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 21:32:08 +02:00
Tim Ramlot	c70d9aba08	Rename DontAllowInsecureCSRUsageDefinition feature flag to DisallowInsecureCSRUsageDefinition and make it a Beta flag. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 15:18:14 +02:00
Ashley Davis	87102cf47e	add tests for ipv6 in ingress-shim Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-08-15 10:52:57 +01:00
jetstack-bot	9462d8ae9d	Merge pull request #6267 from zhangzhiqiangcs/distinguish-dns-names-ip-address distinguish dns names and ip address	2023-08-15 11:00:03 +02:00
zhangzhiqiang02	a518056e0b	distinguish dns names and ip address Signed-off-by: zhangzhiqiang02 <zhangzhiqiang02@megvii.com>	2023-08-15 09:56:36 +08:00
guiyong.ou	ad27e88a4b	fix small possible Signed-off-by: guiyong.ou <guiyong.ou@daocloud.io>	2023-08-14 19:51:52 +08:00
guiyong.ou	3d76c20f51	cleanup: some redundant code clean up Signed-off-by: guiyong.ou <guiyong.ou@daocloud.io>	2023-08-14 17:36:25 +08:00
Cody W. Eilar	1243fe285b	Add to ability to start controller with config file Signed-off-by: Cody W. Eilar <ecody@vmware.com>	2023-07-27 16:44:38 -07:00
jetstack-bot	0b9366c0fb	Merge pull request #6232 from inteon/fix_log_reassignment [BUGFIX] Incorrect re-assignment of cross-invocation variable	2023-07-26 13:35:07 +02:00
Ashley Davis	7e1ce241ac	use supplied context where possible this was discovered as part of the investigation into #6104 Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-07-26 11:06:31 +01:00

1 2 3 4 5 ...

1432 Commits