weiguoqiang/cert-manager
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
086c36a2ec
cert-manager/test/e2e/framework/addon
History
Maël Valais 76eef68730 serviceAccountRef: the vault issuer can now use bound SA tokens 
Previously, the Vault issuer was only able to use a Secret in order to
use the "Kubernetes authentication" method. The downside to this service
account Secret token is that it has the default JWT iss
"kubernetes/serviceaccount" (along with the fact that the token is not
bound to a particular pod and has no expiry).

With the new serviceAccountRef, cert-manager now requests the token on
behalf of the pod in order to authenticate with Vault.

Signed-off-by: Maël Valais <mael@vls.dev>
2023-02-06 18:28:49 +01:00
..
base Remove bazel 🎉 2022-07-26 11:38:50 +01:00
chart e2e: the vault addon was incorrectly using StdoutPipe 2023-02-06 18:28:49 +01:00
vault serviceAccountRef: the vault issuer can now use bound SA tokens 2023-02-06 18:28:49 +01:00
venafi Remove bazel 🎉 2022-07-26 11:38:50 +01:00
globals.go rename all uses of github.com/jetstack/cert-manager 2022-02-02 09:08:31 +00:00
README.md

README.md