cert-manager

Author	SHA1	Message	Date
Richard Wall	014aad52ea	Update cmd/ctl's go.mod to v1.14.0-alpha.0 Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-04 10:01:25 +00:00
Tim Ramlot	950948e465	start using the new 'slices' library and deprecate old util functions Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-04 09:32:17 +01:00
Tim Ramlot	790a824a49	bump dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 16:18:35 +01:00
jetstack-bot	9b90f50be8	Merge pull request #6549 from SgtCoDFish/standalone-apicheck Add separate startupapicheck binary	2024-01-03 11:12:22 +00:00
Richard Wall	036e3a8e74	Replace all uses of sets.String with the generic sets.Set Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 17:24:38 +00:00
Ashley Davis	b3b14fda41	add separate startupapicheck binary Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2024-01-02 17:17:50 +00:00
Tim Ramlot	a24b2466d3	upgrade golang.org/x/crypto Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-02 10:03:19 +01:00
Adam Talbot	ae143c15f6	feat: add tls to metrics endpoint Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-27 17:15:00 +00:00
jetstack-bot	ebb955f3f0	Merge pull request #6565 from ThatsMrTalbot/fix/flag-validation-not-called fix: validation functions are not called anywhere	2023-12-21 09:11:11 +00:00
jetstack-bot	d9252716da	Merge pull request #6562 from ThatsMrTalbot/fix/normalise-install-flags fix: normalise install flags to match other commands	2023-12-21 08:37:11 +00:00
jetstack-bot	c7714e65f0	Merge pull request #6551 from wallrj/gosec-601 Fix gosec G601: Implicit memory aliasing of items from a range statement	2023-12-20 18:21:37 +00:00
Tim Ramlot	0dabd1f008	refactor code, deduplicating init logic across install and uninstall Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-12-20 18:54:01 +01:00
Richard Wall	4de9e956e5	Fix gosec G601: Implicit memory aliasing of items from a range statement Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-12-20 17:25:41 +00:00
Adam Talbot	4e02058cf3	fix: validation functions are not called anywhere Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-20 15:49:18 +00:00
Tim Ramlot	fb381a6c3f	Update cmd/ctl/pkg/uninstall/uninstall.go Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-12-20 16:46:48 +01:00
Adam Talbot	6e83949f64	fix: normalise install flags to match other commands Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-20 15:01:28 +00:00
Adam Talbot	247a034116	feat: update gateway api to v1 Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-18 21:00:42 +00:00
Ashley Davis	25298b75c7	fix licenses file Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-12-13 14:22:15 +00:00
Richard Wall	8bed166858	Add ReadHeaderTimeout to all http.Server where that setting is missing Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-12-07 11:42:22 +00:00
Tim Ramlot	63c1636a83	run 'make tidy' and 'make update-licenses' Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-29 13:41:46 +01:00
jetstack-bot	e47444db80	Merge pull request #6491 from inteon/pprof_non_leaders BUGFIX: run pprof server on non-leaderelected replicas	2023-11-27 19:52:06 +01:00
Tim Ramlot	6f7ebbed7b	replace deprecated pkcs12 function call with pkcs12.LegacyRC2 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-27 12:32:19 +01:00
Tim Ramlot	99d473bbf1	bump the go-jose dependency Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-24 14:32:53 +01:00
Tim Ramlot	05de994587	BUGFIX: run pprof server on non-leaderelected replicas Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-16 11:21:34 +01:00
Tim Ramlot	aa23a7e973	bump docker to fix cve alert Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-15 22:29:04 +01:00
Tim Ramlot	c953e48b7e	fix CVE alert Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-15 15:04:59 +01:00
jetstack-bot	d2f6bbe579	Merge pull request #6028 from inteon/fix_scheme_errors Stop using global runtime.Scheme variables	2023-11-06 22:57:09 +01:00
Tim Ramlot	4c94f3ef10	create ad-hoc schemes instead of sharing global ones Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-06 21:58:24 +01:00
Tim Ramlot	80e3960f91	Use controller-runtime manager instead of errorgroup. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-02 13:29:05 +01:00
Tim Ramlot	d756311b2e	bump grpc library version to fix CVE alert Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-27 13:14:02 +02:00
Ashley Davis	e514b1acf8	bump golang.org/x/net v0.15.0 => v0.17.0 part of addressing CVE-2023-44487 / CVE-2023-39325 (which, again, we're not super concerned about) Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-10-19 09:47:18 +01:00
Tim Ramlot	e5f50002e1	introduce configfile for cainjector options Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-28 12:56:11 +02:00
Tim Ramlot	ef3bd7d3b2	upgrade all dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-28 12:07:27 +02:00
Tim Ramlot	6916dbec34	fix go-restful 'DO NOT USE' version Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-26 13:40:05 +02:00
Tim Ramlot	9749f1253d	upgrade dependencies Co-authored-by: Paul Merrison <paul@tetrate.io> Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-12 11:38:10 +02:00
Tim Ramlot	80953b185e	fix trivy CVE alert for cyphar/filepath-securejoin Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-12 09:05:23 +02:00
Tim Ramlot	2d4ee5c222	upgrade docker dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-01 14:20:35 +02:00
Tim Ramlot	079b329a8b	upgrade cert-manager to latest master digest Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-01 13:29:28 +02:00
Tim Ramlot	2d83af777b	upgrade to k8s 1.28.1 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 17:39:02 +02:00
Tim Ramlot	d8b38881bd	add ResetForTest Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 19:54:30 +02:00
Tim Ramlot	3fc1f8a580	upgrade all dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 19:54:25 +02:00
Ashley Davis	21a6ec5803	run update-licenses somehow #6293 was merged without this being fixed Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-08-24 16:20:45 +01:00
jetstack-bot	cce304b9d6	Merge pull request #6293 from SgtCoDFish/ipv6compare Fix invalid handling of ip addresses in comparisons	2023-08-24 16:36:48 +02:00
Ashley Davis	bbbc758ccd	fix invalid handling of ip addresses in comparisons Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-08-24 15:21:42 +01:00
Tim Ramlot	66b1c6e19b	only set logging settings once Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-23 14:28:40 +02:00
Tim Ramlot	48cc19bee3	add comments and improve variable names Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-18 11:39:16 +02:00
Tim Ramlot	f1b895247e	simplify configfile loading logic Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-17 13:12:33 +02:00
Tim Ramlot	31b5ed6620	Make webhook Logging options configurable using configfile. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-17 12:00:50 +02:00
Tim Ramlot	e8b5b2e354	Fix bug in ControllerConfiguration's defaulting of logging config, where config would not be correctly defaulted in case a partial logging configuration is provided. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-17 11:19:16 +02:00
guiyong.ou	3d76c20f51	cleanup: some redundant code clean up Signed-off-by: guiyong.ou <guiyong.ou@daocloud.io>	2023-08-14 17:36:25 +08:00
jetstack-bot	9d618a17fb	Merge pull request #6242 from inteon/restructure_controller_configfile Restructure the controller configfile	2023-08-10 15:37:09 +02:00
Tim Ramlot	f50167ce31	restructure the controller configfile Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-10 11:30:33 +02:00
Tim Ramlot	df0d6f22a3	cleanup go imports Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-10 09:48:14 +02:00
Tim Ramlot	e3d6717387	update comment and explain why we use cmdutil.CheckErr Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-01 16:17:06 +02:00
Tim Ramlot	78b78cecca	check api, only log if -v is set Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-01 16:15:14 +02:00
Tim Ramlot	b4479e53ed	use logging library in cmctl Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-01 16:07:20 +02:00
Cody W. Eilar	282a6d58a9	Preserve internal types - Needed to add custom conversion functions to handle conversions from public facing types to internal ones. Signed-off-by: Cody W. Eilar <ecody@vmware.com>	2023-07-27 16:44:38 -07:00
Cody W. Eilar	6212b63e51	Address the non-optional values in internal config - This commit changes the internal config to have fewer number of optional parameters. It changes the types to match the ones that are already present in https://github.com/kubernetes/apimachinery/blob/master/pkg/apis/meta/v1/conversion.go so that custom converters do not have to be written for types "int" and "float32". Signed-off-by: Cody W. Eilar <ecody@vmware.com>	2023-07-27 16:44:38 -07:00
Cody W. Eilar	1243fe285b	Add to ability to start controller with config file Signed-off-by: Cody W. Eilar <ecody@vmware.com>	2023-07-27 16:44:38 -07:00
Tim Ramlot	82ec7b3ee0	downgrade k8s.io/kube-openapi Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-24 09:53:13 +02:00
Tim Ramlot	19918da4c8	run 'make update-licenses' Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-24 09:38:27 +02:00
Tim Ramlot	f61aacb8c1	run 'make tidy' Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-24 09:34:29 +02:00
Luca Comellini	3ff638b6f3	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-07-20 10:35:20 -07:00
Ashley Davis	a76003f737	Merge pull request #6056 from inteon/improve_pki_webhook Improve CertificateRequest's CSR validation code	2023-07-11 16:31:37 +01:00
Tim Ramlot	4d7f6281d0	use pki validation code for CSR validation Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-10 12:48:12 +02:00
Tim Ramlot	90f84b9c40	remove VCert fork dependency replace statement Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-10 11:26:16 +02:00
Tim Ramlot	7098c25a55	move e2e framework back to e2e module Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-07 19:26:10 +02:00
Tim Ramlot	5ba29272c0	add validation to pki CertificateTemplate function and add support for add DontAllowInsecureCSRUsageDefinition featuregate to use old behavior in controller Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-05 13:04:21 +02:00
jetstack-bot	14f81d4270	Merge pull request #6171 from maelvls/update-cmd/ctl/v1.13.0-alpha.0 [Release v1.13.0-alpha.0] Update cmd/cmctl's go.mod to v1.13.0-alpha.0	2023-06-23 17:24:39 +02:00
jetstack-bot	3159ea59e7	Merge pull request #6162 from inteon/remove_replace Remove old miekg/dns replace statement	2023-06-21 13:32:19 +02:00
Maël Valais	06b2ea6d48	Update cmd/cmctl's go.mod to v1.13.0-alpha.0 Signed-off-by: Maël Valais <mael@vls.dev>	2023-06-20 20:09:35 +02:00
Florian Liebhart	b6dbee68d4	update code comment on the recursive nameserver flag Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 17:25:48 +02:00
Florian Liebhart	601c06c9c9	add newline Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 16:39:49 +02:00
Florian Liebhart	876c39b4c9	reorganize import Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 16:38:23 +02:00
Florian Liebhart	9ef3edcd95	update doku on flags Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 15:42:28 +02:00
Florian Liebhart	8c5181c667	remove trailing comma Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 10:25:03 +02:00
Florian Liebhart	91df28e4f5	update flag documentation Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 10:18:24 +02:00
Florian Liebhart	717cccb586	add tests for DoH; include some flag documentation Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-20 10:16:51 +02:00
Florian Liebhart	9ddf2bab90	remove HTTPS endpoint for default nameservers; remove DNS-over-TLS Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 16:06:39 +02:00
Tim Ramlot	3a29635c66	add support for DoH and DoT Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-06-19 15:59:40 +02:00
Florian Liebhart	8335f8474e	remove unneeded whitespace Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	153c0b5fbf	remove bazel Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	894e1f99d6	fix error for dns endpoint propagation Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	cd821e1948	fix controller options description Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	a934bbf462	Make the DNS-Over-HTTPS Json endpoint configurable Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	14c5e7724d	delete bazel stuff Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Florian Liebhart	fa2f063c28	rebase master Signed-off-by: Florian Liebhart <flo.liebhart@gmail.com>	2023-06-19 15:32:01 +02:00
Tim Ramlot	a6bd44e944	remove old miekg replace statement Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-06-19 10:37:30 +02:00
Tim Ramlot	ced9f2bce0	if wait is set to 0, we still want to check the API once Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-30 15:08:02 +02:00
Luca Comellini	8a5704635a	Bump sigs.k8s.io/controller-runtime to v0.15.0 Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-05-23 17:34:28 -07:00
irbekrm	132ab27cec	Updates cmctl to point at latest cert-manager Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-19 14:31:18 +01:00
Luca Comellini	bf6bbb19de	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-05-18 21:55:47 -07:00
Tim Ramlot	0284d20a74	upgrade all our docker deps Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-12 15:32:09 +02:00
Tim Ramlot	d14ffca049	replace go.mod replace statements with require statements Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-12 14:38:32 +02:00
Tim Ramlot	2ba39e9ebc	allow importing the ctl cmd package Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-12 14:13:04 +02:00
irbekrm	16bfe33937	make update-licenses Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-11 13:04:03 +01:00
irbekrm	b67c68859d	Bumps Helm to latest release Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-11 12:55:58 +01:00
irbekrm	5ee7b50ca8	Bumps c/r to latest commit To ensure that there is as little diff as possible with c/r 0.15 Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-11 12:13:19 +01:00
jetstack-bot	308c1472aa	Merge pull request #6031 from inteon/remove_deprecated_3 Replace deprecated wait.PollUntil and wait.Poll	2023-05-10 17:52:54 +01:00
Ashley Davis	9f1c1cf247	use a concrete cert-manager version for cmctl Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2023-05-10 15:45:45 +01:00

1 2 3 4 5 ...

813 Commits