cert-manager

Author	SHA1	Message	Date
jetstack-bot	f643eef2b2	Merge pull request #6755 from import-shiburin/master bugfix: wrong certificate chain is used if preferredChain is configured	2024-02-20 15:29:07 +00:00
Tim Ramlot	b77910d785	change signature of SetCertificateDuration and SetCertificateRenewBefore Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-20 08:40:38 +01:00
Tim Ramlot	0ed660873e	fix incorrect comments and error messages Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-16 19:49:28 +01:00
Tim Ramlot	205067b834	update tests to match the current Let's encrypt setup Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-16 15:23:45 +01:00
Tim Ramlot	672aad41bf	don't call ListCertAlternates if default chain matches the preferred chain Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-16 15:23:22 +01:00
Sam Lee	ff5c4103a0	remove URL verification from alternateCertChain tests Signed-off-by: Sam Lee <me@shibuya-rin.moe>	2024-02-13 22:42:00 +09:00
Sam Lee	94509d0490	changed term 'alt' to 'preferred' Signed-off-by: Sam Lee <me@shibuya-rin.moe>	2024-02-13 22:12:53 +09:00
Sam Lee	b9ac41726c	make getAltCertChain checks only topmost certificate Signed-off-by: Sam Lee <me@shibuya-rin.moe>	2024-02-13 19:10:16 +09:00
Sam Lee	811cc7908e	fix getAltCertChain not considering primary chain as candidate Signed-off-by: Sam Lee <me@shibuya-rin.moe>	2024-02-13 19:10:16 +09:00
Tim Ramlot	ffb47e52fa	remove dead & deprecated code from cert-manager codebase Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-10 17:22:23 +01:00
Tim Ramlot	04220447bc	remove deprecated files and functions Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-02-08 10:45:06 +01:00
jetstack-bot	a1c134e78c	Merge pull request #6574 from ThatsMrTalbot/tls-metrics-endpoint feat: add tls to metrics endpoint	2024-01-10 14:48:17 +00:00
Tim Ramlot	c584ee6dfb	use generics for mustAllSync variants Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-05 11:58:14 +01:00
Adam Talbot	d27fcc2762	refactor: refactored metrics server code into internal package Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2024-01-04 15:49:25 +00:00
Tim Ramlot	950948e465	start using the new 'slices' library and deprecate old util functions Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-04 09:32:17 +01:00
Tim Ramlot	6458aaf518	stop using deprecated klog functions Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 16:18:35 +01:00
jetstack-bot	e9a4793ba4	Merge pull request #6589 from inteon/rename_feature_gates Rename UseCertificateRequestNameConstraints to NameConstraints	2024-01-03 15:04:22 +00:00
Tim Ramlot	41404a7fd7	rename UseCertificateRequestNameConstraints to NameConstraints Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 15:49:18 +01:00
jetstack-bot	9d5ed5752f	Merge pull request #6120 from inteon/cleanup_test_context_builder add comments explaining the Sync function & small test bugfix	2024-01-03 14:33:22 +00:00
jetstack-bot	cc8925ae9f	Merge pull request #6404 from SpectralHiss/hef/otherNameSANs Other name sans support in Certificates	2024-01-03 14:16:23 +00:00
jetstack-bot	4af78fe98a	Merge pull request #6548 from snorwin/modern-pkcs12 New option to specify encryption and MAC algorithms for PKCS#12 keystores.	2024-01-03 12:54:22 +00:00
Tim Ramlot	8223df9e91	rename Algorithms to Profile Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 13:45:02 +01:00
Tim Ramlot	914c2dd169	add comments explaining the Sync function & small bugfixes Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2024-01-03 11:15:27 +01:00
Richard Wall	036e3a8e74	Replace all uses of sets.String with the generic sets.Set Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 17:24:38 +00:00
Richard Wall	19ade4b79e	Replace all calls to RandStringBytes and RandStringRunes With k8s.io/apimachinery/pkg/util/rand#String instead Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 15:41:07 +00:00
Richard Wall	4aa373b733	Deprecate RandStringBytes and RandStringRunes Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 15:02:14 +00:00
Richard Wall	d468830b23	Fix gosec G404 Signed-off-by: Richard Wall <richard.wall@venafi.com>	2024-01-02 12:33:46 +00:00
jetstack-bot	c7714e65f0	Merge pull request #6551 from wallrj/gosec-601 Fix gosec G601: Implicit memory aliasing of items from a range statement	2023-12-20 18:21:37 +00:00
Richard Wall	4de9e956e5	Fix gosec G601: Implicit memory aliasing of items from a range statement Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-12-20 17:25:41 +00:00
Adam Talbot	247a034116	feat: update gateway api to v1 Signed-off-by: Adam Talbot <adam.talbot@venafi.com>	2023-12-18 21:00:42 +00:00
Norwin Schnyder	ebf58b9967	apply PR feedback Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-15 10:52:57 +01:00
SpectralHiss	4bdee5f010	Rename otherNameSANs to otherNames * Improve the CRD godoc comments Signed-off-by: SpectralHiss <houssem.elfekih@jetstack.io>	2023-12-13 16:21:56 +00:00
Norwin Schnyder	b8ad8a3704	apply PR feedback Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-13 12:00:39 +00:00
Tim Ramlot	721f71ed60	Refactor the solution Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-12-13 09:37:21 +00:00
Norwin Schnyder	56dcb3e1dd	enhance unit tests Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-12 15:06:57 +00:00
Norwin Schnyder	b8f4f3b518	pkcs12 encoding with different algorithms Signed-off-by: Norwin Schnyder <norwin.schnyder+github@gmail.com>	2023-12-12 14:27:00 +00:00
tanujd11	589030dec1	feature: added name constraints Signed-off-by: tanujd11 <dwiveditanuj41@gmail.com>	2023-12-07 22:27:31 +05:30
Tim Ramlot	6f7ebbed7b	replace deprecated pkcs12 function call with pkcs12.LegacyRC2 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-27 12:32:19 +01:00
jetstack-bot	c9e028f3db	Merge pull request #6347 from lauraseidler/fix/gateway-warning-http Do not process Gateway listeners that do not support TLS	2023-11-17 16:18:19 +01:00
Jeremy Campbell	dc876fef16	Add x509 v3 CA Issuers Extension Signed-off-by: Jeremy Campbell <jeremy.campbell@okta.com>	2023-11-16 12:45:16 -06:00
jetstack-bot	6fddbe538f	Merge pull request #6433 from vinny-sabatini/issue-5782 fix error message when setting up vault issuer	2023-11-14 16:30:01 +01:00
Tim Ramlot	4c94f3ef10	create ad-hoc schemes instead of sharing global ones Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-11-06 21:58:24 +01:00
Vincent Sabatini	298ceb3b2a	fix error message when setting up vault issuer * Ensure Vault URL can be parsed * Separate generic http errors from vault specific errors when checking health endpoint Signed-off-by: Vincent Sabatini <vincent.sabatini@gmail.com>	2023-10-19 08:23:04 -05:00
Max Brauer	432430b311	Rename webhookConfig to controllerConfig Signed-off-by: Max Brauer <mbrauer@vmware.com>	2023-10-18 15:28:14 +02:00
Tim Ramlot	15bc387da6	make changes based on feedback Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-13 19:42:13 +02:00
Tim Ramlot	e63d061269	add tests Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-11 13:48:01 +02:00
Tim Ramlot	d40dae9d67	Fix DuplicateSecretName issue Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-11 13:47:44 +02:00
Laura Seidler	6ac88fd6b9	Do not process Gateway listeners that do not support TLS Otherwise, these will raise warnings in the next steps (e.g. about empty TLS blocks, which are not supported for HTTP listeners). Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:55 +02:00
Laura Seidler	6240ecbea3	Add test case to explicitly support TLS listeners Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:45 +02:00
Laura Seidler	9165f186cb	Use constants instead of strings for gateway protocol types These were already used in some places, this makes the usage more consistent and easier to grep where different protocols are being used. Signed-off-by: Laura Seidler <hello@laura-seidler.de>	2023-10-11 12:48:39 +02:00

1 2 3 4 5 ...

1447 Commits