weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
2,201 Commits 45 Branches 0 Tags 96 MiB
ca725be382
Commit Graph

851 Commits

Author SHA1 Message Date
snobu
ca725be382 Fix escape in resource def 
Signed-off-by: snobu <foo@snobu.org>

Fixes https://github.com/jetstack/cert-manager/issues/1473
 2019-04-24 16:16:34 +03:00
jetstack-bot
ff19e63ea4
Merge pull request #1563 from munnerz/webhook-dns-provider 
Add webhook dns provider implementation
 2019-04-18 18:59:04 +01:00
James Munnelly
2e2699a7a6 Improve RFC2136 test DNS server 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 17:20:19 +01:00
James Munnelly
af9bce7221 Add 'webhook' DNS01 provider type 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 17:19:32 +01:00
James Munnelly
c127716ac5 Add DNS01 webhook provider API fields 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 17:18:25 +01:00
jetstack-bot
e1571326e5
Merge pull request #1561 from munnerz/refactor-dns-utils 
Export dnsQuery function & refactor DNS01Record function
 2019-04-18 15:02:05 +01:00
James Munnelly
14dd0b1ffe Rename DNS01Record to DNS01LookupFQDN 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:34:15 +01:00
James Munnelly
3e58213894 Export dnsQuery function 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:34:15 +01:00
James Munnelly
942d6491d6 Pass StopCh and RESTClient to controller context 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:22:08 +01:00
James Munnelly
871ed4283b Allow controller constructors to return errors 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:22:04 +01:00
James Munnelly
193a45dab9 Add comments to API types 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:04:55 +01:00
James Munnelly
e04847b7cd Add ACME webhook package 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-04-18 14:02:44 +01:00
Daniel Morsing
66f0436ad4 use authoritative nameservers for CAA checks 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-04-03 13:48:58 +01:00
jetstack-bot
5bc0bae9fa
Merge pull request #1512 from lentzi90/feature-update-on-issuer-change 
Update certificate if issuer changes
 2019-04-01 10:36:27 +01:00
Lennart Jern
dfb3954dba Update cert if issuer doesn't match 
Signed-off-by: Lennart Jern <lennart.jern@gmail.com>
 2019-03-29 20:32:59 +01:00
Steve Huff
abd0159b0f Fix "it's" typo in log message 
Signed-off-by: Steve Huff <shuff@vecna.org>
 2019-03-29 15:39:09 +00:00
Matthew Donoughe
d7fa5b95f5 also whitelist ipv6 
otherwise it's blacklisted

Signed-off-by: Matthew Donoughe <mdonoughe@gmail.com>
 2019-03-23 23:50:04 -04:00
jetstack-bot
2d69622826
Merge pull request #1474 from munnerz/logr-acme-http 
Use logr in ACME HTTP01 solver
 2019-03-20 15:55:06 +00:00
Daniel Morsing
b987d2772d stop cloudflare auth key from being leaked into the logs 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-03-18 16:22:14 +00:00
James Munnelly
96353dba96 Use logr in ACME HTTP01 solver 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-14 14:29:56 +00:00
James Munnelly
aeaa3412ed Fix controller test pkg 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
420ebfebe2 Use goflag instead of pflag for logs 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
eaeefdf5b2 Update acmechallenges controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
f4c0de2627 Define pkg/api.Scheme with all used types registered 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
46faba06b6 Update acmesolver to use logr 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
c6c498338a Update clusterissuers controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
6b24e9c966 Update cainjector 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:51 +00:00
James Munnelly
a13543013d Use logr in pkg/util/kube 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
6f743dbfae Update ACME issuer 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
591f8b690f Update CA issuer 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
451b12f006 Update metrics package 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
d7c9d39e3c Update issuers controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
92713156ed Update certificates controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
708313ac4b Update acmeorders controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
James Munnelly
5d73076db9 Update logs package for go-logr 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-12 14:24:50 +00:00
Aditya Sundaramurthy
0690592a2f Fallback to hostedZoneName param if set in ClusterIssuer CRD 
Signed-off-by: Aditya Sundaramurthy <aditya.sundaramurthy@gmail.com>
 2019-03-12 00:23:25 +01:00
Aditya Sundaramurthy
f0a3e081e5 Fixes trimming of zone inferred via zone discovery over configured 'hostedZoneName' 
Signed-off-by: Aditya Sundaramurthy <aditya.sundaramurthy@gmail.com>
 2019-03-11 15:52:23 +01:00
Daniel Morsing
0faf01937e treat domain not found as ok for CAA checks 
Signed-off-by: Daniel Morsing <dmo@jetstack.io>
 2019-03-04 12:26:08 +00:00
jetstack-bot
5e3c1a813b
Merge pull request #1250 from munnerz/venafi 
add Venafi Cloud & TPP issuer type
 2019-03-01 19:42:38 +00:00
jetstack-bot
687dcd0db7
Merge pull request #1420 from munnerz/cainjector-apiserverca 
cainjector: support injecting apiserver ca
 2019-03-01 15:19:05 +00:00
James Munnelly
2f67c78f62 Address review feedback 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 14:37:11 +00:00
James Munnelly
42428ed19f Update events logged during issuance 
Signed-off-by: James Munnelly <james.munnelly@jetstack.io>
 2019-03-01 13:18:45 +00:00
James Munnelly
f4a990917e Fixes after rebasing 
Signed-off-by: James Munnelly <james.munnelly@jetstack.io>
 2019-03-01 13:18:43 +00:00
James Munnelly
cb7dbc830c Add Venafi Issuer implementation 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:16:01 +00:00
James Munnelly
c3f696fa1a Add support for Venafi API types to certificates controller 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:00:55 +00:00
James Munnelly
535af6d14e Add Venafi API types 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-03-01 13:00:54 +00:00
James Munnelly
1618ebde43 Fix loading apiserver caBundle 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 19:34:40 +00:00
jetstack-bot
334477ec73
Merge pull request #1392 from munnerz/gen-tmp-selfsigned 
Generate temporary certificate to appease ingress-gce
 2019-02-28 19:20:03 +00:00
James Munnelly
b34adf88ff cainjector: support injecting apiserver ca 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-02-28 16:45:26 +00:00
Solly Ross
42248a91d7 CA Injector Controller 
This implements a CA injector controller using controller-runtime.
It looks at admission webhooks and APIServices with a particular
annotation, and injects the CA data from certificates.

Signed-off-by: Solly Ross <sollyross@google.com>
 2019-02-26 21:47:34 -08:00