cert-manager

Author	SHA1	Message	Date
Michael Tsang	9d8070d9af	Add base controller Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-05-23 13:45:08 +01:00
jetstack-bot	5a213cc5f0	Merge pull request #1698 from munnerz/ing-shim-copy-labels Copy labels from Ingress to Certificate resource in ingress-shim	2019-05-20 13:30:58 +01:00
James Munnelly	1d319f3cd4	Copy labels from Ingress to Certificate resource in ingress-shim Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-19 11:00:10 +02:00
James Munnelly	f77e5c1c89	Log warning Event if edit-in-place is enabled with new solver format Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-19 10:56:19 +02:00
Michael Tsang	a628b8f5a7	Use MaxConcurrentChallenges flag in scheduler Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-05-13 17:03:35 +01:00
Michael Tsang	2cc1c4df07	Add MaxConcurrentChallenges flag and associated structs to options Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-05-13 16:55:38 +01:00
James Munnelly	1268f76690	Make lastTransitionTime a pointer Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-02 14:59:52 +01:00
James Munnelly	6c3a5b3e73	Fix issue when migrating ingress-shim managed certificates from old to new format Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 18:45:59 +01:00
James Munnelly	7945a6b6a8	Remove anonymous function Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 17:14:34 +01:00
James Munnelly	55c6e6dda4	Update ingress-shim unit tests to handle new API config types Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 16:25:21 +01:00
James Munnelly	7e2bedbe17	Update ingress-shim unit tests to use test builder Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 16:25:17 +01:00
James Munnelly	bc52db91b6	Update ingress-shim to handle new format Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 15:21:50 +01:00
James Munnelly	fc6e3e5315	Remove extra check for certificate.spec.acme Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 14:24:37 +01:00
James Munnelly	220d39c17d	Update acmeorders controller to support both formats Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-01 14:24:00 +01:00
jetstack-bot	331df1b381	Merge pull request #1602 from munnerz/fix-update-loop Fix update loop due to changing notAfter struct	2019-05-01 12:44:25 +01:00
James Munnelly	064b710f02	Fix update loop due to changing notAfter struct Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-30 19:10:29 +01:00
James Munnelly	bbf4012e12	Handle expired challenge responses in acmechallenges controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-30 18:57:26 +01:00
jetstack-bot	570751236d	Merge pull request #1585 from munnerz/validate-caa-feature-gate Add feature gate for ValidateCAA functionality and default it to off	2019-04-30 14:17:48 +01:00
James Munnelly	49f587c844	Set Reason field on ACME challenges during Present/CleanUp Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-30 10:25:33 +01:00
James Munnelly	9906c0d946	Add feature gate for ValidateCAA functionality and default it to off To help avoid issues with the ValidateCAA functionality, this disables the CAA check by default and adds a new --feature-gates=ValidateCAA=true option to cert-manager-controller to allow enabling the previous behaviour in v0.7.0 and v0.7.1. Once issues with CNAMEd DNS names pointing to internal nameservers are resolved, this option will be defaulted to on. Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-25 15:10:05 +01:00
James Munnelly	25af59a0d5	Use v1beta1 API version in cainjector controller This resolves issues when running the cainjector on Kubernetes 1.9, as the 1.9 apiserver is not aware of the 'v1' API version. Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-24 11:19:24 +01:00
James Munnelly	af9bce7221	Add 'webhook' DNS01 provider type Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-18 17:19:32 +01:00
James Munnelly	942d6491d6	Pass StopCh and RESTClient to controller context Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-18 14:22:08 +01:00
James Munnelly	871ed4283b	Allow controller constructors to return errors Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-18 14:22:04 +01:00
Lennart Jern	dfb3954dba	Update cert if issuer doesn't match Signed-off-by: Lennart Jern <lennart.jern@gmail.com>	2019-03-29 20:32:59 +01:00
James Munnelly	aeaa3412ed	Fix controller test pkg Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:51 +00:00
James Munnelly	eaeefdf5b2	Update acmechallenges controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:51 +00:00
James Munnelly	c6c498338a	Update clusterissuers controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:51 +00:00
James Munnelly	6b24e9c966	Update cainjector Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:51 +00:00
James Munnelly	a13543013d	Use logr in pkg/util/kube Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
James Munnelly	d7c9d39e3c	Update issuers controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
James Munnelly	92713156ed	Update certificates controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
James Munnelly	708313ac4b	Update acmeorders controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
James Munnelly	5d73076db9	Update logs package for go-logr Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
jetstack-bot	5e3c1a813b	Merge pull request #1250 from munnerz/venafi add Venafi Cloud & TPP issuer type	2019-03-01 19:42:38 +00:00
jetstack-bot	687dcd0db7	Merge pull request #1420 from munnerz/cainjector-apiserverca cainjector: support injecting apiserver ca	2019-03-01 15:19:05 +00:00
James Munnelly	2f67c78f62	Address review feedback Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-01 14:37:11 +00:00
James Munnelly	c3f696fa1a	Add support for Venafi API types to certificates controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-01 13:00:55 +00:00
James Munnelly	1618ebde43	Fix loading apiserver caBundle Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 19:34:40 +00:00
jetstack-bot	334477ec73	Merge pull request #1392 from munnerz/gen-tmp-selfsigned Generate temporary certificate to appease ingress-gce	2019-02-28 19:20:03 +00:00
James Munnelly	b34adf88ff	cainjector: support injecting apiserver ca Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-28 16:45:26 +00:00
Solly Ross	42248a91d7	CA Injector Controller This implements a CA injector controller using controller-runtime. It looks at admission webhooks and APIServices with a particular annotation, and injects the CA data from certificates. Signed-off-by: Solly Ross <sollyross@google.com>	2019-02-26 21:47:34 -08:00
James Munnelly	dfabece6eb	Use a one-use CA to sign temporary certificates Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-25 20:48:13 +00:00
James Munnelly	cf2f9eac74	Generate a temporary certificate whilst waiting for Issuer to issue Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-25 17:48:22 +00:00
jetstack-bot	01903f06ba	Merge pull request #1384 from munnerz/unit-compare-reading Print unit test failures in action matchers as part of failure message	2019-02-22 18:16:38 +00:00
James Munnelly	439499561c	Remove dependence on k8s.io/ingress Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-22 12:34:52 +00:00
James Munnelly	2f30258f0e	Switch to klog Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-22 12:34:02 +00:00
James Munnelly	381bed1fd8	Print unit test failures in action matchers as part of failure message Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-20 17:27:31 +00:00
James Munnelly	fe2fcd4e83	go fmt Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-19 15:00:39 +00:00
James Munnelly	14a1b5373f	Update bazel files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-19 11:36:07 +00:00

1 2 3 4 5 ...

294 Commits