weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
086c36a2ec
cert-manager/test/e2e/framework
History
Maël Valais 76eef68730 serviceAccountRef: the vault issuer can now use bound SA tokens 
Previously, the Vault issuer was only able to use a Secret in order to
use the "Kubernetes authentication" method. The downside to this service
account Secret token is that it has the default JWT iss
"kubernetes/serviceaccount" (along with the fact that the token is not
bound to a particular pod and has no expiry).

With the new serviceAccountRef, cert-manager now requests the token on
behalf of the pod in order to authenticate with Vault.

Signed-off-by: Maël Valais <mael@vls.dev>
2023-02-06 18:28:49 +01:00
..
addon serviceAccountRef: the vault issuer can now use bound SA tokens 2023-02-06 18:28:49 +01:00
config upgrade ginkgo to v2 2022-08-04 10:16:29 +00:00
helper move utility functions to reduce fragmentation and rename functions for consistency 2023-01-23 13:19:39 +01:00
log replace 'github.com/onsi/ginkgo' with 'github.com/onsi/ginkgo/v2' 2022-08-03 15:28:23 +00:00
matcher Remove bazel 🎉 2022-07-26 11:38:50 +01:00
util Remove bazel 🎉 2022-07-26 11:38:50 +01:00
cleanup.go
framework.go upgrade gateway api to v0.5.0 2022-08-08 08:52:59 +00:00
testenv.go Fix some lint issues regarding comments 2021-11-02 13:57:20 +03:00
util.go replace 'github.com/onsi/ginkgo' with 'github.com/onsi/ginkgo/v2' 2022-08-03 15:28:23 +00:00