cert-manager

Author	SHA1	Message	Date
irbekrm	a93e028a75	Downgrade kube-openapi As the later version has a breaking change (bumps github.com/emicklei/go-restful -> github.com/emicklei/go-restful/v3) Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-07-01 19:16:43 +01:00
irbekrm	cb86bdfce7	Bump Helm dependency Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-07-01 19:16:16 +01:00
Luca Comellini	aaa513de00	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2022-06-30 15:16:14 -07:00
Alessandro Vermeulen	1da01211ee	Feature gated support for using literal subjects in `Certificate`s Signed-off-by: Alessandro Vermeulen <alessandro.vermeulen@ing.com>	2022-06-08 20:50:00 +02:00
Luca Comellini	091549620b	Bump Go to 1.18 Signed-off-by: Luca Comellini <luca.com@gmail.com>	2022-06-02 15:50:13 -07:00
Irbe Krumina	1d917ef311	Revert "Use Apply instead of Update to modify resources in tests" Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-05-03 11:31:47 +01:00
irbekrm	46233e5012	./hack/update-all.sh Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-04-28 14:51:44 +01:00
Luca Comellini	931adfb493	Bump golang.org/x/crypto to v0.0.0-20220411220226-7b82a4e95df4 Signed-off-by: Luca Comellini <luca.com@gmail.com>	2022-04-26 16:47:10 +02:00
jetstack-bot	dc24503939	Merge pull request #4958 from irbekrm/tsig_provider Use our own implementation of miekg/dns.TsigProvider interface	2022-03-22 12:18:51 +00:00
irbekrm	4c901aefab	Code review comments Adds test conditions to certs via patch API call instead of update to avoid conflicts Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-03-21 07:33:51 +00:00
irbekrm	3a21f961ca	Use our own implementation of github.com/miekg/dns.TsigProvider interface To allow us to both upgrade the upstream library and keep supporting HMACMD5 as RFC2136 TSIG algorithm although it was deprecated in the upstream library Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-03-21 07:09:29 +00:00
irbekrm	587e02cee9	Replaces dns v0.41 -> v0.34 This is so as to avoid dropping support for HMacMD5 value for issuer.spec.acme.solvers.dns01.rfc2136.tsigAlgorithm Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-03-17 20:14:55 +00:00
irbekrm	ad746fae10	Bumps a bunch of deps Signed-off-by: irbekrm <irbekrm@gmail.com>	2022-03-17 20:14:55 +00:00
Jake Sanders	c96d91d586	Update the sig-network Gateway API support to v1alpha2 Co-authored-by: Joakim Ahrlin <joakim.ahrlin@gmail.com> Signed-off-by: Jake Sanders <i@am.so-aweso.me>	2022-03-01 15:05:17 +00:00
Ashley Davis	3a055cc2f5	rename all uses of github.com/jetstack/cert-manager This was done by running the following command twice: ```bash grep -Ri "github.com/jetstack/cert-manager" . \| \ cut -d":" -f1 \| \ sort \| \ uniq \| \ xargs sed -i "s/github.com\/jetstack\/cert-manager/github.com\/cert-manager\/cert-manager/" ``` Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2022-02-02 09:08:31 +00:00
Richard Wall	4de29a9eb8	Upgrade containerd To address https://github.com/advisories/GHSA-mvff-h3cj-wj9c Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2022-01-20 15:09:09 +00:00
joshvanl	b25f9e8c54	Updates go modules with require sigs.k8s.io/structured-merge-diff/v4 v4.1.2 Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2022-01-17 11:24:45 +00:00
James Munnelly	8f1fb874ed	Run update-codegen in module mode Signed-off-by: James Munnelly <jmunnelly@apple.com>	2021-12-17 18:13:44 +00:00
James Munnelly	81f22fd49c	Upgrade k8s.io dependencies to v0.23.1 Signed-off-by: James Munnelly <jmunnelly@apple.com>	2021-12-17 16:27:47 +00:00
James Munnelly	2041994b12	Update runc dependency to 1.0.3 Signed-off-by: James Munnelly <jmunnelly@apple.com>	2021-12-16 15:45:25 +00:00
Jake Sanders	53b4a0e491	Update helm, opencontainers, containerd. This includes a minor update to the OCI spec to address https://github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m and https://github.com/opencontainers/image-spec/security/advisories/GHSA-77vh-xpmg-72qh Signed-off-by: Jake Sanders <i@am.so-aweso.me>	2021-11-23 16:49:56 +00:00
Ashley Davis	bfecde8116	update keystore-go library version Following the release of cert-manager v1.6.0, it was observed that an update to the keystore-go library was backwards-incompatible; it introduced a 6-character minimum length on passwords which wasn't previously in force. This led to https://github.com/pavel-v-chernykh/keystore-go/issues/30 which in turn led to https://github.com/pavel-v-chernykh/keystore-go/pull/31 This commit bumps to use the new version, which by default doesn't have a min password length Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2021-10-28 10:10:45 +01:00
irbekrm	598ed35e4a	Uses go/crypto ListCertAlternates function to fetch alternative certificate chains This allows us to use upstream go/crypto again instead of our own fork Signed-off-by: irbekrm <irbekrm@gmail.com>	2021-10-07 15:21:26 +01:00
Richard Wall	6cadf757eb	go mod tidy Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-07 09:16:02 +01:00
Richard Wall	1a93079a69	go get -u github.com/containerd/containerd Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-07 09:12:44 +01:00
Richard Wall	6a32ccd5dd	go get -u helm.sh/helm/v3 Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-01 12:41:10 +01:00
Richard Wall	10090b4853	go mod tidy Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-01 10:15:58 +01:00
Richard Wall	d47c46953f	go get -u github.com/containerd/containerd Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-01 10:15:31 +01:00
Richard Wall	c786540b0a	go get -u github.com/opencontainers/runc Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2021-10-01 10:14:53 +01:00
irbekrm	0679c33c3f	Update kube libraries, regenerate go.mod/go.sum Updates go.mod for Go 1.17 Signed-off-by: irbekrm <irbekrm@gmail.com>	2021-09-30 10:07:59 +01:00
irbekrm	3d6a89e456	Bumps Go 1.16 -> 1.17 Signed-off-by: irbekrm <irbekrm@gmail.com>	2021-09-30 10:07:50 +01:00
George Moldoveanu	0463681244	updates go deps and bazel files Signed-off-by: George Moldoveanu <mol.george@gmail.com>	2021-09-02 23:45:11 +01:00
George Moldoveanu	d0151f7175	fixed TestEncodeJKSKeystore tests to work with upgraded keystore-go api (v4) Signed-off-by: George Moldoveanu <mol.george@gmail.com>	2021-09-02 23:33:45 +01:00
Inteon	b13eb0483b	upgrade deps to latest version (kube v0.22.0) Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-08-13 23:38:59 +02:00
Inteon	1e89e9a55b	upgrade go.mod Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-08-04 00:49:07 +02:00
Maël Valais	30f9c123d3	gateway-shim: add the gateway-shim controller Note that the gateway-shim is only half the work for supporting the Gateway API in cert-manager. The other half is the HTTP01 solver support, which is still worked on. The Gateway API in cert-manager is releases as an experimental feature and needs to be enabled manually with the following flag: --controllers=*,gateway-shim All the annotations supported by ingress-shim are also supported by gateway-shim, with some exceptions: "acme.cert-manager.io/http01-ingress-class" This annotation is not supported on the Gateway resource. Although the Gateway resource also has a "gatewayClass" field, we will need to add another field instead of "ingress-class" to avoid confusion with the ingress-shim. "acme.cert-manager.io/http01-edit-in-place" This annotation is not supported because it is specific to some ingress controllers like ingress-gce. "kubernetes.io/tls-acme" This annotation is not supported because it is a behavior inherited from kube-lego and we chose not to keep this behavior with the Gateway API. Unlike the ingress-shim, you can reuse the same Secret name in multiple TLS configurations on the same Gateway resource. The ingress-shim now shows the exact location of the duplicate secretName when the user gives the same secretName in two separate TLS blocks. Signed-off-by: Maël Valais <mael@vls.dev> Co-authored-by: Jake Sanders <i@am.so-aweso.me>	2021-07-15 20:34:55 +02:00
jetstack-bot	c546f5bbd9	Merge pull request #4190 from inteon/helm_labels Remove Helm-specific labels & add version label	2021-07-13 18:27:03 +01:00
Inteon	043bbd283e	remove helm-specific labels & add version label Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-11 17:42:32 +02:00
Inteon	b852735a95	upgrade ginkgo & gomega Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-10 20:52:09 +02:00
Inteon	cd92bf321f	centralise testing api-server & remove custom implementation Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-06 16:13:44 +02:00
Inteon	fa07da9302	upgrade all tools to the latest version Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-06 14:51:36 +02:00
Inteon	3177be515a	improve default flag values & other requested changes Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-02 12:58:30 +02:00
Inteon	1c4b511876	basic install and uninstall functionality Signed-off-by: Inteon <42113979+inteon@users.noreply.github.com>	2021-07-02 12:58:30 +02:00
Tamal Saha	2e721959b7	Use stable version of controller-runtime Signed-off-by: Tamal Saha <tamal@appscode.com>	2021-06-09 03:51:01 -07:00
jetstack-bot	c1d7dcf8b5	Merge pull request #4007 from edglynes/3904_v2_API Update Aka issuer to use v2 API	2021-05-21 12:34:25 +01:00
Tamal Saha	6789053681	Use gomodules.xyz/jsonpatch/v2 v2.2.0 Signed-off-by: Tamal Saha <tamal@appscode.com>	2021-05-19 09:24:58 -07:00
Edward Lynes	ef5c42d8a9	rebase master for PR Signed-off-by: Edward Lynes <elynes@akamai.com>	2021-05-18 10:46:30 -04:00
Tamal Saha	2609aa51e1	Use gomodules.xyz/jsonpatch instead of mattbaird/jsonpatch Signed-off-by: Tamal Saha <tamal@appscode.com>	2021-05-17 13:05:19 -07:00
Tamal Saha	6bfe640533	Update fakeSecretClient Signed-off-by: Tamal Saha <tamal@appscode.com>	2021-05-17 08:52:59 -07:00
Tamal Saha	a744db675d	Add comments for replace statements Signed-off-by: Tamal Saha <tamal@appscode.com>	2021-05-17 08:11:19 -07:00

1 2 3

142 Commits