feat: Expose options to allow injection of external certificates #2249
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Allow overriding the certificate secret name * Only generate cert-secret if external injection is disabled * Disable default certificate rotation when injecting Signed-off-by: Ethan Range <65268454+ethanrange@users.noreply.github.com>
Signed-off-by: Ethan Range <65268454+ethanrange@users.noreply.github.com>
Codecov Report
@@ Coverage Diff @@
## master #2249 +/- ##
==========================================
- Coverage 54.57% 54.39% -0.18%
==========================================
Files 111 111
Lines 9554 9554
==========================================
- Hits 5214 5197 -17
- Misses 3946 3958 +12
- Partials 394 399 +5
Flags with carried forward coverage won't be shown. Click here to find out more.
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
Closed
|
Hi, I'm away for a while from next week onwards - if someone has a chance to review this before the weekend that'd be great - I can then make any changes requested before I leave. No worries if not, I can handle it upon my return. |
Co-authored-by: Rita Zhang <rita.z.zhang@gmail.com> Signed-off-by: Ethan Range <65268454+ethanrange@users.noreply.github.com>
Signed-off-by: Ethan Range <65268454+ethanrange@users.noreply.github.com>
6 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does / why we need it:
This PR is very similar to #1359 by @romachalm which was unfortunately never merged as the author stopped responding. I had followed the same path, implementing webhook annotations in #2231 before stumbling across this PR. I have recreated this with a slightly different interface.
This PR allows for external certificates to be injected and used in place of the default, self signed certificate. This is useful when using services such as
cert-managerto automatically sign and rotate certificates. It provides Helm chart config values which when set:This, in combination with the annotations in #2231 allows for configuring external certificate injection
Which issue(s) this PR fixes (optional, using
fixes #<issue number>(, fixes #<issue_number>, ...)format, will close the issue(s) when the PR gets merged):Fixes #520
Special notes for your reviewer:
N/A