weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
3,878 Commits 45 Branches 0 Tags 96 MiB
48958036bf
Commit Graph

27 Commits

Author SHA1 Message Date
jetstack-bot
687d47f832
Merge pull request #2027 from pepov/auditsink-injector 
Add auditsinks in auditregistration.k8s.io/v1alpha1 to the supported injector targets
 2020-04-20 08:23:38 +01:00
Maartje Eyskens
db45891705 Add missing context 
Signed-off-by: Maartje Eyskens <maartje@eyskens.me>
 2020-04-17 16:39:06 +02:00
pepov
9b764960b9 restore Register method 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 18:41:26 +02:00
pepov
c75b9ba56a simplify error handling for registerAllInjectors 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 14:33:50 +02:00
pepov
5ba789934d add comment, rename/unexport Register method 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 14:33:50 +02:00
pepov
9b82e465b9 reword comments 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 14:33:50 +02:00
pepov
f4813fdda9 log with the Info level instead of error when the injector is alpha and the type cannot be found 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 14:33:50 +02:00
pepov
24507f70c6 add auditsinks in api/auditregistration/v1alpha1 to the supported targets and handle injector "no matching kind" errors as something that shouldn't break the operator 
Signed-off-by: pepov <peterwilcsinszky@gmail.com>
 2020-03-30 14:33:50 +02:00
Josh Soref
093d6eb504 spelling: indices 
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
 2020-02-24 16:42:58 -05:00
Ingo Gottwald
be3f1e3fd2 Remove use of deprecated client.MatchingField 
Signed-off-by: Ingo Gottwald <in.gottwald@gmail.com>
 2019-10-02 20:47:58 +02:00
James Munnelly
973f4aa424 Update codebase for external dependencies 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-09-26 12:52:43 +01:00
James Munnelly
f2f3aee50d Update codebase for new API group 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-09-23 12:06:13 +01:00
James Munnelly
bf9fbea23f Update codebase for new meta apigroup 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-09-20 19:25:04 +01:00
James Munnelly
58754abf37 Refactor codebase for v1alpha2 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-09-20 16:22:43 +01:00
James Munnelly
e5f3b46018 Update OwningCertForSecret to use annotations to discover owner 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-09-19 15:35:46 +01:00
James Munnelly
dbf3258f4c Move cainjector annotations into apis package 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-08-14 19:36:56 +01:00
James Munnelly
9b5f2bf669 Address review comments 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-08-14 13:02:14 +01:00
James Munnelly
6967baad8e Only allow injecting from Secrets that have the AllowsInjectionFromSecretAnnotation annotation 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-08-14 12:57:03 +01:00
James Munnelly
dd66c11115 Extend cainjector to support injecting from secrets 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-08-14 12:57:01 +01:00
James Munnelly
ce475e1640 Move TLSCAKey to v1alpha1 package 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-08-14 01:21:15 +01:00
Solly Ross
dc613f5dc3 [CA Injector] Don't requeue on deletes 
We need to silently ignore non-found on the initial get, otherwise we'll
requeue on deletes.

Signed-off-by: Solly Ross <sollyross@google.com>
 2019-06-13 13:31:42 -07:00
Solly Ross
95ac5a498c Add support for CRDs to the CA injector 
This adds support for the CRD conversion webhook configuration to the CA
injector controller.

Signed-off-by: Solly Ross <sollyross@google.com>
 2019-06-13 13:31:42 -07:00
James Munnelly
25af59a0d5 Use v1beta1 API version in cainjector controller 
This resolves issues when running the cainjector on Kubernetes 1.9,
as the 1.9 apiserver is not aware of the 'v1' API version.

Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-24 11:19:24 +01:00
James Munnelly
6b24e9c966 Update cainjector 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
1618ebde43 Fix loading apiserver caBundle 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 19:34:40 +00:00
James Munnelly
b34adf88ff cainjector: support injecting apiserver ca 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 16:45:26 +00:00
Solly Ross
42248a91d7 CA Injector Controller 
This implements a CA injector controller using controller-runtime.
It looks at admission webhooks and APIServices with a particular
annotation, and injects the CA data from certificates.

Signed-off-by: Solly Ross <sollyross@google.com>
 2019-02-26 21:47:34 -08:00