cert-manager

Author	SHA1	Message	Date
zeeZ	1c96ea9c57	Add option to set annotations and labels for HTTP01 resolver Ingress resources. Signed-off-by: zeeZ <zeeZinator+github@gmail.com>	2020-03-12 21:12:11 +01:00
Johan Fleury	08db170a36	feat(rfc2136): add support for IPv6 address in nameserver Signed-off-by: Johan Fleury <jfleury@arcaik.net>	2020-03-09 21:43:56 -04:00
Johan Fleury	51d46e5f76	feat(rfc2136): allow FQDN and hostname in nameserver Signed-off-by: Johan Fleury <jfleury@arcaik.net>	2020-03-09 21:12:23 -04:00
James Munnelly	4e5f9bc31d	Add integration testing framework and a basic conversion test Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-13 15:32:50 +01:00
jetstack-bot	6da95758a4	Merge pull request #2685 from meyskens/helm-0.14 Bump Helm version in readme to v0.14.0	2020-03-11 12:45:32 +00:00
Maartje Eyskens	02863bd226	Bump Helm version in readme to v0.14.0 Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-11 13:26:46 +01:00
James Munnelly	61cff09573	Automatically prepend license boilerplate header to release manifests Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-11 12:08:43 +00:00
jetstack-bot	cd9304e59a	Merge pull request #2665 from munnerz/crds-release-asset Include CRDs as part of release assets published to GitHub	2020-03-06 21:38:28 +00:00
James Munnelly	d8c196a71a	Only include the 'sideEffects' field on webhooks in Kubernetes 1.12+ Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-06 16:36:54 +00:00
James Munnelly	42b2dfd5ce	Add empty caBundle field to webhooks on Kubernetes 1.12 and below Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-06 15:32:17 +00:00
James Munnelly	71006abfce	Remove crds/ directory from built chart tgz Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-06 15:32:17 +00:00
James Munnelly	73c8c6747f	Include CRDs as part of release assets published to GitHub Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-06 14:09:46 +00:00
jetstack-bot	e781549b64	Merge pull request #2662 from meyskens/bump-helm-docs Bump Helm version in docs to v0.14.0-alpha.1	2020-03-06 13:10:29 +00:00
Maartje Eyskens	17287e23bd	Bump Helm version in docs to v0.14.0-alpha.1 Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-06 11:47:25 +01:00
James Munnelly	b7fe6a7286	chart: update Deployment 'selector' and use recommended label keys Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-05 13:25:46 +00:00
jetstack-bot	b48988ffcf	Merge pull request #2650 from meyskens/014-versionupdate Tag v0.14 in the Helm chart readme	2020-03-05 08:13:05 +00:00
Maartje Eyskens	d63cbb2731	Set tag to v0.14.0-alpha.0 Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-05 08:12:14 +01:00
jetstack-bot	db1c5faf7b	Merge pull request #2649 from meyskens/rm-no-webhook Remove webhook.enabled from Helm chart	2020-03-05 00:44:05 +00:00
Maartje Eyskens	6a0c53c508	Tag v0.14 in the Helm chart readme Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-04 20:28:32 +01:00
Maartje Eyskens	f951a89385	Remove webhook.enabled from Helm chart Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-04 19:26:05 +01:00
Maartje Eyskens	3307e3a946	Update bazel Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-04 15:07:47 +01:00
Maartje Eyskens	aaae73a45d	Replace openshift/no-webhook manifests with legacy This releases a new manifest type "legacy" to support Kubernetes <1.15 and OpenShift 3. This version uses the webhook but disables the conversions as they are not supported. For this reason only the v1alpha2 API is added in these manifests. All newer APIs are filtered by the filter-crd tool. Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-04 14:26:25 +01:00
jetstack-bot	f2c462d29f	Merge pull request #2642 from meyskens/manifest-phase1 Put OpenShift specific RBAC in all manifests	2020-03-04 13:02:58 +00:00
jetstack-bot	00b101de76	Merge pull request #2597 from meyskens/emailsans Add Email SANs	2020-03-03 16:31:56 +00:00
Maartje Eyskens	ce4c33f3b5	Put OpenShift specific RBAC in all manifests Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-03-03 14:57:26 +01:00
James Munnelly	5eb3cb6313	Mark filter-crd target as a tool dependency instead of src Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-03 10:29:54 +00:00
srBraun	04bfddefc3	adds support for CDP to selfsigned issuer Signed-off-by: srBraun <dev@skra.space>	2020-03-02 12:40:46 +01:00
jetstack-bot	930827b06b	Merge pull request #2624 from jsoref/spelling Spelling	2020-02-25 11:41:48 +00:00
Josh Soref	c4337b3acd	spelling: occurrences Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 17:36:16 -05:00
Josh Soref	b7f18161a5	spelling: explicitly Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 16:42:41 -05:00
Josh Soref	8d801fc100	spelling: certificate Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 16:15:51 -05:00
Josh Soref	b93d64c09d	spelling: authorizations Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 16:15:18 -05:00
Josh Soref	ec5da97f2b	spelling: account Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 16:14:20 -05:00
Travis Glenn Hansen	5485291ba2	dynamic namespace for webhook RoleBinding Signed-off-by: Travis Glenn Hansen <travisghansen@yahoo.com>	2020-02-24 09:06:04 -07:00
Maartje Eyskens	d3a623314c	Add EmailSANs field Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-02-21 08:49:00 +01:00
Maartje Eyskens	1439ca350c	Write CRD filter for OpenShift This adds a Go binary that filters certain keys from the CRDs. This is meant to remove keys that are not compatible with OpenShift 3.11. This then is ran on creating the deployment manifests. Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-02-18 10:52:42 +01:00
jetstack-bot	2862c31386	Merge pull request #2593 from JoshVanL/encode-openapi-validation Certificate KeySize encode openapi validation	2020-02-17 11:42:24 +00:00
James Munnelly	71373d1e50	Fix including CRDs as part of static manifests Signed-off-by: James Munnelly <james@munnelly.eu>	2020-02-13 15:52:01 +00:00
JoshVanL	9b9b66d7b4	Updates CRDs with max/min keysize validation Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-02-12 10:18:11 +00:00
jetstack-bot	f9c23dcb8f	Merge pull request #2556 from munnerz/release-tars Add release-tars targets to construct cert-manager release artifacts	2020-02-10 16:10:13 +00:00
James Munnelly	48c56dbe5a	Run ./hack/update-crds.sh Signed-off-by: James Munnelly <james@munnelly.eu>	2020-02-10 12:16:29 +00:00
James Munnelly	277659c466	Enable conversion webhook for v1alpha3 in CRDs and 'serve' v1alpha3 Signed-off-by: James Munnelly <james@munnelly.eu>	2020-02-10 12:15:09 +00:00
Maartje Eyskens	3c09a7b80c	Document more info on CN behaviour Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-02-07 09:22:24 +01:00
Maartje Eyskens	7e318dbfbb	update CRDs Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-02-07 09:16:49 +01:00
James Munnelly	5b9cd23d0f	Make the Venafi Cloud URL field optional Signed-off-by: James Munnelly <james@munnelly.eu>	2020-02-03 18:18:38 +00:00
James Munnelly	22f4f1e1f2	Add release-tars targets to construct cert-manager release artifacts Signed-off-by: James Munnelly <james@munnelly.eu>	2020-01-30 21:02:58 +00:00
Greg Taylor	3f2e9dd37f	Fix Helm chart cainjector.enabled cainjector previously disregarded the cainjector.enabled value when passed in. This commit leaves it defaulted to enabled (per the docs) but causes cainjector to not be deployed when cainjector.enabled = false. Signed-off-by: Greg Taylor <greg@gctaylor.com>	2020-01-23 16:22:41 -08:00
James Munnelly	86d7160499	Update version numbers in Helm chart README Signed-off-by: James Munnelly <james@munnelly.eu>	2020-01-21 14:24:18 +00:00
jetstack-bot	5eb56efdad	Merge pull request #2529 from munnerz/v0130-readme Update version tags in Helm chart	2020-01-20 17:12:31 +00:00
jetstack-bot	b7e83b5382	Merge pull request #2508 from JoshVanL/cr-invalid-request CertificateRequest InvalidRequest	2020-01-20 14:17:31 +00:00
James Munnelly	71c2e6f5cd	Update version tags in Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2020-01-20 14:14:23 +00:00
jetstack-bot	44535d60ab	Merge pull request #2504 from appian/add-support-for-volumes Add support for volumes and volume mounts to cert-manager chart	2020-01-17 10:18:05 +00:00
Joshua Stern	72aa16c7be	Add support for volumes and volume mounts to cert-manager chart Signed-off-by: Joshua Stern <joshua.stern@appian.com>	2020-01-16 11:11:48 -05:00
Joshua Mathianas	05ff21250d	Updates plural names and destination attribute name to match source Signed-off-by: Joshua Mathianas <mathianasj@gmail.com>	2020-01-16 10:30:20 -05:00
Joshua Mathianas	9ee6ea7b7d	Fixed a typo and ran generators Signed-off-by: Joshua Mathianas <mathianasj@gmail.com>	2020-01-16 09:49:40 -05:00
Joshua Mathianas	e33e28c4fd	add backwards compatability for using existing common name or organization if x509name ones are not set add ability to specify more subject attributes for csr Signed-off-by: Joshua Mathianas <mathianasj@gmail.com>	2020-01-16 07:50:26 -05:00
jetstack-bot	29389b19d5	Merge pull request #2509 from castlemilk/rbac-fix updating serviceAccount reference in leaderelection rolebinding	2020-01-14 12:00:59 +00:00
Nicolas Fischer	2bb792943a	ensure space after comment character Signed-off-by: Nicolas Fischer <nicolas@emberspark.io>	2020-01-10 10:15:42 +00:00
Nicolas Fischer	3b838758a3	support an arbitrary SecurityContext block for the main deployment Signed-off-by: Nicolas Fischer <nicolas@emberspark.io>	2020-01-10 10:15:42 +00:00
Ben Ebsworth	263459da05	updating serviceAccount reference to use serviceAccountName instead of fullname Signed-off-by: Ben Ebsworth <ben.ebsworth@gmail.com>	2020-01-10 09:01:56 +11:00
JoshVanL	0a10343e2c	Updates crds Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-01-09 15:56:52 +00:00
Christian Zunker	7f5ac29d2f	Add configuration switch for use of apparmor in PSP Fixes #2293 Signed-off-by: Christian Zunker <christian.zunker@codecentric.cloud>	2020-01-08 06:42:28 +01:00
James Munnelly	ff8ebef492	Bump Helm chart strings for v0.13.0-alpha.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-12-16 09:29:50 +00:00
jetstack-bot	adce70f649	Merge pull request #2436 from ttarczynski/patch-1 Bump default 'image.tag' value in helm chart README.md	2019-12-12 15:32:15 +00:00
Nicolas Fischer	f8c83a1411	issue 2443 - annotations for cert-manager deployments Signed-off-by: Nicolas Fischer <nicolas@emberspark.io>	2019-12-11 15:37:21 +00:00
jetstack-bot	6544ab93c5	Merge pull request #2449 from UKHomeOffice/issue-2448 issue 2448 - Optional securityContext for cainjector and webhook char…	2019-12-11 15:27:32 +00:00
James Munnelly	5c4e27830f	Use enum for HMAC algorithm field Signed-off-by: James Munnelly <james@munnelly.eu>	2019-12-11 12:28:49 +00:00
James Munnelly	80bc253d74	acme: Add API fields for ExternalAccountBinding Signed-off-by: James Munnelly <james@munnelly.eu>	2019-12-11 10:37:16 +00:00
Nicolas Fischer	b574c4f16d	issue 2448 - Optional securityContext for cainjector and webhook chart deployments Signed-off-by: Nicolas Fischer <nicolas@emberspark.io>	2019-12-10 16:12:47 +00:00
jetstack-bot	e6bf2c0ace	Merge pull request #2383 from colek42/fix-2375-falsy-fields Fixes false/null fields in the helm chart.	2019-12-10 12:15:14 +00:00
Tomasz Tarczynski	6c97c2472e	Bump devault `image.tag` value in README.md I think the default value of `image.tag` is now `v0.12.0`	2019-12-06 12:24:32 +01:00
Cole Kennedy	036d6ea4aa	This commit fixes false/null fields in the helm charts Signed-off-by: Cole Kennedy <colek42@gmail.com> Signed-off-by: Cole Kennedy <colek42@gmail.com>	2019-12-04 09:25:27 -06:00
Bouke van der Bijl	852f4876c7	deploy/charts/cert-manager: explicitly define ContainerPort protocol Server-side apply currently needs it to resolve conflicts. Signed-off-by: Bouke van der Bijl <bvanderbijl@digitalocean.com>	2019-11-27 15:41:05 +00:00
jetstack-bot	df265ddbfd	Merge pull request #2170 from matevzmihalic/cloudflare-apitoken Add API token authentication option to Cloudflare issuer	2019-11-27 13:22:21 +00:00
Christophe Courtaut	7534dcd33e	deploy/charts/cert-manager: Fixes typo in webhook-psp definition This kind of issue might be detected early in the future when enabling psp in e2e tests (https://github.com/jetstack/cert-manager/pull/2280). A similar bug was already fixed in `be0b865522`. This commit fixes the typo. Signed-off-by: Christophe Courtaut <christophe.courtaut@gmail.com>	2019-11-20 16:50:55 +01:00
Matevz Mihalic	b5972a379f	Add API token auth option to Cloudflare issuer Signed-off-by: Matevz Mihalic <matevz.mihalic@gmail.com>	2019-11-18 17:51:43 +01:00
James Munnelly	1859e5e062	Update Helm chart README for v0.12.0-beta.1 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-15 16:10:35 +00:00
James Munnelly	7c1dd0b30e	Set preserveUnknownFields: false Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-15 12:26:11 +00:00
James Munnelly	1527c06e0f	Remove reference to metav1.ObjectMeta Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-15 12:26:11 +00:00
jetstack-bot	071921636a	Merge pull request #2234 from sam-cogan/psp-fixes Fixes for PSP Issues	2019-11-15 02:56:55 +00:00
jetstack-bot	0f99bcdeac	Merge pull request #2368 from munnerz/cr-csr-required Mark 'csr' field as required in CertificateRequest	2019-11-15 02:29:02 +00:00
jetstack-bot	8ac1ba859b	Merge pull request #2325 from CoaxVex/fix-2305 Add update permission to certificaterequests/finalizers to the cert-manager-controller-certificates clusterrole.	2019-11-15 01:35:55 +00:00
James Munnelly	e8fbd37634	Mark 'csr' field as required in CertificateRequest Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-15 01:01:43 +00:00
JoshVanL	1c5a5caaf8	Adds all key usage possible values to key usage comment Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-11-14 13:51:28 +00:00
James Munnelly	fc9c11cc38	Bump Helm chart README for v0.12.0-beta.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-13 17:10:09 +00:00
jetstack-bot	1bfec37482	Merge pull request #2349 from JoshVanL/2205-kubernetes-auth-path Changes the vault issuer Kubernetes auth path to require the full mount path	2019-11-13 09:58:26 +00:00
JoshVanL	0e739bdde9	Mount path now hard codes /login endpoint in code Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-11-12 18:37:54 +00:00
jetstack-bot	f83dc13a39	Merge pull request #2326 from JoshVanL/cli-output-issuer Increases issuer CLI output	2019-11-11 13:52:40 +00:00
JoshVanL	7ec3103eb4	Changes the vault issuer Kubernetes auth path to require the full path Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-11-11 12:49:02 +00:00
JoshVanL	06ce5061ba	Set printer columns by changing crds in deploy Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-11-11 12:25:37 +00:00
Harold Drost	62c4e0b6eb	serviceAccountSecretRef is not always required The cert-manager code will use what it's called ambient permissions. This worked for us until we moved from v0.8 to v0.11 though I've found the issue present in v10 also. Signed-off-by: Harold Drost <baelish@bluecell.net>	2019-11-05 15:57:58 +00:00
Nils Cant	c51c179a42	Add update permission to certificaterequests/finalizers to the cert-manager-controller-certificates clusterrole. Fixes: #2305 Signed-off-by: Nils Cant <nils.cant@vargen.io>	2019-11-05 15:41:57 +01:00
jetstack-bot	79711c5e34	Merge pull request #2270 from yurrriq/fix-chart Chart.yaml: add missing apiVersion	2019-10-28 15:39:06 +00:00
jetstack-bot	dddc6abd2e	Merge pull request #2285 from munnerz/helm-chart-simplify Remove nested cainjector subchart	2019-10-28 12:11:21 +00:00
jetstack-bot	c11d983d82	Merge pull request #2278 from munnerz/webhook-port-10250 Default webhook port to 10250 for better compatibility with GKE	2019-10-28 12:11:14 +00:00
jetstack-bot	24883ea2b5	Merge pull request #2286 from munnerz/schemapatch-ct Use controller-gen schemapatch to generate CRD schemas	2019-10-28 11:46:14 +00:00
jetstack-bot	2cf195a267	Merge pull request #2283 from munnerz/webhook-status-subresources Enable validation and mutation for subresources	2019-10-28 11:46:07 +00:00
Thomas	1af8fa2ba7	add '--validate=false' for deployment instruction with 00-crds.yaml (#2208 )	2019-10-28 10:56:38 +01:00
James Munnelly	a292400c3a	Add source CRD manifests for schemapatch Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 14:44:41 +01:00
James Munnelly	9d5372c93a	Use schemapatch to generate openapi schemas Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 14:44:02 +01:00
James Munnelly	a9ea30704b	Regenerate 00-crds.yaml using schemapatch Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 14:14:38 +01:00
James Munnelly	a6311a8e12	Remove leading space on template labels Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 12:23:29 +01:00
James Munnelly	4586ecf930	Move cainjector chart into main chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 12:22:48 +01:00
James Munnelly	469422872e	Simplify the way webhook component names are computed Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 12:10:42 +01:00
James Munnelly	374c293454	Enable validation and mutation for subresources Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-25 10:34:51 +01:00
James Munnelly	956be10a93	Default webhook port to 10250 for better compatibility with GKE Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-24 19:34:18 +01:00
Eric Bailey	ce21224c89	Chart.yaml: add missing apiVersion Signed-off-by: Eric Bailey <e.bailey@sportradar.com>	2019-10-23 13:02:59 -05:00
Benjamin P. Jung	be0b865522	Fix evil typo (s/annotation/annotations/) Signed-off-by: Benjamin P. Jung <headcr4sh@gmail.com>	2019-10-18 17:19:41 +02:00
James Munnelly	ec8d6e12e4	Add validation to ensure Order & Challenge fields are immutable Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-17 16:54:15 +01:00
James Munnelly	da8bf264fd	Use standard golang http server for webhook Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-17 12:29:34 +01:00
Sam Cogan	94fc2b0845	Fixes for PSP Issues Adding missing "-psp" to cert-manager psp cluster role binding Create PSP, ClusterRole and ClusterRole binding for webhook service account Signed-off-by: Sam Cogan <mail@samcogan.com>	2019-10-15 22:27:06 +01:00
jetstack-bot	87aedeb04c	Merge pull request #2225 from munnerz/wildcard-field-ptr Make ACMEAuthorization.Wildcard field a pointer	2019-10-15 19:05:05 +01:00
James Munnelly	e9796e79f2	Update generated files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-15 12:40:17 +01:00
jetstack-bot	4d316ea97f	Merge pull request #2103 from chdorb/fix/yaml_manifests Better YAML structure	2019-10-15 09:40:19 +01:00
jetstack-bot	1f6a4c758f	Merge pull request #2207 from krishnadurai/patch-1 Removes leaderelection ClusterRoleBinding	2019-10-14 15:14:20 +01:00
Krishna Durai	f2d465d757	Removes leaderelection ClusterRoleBinding This is done to give preference to the new leaderelection RoleBinding in 'kube-system' Signed-off-by: Krishna Durai <krishnadurai20@gmail.com>	2019-10-12 16:02:41 +05:30
ismail BASKIN	90e28137f3	Add sideEffects to MutatingWebhookConfiguration This is for supporting `kubectl --server-dry-run` feature. It fixes #2186. Signed-off-by: ismail BASKIN <ismailbaskin5@gmail.com>	2019-10-12 01:21:07 +03:00
Pierre Dorbais	bac9b39707	fix namespace yaml file format Signed-off-by: Pierre Dorbais <chdorb@gmail.com>	2019-10-11 15:45:10 +02:00
Luca Berneking	86738b73e4	Remove deprecated arguments from helm chart deployment Signed-off-by: Luca Berneking <luca@berneking.net>	2019-10-11 15:30:06 +02:00
Pierre Dorbais	5a131155c6	crds file generated Signed-off-by: Pierre Dorbais <chdorb@gmail.com>	2019-10-11 14:19:50 +02:00
James Munnelly	941b27bec1	Bump version strings for v0.11.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-09 11:35:35 +01:00
JoshVanL	e14f347736	Adds comment to helm chart with the verbosity levels Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-10-07 09:11:21 +01:00
James Munnelly	1464fe69a4	Update default leader election namespace to be kube-system Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-04 13:18:23 +01:00
jetstack-bot	13fcbb9384	Merge pull request #1946 from munnerz/update-controller-tools Update controller-tools to correctly set x-kubernetes-preserve-unknown-fields	2019-10-03 12:45:47 +01:00
jetstack-bot	482eac596a	Merge pull request #2085 from JoshVanL/certificate-URISANs Adds URISANs field to Certificate	2019-10-03 10:59:47 +01:00
Lachlan Cooper	f8405ff36a	Fix values and README for helm chart Some values were miscategorised (`global.priorityClassName`, `global.leaderElection.namespace`) while others were missing (`webhook.affinity`). Some were missing documented default values. Signed-off-by: Lachlan Cooper <lachlancooper@gmail.com>	2019-10-03 15:35:25 +10:00
James Munnelly	534e36e362	Bump controller-tools to set x-kubernetes-preserve-unknown-fields correctly Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-02 19:44:14 +01:00
jetstack-bot	2f03013a64	Merge pull request #2135 from JoshVanL/update-docs-webhook-v0.11 Updates documentation to remove outdated information and namespace validation	2019-10-02 19:17:11 +01:00
JoshVanL	7965be9b41	Adds from comments Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-10-02 17:48:37 +01:00
JoshVanL	832e20ae29	Adds URISANs field to Certificate Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-10-02 17:48:37 +01:00
James Munnelly	507d45279f	Bump version strings for v0.11.0-beta.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-02 17:29:18 +01:00
jetstack-bot	97344e6a35	Merge pull request #1854 from ArchiFleKs/psp chart: support podsecuritypolicy	2019-10-02 17:21:11 +01:00
jetstack-bot	b91b7d8d3f	Merge pull request #2097 from JoshVanL/status-subresource Adds status sub resource and changes updates	2019-10-02 16:40:11 +01:00
Kevin Lefevre	a549b601d8	chart: support podsecuritypolicy Signed-off-by: Kevin Lefevre <lefevre.kevin@gmail.com>	2019-10-02 16:23:23 +01:00
JoshVanL	ddd6e17f70	Updates documentation to remove outdated information and removes validation=false on the cert-manager namespace Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-10-01 16:10:06 +01:00
JoshVanL	94d077a5fb	Adds status sub resource and changes updates Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-09-30 13:47:50 +01:00
JoshVanL	4eb6335c76	Support out of tree issuers in ingress-shim Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-09-27 13:54:39 +01:00
jetstack-bot	eb61adf0fc	Merge pull request #2123 from munnerz/011-upgrade Add provisional upgrade notes for v0.11 & bump version strings	2019-09-27 12:52:27 +01:00
James Munnelly	a3aaeba1e6	Move crd generation macro into hack/build Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-27 12:07:08 +01:00
James Munnelly	3de186305f	Bump version strings for v0.11.0-alpha.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-27 11:22:58 +01:00
James Munnelly	e44bef7f03	Update hack scripts for vendorless build and tidy up invocations Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-26 12:56:15 +01:00
jetstack-bot	816bbf54d5	Merge pull request #2040 from JoshVanL/vault-k8s-auth Vault k8s auth	2019-09-25 11:04:31 +01:00
jetstack-bot	9dd6b10730	Merge pull request #2086 from serialx/serviceaccount-annotations Add service account annotations to helm chart	2019-09-24 12:09:40 +01:00
Adam Kunicki	7058dfc687	Added Kubernetes authentication type for Vault Issuer Signed-off-by: Adam Kunicki <adam@streamsets.com>	2019-09-23 13:33:29 +01:00
James Munnelly	75a65de98a	Update deployment manifests for new API group Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-23 12:06:13 +01:00
James Munnelly	d8d7d8fd0b	Update RBAC rules Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-23 10:07:53 +01:00
James Munnelly	71ccc0e72c	Update CRD manifests Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-23 10:07:53 +01:00
James Munnelly	58754abf37	Refactor codebase for v1alpha2 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-20 16:22:43 +01:00
Brian Hong	520d9bda5e	Add service account annotations to helm chart Signed-off-by: Brian Hong <sungjinhong@devsisters.com>	2019-09-20 20:58:54 +09:00
James Munnelly	f45507cd18	Update generated files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-19 13:13:14 +01:00
jetstack-bot	c432b8d76d	Merge pull request #2041 from munnerz/rewrite-orders-controller Rewrite orders controller and reduce ACME API usage	2019-09-11 10:13:36 +01:00
James Munnelly	ea2b71a6b6	Update codegen Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-10 14:46:55 +01:00
Wellington F Silva	26d261e223	Fix for the issue https://github.com/jetstack/cert-manager/issues/2055 Signed-off-by: Wellington F. Silva <wsilva@usp.br>	2019-09-09 18:56:48 -03:00
James Munnelly	2cebc6c2dd	Update codegen Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-07 13:38:30 +01:00
James Munnelly	9dc927b04e	Fix-up manifests and upgrade guide for v0.10 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-02 12:38:45 +01:00
James Munnelly	5eefde8e46	Add v0.10.0 release notes and bump versions Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-02 11:57:51 +01:00
stuart.warren	7eb1e34e48	feat: enable certificate keyusages Enable users to request x509 key usages and extended key usages when defining a certificate or certificate signing request fixes: #301 Signed-off-by: stuart.warren <stuart.warren@ocado.com>	2019-08-31 01:00:00 +01:00
James Munnelly	ec8df6d6df	Add mutating webhook definition Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-21 13:11:01 +01:00
James Munnelly	b8834aa0b3	Tidy up validating webhook definition Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-21 13:11:01 +01:00
James Munnelly	00410e3831	Switch to use new webhook handlers Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-21 13:10:31 +01:00
JoshVanL	77da54c3d8	release-0.9 -> release-0.10, v0.10.0 -> v0.10.0-alpha.0 Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-16 13:23:27 +01:00
JoshVanL	72cc7b865c	Bump cert-manager version strings v0.9.0 -> v0.10.0 Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-16 11:51:36 +01:00
James Munnelly	3ad62b2bb9	Address review feedback Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-15 16:22:04 +01:00
James Munnelly	f2ff2e4005	Use webhookbootstrap controller instead of pki.yaml for webhook TLS Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-15 09:52:55 +01:00
James Munnelly	adc737e274	Merge webhook chart into main chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-14 19:36:56 +01:00
jetstack-bot	0c5694723f	Merge pull request #1979 from JoshVanL/cr-failure-time Adds CertificateRequest FailureTime	2019-08-13 20:50:15 +01:00
jetstack-bot	03e742b258	Merge pull request #1970 from mogaal/master Improve ServiceMonitor resource by adding custom namespace and custom labels	2019-08-12 19:47:15 +01:00
JoshVanL	e41a4de877	Update deploy CRDs Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-12 14:19:34 +01:00
Alejandro Garrido Mota	d48ea932aa	Improve ServiceMonitor resource by: - Adding custom namespace - Custom labels Signed-off-by: Alejandro Garrido Mota <garridomota@gmail.com>	2019-08-06 15:13:11 +01:00
Moritz Johner	591587273e	feat: add option to assume-role in route53 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>	2019-08-03 17:37:25 +02:00
James Munnelly	987967ce02	Add omitempty to spec and status fields Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-02 16:23:20 +01:00
jetstack-bot	465541a624	Merge pull request #1942 from Starefossen/helm/servicemonitor-labels helm: fix lables and add Service for Prometheus ServiceMonitor	2019-08-02 14:24:14 +01:00
James Munnelly	8055f06758	Fix enum type validation schema Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-02 13:55:40 +01:00
Hans Kristian Flaatten	a751a46563	helm: add correct lables and service for Prometheus ServiceMonitor Signed-off-by: Hans Kristian Flaatten <hans.flaatten@evry.com>	2019-07-31 10:59:48 +02:00
jetstack-bot	7975c92442	Merge pull request #1936 from Starefossen/patch-1 chart: fix formatting of values table in README.md	2019-07-30 11:17:33 +01:00
Hans Kristian Flaatten	5e1807d8d0	chart: fix formatting of values table in README.md	2019-07-29 16:37:54 +02:00
James Munnelly	f6f3ac08d1	Set 'scope' on ClusterIssuer resource type Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-26 17:30:29 +01:00
James Munnelly	810018192c	Use newer controller-tools patch Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-26 16:10:19 +01:00
James Munnelly	8841fadc51	Run //hack:update-crds Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-25 14:57:51 +01:00
James Munnelly	2cbc089881	Bump version strings for v0.9.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-23 14:37:05 +01:00
James Munnelly	5bd0a37686	Update Deployment manifests to use apps/v1 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-22 13:40:13 +01:00
JoshVanL	ccb7419160	Bump version numbers for v0.9.0-alpha.0 to v0.9.0-beta.0 Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-17 14:59:40 +01:00
jetstack-bot	13ebd873d9	Merge pull request #1860 from JoshVanL/cr-group-ref Include Group name in IssuerRef for CertificateRequest controller ownership distinction	2019-07-09 14:10:04 +01:00
JoshVanL	c949b01aac	Adds Group to CertificateRequest IssuerRef to distinguish controller ownership Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-08 14:33:11 +01:00
James Munnelly	7122a84ad3	Bump version strings for v0.9 alpha Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-08 14:14:01 +01:00
jetstack-bot	c6cd522a6a	Merge pull request #1836 from JoshVanL/ca-issuer-cr-controller Add alpha CertificateRequest controller for CA Issuer type	2019-07-08 14:11:34 +01:00
jetstack-bot	391737fea2	Merge pull request #1828 from aegershman/patch-1 enable-certificate-owner-ref chart placeholder	2019-07-05 16:27:49 +01:00
jetstack-bot	9d418eae25	Merge pull request #1818 from cheukwing/issue-1812 Add validation for CommonName and DNSNames length	2019-07-05 16:11:57 +01:00
jetstack-bot	e2424c6662	Merge pull request #1769 from cpanato/GH-914 Replace labels to use the newer ones	2019-07-05 14:23:49 +01:00
James Munnelly	34e4214ac2	Set max commonName length to 64 characters Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-04 21:53:52 +01:00
Michael Tsang	d010731838	Fix long domain tests Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-07-04 18:10:38 +01:00
Michael Tsang	44cee04c17	Add validation for commonname and dnsnames length Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-07-04 18:10:38 +01:00
JoshVanL	bccb6541b1	Return nil, if CR failed. Update tests and remove dead code Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-04 14:26:08 +01:00
jetstack-bot	7cead3d9e6	Merge pull request #1806 from munnerz/acme-selector-unit-tests Add support for dnsZones in ACME solver selectors & rewrite selection logic	2019-07-04 11:08:37 +01:00
Carlos Panato	a905cc2c0c	add back the app label Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2019-07-04 10:56:35 +02:00
JoshVanL	89189457a0	Adds rbac rules for certificaterequests in deploy Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 19:03:44 +01:00
Carlos Panato	ea60750b43	Replace labels to use the newer ones Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2019-07-03 16:16:33 +02:00
jetstack-bot	8e54b32d6e	Merge pull request #1763 from cheukwing/issue-1667 Add handling of updates to ACME email field in Issuers	2019-07-03 13:04:30 +01:00
jetstack-bot	be95598d20	Merge pull request #1505 from DirectXMan12/feature/certs-in-conv-webhook Add support for CRDs to the CA injector	2019-07-03 12:27:31 +01:00
Aaron Gershman	8b15a49535	enable-certificate-owner-ref chart placeholder Leaves commented out arg reference for enabling certificate-owner feature flag	2019-06-26 19:10:53 -05:00
James Munnelly	8a0fbf8868	Update CRDs and reference docs Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 15:18:30 +02:00
JoshVanL	1c092cf299	Adds CertificateRequest resource Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-06-25 10:03:26 +01:00
Michael Tsang	ab9d121d9f	Add configurable nodeselector for cainjector and webhook Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-18 16:42:36 +01:00
jetstack-bot	84770edfa7	Merge pull request #1796 from munnerz/bump-081 Bump version numbers for v0.8.1	2019-06-18 12:01:17 +01:00
Crystal-Chun	4f35c56443	Allows certificates to use PKCS#8 Issue 1155 (#1308 ) * Added KeyEncoding spec value to Certificate type. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added validation for Certificate Spec field KeyEncoding. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added Encoding PKCS8 function for encoding private keys in generate.go. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Modified the call to the private key encoding function for each issuer in issue.go to pass in the extra KeyEncoding field. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added case for decoding pkcs8 key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Converting decoded PKCS8 key into crypto.Signer. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added debugging log statements for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Log messages for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added logs for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added debug logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Add debug logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Modified keys package. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the key converter to the ssh package. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Testing decoding as pkcs1 key instead. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Trying to convert to crypto.Signer for PKCS8. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Converting to rsa.PrivateKey. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed return to type private key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changing parsing. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Cleaned up logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed logging info. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed debug logging. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fix parse test for new pkcs8 support. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed extra lines. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed extra lines and spaces. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed duplicate PKCS8 functions. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the KeyEncoding field from an int to a string. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed issue.go for issuers to pass in the certificate when encoding private key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Corrected capitalization of Spec. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the error message to use the correct variable. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed selfsigned issue.go to pass in certificate object instead of the keyEncoding. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed error format. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed test to pass in certificate variable into encoding private key function. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed syntax issue. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed parameter for encode private key function in parse_test.go. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed parse test for encode private key function. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed invalid syntax. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Moved the if statement. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Cleaned up go-fmt errors. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Ran bazel run //hack:update-reference-docs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed encode private key to take keyEncoding instead of certificate. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed setting keyEncoding for ca issue test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixing passing in the correct type for encoding private key. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixing passing in the correct type for encoding private key. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed parameter passed into encode private key for parse test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added unit test for encoding different private key types. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed key encoding field from existing test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added KeyEncoding spec value to Certificate type. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added validation for Certificate Spec field KeyEncoding. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added Encoding PKCS8 function for encoding private keys in generate.go. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Modified the call to the private key encoding function for each issuer in issue.go to pass in the extra KeyEncoding field. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added case for decoding pkcs8 key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Converting decoded PKCS8 key into crypto.Signer. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added debugging log statements for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Log messages for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added logs for decoding private keys. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added debug logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Add debug logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Modified keys package. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the key converter to the ssh package. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Testing decoding as pkcs1 key instead. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Trying to convert to crypto.Signer for PKCS8. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Converting to rsa.PrivateKey. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed return to type private key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changing parsing. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Cleaned up logs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed logging info. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed debug logging. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fix parse test for new pkcs8 support. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed extra lines. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed extra lines and spaces. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed duplicate PKCS8 functions. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the KeyEncoding field from an int to a string. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed issue.go for issuers to pass in the certificate when encoding private key. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Corrected capitalization of Spec. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed the error message to use the correct variable. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed selfsigned issue.go to pass in certificate object instead of the keyEncoding. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed error format. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed test to pass in certificate variable into encoding private key function. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed syntax issue. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed parameter for encode private key function in parse_test.go. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed parse test for encode private key function. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed invalid syntax. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Moved the if statement. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Cleaned up go-fmt errors. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Ran bazel run //hack:update-reference-docs. Signed-off-by: Crystal Chun <crystalchun@crystals-mbp.raleigh.ibm.com> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Changed encode private key to take keyEncoding instead of certificate. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed setting keyEncoding for ca issue test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixing passing in the correct type for encoding private key. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixing passing in the correct type for encoding private key. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed parameter passed into encode private key for parse test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added unit test for encoding different private key types. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed key encoding field from existing test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed syntax error for declaring constant. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Moving private key all to one line. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added commas after each test case and changed the private key to a pkcs1 rsa private key. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed test errors. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added default error. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Predefined actualEncoding variable. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Undeclared actualEncoding variable. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Declared actualEncoding variable to nil. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Declared actualEncoding variable to empty key encoding type. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixed unit test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Ran update go-fmt. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Added e2e test for pkcs8 certificate. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Removed unused variable. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Creating issue in pkcs8 e2e test. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Fixing no new variables on the left side of := for err variable. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * Updated docs to mention the key encoding field. Signed-off-by: Crystal Chun <crystalchun@Crystals-MacBook-Pro.local> * change venafi issuer to support different cert encoding Signed-off-by: Daniel Morsing <dmo@jetstack.io> * update crds Signed-off-by: Daniel Morsing <dmo@jetstack.io>	2019-06-18 11:34:03 +01:00
James Munnelly	d2be1375b2	Bump version numbers for v0.8.1 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-18 10:30:55 +01:00
Solly Ross	95ac5a498c	Add support for CRDs to the CA injector This adds support for the CRD conversion webhook configuration to the CA injector controller. Signed-off-by: Solly Ross <sollyross@google.com>	2019-06-13 13:31:42 -07:00
Michael Tsang	092e9c08e8	Add LastRegisteredEmail field to ACMEIssuerStatus, to track the latest registered ACME account Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-12 09:42:32 +01:00
Hans Kristian Flaatten	e4ae058247	Add support for Prometheus Operator ServiceMonitor config in Helm Chart Close #1682 Signed-off-by: Hans Kristian Flaatten <hans.flaatten@evry.com>	2019-06-08 07:45:28 +02:00
jetstack-bot	bb0f479638	Merge pull request #1658 from munnerz/tidyup-rbac Split up RBAC permissions and make them more granular	2019-06-05 12:02:40 +01:00
James Munnelly	912ec4af48	Add logo to Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-20 13:33:47 +02:00
James Munnelly	13df02656c	Split up RBAC permissions and make them more granular Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-08 16:50:44 +01:00
James Munnelly	382d8c1d80	Bump version numbers for v0.8.0-beta.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-07 13:10:21 +01:00
Daniel Morsing	71c87c92d1	make email address an optional field in ACME issuers Signed-off-by: Daniel Morsing <dmo@jetstack.io>	2019-05-07 11:04:23 +01:00
Marc Bihlmaier	7b1c25895b	Fix missing line-feeds in Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 16:08:53 +01:00
James Munnelly	111a26be99	Bump fake chart version to v0.1.0 to avoid ct issues Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 13:28:51 +01:00
James Munnelly	d55b04df91	Update README text in manifests directory Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 12:19:24 +01:00
James Munnelly	023502bd2c	Remove generated static manifests from the repo Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 11:16:25 +01:00
James Munnelly	c5d9830d30	Remove deploy-gen scripts Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 11:16:25 +01:00
James Munnelly	735262931c	Set Helm chart versions to v0.0.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 11:16:25 +01:00
James Munnelly	b0b2ff0b71	Set default image tags to chart appVersion Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 11:16:25 +01:00
James Munnelly	93a1630b7d	Fix chart version accidentally being ahead Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-02 12:15:21 +01:00
Julien Godin	240f3fc293	Regenerate static file and bump version Signed-off-by: Julien Godin <julien.godin@camptocamp.com>	2019-05-02 08:00:30 +02:00
James Munnelly	7724c46481	Update the crds script link Co-Authored-By: JGodin-C2C <40758407+JGodin-C2C@users.noreply.github.com> Signed-off-by: Julien Godin <julien.godin@camptocamp.com>	2019-05-02 07:56:56 +02:00
Julien Godin	71fdf302be	Regenerate static files Signed-off-by: Julien Godin <julien.godin@camptocamp.com>	2019-05-02 07:56:56 +02:00
Julien Godin	e11456b149	Update documentation for openshift Signed-off-by: Julien Godin <julien.godin@camptocamp.com>	2019-05-02 07:56:22 +02:00
Julien Godin	4871ac3f43	Fix RBAC for openshift and add openshift compatibility Signed-off-by: Julien Godin <julien.godin@camptocamp.com>	2019-05-02 07:56:22 +02:00
jetstack-bot	e0474fb27f	Merge pull request #1450 from munnerz/acme-config-on-issuer Add 'solvers' configuration to ACME Issuer	2019-05-01 17:56:09 +01:00
jetstack-bot	667e98b866	Merge pull request #1615 from munnerz/0.8-bump Bump manifests and docs for v0.8	2019-05-01 17:41:09 +01:00
jetstack-bot	a3921f55ea	Merge pull request #1616 from munnerz/escape-resource-def Fix string escaping in CRD additionalPrinterColumns	2019-05-01 17:17:14 +01:00
James Munnelly	daee3f1cde	Run 'bazel run //hack:update-crds' Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 16:56:05 +01:00
James Munnelly	71eda5a7d5	Bump manifests and docs for v0.8 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 16:53:10 +01:00
James Munnelly	057549a38e	Regenerate files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 14:24:00 +01:00
Tommy Nguyen	4b4742d724	Add log level (#1527 ) * Add log level Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Address comments Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Add log level for cainjector Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Change order Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Update chart version Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Update chart version Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Bump chart version Signed-off-by: Tuan Nguyen <me@tuannvm.com> * Fix typo Signed-off-by: Tuan Nguyen <me@tuannvm.com>	2019-04-30 15:54:48 +01:00
snobu	ca725be382	Fix escape in resource def Signed-off-by: snobu <foo@snobu.org> Fixes https://github.com/jetstack/cert-manager/issues/1473	2019-04-24 16:16:34 +03:00
James Munnelly	918db4f0f7	Update generated files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-24 10:51:14 +01:00
Carlos Panato	bbc0cc514a	update per feedback Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2019-04-17 13:20:32 +02:00
Carlos Panato	88c39e36bf	fix typo Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2019-04-13 15:28:12 +02:00
James Munnelly	208009151b	Bump manifests for v0.7.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-07 19:34:11 +00:00
James Munnelly	3698cee01e	Update references to Helm chart repo with charts.jetstack.io Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-06 14:46:23 +00:00
jetstack-bot	98f5fc0232	Merge pull request #1427 from munnerz/bump-0.7-beta Update versions for v0.7.0-beta.0	2019-03-01 22:33:49 +00:00
jetstack-bot	5e3c1a813b	Merge pull request #1250 from munnerz/venafi add Venafi Cloud & TPP issuer type	2019-03-01 19:42:38 +00:00
James Munnelly	dc080b155f	Update versions for v0.7.0-beta.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-01 17:14:43 +00:00
James Munnelly	2f67c78f62	Address review feedback Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-01 14:37:11 +00:00
James Munnelly	a16816cc2b	Run //hack:update-crds Signed-off-by: James Munnelly <james.munnelly@jetstack.io>	2019-03-01 13:18:45 +00:00
James Munnelly	63f4f48304	Make injecting APIServer CA optional in Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 20:50:26 +00:00
James Munnelly	984262d6f4	Use inject-apiserver-ca annotation for webhook Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 17:00:32 +00:00
James Munnelly	d98458d0f0	Update chart docs and remove unused var Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 15:00:55 +00:00
James Munnelly	c6ec85ea54	Remove erroneous volume mount Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 14:52:54 +00:00
James Munnelly	6110f3d27b	Additional Helm chart fixes Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 10:47:45 +00:00
James Munnelly	66dcc8f97c	Use cainjector for webhook APIService Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-27 15:38:57 +00:00
James Munnelly	f534cae83c	Reduce RBAC permissions on Certificates and Secrets Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-27 15:26:23 +00:00
James Munnelly	80ff737bd9	Move cainjector into its own subchart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-27 15:26:23 +00:00
James Munnelly	f90d145688	Rename to cainjector Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-27 15:26:23 +00:00
James Munnelly	a0d6b78d31	Bump chart version Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-27 14:44:56 +00:00
Solly Ross	8eb88d451b	Deployment files for CA Injector This adds deployment files for the CA injector to the cert-manager controller chart. It reuses as much as possible from the existing deployment options. Signed-off-by: Solly Ross <sollyross@google.com>	2019-02-26 21:47:35 -08:00
James Munnelly	3737966e9b	Remove nonexistent flag from webhook deployment Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-22 12:50:09 +00:00
James Munnelly	f3bcb28f35	Bump files for v0.7.0-alpha.0 Signed-off-by: James Munnelly <james.munnelly@jetstack.io>	2019-02-20 14:15:17 +00:00
James Munnelly	0e8f93074c	Bump chart version and generate static manifests Signed-off-by: James Munnelly <james.munnelly@jetstack.io>	2019-02-20 11:05:16 +00:00
--replace-all	96c5c5168c	[Add] metrics scrapping Signed-off-by: --replace-all <matthieu.paret@lifen.fr>	2019-02-20 11:05:06 +00:00
jetstack-bot	cba4b5053e	Merge pull request #1339 from reactiveops/sudermanjr/fix-1283 [chart] Adding rbac creation flag to webhook	2019-02-19 11:55:30 +00:00
Andrew Suderman	ba92781c75	Adding rbac creation flag to webhook. Fixes #1283 Signed-off-by: Andrew Suderman <andrew@sudermanjr.com> Updating webhook chart version Signed-off-by: Andrew Suderman <andrew@sudermanjr.com> Changing to global rbac.create Signed-off-by: Andrew Suderman <andrew@sudermanjr.com> README update and version bump Signed-off-by: Andrew Suderman <andrew@sudermanjr.com> Regenerated deployment yaml Signed-off-by: Andrew Suderman <andrew@sudermanjr.com>	2019-02-15 15:32:20 -07:00
jetstack-bot	bfafc7354e	Merge pull request #1322 from munnerz/gen-validation-schema Generate CRDs using controller-tools, including validation schema	2019-02-13 16:35:07 +00:00
James Munnelly	8e582e1519	Bump chart version Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-07 21:08:28 +00:00
James Munnelly	c3c0ef1ebe	Update docs links to docs.cert-manager.io Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-07 21:06:52 +00:00
James Munnelly	74172314bc	Run //hack:update-crds Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 15:33:31 +00:00
James Munnelly	2ba0c2f999	Run //hack:update-crds Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 14:57:56 +00:00
James Munnelly	c69e999f26	Add optional tags and enum schema values Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 14:57:14 +00:00
James Munnelly	ce3d565d69	Use forked version of controller-tools Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 13:25:17 +00:00
James Munnelly	e29c31f9db	Run //hack:update-crds Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 01:52:31 +00:00
James Munnelly	ea8231259e	noop: rearrange CRDs to make review easier Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 01:52:31 +00:00
James Munnelly	9f5653ebac	Bump for v0.6.1 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-05 13:44:36 +00:00
James Munnelly	e61accbeef	Fix 'selfsigned' key on webhook issuer Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-31 21:01:16 +00:00
Simon Rüegg	a8e32ed1a7	Bump chart version Signed-off-by: Simon Rüegg <simon@rueggs.ch>	2019-01-29 20:42:08 +01:00
James Munnelly	30b39fa0f2	Run 'bazel run //hack:update-deploy-gen' Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-29 20:35:19 +01:00
Simon Rüegg	613858aa6d	Add RBAC rules for finalizers For the cert-manager to be able to set ownerReferences, the RBAC rules for finalizers need to be in place. Fixes #1257 Signed-off-by: Simon Rüegg <simon.ruegg@vshn.ch>	2019-01-29 20:35:19 +01:00
James Munnelly	457632deaf	Run 'bazel run //hack:update-deploy-gen' Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-29 13:01:35 +00:00
James Munnelly	30e7d75f2c	Use long-lived certificates for the webhook component Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-29 13:01:22 +00:00
James Munnelly	948a2cf77c	Add more OWNERS files with auto-labels Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-24 19:38:31 +00:00
James Munnelly	39ed0fbe6e	Add note about disabling validation on existing namespaces to Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-24 11:24:08 +00:00
James Munnelly	22736f1a9c	Add missing global section to webhook values.yaml Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 18:19:59 +00:00
James Munnelly	7a497a2106	Update Chart.yaml in webhook Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 18:13:01 +00:00
James Munnelly	7ae818ae2e	Bump version strings for v0.6.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 16:29:31 +00:00
James Munnelly	7431dafb3a	Generate static manifest with webhook disabled Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 16:11:53 +00:00
James Munnelly	8531947dc7	Bump chart version and fix chart test script Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 12:15:21 +00:00
James Munnelly	761fb4c4da	Set backoffLimit for ca-sync webhook job Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-22 12:09:21 +00:00
James Munnelly	4f3cf64601	Bump Helm chart version Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-18 13:38:42 +00:00
Tobias Jakobsson	923523a527	securityContext to cert-manager deployment pods Signed-off-by: Tobias Jakobsson <tobias.jakobsson@elastx.se>	2019-01-18 13:37:59 +00:00
Zadkiel Aharonian	9fe05cc3d2	Fix references for chart path Signed-off-by: Zadkiel Aharonian <hello@zadkiel.fr>	2019-01-17 18:56:47 +01:00
Zadkiel Aharonian	996c403a10	Move chart from chart to charts/cert-manager Signed-off-by: Zadkiel Aharonian <hello@zadkiel.fr>	2019-01-17 18:56:47 +01:00
James Munnelly	f895aca347	Bump Helm chart version for beta.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-17 15:46:20 +00:00
James Munnelly	303a47e848	Remove DNS Names & CN from cert printer columns Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-16 19:11:44 +00:00
James Munnelly	40adab2b49	Update OWNERS files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-16 16:03:52 +00:00
Guillaume Smaha	20b70c79c8	Remove duplicate lines for affinity and tolerations Signed-off-by: Guillaume Smaha <guillaume.smaha@gmail.com>	2019-01-14 10:53:08 -05:00
James Munnelly	f39af7d5b1	Bump for v0.6.0-alpha.1 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-14 10:36:40 +00:00
jetstack-bot	e67e4f08ed	Merge pull request #1190 from Art3mK/chart-priority-class-option feat(helm chart): add priorityClassName option	2019-01-12 15:58:07 +00:00
jetstack-bot	7667930f8e	Merge pull request #1175 from marcostvz/imagepullsecrets [chart] Adding imagePullSecrets to Service Account	2019-01-12 15:44:07 +00:00
James Munnelly	3e84fe9a46	Use Ready condition text in printer columns Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-11 09:45:02 +00:00
Artem Kajalainen	8f122f761b	docs(helm chart): update readme Signed-off-by: Artem Kajalainen <artem.kajalainen@gofore.com>	2019-01-11 10:32:46 +02:00
Artem Kajalainen	9a81c65f76	feat(helm chart): use priorityClassName for webhook subchart also Signed-off-by: Artem Kajalainen <artem.kajalainen@gofore.com>	2019-01-11 10:31:06 +02:00
James Munnelly	ba832fefc8	Add additionalPrinterColumns fields to CustomResourceDefintions Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-10 21:40:10 +00:00
James Munnelly	c4a794d163	Include CRD and Namespace resources in static deployment manifest file Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-10 16:54:45 +00:00
Artem Kajalainen	83dcd0118f	fix: update static manifest Signed-off-by: Artem Kajalainen <artem.kajalainen@gofore.com>	2019-01-10 17:25:29 +02:00
Artem Kajalainen	6b3558460d	style: removed empty line Signed-off-by: Artem Kajalainen <artem.kajalainen@gofore.com>	2019-01-10 08:10:51 +02:00
Artem Kajalainen	60537ce557	feat(helm chart): add priorityClassName option Signed-off-by: Artem Kajalainen <artem.kajalainen@gofore.com>	2019-01-10 08:07:35 +02:00
Marcos Estevez	be532c8606	Merge branch 'master' into imagepullsecrets Signed-off-by: Marcos Estevez <marcos.stvz@gmail.com>	2019-01-09 09:43:29 +01:00
Chris Boot	b66a84c5dd	Update static deployment Signed-off-by: Chris Boot <bootc@bootc.net>	2019-01-08 23:40:51 +00:00
Chris Boot	f2a672daeb	Bump chart version Signed-off-by: Chris Boot <bootc@bootc.net>	2019-01-08 23:40:34 +00:00
Chris Boot	e1e30f6c18	Fix CronJob schedule for in webhook chart The current schedule (* * /24 *) effectively causes the CronJob to run on the 24th of every month only, and on the 24th it runs every single minute (1440 times). The itention was to have it run daily, but I suspect that running it weekly should be plenty good enough. This fixes helm/charts#8077. Signed-off-by: Chris Boot <bootc@bootc.net>	2019-01-08 22:51:31 +00:00
James Munnelly	3464f4363a	Bump versions for 0.6.0-alpha.0 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-08 16:45:06 +00:00
Marcos Estevez	8a3edf5632	Updating manifest Signed-off-by: Marcos Estevez <marcos.stvz@gmail.com>	2019-01-08 15:59:03 +01:00
Marcos Estevez	d7723fb0f4	[chart] Adding imagePullSecrets to Service Account Signed-off-by: Marcos Estevez <marcos.stvz@gmail.com>	2019-01-08 15:57:46 +01:00
James Munnelly	ef59c419b6	Fix link in Helm chart README Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-14 09:05:45 -08:00
James Munnelly	fb0e21eea0	Add extra 'install CRDs' step to Helm chart README Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-06 11:13:28 +00:00
James Munnelly	bb7d2f5f4e	Remove the Namespace resource from Helm chart Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 19:08:35 +00:00
James Munnelly	779cc0ae1f	Update getting started guide Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 18:26:49 +00:00
James Munnelly	cdd513c6c5	Remove CRDs from Helm chart and introduce 00-crds.yaml file Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 18:11:13 +00:00
James Munnelly	4283138a81	Move deployment generation values.yaml to deploy/manifests and don't generate without-rbac variants of manifests Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 16:29:26 +00:00
James Munnelly	dfa1a92366	Add .gitignore Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 16:20:44 +00:00
James Munnelly	5a17c58c03	Rearrange Helm charts into deploy/ and test/e2e/charts directories Signed-off-by: James Munnelly <james@munnelly.eu>	2018-12-04 16:19:49 +00:00

... 12 13 14 15 16 ...

970 Commits