cert-manager

Author	SHA1	Message	Date
Richard Wall	e21a57a88c	Enable metrics server on the webhook Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-07-19 17:04:52 +01:00
Tim Ramlot	1aacfd826a	promote the LiteralCertificateSubject feature to Beta Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-05-14 17:25:28 +02:00
Tim Ramlot	cfe974b775	deduplicate shared config API structs Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-05-14 09:28:10 +02:00
Erik Godding Boye	003c1b12e8	Promote AdditionalCertificateOutputFormats feature gate to Beta and enable by default Signed-off-by: Erik Godding Boye <egboye@gmail.com>	2024-04-28 17:29:35 +02:00
Tim Ramlot	38cd0accdb	graduate 'DisallowInsecureCSRUsageDefinition' to GA Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-04-26 16:14:31 +02:00
Youngjun	d2988a906a	refectoring: remove deprecated function - remove deprecated function - comment update beta to ga (and version) Signed-off-by: Youngjun <yj.yoo@okestro.com>	2024-04-22 22:57:52 +09:00
Tim Ramlot	8425b9fe75	use DefaultUnstructuredConverter to convert extras to unstructured Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-15 14:13:26 +01:00
Tim Ramlot	23ab96de91	use unstructured.Unstructured in Mutation webhook Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-12 11:11:33 +01:00
Tim Ramlot	8eaeeb78c0	buildAdmissionChain: return admission.PluginChain instead of admission.Interface Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-12 10:56:45 +01:00
Tim Ramlot	b9a216cdfc	Simplify webhook and switch Webhook to controller-runtime. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-12 10:55:32 +01:00
Adam Talbot	a8bb63f0fc	fix: move server package out of internal Currently the TLS code here is imported by the approver-policy project. Long term we should break this code out to a new package, for now we can just move it out internal to unblock our ability to update the approver-policy imports. Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2024-02-07 11:31:17 +00:00
Tim Ramlot	899d55ae57	remove webhook conversion logic Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-02 11:19:08 +01:00
jetstack-bot	a1c134e78c	Merge pull request #6574 from ThatsMrTalbot/tls-metrics-endpoint feat: add tls to metrics endpoint	2024-01-10 14:48:17 +00:00
Adam Talbot	d27fcc2762	refactor: refactored metrics server code into internal package Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2024-01-04 15:49:25 +00:00
Tim Ramlot	41404a7fd7	rename UseCertificateRequestNameConstraints to NameConstraints Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 15:49:18 +01:00
jetstack-bot	cc8925ae9f	Merge pull request #6404 from SpectralHiss/hef/otherNameSANs Other name sans support in Certificates	2024-01-03 14:16:23 +00:00
Richard Wall	036e3a8e74	Replace all uses of sets.String with the generic sets.Set Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 17:24:38 +00:00
Adam Talbot	ae143c15f6	feat: add tls to metrics endpoint Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-27 17:15:00 +00:00
Allen Mun	9b09aa87a7	Add flag and field to customize leaf duration on dynamic certificates Signed-off-by: Allen Mun <allen.mun@capitalone.com>	2023-12-13 15:45:52 -05:00
SpectralHiss	4bdee5f010	Rename otherNameSANs to otherNames * Improve the CRD godoc comments Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>	2023-12-13 16:21:56 +00:00
Tim Ramlot	7b7912022a	Add feature gate Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-12-13 09:16:06 +00:00
tanujd11	8d362439a8	fix UTs Signed-off-by: tanujd11 <dwiveditanuj41@gmail.com>	2023-12-07 22:30:31 +05:30
tanujd11	84d7dd4aed	Addressed review comments Signed-off-by: tanujd11 <dwiveditanuj41@gmail.com>	2023-12-07 22:30:31 +05:30
Tim Ramlot	c70d9aba08	Rename DontAllowInsecureCSRUsageDefinition feature flag to DisallowInsecureCSRUsageDefinition and make it a Beta flag. Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 15:18:14 +02:00
Tim Ramlot	1795c1985f	more clearly indicate that the example is a template Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 14:38:24 +02:00
Tim Ramlot	f158e1dfac	cleanup featuregate comments Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 09:36:47 +02:00
Tim Ramlot	b19d11d267	change the types of ports in the WebhookConfiguration: internal: int -> int32 public: int -> *int32 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-15 20:53:58 +02:00
Tim Ramlot	2f56c3c89a	add DontAllowInsecureCSRUsageDefinition feature gate to disable the strict CSR validation Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-06-28 11:11:32 +02:00
irbekrm	8a34cbc0a0	Adds some warnings for folks to not import feature gates into shared code Really we should restructure this to remove the possibility of accidentally overwriting other component's feature gates Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-23 12:02:55 +01:00
Tim Ramlot	82beacaee2	removed unused NewCertManagerWebhookServer function argument Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-02-28 12:30:44 +01:00
Tim Ramlot	93caba980e	apply go fmt for go1.19 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2022-08-04 09:51:57 +00:00
Ashley Davis	fb231ab641	Remove bazel 🎉 This removes all .bazel and .bzl files, and a bunch of scripts relating to bazel, now that it's been entirely replaced. There are still a few places where traces could be removed, but this removes the brunt of the bazel stuff that remains. Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2022-07-26 11:38:50 +01:00
Alessandro Vermeulen	1da01211ee	Feature gated support for using literal subjects in `Certificate`s Signed-off-by: Alessandro Vermeulen <alessandro.vermeulen@ing.com>	2022-06-08 20:50:00 +02:00
Ashley Davis	3a055cc2f5	rename all uses of github.com/jetstack/cert-manager This was done by running the following command twice: ```bash grep -Ri "github.com/jetstack/cert-manager" . \| \ cut -d":" -f1 \| \ sort \| \ uniq \| \ xargs sed -i "s/github.com\/jetstack\/cert-manager/github.com\/cert-manager\/cert-manager/" ``` Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2022-02-02 09:08:31 +00:00
joshvanl	1cf06889bf	Add AdditionalCertificateOutputFormats feature to webhook set. Make @joshvanl owner of feature in controller. Signed-off-by: joshvanl <vleeuwenjoshua@gmail.com>	2022-02-01 17:02:48 +00:00
James Munnelly	bf98c92a44	Remove ServerOption type now that webhook initialization has moved to internal package Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-20 10:56:51 +00:00
James Munnelly	07a0171e98	Use regular discovery client instead of cache Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-20 10:56:50 +00:00
James Munnelly	708de3c580	webhook: use new admission-plugin backed validation and mutation handlers Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-20 10:56:46 +00:00
James Munnelly	dd560bca6a	Add internal webhook package that uses new admission chain Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-20 10:55:43 +00:00
James Munnelly	9a0a395c05	Re-order imports Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-07 12:49:51 +00:00
James Munnelly	df250307c2	Fix test failures Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-07 12:20:31 +00:00
James Munnelly	ea2d04e2c0	Add webhook-specific 'feature' package and wire it up through config Signed-off-by: James Munnelly <jmunnelly@apple.com>	2022-01-07 12:17:38 +00:00

42 Commits