[pull] master from cert-manager:master #1066
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![pull[bot]](https://avatars.githubusercontent.com/in/12910?s=60&v=4){kind=small}
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
add fuzzer for venafi cr controller
Signed-off-by: Ashley Davis <[email protected]>
Add further text explaining why we use an old license year
Signed-off-by: Josh Soref <[email protected]>
Clarify how to use the Kind section of the PR template
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Tim Ramlot <[email protected]>
feat: Use OAuth endpoint for Venafi Issuer when user/pass provided
K8s expects finalizers to be of the form: FQDN/finalizer-name As such, the initial finalizer name (finalizer.acme.cert-manager.io) used by cert-manager is noncompliant. These changes add initial support for a proper domain qualified name (acme.cert-manager.io/finalizer). Support for using that new name will be added later. Feature plan: 1. Add support for tolerating the domain-qualified-finalizer 2. Add flag enabled support for setting the domain-qualified-finalizer 3. Release a version with current finalizer on by default 4. Change default behavior to use the domain-qualified-finalizer and allowing flag to use legacy behavior 5. Release a version with domain-qualified-finalizer on by default 6. Remove support for the legacy finalizer and the flag 7. Release a version with only domain-qualified-finalizer Signed-off-by: Josh Soref <[email protected]>
Ideally this allows users to use acme.cert-manager.io/finalizer Signed-off-by: Josh Soref <[email protected]>
…to-venafi-certs 6898: Add validity duration to Venafi certificates
Support a domain qualified finalizer instead of one that triggers a warning from kubernetes
Add design for pushing charts to OCI registry
…r exist at the moment of deletion Signed-off-by: Tim Ramlot <[email protected]>
Signed-off-by: Tim Ramlot <[email protected]>
Signed-off-by: Tim Ramlot <[email protected]>
Remove issuer argument from CleanUp function
Signed-off-by: Richard Wall <[email protected]>
Remove webhook validation for Route53 region Signed-off-by: Richard Wall <[email protected]>
Enable and fix usestdlibvars, misspell and staticcheck linters
Signed-off-by: Richard Wall <[email protected]>
Signed-off-by: Richard Wall <[email protected]>
Signed-off-by: Nathan Baulch <[email protected]>
Signed-off-by: Tim Ramlot <[email protected]>
Signed-off-by: Richard Wall <[email protected]>
Bump base images to latest
Signed-off-by: Ashley Davis <[email protected]>
Split tests using 'live' DNS into separate package
Signed-off-by: Romain QUINIO <[email protected]> Signed-off-by: Ashley Davis <[email protected]>
Upgrade the upgrade test
…teral Allow to set keystore password in Certificate
Signed-off-by: Tim Ramlot <[email protected]>
[CI] Self-upgrade merging self-upgrade-master into master
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
acmesolver: Fix error message on successful exit
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
Cloudflare have stopped including zone IDs in their record responses now, 2 months after they said they did and with their trademark zero effort in outreach to consumers of their API. Ensure that findTxtRecord returns a record struct with the zone ID set regardless. Fixes #7540 Signed-off-by: Luke Carrier <[email protected]>
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
Signed-off-by: Ashley Davis <[email protected]>
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
add fuzz tests for ProcessItem APIs
cr approval: add fuzz test
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
Remove ValidateCAA code, leaving a warning
Signed-off-by: cert-manager-bot <[email protected]>
[CI] Merge self-upgrade-master into master
Signed-off-by: Ashley Davis <[email protected]>
…ne-id chore(issuer/cloudflare): ensure we set ZoneID
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot]
Can you help keep this open source service alive? 💖 Please sponsor : )