resource

package

v0.0.0-...-83947fe Latest Latest Go to latest Published: Feb 27, 2024 License: Apache-2.0 Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cockroachdb/helm-charts

Documentation ¶

Index ¶

Constants
func Clean(ctx context.Context, cl client.Client, namespace string, stsName string)
func GetSecretAnnotations(validFrom, validUpto, duration string) map[string]string
type Fetcher
type KubeFetcher
- func NewKubeFetcher(ctx context.Context, namespace string, reader client.Reader) *KubeFetcher
- func (f KubeFetcher) Fetch(o client.Object) error
type KubePersister
- func NewKubePersister(ctx context.Context, namespace string, client client.Client, ...) *KubePersister
- func (p KubePersister) Persist(obj client.Object, mutateFn func() error) (upserted bool, err error)
type Persister
type Resource
- func NewKubeResource(ctx context.Context, client client.Client, namespace string, ...) Resource
type TLSSecret
- func CreateTLSSecret(name string, secretType corev1.SecretType, r Resource) *TLSSecret
- func LoadTLSSecret(name string, r Resource) (*TLSSecret, error)

Constants ¶

View Source

const (
	CaCert         = "ca.crt"
	CaKey          = "ca.key"
	CertValidFrom  = "certificate-valid-from"
	CertValidUpto  = "certificate-valid-upto"
	CertDuration   = "certificate-duration"
	SecretDataHash = "secret-data-hash"
)

Variables ¶

This section is empty.

Functions ¶

func Clean ¶

func Clean(ctx context.Context, cl client.Client, namespace string, stsName string)

func GetSecretAnnotations ¶

func GetSecretAnnotations(validFrom, validUpto, duration string) map[string]string

Types ¶

type Fetcher ¶

type Fetcher interface {
	Fetch(obj client.Object) error
}

Fetcher updates the object with its state from Kubernetes

type KubeFetcher ¶

type KubeFetcher struct {
	client.Reader
	// contains filtered or unexported fields
}

KubeFetcher fetches Kubernetes results

func NewKubeFetcher ¶

func NewKubeFetcher(ctx context.Context, namespace string, reader client.Reader) *KubeFetcher

func (KubeFetcher) Fetch ¶

func (f KubeFetcher) Fetch(o client.Object) error

type KubePersister ¶

type KubePersister struct {
	client.Client
	// contains filtered or unexported fields
}

KubePersister saves resources back into Kubernetes

func NewKubePersister ¶

func NewKubePersister(ctx context.Context, namespace string, client client.Client, persistFn kube.PersistFn) *KubePersister

func (KubePersister) Persist ¶

func (p KubePersister) Persist(obj client.Object, mutateFn func() error) (upserted bool, err error)

Persist saves the resource in the cluster

type Persister ¶

type Persister interface {
	Persist(obj client.Object, mutateFn func() error) (upserted bool, err error)
}

Persister creates or updates the object in Kubernetes after calling the mutation function.

type Resource ¶

type Resource struct {
	Fetcher
	Persister
}

Resource represents a resource that can be fetched or saved

func NewKubeResource ¶

func NewKubeResource(ctx context.Context, client client.Client, namespace string, persistFn kube.PersistFn) Resource

type TLSSecret ¶

type TLSSecret struct {
	Resource
	// contains filtered or unexported fields
}

func CreateTLSSecret ¶

func CreateTLSSecret(name string, secretType corev1.SecretType, r Resource) *TLSSecret

CreateTLSSecret returns a TLSSecret struct that is used to store the certs via secrets.

func LoadTLSSecret ¶

func LoadTLSSecret(name string, r Resource) (*TLSSecret, error)

LoadTLSSecret fetches secret from the API server

func (*TLSSecret) CA ¶

func (s *TLSSecret) CA() []byte

func (*TLSSecret) CAKey ¶

func (s *TLSSecret) CAKey() []byte

func (*TLSSecret) IsRotationRequired ¶

func (s *TLSSecret) IsRotationRequired(duration time.Duration, cronStr string) (bool, string)

IsRotationRequired validates if all the required annotations are present

func (*TLSSecret) Ready ¶

func (s *TLSSecret) Ready() bool

Ready checks if secret contains required data

func (*TLSSecret) ReadyCA ¶

func (s *TLSSecret) ReadyCA() bool

ReadyCA checks if the CA secret contains required data

func (*TLSSecret) Secret ¶

func (s *TLSSecret) Secret() *corev1.Secret

Secret returns the Secret object

func (*TLSSecret) TLSCert ¶

func (s *TLSSecret) TLSCert() []byte

func (*TLSSecret) TLSPrivateKey ¶

func (s *TLSSecret) TLSPrivateKey() []byte

func (*TLSSecret) UpdateCASecret ¶

func (s *TLSSecret) UpdateCASecret(cakey []byte, caCert []byte, annotations map[string]string) error

UpdateCASecret updates CA key and CA Cert

func (*TLSSecret) UpdateTLSSecret ¶

func (s *TLSSecret) UpdateTLSSecret(cert, key, ca []byte, annotations map[string]string) error

UpdateTLSSecret updates three different certificates at the same time. It save the TLSCert, the CA, and the TLSPrivateKey in a secret.

func (*TLSSecret) ValidateAnnotations ¶

func (s *TLSSecret) ValidateAnnotations() bool

ValidateAnnotations validates if all the required annotations are present

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL