weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
1,015 Commits 45 Branches 0 Tags 96 MiB
ea84532a5c
Commit Graph

1015 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Euan Kemp
ea84532a5c issuer/route53: log ignored InvalidChangeBatch err 2018-07-20 10:10:02 -07:00
Euan Kemp
efb339bac5 Gopkg: fix inputs digest 2018-07-19 11:24:12 -07:00
Euan Kemp
15d497b4ca issuer/route53: fix delete for 'NotExist' errors 
Fixes #736.

Prior to this change, it was quite possible to end up with a queue of
cleanup tasks that would never succeed.
 2018-07-19 10:20:27 -07:00
jetstack-bot
840f9de7d9
Merge pull request #734 from timuthy/master 
Improve ACME DNS validation tutorial
 2018-07-19 10:25:41 +01:00
jetstack-bot
6348c6ffca
Merge pull request #722 from autonomic-ai/support-ec-keys 
Add keyAlgorithm and keySize fields to Certificates, and support ECDSA keys
 2018-07-18 10:00:36 +01:00
Afolabi Badmos
445e522432 Add support for EC keys 
- This PR adds two fields to CertificateSpec:
  - `keyAlgorithm`, denotes which algorithm to use when generating
    a private key. Can be either `rsa` or `ecdsa`. When not set, the
    default algorithm used `rsa`.
  - `keySize`, denotes the key size of the private key being generated.
    For `rsa`, minimum key size is 2048 and maximum is 8192.
    For `ecdsa`, sizes 224, 256, 384 & 521 are supported.
    See https://golang.org/pkg/crypto/elliptic

- `keySize` can be set without being explicit about `keyAlgorithm`.
  - If `keySize` is specified and `keyAlgorithm` is not provided, `rsa` will
    be used as the key algorithm.

- `keyAlgorithm` can be set without being explicit about `keySize`.
  - If `keyAlgorithm` is specified and `keySize` is not provided, key size
    key size of `256` will be used for `ecdsa` key algorithm and
    key size of `2048` will be used for `rsa` key algorithm.

- helper functions in `pki` package now return crypto.PrivateKey
 2018-07-17 12:42:07 -04:00
Tim Usner
fa6f1bde12
Fix broken link for SAN 2018-07-17 13:04:23 +02:00
Tim Usner
92cb56746d
Add *.example.com to SAN 
*.example.com is set as Common Name and thus part of SANs.
 2018-07-17 13:02:27 +02:00
jetstack-bot
c1b34376fd
Merge pull request #726 from munnerz/selfsigned-link 
Add link to selfsigned issuer docs
 2018-07-12 18:21:30 +01:00
James Munnelly
c8ad744392 Add link to selfsigned issuer docs 2018-07-12 18:17:40 +01:00
jetstack-bot
caae0cc48a
Merge pull request #717 from kragniz/disable-ingress-shim 
Add --controllers flag to set which controllers are run
 2018-07-12 15:49:13 +01:00
Louis Taylor
58d71216c3
Change flag to list of controllers to enable 2018-07-12 10:27:49 +01:00
Louis Taylor
969c4530a0
Add Contains util function 2018-07-12 10:27:05 +01:00
Louis Taylor
fd48a2e360
Add option for disabling ingress-shim 
This adds a new flag, which can be used to disable running the
ingress-shim controller:

     --enable-ingress-shim=false
 2018-07-12 10:27:05 +01:00
jetstack-bot
a162a5bb8e
Merge pull request #612 from vdesjardins/custom-approle-path 
Vault: configurable appRole authentication path
 2018-07-11 17:53:33 +01:00
jetstack-bot
c08cd80730
Merge pull request #622 from munnerz/istio-annotation 
Add auth.istio.io annotation to ACME HTTP01 service
 2018-07-11 17:18:33 +01:00
test@test.com
cb7eaf986f Run hack/update-reference-docs.sh 2018-07-11 16:02:23 +00:00
Vincent Desjardins
7fae0fccf1 code review fixes 2018-07-11 16:00:39 +00:00
Vincent Desjardins
ca3b909cb7 code review modifications 2018-07-11 16:00:39 +00:00
Vincent Desjardins
2995cc90a3 Vault: configurable appRole authentication path 2018-07-11 16:00:39 +00:00
jetstack-bot
bd7f15d5f4
Merge pull request #710 from kragniz/dns-flag 
Add flag for setting nameservers for DNS01 check
 2018-07-11 14:26:33 +01:00
jetstack-bot
4d3179f2ba
Merge pull request #707 from munnerz/bump-crypto-acme 
Merge latest changes from upstream crypto/acme library
 2018-07-11 14:02:33 +01:00
jetstack-bot
1c167c302d
Merge pull request #720 from zegl/route53-managed-by-certmanager 
route53: update managed by DNS record comment
 2018-07-11 13:37:49 +01:00
jetstack-bot
22ba1d416b
Merge pull request #719 from kragniz/secret-certificate-name-label 
Add certificate-name label to created secrets
 2018-07-11 13:37:43 +01:00
jetstack-bot
44e3793241
Merge pull request #718 from kragniz/version-in-logs 
Add log message showing git tag and commit during startup
 2018-07-11 13:37:33 +01:00
Gustav Westling
641b497242 route53: update managed by DNS record comment 2018-07-08 12:09:00 +02:00
Louis Taylor
2e97514c5e
Add test 2018-07-06 18:03:02 +01:00
Louis Taylor
d60f4b447e
Apply cert name label to created secrets 2018-07-06 18:02:13 +01:00
Louis Taylor
3815b36193
Add git tag and commit to startup logs 2018-07-06 17:27:59 +01:00
jetstack-bot
2ef08e2b3c
Merge pull request #716 from kragniz/docs-apiversion 
docs: fix api version in issuer example resources
 2018-07-06 16:25:32 +01:00
Louis Taylor
4653d456ec
docs: fix api version in issuer example resources 2018-07-06 16:07:55 +01:00
jetstack-bot
8c1e0c9fcd
Merge pull request #507 from madmod/patch-1 
Fix AWS DNS policy example
 2018-07-05 21:01:31 +01:00
jetstack-bot
c48a38ae17
Merge pull request #644 from munnerz/ref-docs 
Add script for generating reference docs
 2018-07-05 15:12:41 +01:00
Louis Taylor
e35a09bd72
Add validation 2018-07-05 14:47:41 +01:00
James Munnelly
7b2f84e4d6 Add verify-reference-docs step to Makefile 
Exclude docs/generated from go test checks

Add hack/verify-reference-docs.sh
 2018-07-05 14:47:36 +01:00
James Munnelly
95000f1937 Run hack/update-reference-docs-dockerized.sh 2018-07-05 14:47:36 +01:00
James Munnelly
3a78c8a861 Run dep ensure 2018-07-05 14:47:35 +01:00
James Munnelly
80ca8daea0 Don't prune k8s.io/kube-openapi 2018-07-05 14:47:35 +01:00
James Munnelly
3fc5bf539f Include reference docs in sphinx site 2018-07-05 14:47:35 +01:00
James Munnelly
2014183a57 Add script for generating reference docs 2018-07-05 14:47:32 +01:00
Louis Taylor
4804086fdf
Add example to usage 2018-07-05 14:37:32 +01:00
Louis Taylor
14873c248a
Use StringSlice 2018-07-05 14:37:08 +01:00
Louis Taylor
ea6a5472e2
dns01-nameservers -> dns01-self-check-nameservers 2018-07-05 14:22:43 +01:00
Louis Taylor
d8f0419851
Add example to docs 2018-07-05 14:18:58 +01:00
Louis Taylor
c1ec835202
Add note to docs 2018-07-05 12:51:59 +01:00
Louis Taylor
cbc61ef7f9
Fix tests 2018-07-05 12:41:33 +01:00
Louis Taylor
3eaca6a318
Add flag for custom dns01 nameservers 2018-07-05 12:40:53 +01:00
jetstack-bot
d7bcb62256
Merge pull request #680 from fllaca/allow_http_proxy_envvars 
Allow setting http_proxy and https_proxy in cert-manager deployment
 2018-07-05 12:37:41 +01:00
jetstack-bot
92d17fecde
Merge pull request #708 from munnerz/fix-panic 
Prevent panics in v1alpha1 helpers.go
 2018-07-05 12:12:42 +01:00
James Munnelly
d61838d901 Prevent panics in v1alpha1 helpers.go 2018-07-05 11:43:19 +01:00