weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
5,200 Commits 45 Branches 0 Tags 96 MiB
05c1fb9fc2
Commit Graph

522 Commits

Author SHA1 Message Date
irbekrm
22f6cb18d2 Adds some comments 
Signed-off-by: irbekrm <irbekrm@gmail.com>
 2021-04-03 15:54:52 +01:00
joshvanl
f8b38daa4c Update cert-manager-controller:approve RBAC naming to be more consistent 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 17:26:28 +00:00
joshvanl
5b34d9a6cc Change cert-manager-controller approve RBAC resource names to 
':approve-cert-manager-io'

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 17:26:28 +00:00
joshvanl
393848ee98 Fix webhook RBAC resource names to use ':subjectaccessreviews' 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 17:26:28 +00:00
joshvanl
8048034b0e Adds permissions to approve "issuer.cert-manager.io/*", "clusterissuer.cert-manager.io/*" signers to the cert-manager-controller ServiceAccount 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 17:26:28 +00:00
joshvanl
6ef840972c Change controller options to return a set of enabled controllers, and 
log enabled controllers on start

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 11:28:01 +00:00
joshvanl
0382c9d8b2 Adds a cert-manager-controller flag to disable controllers, for example, 
the certificaterequests-approver

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-26 11:28:01 +00:00
jetstack-bot
a8c75fab1a
Merge pull request #3773 from JoshVanL/certificate-revision-history-limit 
Certificate revision history limit
 2021-03-26 11:13:58 +00:00
jetstack-bot
dffbf391db
Merge pull request #3733 from jakexks/renewBefore 
Clarify the default values for the renewBefore and duration fields
 2021-03-24 10:53:46 +00:00
joshvanl
59ca6ca850 Move CertificateRequest revisionHistoryLimit validation to OpenAPI 
validation

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-23 15:58:14 +00:00
joshvanl
72904ca2c1 Updates CertificateRequest printColumn with a new Denied column 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-17 13:10:39 +00:00
joshvanl
fb54272d17 Adds Approved condition status as additionalPrinterColumn for pretty 
printing

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-17 13:10:39 +00:00
jetstack-bot
fedea03a16
Merge pull request #3774 from JoshVanL/kubectl-get-cr-username 
Add Requestor to kubectl output, moves Issuer name from wide to default outpt
 2021-03-15 18:00:15 +00:00
joshvanl
d2b98828b3 Adds Username to kubectl get output, moves issuer name from wide to 
default

Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-15 16:52:51 +00:00
joshvanl
e6ece1f36b Updates Issuer CRDs with new ObservedGeneration field 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-15 15:06:22 +00:00
joshvanl
7146f9702d Adds revisionHistoryLimit field to CRD 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-15 14:54:35 +00:00
jetstack-bot
70c66e02a0
Merge pull request #3641 from JoshVanL/certificate-request-identity 
CertificateRequest UserInfo fields
 2021-03-15 14:26:15 +00:00
jetstack-bot
51340d0c87
Merge pull request #3454 from Kirill-Garbar/chart-bugfix-with-hostNetwork 
fix bug with hostNetwork false in webhook psp
 2021-03-11 19:40:25 +00:00
jetstack-bot
c2634d3538
Merge pull request #3613 from JoshVanL/certificate-condition-observed-generation 
Certificate condition observed generation
 2021-03-08 09:47:45 +00:00
jetstack-bot
75a46ff90b
Merge pull request #3731 from jsoref/spelling 
Spelling
 2021-03-05 13:58:40 +00:00
jetstack-bot
deb55110a2
Merge pull request #3725 from joshuastern/automountServiceAccountToken 
Add automountServiceAccountToken field to ca service accounts
 2021-03-04 18:43:40 +00:00
jetstack-bot
3ff69d0dd6
Merge pull request #3697 from yann-soubeyrand/patch-1 
fix: correct permissions on edit aggregate role
 2021-03-04 18:08:40 +00:00
Josh Soref
3b957488c3 spelling: will 
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
 2021-03-04 13:04:38 -05:00
Josh Soref
7e0119a7d4 spelling: liveness 
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
 2021-03-04 13:04:38 -05:00
Jake Sanders
e19a9f3800
Add default duration to duration field doc 
Signed-off-by: Jake Sanders <i@am.so-aweso.me>
 2021-03-04 17:18:33 +00:00
joshvanl
b3cab7e265 Updates the CRDs with the Certificate Condition observedGeneration field 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-03-04 17:04:11 +00:00
Jake Sanders
5aedd544d7
Clarify the default value for the renewBefore field 
Signed-off-by: Jake Sanders <i@am.so-aweso.me>
 2021-03-04 15:37:47 +00:00
Joshua Stern
144368a598 Add automountServiceAccountToken field to ca service accounts 
Signed-off-by: Joshua Stern <joshua.stern@appian.com>
 2021-03-01 18:23:37 -05:00
Yann Soubeyrand
8af2065e74
fix: correct permissions on edit aggregate role 
Signed-off-by: Yann Soubeyrand <yann.soubeyrand@camptocamp.com>
 2021-02-22 19:20:54 +01:00
7opf
5dc0eba59d use port from helm value for service targetPort 
Signed-off-by: Severin Skillman <sev@skillman.ch>
 2021-02-21 12:26:07 +00:00
irbekrm
959e581368 Removes implementation-specific comment from api 
Co-authored-by: Richard Wall <richard.wall@jetstack.io>
Signed-off-by: irbekrm <irbekrm@gmail.com>
 2021-02-10 13:29:05 +00:00
irbekrm
59f52139dc Finishes sentences with a full stop 
Co-authored-by: JoshVanL <vleeuwenjoshua@gmail.com>
Signed-off-by: irbekrm <irbekrm@gmail.com>
 2021-02-10 09:43:34 +00:00
irbekrm
863c709a19 Removes minimum and maximum fields from Certificate CRD 
This was done to fix Helm data type conversion problem- see issue #3644 for more context

Signed-off-by: irbekrm <irbekrm@gmail.com>
 2021-02-09 17:08:29 +00:00
joshvanl
46d4e61a18 Updates CRDs to include new identity fields to CertificateRequests 
Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>
 2021-02-08 19:23:52 +00:00
jetstack-bot
35febb1717
Merge pull request #3505 from hugoboos/ocsp-server 
Add option to specify OCSP server #3497
 2021-02-05 11:27:37 +00:00
jetstack-bot
461a41046c
Merge pull request #3628 from wallrj/3627-fix-crd-duplication 
Fix duplication of the CRD definitions in cert-manager.yaml
 2021-02-04 15:19:41 +00:00
Richard Wall
0255304ef4 Fix the helm install --set installCRDs=true option 
Signed-off-by: Richard Wall <richard.wall@jetstack.io>
 2021-02-04 14:05:49 +00:00
jetstack-bot
4fe609156b
Merge pull request #3538 from chulkilee/patch-1 
Fix comments for docs on types_certificate.go
 2021-02-03 15:09:11 +00:00
Richard Wall
dd4219501d Fix duplication of the CRD definitions in cert-manager.yaml 
* CRDs are already included by virtue of the manifests.helm target

Signed-off-by: Richard Wall <richard.wall@jetstack.io>
 2021-02-03 11:50:19 +00:00
Maël Valais
ba22785445 Rename ocspServer to oscpServers 
Signed-off-by: Maël Valais <mael@vls.dev>
Co-authored-by: James Munnelly <james@munnelly.eu>
 2021-02-03 11:13:32 +01:00
Hugo Stijns
5f18cce622 add option to specify OCSP server 
Signed-off-by: Hugo Stijns <hugo@boosboos.net>
Signed-off-by: Maël Valais <mael@vls.dev>
 2021-02-03 09:09:03 +01:00
Chulki Lee
e90b494da6 Fix go comments for API docs 
- Use backticks, not single/double quotes for enum values
- Fix allowed values
- Remove unnecessary quote

Signed-off-by: Chulki Lee <chulki.lee@gmail.com>
 2021-01-22 20:21:19 +09:00
Maartje Eyskens
494fcaf480 Remove all and rename acme to cert-manager-acme 
Signed-off-by: Maartje Eyskens <maartje@eyskens.me>
 2021-01-20 15:21:42 +01:00
Maartje Eyskens
cab840e876 Add CRD catagories 
Signed-off-by: Maartje Eyskens <maartje@eyskens.me>
 2021-01-18 14:09:38 +01:00
Kirill Garbar
12ac6d7e52 fix bug with hostNetwork false in webhook psp 
Signed-off-by: Kirill Garbar <kirill.garbar@t-systems.com>
 2020-12-29 11:25:59 +03:00
jetstack-bot
d655522e2e
Merge pull request #3529 from meyskens/fix-manifest-rel 
Fix release tar content of manifests
 2020-12-22 10:38:28 +00:00
Maartje Eyskens
ba5accae50 Fix release tar content of manifests 
Signed-off-by: Maartje Eyskens <maartje@eyskens.me>
 2020-12-22 10:47:37 +01:00
jetstack-bot
9a096beb8a
Merge pull request #3527 from ndrpnt/add-leader-election-flags 
Make leader-election settings customizable for cainjector
 2020-12-21 12:32:52 +00:00
Julien ALEXANDRE
2648d0bcff
Add leader election flags in Helm chart 
This commit lets Helm chart users set the value of the
`--leader-election-lease-duration`, `--leader-election-renew-deadline`
and `--leader-election-retry-period` flags. These flags are configured
globally for all components, to be consistent with the rest of the
chart.

Since their default values differ in the controller and the cainjector,
they are unset by default in the Helm chart, for backward compatibility.

Signed-off-by: Julien ALEXANDRE <22328659+ndrpnt@users.noreply.github.com>
 2020-12-19 19:10:55 +01:00
Maartje Eyskens
5ce6a5aebd Properly remove caBundle hack too 
Signed-off-by: Maartje Eyskens <maartje@eyskens.me>
 2020-12-16 16:02:42 +01:00