weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
3,405 Commits 45 Branches 0 Tags 96 MiB
df265ddbfd
Commit Graph

247 Commits

Author SHA1 Message Date
jetstack-bot
df265ddbfd
Merge pull request #2170 from matevzmihalic/cloudflare-apitoken 
Add API token authentication option to Cloudflare issuer
 2019-11-27 13:22:21 +00:00
Christophe Courtaut
7534dcd33e deploy/charts/cert-manager: Fixes typo in webhook-psp definition 
This kind of issue might be detected early in the future when enabling psp
in e2e tests (https://github.com/jetstack/cert-manager/pull/2280).

A similar bug was already fixed in
be0b865522.

This commit fixes the typo.

Signed-off-by: Christophe Courtaut <christophe.courtaut@gmail.com>
 2019-11-20 16:50:55 +01:00
Matevz Mihalic
b5972a379f
Add API token auth option to Cloudflare issuer 
Signed-off-by: Matevz Mihalic <matevz.mihalic@gmail.com>
 2019-11-18 17:51:43 +01:00
James Munnelly
1859e5e062 Update Helm chart README for v0.12.0-beta.1 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-11-15 16:10:35 +00:00
James Munnelly
7c1dd0b30e Set preserveUnknownFields: false 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-11-15 12:26:11 +00:00
James Munnelly
1527c06e0f Remove reference to metav1.ObjectMeta 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-11-15 12:26:11 +00:00
jetstack-bot
071921636a
Merge pull request #2234 from sam-cogan/psp-fixes 
Fixes for PSP Issues
 2019-11-15 02:56:55 +00:00
jetstack-bot
0f99bcdeac
Merge pull request #2368 from munnerz/cr-csr-required 
Mark 'csr' field as required in CertificateRequest
 2019-11-15 02:29:02 +00:00
jetstack-bot
8ac1ba859b
Merge pull request #2325 from CoaxVex/fix-2305 
Add update permission to certificaterequests/finalizers to the cert-manager-controller-certificates clusterrole.
 2019-11-15 01:35:55 +00:00
James Munnelly
e8fbd37634 Mark 'csr' field as required in CertificateRequest 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-11-15 01:01:43 +00:00
JoshVanL
1c5a5caaf8 Adds all key usage possible values to key usage comment 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-11-14 13:51:28 +00:00
James Munnelly
fc9c11cc38 Bump Helm chart README for v0.12.0-beta.0 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-11-13 17:10:09 +00:00
jetstack-bot
1bfec37482
Merge pull request #2349 from JoshVanL/2205-kubernetes-auth-path 
Changes the vault issuer Kubernetes auth path to require the full *mount* path
 2019-11-13 09:58:26 +00:00
JoshVanL
0e739bdde9 Mount path now hard codes /login endpoint in code 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-11-12 18:37:54 +00:00
jetstack-bot
f83dc13a39
Merge pull request #2326 from JoshVanL/cli-output-issuer 
Increases issuer CLI output
 2019-11-11 13:52:40 +00:00
JoshVanL
7ec3103eb4 Changes the vault issuer Kubernetes auth path to require the full path 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-11-11 12:49:02 +00:00
JoshVanL
06ce5061ba Set printer columns by changing crds in deploy 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-11-11 12:25:37 +00:00
Harold Drost
62c4e0b6eb serviceAccountSecretRef is not always required 
The cert-manager code will use what it's called ambient permissions.
This worked for us until we moved from v0.8 to v0.11 though I've found
the issue present in v10 also.

Signed-off-by: Harold Drost <baelish@bluecell.net>
 2019-11-05 15:57:58 +00:00
Nils Cant
c51c179a42 Add update permission to certificaterequests/finalizers to the 
cert-manager-controller-certificates clusterrole.

Fixes: #2305

Signed-off-by: Nils Cant <nils.cant@vargen.io>
 2019-11-05 15:41:57 +01:00
jetstack-bot
79711c5e34
Merge pull request #2270 from yurrriq/fix-chart 
Chart.yaml: add missing apiVersion
 2019-10-28 15:39:06 +00:00
jetstack-bot
dddc6abd2e
Merge pull request #2285 from munnerz/helm-chart-simplify 
Remove nested cainjector subchart
 2019-10-28 12:11:21 +00:00
jetstack-bot
c11d983d82
Merge pull request #2278 from munnerz/webhook-port-10250 
Default webhook port to 10250 for better compatibility with GKE
 2019-10-28 12:11:14 +00:00
jetstack-bot
24883ea2b5
Merge pull request #2286 from munnerz/schemapatch-ct 
Use controller-gen schemapatch to generate CRD schemas
 2019-10-28 11:46:14 +00:00
jetstack-bot
2cf195a267
Merge pull request #2283 from munnerz/webhook-status-subresources 
Enable validation and mutation for subresources
 2019-10-28 11:46:07 +00:00
Thomas
1af8fa2ba7
add '--validate=false' for deployment instruction with 00-crds.yaml (#2208) 2019-10-28 10:56:38 +01:00
James Munnelly
a292400c3a Add source CRD manifests for schemapatch 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 14:44:41 +01:00
James Munnelly
9d5372c93a Use schemapatch to generate openapi schemas 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 14:44:02 +01:00
James Munnelly
a9ea30704b Regenerate 00-crds.yaml using schemapatch 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 14:14:38 +01:00
James Munnelly
a6311a8e12 Remove leading space on template labels 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 12:23:29 +01:00
James Munnelly
4586ecf930 Move cainjector chart into main chart 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 12:22:48 +01:00
James Munnelly
469422872e Simplify the way webhook component names are computed 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 12:10:42 +01:00
James Munnelly
374c293454 Enable validation and mutation for subresources 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-25 10:34:51 +01:00
James Munnelly
956be10a93 Default webhook port to 10250 for better compatibility with GKE 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-24 19:34:18 +01:00
Eric Bailey
ce21224c89 Chart.yaml: add missing apiVersion 
Signed-off-by: Eric Bailey <e.bailey@sportradar.com>
 2019-10-23 13:02:59 -05:00
Benjamin P. Jung
be0b865522 Fix evil typo (s/annotation/annotations/) 
Signed-off-by: Benjamin P. Jung <headcr4sh@gmail.com>
 2019-10-18 17:19:41 +02:00
James Munnelly
ec8d6e12e4 Add validation to ensure Order & Challenge fields are immutable 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-17 16:54:15 +01:00
James Munnelly
da8bf264fd Use standard golang http server for webhook 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-17 12:29:34 +01:00
Sam Cogan
94fc2b0845 Fixes for PSP Issues 
Adding missing "-psp" to cert-manager psp cluster role binding
Create PSP, ClusterRole and ClusterRole binding for webhook service account

Signed-off-by: Sam Cogan <mail@samcogan.com>
 2019-10-15 22:27:06 +01:00
jetstack-bot
87aedeb04c
Merge pull request #2225 from munnerz/wildcard-field-ptr 
Make ACMEAuthorization.Wildcard field a pointer
 2019-10-15 19:05:05 +01:00
James Munnelly
e9796e79f2 Update generated files 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-15 12:40:17 +01:00
jetstack-bot
4d316ea97f
Merge pull request #2103 from chdorb/fix/yaml_manifests 
Better YAML structure
 2019-10-15 09:40:19 +01:00
jetstack-bot
1f6a4c758f
Merge pull request #2207 from krishnadurai/patch-1 
Removes leaderelection ClusterRoleBinding
 2019-10-14 15:14:20 +01:00
Krishna Durai
f2d465d757 Removes leaderelection ClusterRoleBinding 
This is done to give preference to the new leaderelection RoleBinding in 'kube-system'

Signed-off-by: Krishna Durai <krishnadurai20@gmail.com>
 2019-10-12 16:02:41 +05:30
ismail BASKIN
90e28137f3
Add sideEffects to MutatingWebhookConfiguration 
This is for supporting `kubectl --server-dry-run` feature.
It fixes #2186.

Signed-off-by: ismail BASKIN <ismailbaskin5@gmail.com>
 2019-10-12 01:21:07 +03:00
Pierre Dorbais
bac9b39707 fix namespace yaml file format 
Signed-off-by: Pierre Dorbais <chdorb@gmail.com>
 2019-10-11 15:45:10 +02:00
Luca Berneking
86738b73e4 Remove deprecated arguments from helm chart deployment 
Signed-off-by: Luca Berneking <luca@berneking.net>
 2019-10-11 15:30:06 +02:00
Pierre Dorbais
5a131155c6 crds file generated 
Signed-off-by: Pierre Dorbais <chdorb@gmail.com>
 2019-10-11 14:19:50 +02:00
James Munnelly
941b27bec1 Bump version strings for v0.11.0 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-09 11:35:35 +01:00
JoshVanL
e14f347736 Adds comment to helm chart with the verbosity levels 
Signed-off-by: JoshVanL <vleeuwenjoshua@gmail.com>
 2019-10-07 09:11:21 +01:00
James Munnelly
1464fe69a4 Update default leader election namespace to be kube-system 
Signed-off-by: James Munnelly <james@munnelly.eu>
 2019-10-04 13:18:23 +01:00