certificates

package

v1.30.0 Latest Latest Go to latest Published: Apr 17, 2024 License: Apache-2.0 Imports: 16 Imported by: 60

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubernetes/kubernetes

Links

Open Source Insights

Documentation ¶

Overview ¶

Package certificates implements an abstract controller that is useful for building controllers that manage CSRs

Index ¶

func GetCertApprovalCondition(status *certificates.CertificateSigningRequestStatus) (approved bool, denied bool)
func HasTrueCondition(csr *certificates.CertificateSigningRequest, ...) bool
func IgnorableError(s string, args ...interface{}) ignorableError
func IsCertificateRequestApproved(csr *certificates.CertificateSigningRequest) bool
type CertificateController
- func NewCertificateController(ctx context.Context, name string, kubeClient clientset.Interface, ...) *CertificateController
- func (cc *CertificateController) Run(ctx context.Context, workers int)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetCertApprovalCondition ¶ added in v1.7.0

func GetCertApprovalCondition(status *certificates.CertificateSigningRequestStatus) (approved bool, denied bool)

func HasTrueCondition ¶ added in v1.19.0

func HasTrueCondition(csr *certificates.CertificateSigningRequest, conditionType certificates.RequestConditionType) bool

HasTrueCondition returns true if the csr contains a condition of the specified type with a status that is set to True or is empty

func IgnorableError ¶ added in v1.9.0

func IgnorableError(s string, args ...interface{}) ignorableError

IgnorableError returns an error that we shouldn't handle (i.e. log) because it's spammy and usually user error. Instead we will log these errors at a higher log level. We still need to throw these errors to signal that the sync should be retried.

func IsCertificateRequestApproved ¶

func IsCertificateRequestApproved(csr *certificates.CertificateSigningRequest) bool

IsCertificateRequestApproved returns true if a certificate request has the "Approved" condition and no "Denied" conditions; false otherwise.

Types ¶

type CertificateController ¶

type CertificateController struct {
	// contains filtered or unexported fields
}

func NewCertificateController ¶

func NewCertificateController(
	ctx context.Context,
	name string,
	kubeClient clientset.Interface,
	csrInformer certificatesinformers.CertificateSigningRequestInformer,
	handler func(context.Context, *certificates.CertificateSigningRequest) error,
) *CertificateController

func (*CertificateController) Run ¶

func (cc *CertificateController) Run(ctx context.Context, workers int)

Run the main goroutine responsible for watching and syncing jobs.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
approver Package approver implements an automated approver for kubelet certificates.	Package approver implements an automated approver for kubelet certificates.
authority
cleaner Package cleaner implements an automated cleaner that does garbage collection on CSRs that meet specific criteria.	Package cleaner implements an automated cleaner that does garbage collection on CSRs that meet specific criteria.
rootcacertpublisher
signer Package signer implements a CA signer that uses keys stored on local disk.	Package signer implements a CA signer that uses keys stored on local disk.
config
config/v1alpha1

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL