cert-manager

Author	SHA1	Message	Date
joshvanl	62dee4783e	Adds CertificateSigningRequest CA Issuer controller as optional controller Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-05-27 00:32:24 +01:00
irbekrm	b539cbea89	Use ConfigmapsLeases Multilock for controller's leader election Signed-off-by: irbekrm <irbekrm@gmail.com>	2021-05-17 18:19:38 +01:00
Jake Sanders	79d8d9cb7b	Revert "Merge pull request #3724 from inteon/istio-virtualservice-for-http01" This reverts commit `80f27739b5`, reversing changes made to `96604d02a3`. Signed-off-by: Jake Sanders <i@am.so-aweso.me>	2021-05-11 14:50:25 +01:00
Jake Sanders	423e82b65b	Revert "Merge pull request #3939 from JoshVanL/istio-api-to-internal-apis" This reverts commit `f2a74ade5e`, reversing changes made to `7ff54e61e9`. Signed-off-by: Jake Sanders <i@am.so-aweso.me>	2021-05-11 14:50:23 +01:00
joshvanl	01716e2907	Fixes stutter: istio.IsIstioInstalled -> istio.IsInstalled Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-04-29 11:42:21 +01:00
joshvanl	00ceff3421	Update bazel Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-04-29 11:36:49 +01:00
joshvanl	3af22cf6c6	Move istio util duncs to pkg/util/istio Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-04-29 11:35:41 +01:00
Inteon	2d7dfcb462	start DynamicSharedInformerFactory unconditionally; only listen for VirtualServices conditionally Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-04-28 09:20:49 +02:00
Inteon	624e2b9e69	add ACME HTTP01 Istio support Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-04-28 09:19:53 +02:00
joshvanl	8f5b03427c	Fix options_test.go boilerplate header Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-26 11:28:01 +00:00
joshvanl	6ef840972c	Change controller options to return a set of enabled controllers, and log enabled controllers on start Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-26 11:28:01 +00:00
joshvanl	5c3e02d7a5	Changes the controllers flag to allow disabling controllers. This is the same behaviour as kube-controller-manager Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-26 11:28:01 +00:00
joshvanl	0382c9d8b2	Adds a cert-manager-controller flag to disable controllers, for example, the certificaterequests-approver Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-26 11:28:01 +00:00
jetstack-bot	a8c75fab1a	Merge pull request #3773 from JoshVanL/certificate-revision-history-limit Certificate revision history limit	2021-03-26 11:13:58 +00:00
joshvanl	6957bc31df	Adds the CertificateRequest approver controller to cert-manager-controller Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-17 13:10:39 +00:00
joshvanl	c4b918c0aa	Adds RevisionManager controller to default enabled controller Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2021-03-15 14:54:35 +00:00
irbekrm	b852e97ffb	Removes the deprecated renew-before-expiry flag Signed-off-by: irbekrm <irbekrm@gmail.com>	2021-02-21 10:22:25 +00:00
jetstack-bot	cdc53b65cb	Merge pull request #3500 from meyskens/update-copy Update copyright to cert-manager project	2020-12-15 10:12:31 +00:00
Maartje Eyskens	ab0cd57dc5	Use The cert-manager Authors. Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-12-11 19:04:13 +01:00
jetstack-bot	2c521609de	Merge pull request #3477 from tharun208/feat/profiling Added profiling for controller	2020-12-11 14:11:10 +00:00
Maartje Eyskens	1788a9d758	Update copyright to cert-manager project Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-12-08 19:04:49 +01:00
Tharun	b67da63a4e	Added profiling for controller Signed-off-by: Tharun <rajendrantharun@live.com>	2020-11-22 12:15:52 +05:30
Richard Wall	a33abd2060	Plumb through the flag provided defaultRenewBeforeExpiryDuration Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2020-11-19 12:44:18 +00:00
Richard Wall	cc1412b252	Deprecate the --renew-before-expiry-duration flag Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2020-11-19 12:44:18 +00:00
Maartje Eyskens	7d1cd33081	Make resyncPeriod constant Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-22 10:25:10 +02:00
Maartje Eyskens	00d2b3b79e	Set the resync period to 10 hours Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-21 15:19:22 +02:00
Maartje Eyskens	560eac4b06	Update cmd/controller/app/options/options.go Signed-off-by: Maartje Eyskens <maartje@eyskens.me> Co-authored-by: Richard Wall <wallrj@users.noreply.github.com>	2020-10-16 16:43:13 +02:00
Maartje Eyskens	232f21db26	Validate API values not being 0 + following k8s naming + defaults Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-16 13:08:26 +02:00
Maartje Eyskens	7c87e93950	update burst description Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-14 17:49:19 +02:00
Maartje Eyskens	ebadd4cd28	Fix defaults, description and add validation Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-14 17:46:09 +02:00
Maartje Eyskens	5dfb4d409b	Make Kubernetes API QPS throtteling configurable Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-10-14 17:16:44 +02:00
Matthias Frey	2f2253afaf	make propagation check period configurable Signed-off-by: Matthias Frey <freym@users.noreply.github.com>	2020-09-24 11:28:49 +02:00
JoshVanL	c83ef5ee77	Fixes client-go logs to use infof Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-08-27 11:04:09 +02:00
Richard Wall	81eb53f597	./hack/update-all.sh Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2020-08-20 14:28:06 +01:00
Richard Wall	a70298180a	Run a script to update v1alpha2 usage to v1 Script is available at https://github.com/jetstack/cert-manager/pull/3201 Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2020-08-20 14:26:51 +01:00
Richard Wall	0388599674	Rename import to make way for corev1 and v1 api imports later Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2020-08-19 15:04:54 +01:00
Maartje Eyskens	3259fdfe9b	Implement feedback Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:42 +02:00
Maartje Eyskens	827ce9c5ad	Revert log levels on errors Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:42 +02:00
Maartje Eyskens	bdc8b346c6	Log NS as info Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:42 +02:00
Maartje Eyskens	86dee5ed41	Set error log levels Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:41 +02:00
Maartje Eyskens	fecd0b3518	Set all log levels for info Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:41 +02:00
Maartje Eyskens	9dd00905e9	Update klog Signed-off-by: Maartje Eyskens <maartje@eyskens.me> klog v2 Signed-off-by: Maartje Eyskens <maartje@eyskens.me>	2020-08-12 10:59:41 +02:00
jetstack-bot	f80d79c268	Merge pull request #2909 from JoshVanL/2952-move-to-cobra Move all commands into cobra	2020-07-07 12:30:04 +01:00
James Munnelly	9e2d6a514b	Move expcertificates into certificates package Signed-off-by: James Munnelly <james@munnelly.eu>	2020-07-01 12:16:25 +01:00
James Munnelly	2280480c02	Remove old certificates controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-07-01 11:46:13 +01:00
JoshVanL	7c26448442	Fix controller bug for not exiting on option error Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-06-26 13:46:49 +01:00
JoshVanL	e465329b80	Revert vault free port and expose listener port from metrics server Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-05-26 23:01:55 +01:00
JoshVanL	5539bf3495	Moves metrics controller into sub-package of ./controller/certificates and fix metrics listen address flag description Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-05-21 10:47:52 +01:00
JoshVanL	db24ca052b	Remove the Factory interface from ACME accounts, in favour of using package level funcs. This exposes BuildHTTPClient that instruments metrics, which is passed to NewClient. ACME issuer has reference to plumbed in metrics Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-05-21 10:44:37 +01:00
JoshVanL	3e7f7eb87e	Expose Prometheus listen address as a controller command line flag Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-05-18 18:21:03 +01:00
JoshVanL	8214cb4b70	Initialise new metrics implementation and pass through new instrumented ACME client Factory Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-05-18 17:44:36 +01:00
James Munnelly	b126a0c0e5	Use acme AccountRegistry throughout and tidy up ACME setup code Signed-off-by: James Munnelly <james@munnelly.eu>	2020-05-13 13:14:46 +01:00
JoshVanL	0657e34396	Moves cobra commands from cmd -> app Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-04-30 12:14:51 +01:00
JoshVanL	dcccdd39c5	Adds doc generation for cobra controlled ctl comands Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-04-30 12:14:48 +01:00
James Munnelly	67a93b4f22	Remove unused vars Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-21 17:58:18 +01:00
James Munnelly	ba33c823a3	Add 'keystores' stanza to CertificateSpec to allow dynamic keystore configuration Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-21 17:58:18 +01:00
James Munnelly	8aaca4a2ad	expcertificates: add readiness controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-20 15:08:31 +01:00
James Munnelly	cde13aa6fd	Add requestmanager controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-20 15:08:31 +01:00
James Munnelly	a53288b4c1	Enable keymanager and issuing controller with feature gate Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-16 19:10:41 +01:00
James Munnelly	dee93c4fb9	Add ExperimentalCertificateControllers feature gate Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-15 12:26:53 +01:00
James Munnelly	22344352c8	Add experimental 'trigger' controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-15 12:26:21 +01:00
jetstack-bot	fba7b09ac8	Merge pull request #2725 from JoshVanL/ctl-version cert-manager-ctl CLI with version	2020-04-08 12:45:15 +01:00
JoshVanL	49d3bde7eb	Move cmd signal handler into shared util Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2020-04-02 11:02:33 +01:00
James Munnelly	e36c1acf1c	Add '-ubi' suffix to AppVersion in UBI artifacts Signed-off-by: James Munnelly <james@munnelly.eu>	2020-04-01 19:34:34 +01:00
James Munnelly	822b9e17a0	Remove AdditionalRunFuncs from base controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-30 20:43:00 +01:00
James Munnelly	20ee4833dd	Remove webhookbootstrap controller Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-30 14:26:05 +01:00
James Munnelly	acff2b12bb	Fix JKS keystore functionality and add additional tests Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-23 10:02:42 +00:00
James Munnelly	0935277f3d	Remove old 'image' targets and update to consistently use //build targets Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-17 09:47:01 +00:00
James Munnelly	98bc0d52f9	Add --experimental-issue-jks flag to enable JKS bundle generation Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-04 15:33:22 +00:00
James Munnelly	e9374730c9	Add --experimental-issue-pkcs12 flag to enable PKCS12 bundle generation Signed-off-by: James Munnelly <james@munnelly.eu>	2020-03-04 10:02:21 +00:00
Josh Soref	d98d4f898e	spelling: separated Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>	2020-02-24 17:20:44 -05:00
James Munnelly	22f4f1e1f2	Add release-tars targets to construct cert-manager release artifacts Signed-off-by: James Munnelly <james@munnelly.eu>	2020-01-30 21:02:58 +00:00
Andrew Haines	3edb4c3c6c	Remove IP address validation on dns01-recursive-nameservers to allow domain names Signed-off-by: Andrew Haines <andrew@haines.org.nz>	2019-12-05 13:34:55 +00:00
jetstack-bot	1793e7b573	Merge pull request #2236 from munnerz/covered-images Add Bazel image targets with coverage enabled	2019-11-14 10:54:09 +00:00
James Munnelly	4266e11747	Remove calls to os.Exit and panic Signed-off-by: James Munnelly <james@munnelly.eu>	2019-11-13 17:38:33 +00:00
jetstack-bot	66d32a204f	Merge pull request #2242 from munnerz/cm-manifestlist-acmesolver No longer use arch-specific acmesolver image	2019-10-17 14:16:14 +01:00
chenjun.cj	fe6e446f43	enable cert-manager using --kubeconfig to connect API Server with kubeconfig file Signed-off-by: chenjun.cj <chenjun.cj@alibaba-inc.com>	2019-10-17 12:14:28 +08:00
James Munnelly	7eb2e5efa0	No longer use arch-specific acmesolver image Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-16 16:24:34 +01:00
James Munnelly	5057da1b89	Add Bazel image targets with coverage enabled Signed-off-by: James Munnelly <james@munnelly.eu>	2019-10-16 08:59:24 +01:00
JoshVanL	4eb6335c76	Support out of tree issuers in ingress-shim Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-09-27 13:54:39 +01:00
James Munnelly	fad13bfce1	Move image macro into hack/build Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-27 12:07:08 +01:00
James Munnelly	973f4aa424	Update codebase for external dependencies Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-26 12:52:43 +01:00
James Munnelly	58754abf37	Refactor codebase for v1alpha2 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-20 16:22:43 +01:00
James Munnelly	6a167cc9e6	Enable all CertificateRequest controllers by default Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-19 13:07:59 +01:00
James Munnelly	bc61194709	Remove deprecated code from ingress-shim controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-09-19 13:07:59 +01:00
James Munnelly	6052e0558e	Refactor base controller and allow Running additional informers Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-21 13:22:57 +01:00
JoshVanL	d96c7d2e1c	Adds venafi internal package with venafi CR controller Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-19 16:04:12 +01:00
jetstack-bot	8ab4dc1301	Merge pull request #1943 from JoshVanL/cr-acme Adds acme CertificateRequest controller	2019-08-17 00:34:00 +01:00
JoshVanL	e2b9b21766	Adds acme CertificateRequest controller with unit tests Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-15 17:18:11 +01:00
James Munnelly	5c17c2e37f	Add webhookbootstrap controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-08-14 21:27:36 +01:00
JoshVanL	60b349e162	Adds initial vault CR controller Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-13 23:34:17 +01:00
JoshVanL	46fd159f81	Register self signed CR controller Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-08-01 16:39:01 +01:00
James Munnelly	99bbc31386	Promote 'Clock' to be a field on controller context Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-26 12:30:23 +01:00
James Munnelly	32bc10710e	Update use of featuregate package Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-20 01:57:24 +01:00
James Munnelly	088e196d82	Add experimental certificate request based controller Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-17 10:07:36 +01:00
jetstack-bot	c6cd522a6a	Merge pull request #1836 from JoshVanL/ca-issuer-cr-controller Add alpha CertificateRequest controller for CA Issuer type	2019-07-08 14:11:34 +01:00
JoshVanL	ec28f8dc6e	Adds certificate request controller feature flag Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:43:14 +01:00
JoshVanL	6b1ff0148b	Adds certificate request base controller and CA issuer controller instance Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>	2019-07-03 15:42:03 +01:00
James Munnelly	5f5811b81e	Respect --namespace flag in rfc2136 provider Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-03 13:52:43 +01:00
James Munnelly	5a096b0b07	Fix lint failures and remove image target manual tag Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-02 18:26:12 +01:00
James Munnelly	de34f0410d	Use binary image targets to avoid building multiple architectures all the time Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-02 17:29:32 +01:00
James Munnelly	fd2dd16f75	Change bazel build to only build for current --platform Signed-off-by: James Munnelly <james@munnelly.eu>	2019-07-02 16:10:05 +01:00
Michael Tsang	2cc1c4df07	Add MaxConcurrentChallenges flag and associated structs to options Signed-off-by: Michael Tsang <michael.tsang@jetstack.io>	2019-05-13 16:55:38 +01:00
James Munnelly	500d8fbeb7	Create image bundles in multiarch_image target Signed-off-by: James Munnelly <james@munnelly.eu>	2019-05-03 11:16:25 +01:00
James Munnelly	9906c0d946	Add feature gate for ValidateCAA functionality and default it to off To help avoid issues with the ValidateCAA functionality, this disables the CAA check by default and adds a new --feature-gates=ValidateCAA=true option to cert-manager-controller to allow enabling the previous behaviour in v0.7.0 and v0.7.1. Once issues with CNAMEd DNS names pointing to internal nameservers are resolved, this option will be defaulted to on. Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-25 15:10:05 +01:00
James Munnelly	942d6491d6	Pass StopCh and RESTClient to controller context Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-18 14:22:08 +01:00
James Munnelly	871ed4283b	Allow controller constructors to return errors Signed-off-by: James Munnelly <james@munnelly.eu>	2019-04-18 14:22:04 +01:00
Lennart Jern	cd576dd8db	Set default acmesolver image based on arch Signed-off-by: Lennart Jern <lennart.jern@gmail.com>	2019-03-22 17:32:34 +01:00
Louis Taylor	c640c2f070	Expose metrics server on non-leader instances This makes sure all cert-manager instances have a metrics endpoint. Fixes #1352. Signed-off-by: Louis Taylor <louis@kragniz.eu>	2019-03-18 12:41:39 +00:00
James Munnelly	420ebfebe2	Use goflag instead of pflag for logs Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:51 +00:00
James Munnelly	5d73076db9	Update logs package for go-logr Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-12 14:24:50 +00:00
James Munnelly	41934a2b57	Enable Venafi issuer in controller binary Signed-off-by: James Munnelly <james@munnelly.eu>	2019-03-01 13:16:03 +00:00
James Munnelly	2f30258f0e	Switch to klog Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-22 12:34:02 +00:00
James Munnelly	a9d8f7de8a	Fixup for Kubernetes 1.13.2 Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-22 11:53:19 +00:00
James Munnelly	149cbb30a7	Add arm32 and arm64 bazel image targets Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-08 15:10:45 +00:00
James Munnelly	0bb864871e	Increase acmesolver default cpu resource limit to 100m Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-07 17:16:01 +00:00
James Munnelly	094ae3e50c	Fix CLI flag not being respected Signed-off-by: James Munnelly <james@munnelly.eu>	2019-02-06 16:11:37 +00:00
jetstack-bot	5f96b378e6	Merge pull request #1184 from tlmiller/feature/authnss Control authoritative dns01 server check.	2019-01-12 15:25:07 +00:00
Thomas Miller	dacd0b45cb	Control authoritative dns01 server check. Adds cmd flag for controlling if authoritative dns servers are used to check RR propagation or just normal resolvers. This change is added so that constrained enviornments can control more aspects of DNS queries performed. - Applying PR feedback Signed-off-by: Thomas Miller <thomas@tlm.id.au>	2019-01-12 20:17:28 +10:00
Louis Taylor	3d0e06a0b9	Add note to help text about clusterissuers Signed-off-by: Louis Taylor <louis@kragniz.eu>	2019-01-10 13:52:52 +00:00
Louis Taylor	bbda87b3c8	Add --namespace flag Signed-off-by: Louis Taylor <louis@kragniz.eu>	2019-01-10 13:52:52 +00:00
James Munnelly	0fcc0c666c	Update copyright header year Signed-off-by: James Munnelly <james@munnelly.eu>	2019-01-07 15:07:55 +00:00
James Munnelly	bca6ed6e64	Switch ACME challenge scheduler to evaluate all challenges at once Signed-off-by: James Munnelly <james@munnelly.eu>	2018-11-29 22:49:55 +00:00
jetstack-bot	a21ac37a74	Merge pull request #713 from kragniz/add-prometheus-metrics-endpoint Add cert-manager specific metrics to Prometheus endpoint	2018-11-26 15:45:33 +00:00
jetstack-bot	2c74eabb1c	Merge pull request #819 from ccojocar/cert_secret_ref Set the certificate as an owner of the secret	2018-11-26 15:06:33 +00:00
Louis Taylor	cf872a9fc9	Add prometheus metrics Count certificate requests Add certificate_expiry_time_seconds metric Register certificate_expiry_time_seconds metric, fix kind switch and fix metric status result Export nameForIssuer and remove unneccessary switch Refactor metrics into controller context Move metrics collection into functions Move error checking for metrics collection back into sync function Remove space Add TODO Move update certificate expiry function to metrics package Refactor metrics functionality Signed-off-by: Louis Taylor <louis@kragniz.eu> Run dep ensure Signed-off-by: Louis Taylor <louis@kragniz.eu> Fix build Signed-off-by: Louis Taylor <louis@kragniz.eu> Refactor Signed-off-by: Louis Taylor <louis@kragniz.eu> Fix reporting errors Signed-off-by: Louis Taylor <louis@kragniz.eu> Add comments Signed-off-by: Louis Taylor <louis@kragniz.eu> Remove unused issuerType Signed-off-by: Louis Taylor <louis@kragniz.eu> Update dep inputs-digest Signed-off-by: Louis Taylor <louis@kragniz.eu> Don't update status Signed-off-by: Louis Taylor <louis@kragniz.eu> Make metrics package level var Signed-off-by: Louis Taylor <louis@kragniz.eu> Add prometheusMetricsServerMaxHeaderBytes comment Signed-off-by: Louis Taylor <louis@kragniz.eu> Add failures metric Signed-off-by: Louis Taylor <louis@kragniz.eu> Remove issue metrics TODO: hopefully revert this at some point. Signed-off-by: Louis Taylor <louis@kragniz.eu> Assign metrics Signed-off-by: Louis Taylor <louis@kragniz.eu> Update dep digest Signed-off-by: Louis Taylor <louis@kragniz.eu> Fix copyright header Signed-off-by: Louis Taylor <louis@kragniz.eu> Remove old metrics server Signed-off-by: Louis Taylor <louis@kragniz.eu> Update bazel files Signed-off-by: Louis Taylor <louis@kragniz.eu> Clean up Signed-off-by: Louis Taylor <louis@kragniz.eu>	2018-11-26 13:13:44 +00:00
Cosmin Cojocar	3766edcd12	Set the default value of enable-certificate-owner-ref to false Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch>	2018-11-26 09:48:02 +01:00
jetstack-bot	ac80ed82f1	Merge pull request #1046 from munnerz/logs-pkg Revert "Remove pkg/logs package"	2018-11-07 09:48:55 +00:00
jetstack-bot	04ac65caee	Merge pull request #1047 from munnerz/stamped-images Stamp docker images with current timestamp using Bazel	2018-11-07 09:28:45 +00:00
James Munnelly	175e90c158	Revert "Remove pkg/logs package" This reverts commit `b6f854f849`. Signed-off-by: James Munnelly <james@munnelly.eu>	2018-11-06 20:05:32 +00:00
James Munnelly	2541b10e52	Stamp docker images with current timestamp using Bazel Signed-off-by: James Munnelly <james@munnelly.eu>	2018-11-06 19:18:15 +00:00
jetstack-bot	ace5c2b2f2	Merge pull request #738 from gambol99/acme_options Configurable ACME Annotation	2018-11-06 16:00:02 +00:00
James Munnelly	b6f89ae9dd	Regenerate files Signed-off-by: James Munnelly <james@munnelly.eu>	2018-11-06 12:31:16 +00:00
James Munnelly	85d433cff9	Add ACME challenge scheduler and process challenges for matching domains/types in serial Signed-off-by: James Munnelly <james@munnelly.eu>	2018-11-06 12:31:16 +00:00
Rohith	e2f13f5f9c	Requested Changes - changing the name of the command line option to --auto-certificate-annotations - making the option an array to allow for multiple annotations settings Signed-off-by: Rohith Jayawardene <gambol99@gmail.com>	2018-11-06 12:09:47 +00:00
Rohith	712a7a85ee	Configurable ACME Annotation - adds a option command line (default to the current behavour) which allows the user to control the acme annotation used by the shim controller - a current mitgration requires use to run multiple providers at the same Signed-off-by: Rohith Jayawardene <gambol99@gmail.com>	2018-11-06 12:09:18 +00:00
Cosmin Cojocar	5be660ec9e	Fix typo in filed name Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch>	2018-10-28 20:08:48 +01:00
Cosmin Cojocar	5d36fba075	Add a flag which controls whether the certificate is configured as an owner of the secret where the effective TLS certificate is stored Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch>	2018-10-28 19:55:26 +01:00
James Munnelly	b6f854f849	Remove pkg/logs package Signed-off-by: James Munnelly <james@munnelly.eu>	2018-10-18 13:27:05 +01:00
James Munnelly	039a086f58	run //hack:update-bazel Signed-off-by: James Munnelly <james@munnelly.eu>	2018-10-12 12:40:40 +01:00
James Munnelly	967a48e1dc	Add ACME Order & Challenge controllers Signed-off-by: James Munnelly <james@munnelly.eu>	2018-10-12 12:40:38 +01:00
Arnold Bechtoldt	845eb7f57c	make http01 solver pod resource request/limits configurable, refs #892 Signed-off-by: Arnold Bechtoldt <arnold.bechtoldt@inovex.de>	2018-09-26 14:39:06 +02:00
James Munnelly	64f02f6004	Add docker image building rules Signed-off-by: James Munnelly <james@munnelly.eu>	2018-09-13 11:24:52 +01:00
James Munnelly	db65d6a170	run //hack:update-bazel Signed-off-by: James Munnelly <james@munnelly.eu>	2018-09-13 11:24:48 +01:00
James Munnelly	51195e4c5f	Update license header and add header to every file Signed-off-by: James Munnelly <james.munnelly@jetstack.io>	2018-08-13 15:53:37 +01:00
jetstack-bot	c43e4d75f8	Merge pull request #801 from munnerz/renew-duration Add RenewBeforeExpiryDuration option to controller context	2018-08-08 14:34:56 +01:00
James Munnelly	fa0bc9998e	Add RenewBeforeDuration option to controller context	2018-08-08 13:34:30 +01:00
James Munnelly	12ab53b948	Update options.go	2018-08-08 13:28:37 +01:00
James Munnelly	d63ba1257d	Change leader election duration defaults to be less chatty	2018-08-08 00:54:26 +01:00
James Munnelly	9dc20d3c35	Remove dedicated issuer context and move issuer registration into controller pkg	2018-08-07 16:13:46 +01:00
Louis Taylor	58d71216c3	Change flag to list of controllers to enable	2018-07-12 10:27:49 +01:00
Louis Taylor	fd48a2e360	Add option for disabling ingress-shim This adds a new flag, which can be used to disable running the ingress-shim controller: --enable-ingress-shim=false	2018-07-12 10:27:05 +01:00
jetstack-bot	bd7f15d5f4	Merge pull request #710 from kragniz/dns-flag Add flag for setting nameservers for DNS01 check	2018-07-11 14:26:33 +01:00
Louis Taylor	3815b36193	Add git tag and commit to startup logs	2018-07-06 17:27:59 +01:00
Louis Taylor	e35a09bd72	Add validation	2018-07-05 14:47:41 +01:00
Louis Taylor	4804086fdf	Add example to usage	2018-07-05 14:37:32 +01:00
Louis Taylor	14873c248a	Use StringSlice	2018-07-05 14:37:08 +01:00
Louis Taylor	ea6a5472e2	dns01-nameservers -> dns01-self-check-nameservers	2018-07-05 14:22:43 +01:00
Louis Taylor	3eaca6a318	Add flag for custom dns01 nameservers	2018-07-05 12:40:53 +01:00
James Munnelly	6cfdc62f6b	Add self signed Issuer type	2018-06-08 15:48:30 +01:00
Vincent Desjardins	b35343786e	Vault issuer support vault remove duration	2018-05-02 00:45:55 +00:00
James Munnelly	fdb8f2bf40	Link ingress-shim into main controller binary	2018-04-26 12:44:40 +01:00
James Munnelly	83a4196aff	Update event recorder agent name	2018-04-09 21:43:37 +01:00
Louis Taylor	4dd1d02e90	Remove defaultNamespace	2018-04-06 17:45:20 +01:00
Louis Taylor	0961e24174	Remove namespace from more places	2018-04-06 11:20:24 +01:00
Louis Taylor	3733bf2b74	controller: FilteredSharedInformer -> SharedInformer	2018-04-06 10:24:10 +01:00
Louis Taylor	f43b926570	Remove controller --namespace option	2018-04-05 14:32:29 +01:00
Euan Kemp	0fb787eae7	controller: add ambient issuer flags and feature This implements ambient credential support for AWS, gated behind flags for issuers and cluster issuers. This adds the pair of flags discussed in https://github.com/jetstack/cert-manager/issues/308. It provides an implementation for those flag's effects for the route53 solver.	2018-03-23 14:30:43 -07:00
Mike Bryant	0274964100	fix: Use ConfigMaps for leaderelection Fixes #293	2018-02-21 17:48:13 +00:00
James Munnelly	514f9e9b3d	Update third_party import paths	2018-01-15 22:07:51 +00:00
James Munnelly	1d1190e50a	Increase controllers to 5 workers to mitigate test failures	2018-01-13 02:21:41 +00:00
James Munnelly	c3be0f204e	Add ingress-shim controller to create Certificates based on annotations on ingress resources	2017-11-30 22:53:54 +00:00
James Munnelly	fa7e052ac1	Move to github.com/jetstack/cert-manager repo	2017-11-03 16:41:39 +00:00
James Munnelly	6bd606a7ce	Fix ClusterIssuers. Update test name. Add comments.	2017-11-03 15:51:34 +00:00
James Munnelly	eb4be6859e	Update controllers and issuers for new SharedInformerFactory	2017-11-03 15:26:19 +00:00
James Munnelly	7875268247	Fix imports	2017-11-03 14:48:41 +00:00
James Munnelly	01e5833825	Make acmesolver image configurable through CLI. Use tagged version as default.	2017-10-13 16:39:06 +01:00
James Munnelly	5b53ba3f0c	Merge pull request #73 from dippynark/add-prometheus-metrics-endpoint Add prometheus metrics endpoint	2017-10-12 23:15:36 +01:00
Luke Addison	c2bead130b	Add Prometheus metrics server	2017-10-11 17:24:26 +01:00
James Munnelly	852e250a69	Add clusterissuer controller	2017-09-22 00:10:42 +01:00
James Munnelly	ae3171b8bf	Add initial CA issuer work	2017-09-11 10:47:58 +01:00
James Munnelly	dc4335754f	Move kube related utilities out of cmd	2017-09-10 21:11:34 +01:00
James Munnelly	f66855bd03	Add event recording. Split out cmd entrypoint.	2017-09-09 18:27:35 +01:00
James Munnelly	7540beb74b	Update imports	2017-09-09 02:13:03 +01:00
James Munnelly	ec5e916085	Typos	2017-09-09 01:47:25 +01:00
James Munnelly	960d46e302	Add leader election. Fix gracefully exiting.	2017-09-09 01:47:21 +01:00
James Munnelly	dddc57e38a	Properly configure CLI	2017-09-08 21:43:43 +01:00
James Munnelly	16e780c224	No longer automatically register CustomResourceDefinition	2017-08-31 12:40:16 +01:00
James Munnelly	95aa3aab95	Update references to cert-manager informers	2017-08-22 12:13:13 +01:00
James Munnelly	e19a002528	Automatically register CRD types	2017-08-07 21:07:50 +01:00
James Munnelly	7937b0384c	Update import paths	2017-08-07 14:46:58 +01:00
James Munnelly	3fb49ad049	Refactor control loops to be more akin to kube-controller-manager	2017-08-05 00:35:54 +01:00
James Munnelly	630654a6d4	Update import paths	2017-07-22 12:19:40 +01:00
James Munnelly	4a2486de52	Install gcp auth plugin	2017-07-22 02:54:22 +01:00
James Munnelly	afbe0ba9c5	add start of authorization	2017-07-22 01:23:25 +01:00
James Munnelly	95cba8ab5f	Add acme issuer. Implement 'Setup' method. Now manages ACME accounts.	2017-07-21 15:18:39 +01:00
James Munnelly	5e2222fa09	initial controller implementation	2017-07-19 20:29:02 +01:00
James Munnelly	36308ae891	initial commit	2017-07-19 09:39:13 +01:00

... 2 3 4 5 6 ...

348 Commits