weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
2,101 Commits 45 Branches 0 Tags 96 MiB
aeef7dc461
Commit Graph

814 Commits

Author SHA1 Message Date
Daniel Morsing
0faf01937e treat domain not found as ok for CAA checks 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-03-04 12:26:08 +00:00
jetstack-bot
5e3c1a813b
Merge pull request #1250 from munnerz/venafi 
add Venafi Cloud & TPP issuer type
 2019-03-01 19:42:38 +00:00
jetstack-bot
687dcd0db7
Merge pull request #1420 from munnerz/cainjector-apiserverca 
cainjector: support injecting apiserver ca
 2019-03-01 15:19:05 +00:00
James Munnelly
2f67c78f62 Address review feedback 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 14:37:11 +00:00
James Munnelly
42428ed19f Update events logged during issuance 
Signed-off-by: James Munnelly <james.munnelly@jetstack.io>
 2019-03-01 13:18:45 +00:00
James Munnelly
f4a990917e Fixes after rebasing 
Signed-off-by: James Munnelly <james.munnelly@jetstack.io>
 2019-03-01 13:18:43 +00:00
James Munnelly
cb7dbc830c Add Venafi Issuer implementation 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:16:01 +00:00
James Munnelly
c3f696fa1a Add support for Venafi API types to certificates controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:00:55 +00:00
James Munnelly
535af6d14e Add Venafi API types 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:00:54 +00:00
James Munnelly
1618ebde43 Fix loading apiserver caBundle 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 19:34:40 +00:00
jetstack-bot
334477ec73
Merge pull request #1392 from munnerz/gen-tmp-selfsigned 
Generate temporary certificate to appease ingress-gce
 2019-02-28 19:20:03 +00:00
James Munnelly
b34adf88ff cainjector: support injecting apiserver ca 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 16:45:26 +00:00
Solly Ross
42248a91d7 CA Injector Controller 
This implements a CA injector controller using controller-runtime.
It looks at admission webhooks and APIServices with a particular
annotation, and injects the CA data from certificates.

Signed-off-by: Solly Ross <sollyross@google.com>
 2019-02-26 21:47:34 -08:00
James Munnelly
dfabece6eb Use a one-use CA to sign temporary certificates 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-25 20:48:13 +00:00
James Munnelly
cf2f9eac74 Generate a temporary certificate whilst waiting for Issuer to issue 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-25 17:48:22 +00:00
jetstack-bot
01903f06ba
Merge pull request #1384 from munnerz/unit-compare-reading 
Print unit test failures in action matchers as part of failure message
 2019-02-22 18:16:38 +00:00
James Munnelly
be915d0567 Update generated files 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-22 12:34:55 +00:00
James Munnelly
439499561c Remove dependence on k8s.io/ingress 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-22 12:34:52 +00:00
James Munnelly
2f30258f0e Switch to klog 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-22 12:34:02 +00:00
James Munnelly
a9d8f7de8a Fixup for Kubernetes 1.13.2 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-22 11:53:19 +00:00
James Munnelly
381bed1fd8 Print unit test failures in action matchers as part of failure message 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-20 17:27:31 +00:00
jetstack-bot
10924002e5
Merge pull request #1388 from DanielMorsing/killedpod 
Recreate dead solver pods during self-check
 2019-02-20 17:13:39 +00:00
Daniel Morsing
29ffbaecb6 oops 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-20 15:24:49 +00:00
Daniel Morsing
bad7f52dc6 Revert "recreate pod if multiple pods were deleted" 
This reverts commit 6b81093231.

Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-20 14:30:18 +00:00
Daniel Morsing
2881978a02 Fix check tests 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-20 14:27:45 +00:00
Brian Topping
d0712bb05e Add additional logging per #926, add documentation for rfc2136 provider. 
Signed-off-by: Brian Topping <brian@coglative.com>
 2019-02-20 13:47:51 +00:00
Daniel Morsing
4f4d7d1d0f ensure pod inside self-check 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-20 13:23:21 +00:00
Daniel Morsing
6b81093231 recreate pod if multiple pods were deleted 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-19 15:42:57 +00:00
James Munnelly
fe2fcd4e83 go fmt 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 15:00:39 +00:00
James Munnelly
14a1b5373f Update bazel files 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:36:07 +00:00
James Munnelly
1f48f3d1d4 gofmt 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:25:56 +00:00
James Munnelly
bbd73477cd Fixes after rebasing 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:25:56 +00:00
James Munnelly
324e8319b6 Add basic Certificate unit tests 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:25:55 +00:00
James Munnelly
cee0e28a05 Add initial unit test for certificate controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:25:55 +00:00
James Munnelly
0bde3dacba Create pkg/api/util and re-arrange controller instantiation code 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:25:54 +00:00
James Munnelly
3a19501e26 Add initial unit test framework for Certificates controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:22:36 +00:00
James Munnelly
804240da9d Switch Certificate controller to use Helper struct 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-19 11:22:36 +00:00
jetstack-bot
bfafc7354e
Merge pull request #1322 from munnerz/gen-validation-schema 
Generate CRDs using controller-tools, including validation schema
 2019-02-13 16:35:07 +00:00
jetstack-bot
dc069276ba
Merge pull request #1327 from munnerz/acme-improved-errors 
Fire more Events in ACME Issue function on failure
 2019-02-13 14:54:11 +00:00
jetstack-bot
eafda2a31a
Merge pull request #1307 from munnerz/helper-everywhere 
Use Helper structure to call GetGenericIssuer everywhere
 2019-02-13 13:48:37 +00:00
jetstack-bot
1476aed737
Merge pull request #1293 from munnerz/test-builder-logger 
Plumb testing.T through to test Builder
 2019-02-13 13:48:26 +00:00
jetstack-bot
cb532cc3b8
Merge pull request #1325 from DanielMorsing/caaCheck 
Extend ACME self check to check CAA records
 2019-02-12 16:53:11 +00:00
Daniel Morsing
a01514ad63 use configured nameservers for CAA validation 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-02-11 12:05:18 +00:00
James Munnelly
1c4f160169 Use Helper structure to call GetGenericIssuer everywhere 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-07 22:35:17 +00:00
jetstack-bot
fd9567f1e4
Merge pull request #1318 from munnerz/crt-ctrl-use-lister 
Use secretLister in updateSecret
 2019-02-06 16:39:55 +00:00
James Munnelly
094ae3e50c Fix CLI flag not being respected 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-06 16:11:37 +00:00
James Munnelly
da39d636d9 Fix ACME issuer unit test 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-06 15:43:59 +00:00
James Munnelly
fac0a32c7e Fix bug causing certficates to be re-issued with misconfigured renewBefore/duration 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-06 15:43:59 +00:00
James Munnelly
49d5c277fd Allow empty values for State 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-06 15:33:23 +00:00
James Munnelly
265fa5b1af Run gofmt 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-06 15:27:53 +00:00