weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
8,917 Commits 45 Branches 0 Tags 96 MiB
e1c19274c2
Commit Graph

8917 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
cert-manager-prow[bot]
e1c19274c2
Merge pull request #7182 from wallrj/7065-webhook-metrics 
[VC-34401] Add a metrics server to the webhook
 2024-07-23 08:26:08 +00:00
Richard Wall
e21a57a88c Enable metrics server on the webhook 
Signed-off-by: Richard Wall <richard.wall@venafi.com>
 2024-07-19 17:04:52 +01:00
cert-manager-prow[bot]
fc198e9197
Merge pull request #7190 from wallrj/fix-podmonitor-template-indentation 
Fix incorrect indentation of the PodMonitor template in the Helm chart
 2024-07-19 09:11:10 +00:00
Richard Wall
c5e95aac63 Fix incorrect indentation of the PodMonitor template in the Helm chart 
Signed-off-by: Richard Wall <richard.wall@venafi.com>
 2024-07-19 09:22:58 +01:00
cert-manager-prow[bot]
5f003f25a7
Merge pull request #7177 from eplightning/fix-azure-npe 
fix: Handle case of Azure returning auth error
 2024-07-18 18:17:10 +00:00
cert-manager-prow[bot]
17e883c285
Merge pull request #7178 from miguelvr/miguelvr/http01-gw-solver-tests 
fix: HTTP01 challenge HTTPRoute creation for GatewayAPI
 2024-07-18 14:47:09 +00:00
cert-manager-prow[bot]
aba3f6a4f8
Merge pull request #7185 from cert-manager/self-upgrade-master 
[CI] Self-upgrade merging self-upgrade-master into master
 2024-07-18 14:25:09 +00:00
Tim Ramlot
9770794c1c
Run 'make upgrade-klone' and 'make generate' 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-07-18 15:50:59 +02:00
Miguel Varela Ramos
46f3f043df
fix: add boilerplate to test file 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-18 11:58:24 +01:00
Miguel Varela Ramos
8a8df8a3c7
fix: do not present challenge for Gateway API if feature not enabled 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-18 11:54:58 +01:00
Miguel Varela Ramos
f357097eb6
revert: remove override for generate name 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-17 17:57:33 +01:00
cert-manager-prow[bot]
bfbe9fbc50
Merge pull request #7180 from inteon/upgrade_makefiles 
Run 'make upgrade-klone' and 'make generate'
 2024-07-17 12:32:08 +00:00
Tim Ramlot
d3a2ad961a
run 'make upgrade-klone' and 'make generate' 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-07-17 13:55:52 +02:00
Miguel Varela Ramos
8d2aac9ac1
fix: httproute spec deep equal 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-17 12:23:30 +01:00
Miguel Varela Ramos
8ffe2640c3
fix: add missing hyphen to generateName 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-17 11:40:17 +01:00
Miguel Varela Ramos
767725861a
test: check for httproute clean-up 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-17 11:39:51 +01:00
cert-manager-prow[bot]
b77411bb5b
Merge pull request #7171 from cert-manager/self-upgrade-master 
[CI] Merge self-upgrade-master into master
 2024-07-17 09:13:08 +00:00
Tim Ramlot
d6735637e2
add missing Make dependencies 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-07-17 09:33:50 +02:00
cert-manager-bot
9eeeabd128 BOT: run 'make upgrade-klone' and 'make generate' 
Signed-off-by: cert-manager-bot <cert-manager-bot@users.noreply.github.com>
 2024-07-17 00:20:51 +00:00
Miguel Varela Ramos
dc100b4cfc
test: add test for multiple httproute resources 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-16 22:03:49 +01:00
Bartosz Slawianowski
30d4fce8a8 Add test case 
Signed-off-by: Bartosz Slawianowski <bartosz.slawianowski@natzka.com>
 2024-07-16 18:28:06 +02:00
Miguel Varela Ramos
35e5e12d26
test: add test for ensureGatewayHTTPRoute 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-16 16:40:04 +01:00
Miguel Varela Ramos
937fc856b6
fix: checkAndUpdateGatewayHTTPRoute function 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-16 16:40:04 +01:00
Miguel Varela Ramos
c989dfdf20
test: adds test for getHTTPRouteForChallenge 
Signed-off-by: Miguel Varela Ramos <miguel@cohere.ai>
 2024-07-16 16:40:03 +01:00
Bartosz Slawianowski
cb2731ef78 fix: Handle case of Azure returning auth error 
Signed-off-by: Bartosz Slawianowski <bartosz.slawianowski@natzka.com>
 2024-07-16 01:28:37 +02:00
cert-manager-prow[bot]
4e3c162734
Merge pull request #7108 from inteon/bugfix_aws 
BUGFIX: AWS route53: Set global region for sts
 2024-07-12 14:13:19 +00:00
cert-manager-prow[bot]
c746fdf356
Merge pull request #7161 from wallrj/7147-cainjector-metadata-only-cache 
Reduce memory usage by only caching the metadata of Secret resources
 2024-07-12 10:31:19 +00:00
cert-manager-prow[bot]
c96e6a6b8e
Merge pull request #7164 from SgtCoDFish/bump-grpc 
Fix GHSA-xr7q-jx4m-x55m
 2024-07-10 10:20:31 +00:00
Ashley Davis
8c182d73f1
fix GHSA-xr7q-jx4m-x55m 
Signed-off-by: Ashley Davis <ashley.davis@venafi.com>
 2024-07-10 11:01:15 +01:00
Richard Wall
961e81b195 Update the memory-management design document 
Signed-off-by: Richard Wall <richard.wall@venafi.com>
 2024-07-10 10:45:28 +01:00
Richard Wall
15084fd5b8 make go-tidy 
Signed-off-by: Richard Wall <richard.wall@venafi.com>
 2024-07-10 10:07:18 +01:00
Richard Wall
8f9ccf3b42 Reduce memory usage by only caching the metadata of Secret resources 
Signed-off-by: Richard Wall <richard.wall@venafi.com>
 2024-07-10 10:07:18 +01:00
cert-manager-prow[bot]
659f22bf7e
Merge pull request #7155 from cert-manager/self-upgrade-master 
[CI] Merge self-upgrade-master into master
 2024-07-04 13:12:34 +00:00
cert-manager-bot
8b14e9ae0a BOT: run 'make upgrade-klone' and 'make generate' 
Signed-off-by: cert-manager-bot <cert-manager-bot@users.noreply.github.com>
 2024-07-04 00:20:14 +00:00
cert-manager-prow[bot]
af36d20702
Merge pull request #7148 from inteon/simplify_match_functions 
pki match: remove return values that are always nil
 2024-07-02 13:26:32 +00:00
Tim Ramlot
c58b08e7b7
pki match: remove return values that are always nil 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-07-02 13:38:35 +02:00
cert-manager-prow[bot]
ea349a0601
Merge pull request #7146 from lunarwhite/fix-desc 
Fix API fields description for Venafi TPP credentialsRef
 2024-07-01 14:45:32 +00:00
Yuedong Wu
df37eba376 fix API fields description for venafi tpp 
Signed-off-by: Yuedong Wu <dwcn22@outlook.com>
 2024-07-01 20:55:51 +08:00
cert-manager-prow[bot]
b497dadcb0
Merge pull request #7142 from inteon/bind_update 
Tests: use supported bind9 image and run as non-root
 2024-07-01 11:07:24 +00:00
Tim Ramlot
452ee1ea41
use supported bind9 image and run bind as non-root user 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-07-01 12:57:31 +02:00
cert-manager-prow[bot]
74fe287746
Merge pull request #7141 from inteon/add_bind_resource_request_and_limit 
Tests: add bind resource request to improve availability during tests
 2024-07-01 10:56:23 +00:00
cert-manager-prow[bot]
50abeda40d
Merge pull request #6987 from cbroglie/renew-before-pct 
feat: Add renewBeforePercentage alternative to renewBefore
 2024-07-01 09:45:23 +00:00
Christopher Broglie
0f74d7536e Add renewBeforePercentage alternative to renewBefore 
Since the actual duration is unknown until a cert has been issued,
providing an absolute duration for renewBefore can result in accidental
renewal loops. The new renewBeforePercentage field computes the
effective renewBefore using the actual duration, allowing users to
better express intent while maintaining backwards compatibility.

Fixes #4423, resolves #5821

Signed-off-by: Christopher Broglie <cbroglie@cloudflare.com>
 2024-06-29 21:18:15 -07:00
Tim Ramlot
0e45b3b23b
add bind resource request to improve availability during tests, also set memory limit = request following best practice 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-06-28 16:05:25 +02:00
cert-manager-prow[bot]
c65c75718d
Merge pull request #7140 from inteon/bugfix_nilpointer 
BUGFIX: Venafi issuer and clusterissuer checks were failing due to nilpointer exception
 2024-06-28 09:10:21 +00:00
Tim Ramlot
e906cb8db0
BUGFIX: Venafi issuer and clusterissuer checks were failing due to nilpointer exception 
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
 2024-06-28 10:03:43 +02:00
cert-manager-prow[bot]
1b9c02e999
Merge pull request #7126 from ThatsMrTalbot/feat/helm-default-config-apiversion-and-kind 
feat: default ControllerConfiguration apiVersion and kind in helm
 2024-06-25 11:34:56 +00:00
cert-manager-prow[bot]
054887d2ef
Merge pull request #7125 from SgtCoDFish/bump-http-lib 
Bump go-retryablehttp to address CVE-2024-6104
 2024-06-25 11:09:56 +00:00
Adam Talbot
e30ad68ab2 feat: default ControllerConfiguration apiVersion and kind in helm 
Signed-off-by: Adam Talbot <adam.talbot@venafi.com>
 2024-06-25 11:58:44 +01:00
Ashley Davis
817a2bfd21
bump go-retryablehttp to address CVE-2024-6104 
Signed-off-by: Ashley Davis <ashley.davis@venafi.com>
 2024-06-25 11:15:52 +01:00