cert-manager

Author	SHA1	Message	Date
jetstack-bot	a67c23eded	Merge pull request #1879 from munnerz/new-certificate-controller Implement new Certificate controller that manages CertificateRequest resources	2019-07-17 12:25:30 +01:00
James Munnelly	2cee01af1d	Factor update secret sections out of processCertificate Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-17 11:05:50 +01:00
James Munnelly	088e196d82	Add experimental certificate request based controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-17 10:07:36 +01:00
James Munnelly	7edbd829c4	Refactor certificates controller to make methods shareable Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-17 10:04:40 +01:00
JoshVanL	6faa657483	Prefixes error->reason and correctly bubbles issuer kind to logs Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-17 09:42:59 +01:00
JoshVanL	8bbcf345c9	Changes CertificateRequest conditions to only Pending/Failed/Issued Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-16 15:31:12 +01:00
jetstack-bot	65138f5e8c	Merge pull request #1811 from cheukwing/issue-1679 Add Prometheus metrics for Certificate ready status	2019-07-15 17:52:04 +01:00
jetstack-bot	0b5f963bf9	Merge pull request #1884 from munnerz/order-csr-pem Encode CSR on Order into PEM format and properly handle decoding	2019-07-12 17:00:38 +01:00
James Munnelly	c6ceea4e81	Encode CSR on Order into PEM format and properly handle decoding Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-12 14:00:46 +01:00
Michael Tsang	b717292090	Rewrite if/else for nil selector Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-07-10 17:09:26 +01:00
Michael Tsang	adfb8703c8	Fix bug where solver with no selector causes nil pointer Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-07-10 15:34:24 +01:00
Michael Tsang	f3baab085e	Add UpdateCertificateStatus call, comment implementation Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-07-10 08:54:06 +01:00
JoshVanL	e41a8f1892	Adds not certmanager group ref bailout for certificates controller Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-09 13:14:58 +01:00
JoshVanL	c949b01aac	Adds Group to CertificateRequest IssuerRef to distinguish controller ownership Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-08 14:33:11 +01:00
jetstack-bot	c6cd522a6a	Merge pull request #1836 from JoshVanL/ca-issuer-cr-controller Add alpha CertificateRequest controller for CA Issuer type	2019-07-08 14:11:34 +01:00
James Munnelly	ed3efdebe0	orders: fire an Event when no acme solver matches an identifier being validated Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-04 22:14:35 +01:00
JoshVanL	bccb6541b1	Return nil, if CR failed. Update tests and remove dead code Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-04 14:26:08 +01:00
jetstack-bot	7cead3d9e6	Merge pull request #1806 from munnerz/acme-selector-unit-tests Add support for dnsZones in ACME solver selectors & rewrite selection logic	2019-07-04 11:08:37 +01:00
jetstack-bot	30d6664dc6	Merge pull request #1849 from munnerz/namespaced-factories Respect --namespace flag in rfc2136 provider	2019-07-04 10:10:38 +01:00
JoshVanL	3997d8b4fe	Adds more sync tests to CertificateRequest controller Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:43:33 +01:00
JoshVanL	80091063a1	Cleanup validation, logging and status reporting Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:43:33 +01:00
JoshVanL	3cc31075ef	Fixes CertificateRequest controller tests Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:43:14 +01:00
JoshVanL	b27a5d82f9	Move CSR decoding check to validation Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:42:03 +01:00
JoshVanL	6b1ff0148b	Adds certificate request base controller and CA issuer controller instance Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:42:03 +01:00
James Munnelly	5f5811b81e	Respect --namespace flag in rfc2136 provider Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-03 13:52:43 +01:00
jetstack-bot	1a014dde5e	Merge pull request #1764 from dreamteam-gg/allow-disabling-tmp-crt Allow disabling issuing temporary certificates	2019-07-03 12:27:39 +01:00
jetstack-bot	be95598d20	Merge pull request #1505 from DirectXMan12/feature/certs-in-conv-webhook Add support for CRDs to the CA injector	2019-07-03 12:27:31 +01:00
Artem Yarmoluk	9197acfefe	Allow disabling issuing temporary certificates Signed-off-by: Artem Yarmoluk <koolgen@gmail.com>	2019-06-30 21:57:57 +03:00
James Munnelly	c9bcfc2b62	Refactor label selector checker Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 16:52:15 +02:00
James Munnelly	cf8c12c5ea	Add unit tests for dnsZone selectors Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 15:18:30 +02:00
James Munnelly	e8c64e46cc	Add support for dnsZones in solver selector Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 15:18:30 +02:00
James Munnelly	77d9891650	Rewrite challengeSpecForAuthorization function Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 15:18:30 +02:00
James Munnelly	fc24b9afc9	Add unit tests for challengeSpecForAuthorization function Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 15:17:17 +02:00
James Munnelly	20b1343c88	Remove use of klog from more places Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-25 14:30:41 +02:00
James Munnelly	f8a798bd2b	update bazel files Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-19 15:33:57 +01:00
James Munnelly	442789113a	Refactor controllers to not reference BaseController Signed-off-by: James Munnelly <james@munnelly.eu>	2019-06-19 15:11:06 +01:00
jetstack-bot	8fa533c30c	Merge pull request #1681 from cheukwing/issue-1332 Clean up Prometheus metrics for deleted Certificates	2019-06-18 14:38:04 +01:00
jetstack-bot	f3bc4fad79	Merge pull request #1705 from cheukwing/issue-912 Add the removal of unrequired certificates	2019-06-18 12:01:04 +01:00
jetstack-bot	043a88cdd8	Merge pull request #1689 from cheukwing/issue-1558 Validate that only one Certificate is using a secretName per namespace	2019-06-17 20:21:57 +01:00
jetstack-bot	48cd58b23f	Merge pull request #1722 from cheukwing/issue-1003 Add BaseController as a refactoring of common controller code	2019-06-17 19:27:57 +01:00
Michael Tsang	9934593714	Add test and documentation regarding clockskew on notBefore Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-17 12:53:48 +01:00
Solly Ross	dc613f5dc3	[CA Injector] Don't requeue on deletes We need to silently ignore non-found on the initial get, otherwise we'll requeue on deletes. Signed-off-by: Solly Ross <sollyross@google.com>	2019-06-13 13:31:42 -07:00
Solly Ross	95ac5a498c	Add support for CRDs to the CA injector This adds support for the CRD conversion webhook configuration to the CA injector controller. Signed-off-by: Solly Ross <sollyross@google.com>	2019-06-13 13:31:42 -07:00
Michael Tsang	202d72c8c6	Add todo on certificate selector Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-07 10:01:06 +01:00
Michael Tsang	9b8e72aa6e	Add test for deletion of unrequired certificates Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-07 10:01:06 +01:00
Michael Tsang	82f658e078	Implement removal of unrequired certificates Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-07 09:29:15 +01:00
jetstack-bot	0a7a181808	Merge pull request #1670 from cheukwing/issue-1520 Ensure only the sole owner of a certificate can modify it	2019-06-06 21:09:03 +01:00
Michael Tsang	ed024dd0d1	Use metanamespace for key, remove exports, use reference to activecertificates Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-06 17:59:51 +01:00
Michael Tsang	7ab250af4f	Add mutex to RegisteredCertificates, call cleanup every minute Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-06 17:59:51 +01:00
Michael Tsang	1efd8c0261	Add CleanUp function to refresh certificate metrics Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-06-06 17:59:51 +01:00

1 2 3 4 5 ...

364 Commits