weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
2,627 Commits 45 Branches 0 Tags 96 MiB
19eeb210c7
Commit Graph

1032 Commits

Author SHA1 Message Date
Michael Tsang
19eeb210c7 Add tests for updating certificate status 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
Co-authored-by: Aleksandr Seleznev <alex@slznv.net>
 2019-07-10 08:52:24 +01:00
Michael Tsang
6fa8e3dbeb Add prometheus metric for certificate ready condition 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
Co-authored-by: Aleksandr Seleznev <alex@slznv.net>
 2019-07-10 08:52:24 +01:00
jetstack-bot
13ebd873d9
Merge pull request #1860 from JoshVanL/cr-group-ref 
Include Group name in IssuerRef for CertificateRequest controller ownership distinction
 2019-07-09 14:10:04 +01:00
JoshVanL
e41a8f1892 Adds not certmanager group ref bailout for certificates controller 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-09 13:14:58 +01:00
jetstack-bot
a14cd35942
Merge pull request #1852 from munnerz/fixup-update-email 
Fix issues with updating ACME account email
 2019-07-08 14:42:34 +01:00
JoshVanL
c949b01aac Adds Group to CertificateRequest IssuerRef to distinguish controller 
ownership

Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-08 14:33:11 +01:00
jetstack-bot
1b9b83a4b8
Merge pull request #1803 from cheukwing/issue-1770 
Add support for nodeSelector, tolerations & affinity in podTemplate
 2019-07-08 14:27:34 +01:00
jetstack-bot
c6cd522a6a
Merge pull request #1836 from JoshVanL/ca-issuer-cr-controller 
Add alpha CertificateRequest controller for CA Issuer type
 2019-07-08 14:11:34 +01:00
James Munnelly
096fa22d07 Set ExtKeyUsageServerAuth in GenerateTemplateFromCertificateRequest 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-05 17:27:43 +01:00
jetstack-bot
be9b48281e
Merge pull request #1856 from munnerz/event-on-no-matching-selectors 
Fire an Event when no acme solver matches an identifier being validated
 2019-07-05 16:12:13 +01:00
jetstack-bot
9d418eae25
Merge pull request #1818 from cheukwing/issue-1812 
Add validation for CommonName and DNSNames length
 2019-07-05 16:11:57 +01:00
James Munnelly
aa3e2fa4aa Fix typos and tidy up imports 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-05 15:30:32 +01:00
James Munnelly
46a3144c33 Mark fields optional 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-05 15:27:43 +01:00
James Munnelly
361ee83102 Update to use custom PodSpec struct and support Affinity too 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-05 15:21:40 +01:00
Michael Tsang
d34effece0 Add nodeselector and tolerations to pod building 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
 2019-07-05 14:57:48 +01:00
Michael Tsang
38045e6c16 Add podspec and checks to podtemplate 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
 2019-07-05 14:57:48 +01:00
James Munnelly
8f9f962b58 Add unit tests for matchCAA function 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-05 14:56:02 +01:00
JoshVanL
a60a6d755f Share key type func 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-05 10:14:25 +01:00
James Munnelly
ed3efdebe0 orders: fire an Event when no acme solver matches an identifier being validated 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-04 22:14:35 +01:00
James Munnelly
34e4214ac2 Set max commonName length to 64 characters 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-04 21:53:52 +01:00
James Munnelly
edbe6e20ad Refactor validation to make it clearer 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-04 18:10:38 +01:00
Michael Tsang
d010731838 Fix long domain tests 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
 2019-07-04 18:10:38 +01:00
Michael Tsang
44cee04c17 Add validation for commonname and dnsnames length 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
 2019-07-04 18:10:38 +01:00
Michael Tsang
a5333a3e86 Fix incorrect issuewild handling in matchCAA 
Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>
 2019-07-04 17:32:06 +01:00
JoshVanL
f9417da5c5 Fixes and adds tests to utils/Equal.. funcs 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-04 15:21:00 +01:00
JoshVanL
bccb6541b1 Return nil, if CR failed. Update tests and remove dead code 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-04 14:26:08 +01:00
jetstack-bot
70bc3e845b
Merge pull request #1850 from kinolaev/acme-http01-self-check-proxy 
Use proxy from env in self check request
 2019-07-04 13:16:38 +01:00
jetstack-bot
bd08bf6a23
Merge pull request #1830 from stuarthu/azureendpoint 
make azure endpoint configurable
 2019-07-04 12:19:37 +01:00
jetstack-bot
7cead3d9e6
Merge pull request #1806 from munnerz/acme-selector-unit-tests 
Add support for dnsZones in ACME solver selectors & rewrite selection logic
 2019-07-04 11:08:37 +01:00
jetstack-bot
30d6664dc6
Merge pull request #1849 from munnerz/namespaced-factories 
Respect --namespace flag in rfc2136 provider
 2019-07-04 10:10:38 +01:00
Stuart Hu
9bdb275f49 Merge remote-tracking branch 'origin/master' into azureendpoint 
Signed-off-by: Stuart Hu <shijiehu@improbable.io>
 2019-07-04 15:21:23 +08:00
Stuart Hu
962489d928 fix test 
Signed-off-by: Stuart Hu <shijiehu@improbable.io>
 2019-07-04 15:02:35 +08:00
Stuart Hu
97518664b5 fix test 
add cert-manager validation for azure environments

Signed-off-by: Stuart Hu <shijiehu@improbable.io>
 2019-07-04 14:36:35 +08:00
Sergej Nikolaev
099abed3fc Use proxy from env in self check request 
Signed-off-by: Sergej Nikolaev <kinolaev@gmail.com>
 2019-07-03 22:46:21 +03:00
James Munnelly
6a5fad1784 Move email update handling logic into own function 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-03 19:13:10 +01:00
James Munnelly
f0feb3afb4 acme: fixup bugs with email updating 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-03 18:57:19 +01:00
JoshVanL
98d5725eea WIP, add CertificateRequest e2e tests 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:59:05 +01:00
JoshVanL
3997d8b4fe Adds more sync tests to CertificateRequest controller 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:43:33 +01:00
JoshVanL
80091063a1 Cleanup validation, logging and status reporting 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:43:33 +01:00
JoshVanL
3cc31075ef Fixes CertificateRequest controller tests 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:43:14 +01:00
JoshVanL
ec28f8dc6e Adds certificate request controller feature flag 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:43:14 +01:00
JoshVanL
b27a5d82f9 Move CSR decoding check to validation 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:42:03 +01:00
JoshVanL
6b1ff0148b Adds certificate request base controller and CA issuer controller 
instance

Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-03 15:42:03 +01:00
James Munnelly
5f5811b81e Respect --namespace flag in rfc2136 provider 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-07-03 13:52:43 +01:00
jetstack-bot
8e54b32d6e
Merge pull request #1763 from cheukwing/issue-1667 
Add handling of updates to ACME email field in Issuers
 2019-07-03 13:04:30 +01:00
jetstack-bot
9157b49d82
Merge pull request #1848 from cpanato/GH-597 
[GH-597] add cache-control header
 2019-07-03 12:42:30 +01:00
jetstack-bot
1a014dde5e
Merge pull request #1764 from dreamteam-gg/allow-disabling-tmp-crt 
Allow disabling issuing temporary certificates
 2019-07-03 12:27:39 +01:00
jetstack-bot
be95598d20
Merge pull request #1505 from DirectXMan12/feature/certs-in-conv-webhook 
Add support for CRDs to the CA injector
 2019-07-03 12:27:31 +01:00
Carlos Panato
968bf753de
add cache-control header 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2019-07-03 12:41:45 +02:00
JoshVanL
79e5cf37a3 Improve comments and test coverage of pkg/issuer/ca/sign.go 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-07-02 11:55:45 +01:00