Merge branch 'main' into feat/AB#72725/owner-role-name-id-support

irby · irby · commit bce642a5a5b8 · 2025-07-15T09:03:59.000-04:00
diff --git a/.github/workflows/keyfactor-bootstrap-workflow.yml b/.github/workflows/keyfactor-bootstrap-workflow.yml
@@ -46,7 +46,7 @@ jobs:
         run: go test -v ./...
 
   call-starter-workflow:
-    uses: keyfactor/actions/.github/workflows/starter.yml@v3
+    uses: keyfactor/actions/.github/workflows/starter.yml@3.2.0
     needs: test
     secrets:
       token: ${{ secrets.V2BUILDTOKEN}}
diff --git a/api/v1alpha1/issuer_types.go b/api/v1alpha1/issuer_types.go
@@ -47,21 +47,21 @@ type IssuerSpec struct {
 	APIPath string `json:"apiPath,omitempty"`
 
 	// EnrollmentPatternId is the ID of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
 	// If EnrollmentPatternId and EnrollmentPatternName are both specified, EnrollmentPatternId will take precedence.
 	// Enrollment will fail if the specified template is not compatible with the enrollment pattern.
 	// Refer to the Keyfactor Command documentation for more information.
 	EnrollmentPatternId int32 `json:"enrollmentPatternId,omitempty"`
 
 	// EnrollmentPatternName is the name of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
 	// If EnrollmentPatternId and EnrollmentPatternName are both specified, EnrollmentPatternId will take precedence.
 	// Enrollment will fail if the specified template is not compatible with the enrollment pattern.
 	// Refer to the Keyfactor Command documentation for more information.
 	EnrollmentPatternName string `json:"enrollmentPatternName,omitempty"`
 
 	// Deprecated. CertificateTemplate is the name of the certificate template to use. If using Keyfactor Command 25.1 or later, use EnrollmentPatternName or EnrollmentPatternId instead.
-	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+	// If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
 	// Enrollment will fail if the specified template is not compatible with the enrollment pattern.
 	// Refer to the Keyfactor Command documentation for more information.
 	CertificateTemplate string `json:"certificateTemplate,omitempty"`
diff --git a/config/crd/bases/command-issuer.keyfactor.com_clusterissuers.yaml b/config/crd/bases/command-issuer.keyfactor.com_clusterissuers.yaml
@@ -71,17 +71,17 @@ spec:
               enrollmentPatternId:
                 description: |-
                   EnrollmentPatternId is the ID of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: integer
                 format: int32
               enrollmentPatternName:
                 description: |-
                   EnrollmentPatternName is the name of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
@@ -103,7 +103,7 @@ spec:
               certificateTemplate:
                 description: |-
                   CertificateTemplate is the name of the certificate template to use. Deprecated in favor of EnrollmentPattern as of Keyfactor Command 25.1.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
diff --git a/config/crd/bases/command-issuer.keyfactor.com_issuers.yaml b/config/crd/bases/command-issuer.keyfactor.com_issuers.yaml
@@ -71,17 +71,17 @@ spec:
               enrollmentPatternId:
                 description: |-
                   EnrollmentPatternId is the ID of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: integer
                 format: int32
               enrollmentPatternName:
                 description: |-
                   EnrollmentPatternName is the name of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
@@ -103,7 +103,7 @@ spec:
               certificateTemplate:
                 description: |-
                   CertificateTemplate is the name of the certificate template to use. Deprecated in favor of EnrollmentPattern as of Keyfactor Command 25.1.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
diff --git a/deploy/charts/command-cert-manager-issuer/templates/crds/clusterissuers.yaml b/deploy/charts/command-cert-manager-issuer/templates/crds/clusterissuers.yaml
@@ -65,17 +65,17 @@ spec:
               enrollmentPatternId:
                 description: |-
                   EnrollmentPatternId is the ID of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: integer
                 format: int32
               enrollmentPatternName:
                 description: |-
                   EnrollmentPatternName is the name of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
@@ -97,7 +97,7 @@ spec:
               certificateTemplate:
                 description: |-
                   CertificateTemplate is the name of the certificate template to use. Deprecated in favor of EnrollmentPattern as of Keyfactor Command 25.1.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
diff --git a/deploy/charts/command-cert-manager-issuer/templates/crds/issuers.yaml b/deploy/charts/command-cert-manager-issuer/templates/crds/issuers.yaml
@@ -65,17 +65,17 @@ spec:
               enrollmentPatternId:
                 description: |-
                   EnrollmentPatternId is the ID of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: integer
                 format: int32
               enrollmentPatternName:
                 description: |-
                   EnrollmentPatternName is the name of the enrollment pattern to use. Supported in Keyfactor Command 25.1 and later.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
-                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
+                  If both enrollmentPatternId and enrollmentPatternName are specified, enrollmentPatternId will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
@@ -97,7 +97,7 @@ spec:
               certificateTemplate:
                 description: |-
                   CertificateTemplate is the name of the certificate template to use. Deprecated in favor of EnrollmentPattern as of Keyfactor Command 25.1.
-                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precendence.
+                  If both enrollment pattern and certificate template are specified, enrollment pattern will take precedence.
                   Enrollment will fail if the specified template is not compatible with the enrollment pattern.
                   Refer to the Keyfactor Command documentation for more information.
                 type: string
diff --git a/e2e/run_tests.sh b/e2e/run_tests.sh
@@ -201,7 +201,7 @@ install_cert_manager_issuer() {
 
     # Only set the image repository parameter if we are deploying locally
     if [[ "$IS_LOCAL_DEPLOYMENT" == "true" ]]; then
-        IMAGE_REPO_PARAM="--set image.repository=${IMAGE_NAME}"
+        IMAGE_REPO_PARAM="--set image.repository=${IMAGE_REPO}/${IMAGE_NAME}"
     else
         IMAGE_REPO_PARAM=""
     fi
@@ -432,23 +432,13 @@ add_issuer_specification_field() {
     local field_value=$2
     local issuer_or_cluster_issuer=$3
 
-    resolved_value=""
-
-    # if field is strictly numeric, add the field as numeric. Otherwise, treat as string
-    if [[ $field_value =~ ^[0-9]+$ ]]; then
-        resolved_value=$field_value
-    else
-        resolved_value="\"$field_value\""
-    fi
-
     local target=$ISSUER_CRD_FQTN
     if [[ $issuer_or_cluster_issuer == "ClusterIssuer" ]]; then
         target=$CLUSTER_ISSUER_CRD_FQTN
     fi
 
     echo "Adding $target specification field: $field_name with value: $field_value"
 
-
     kubectl -n "$ISSUER_NAMESPACE" patch $target $ISSUER_CR_NAME --type='json' -p="[{\"op\": \"add\", \"path\": \"/spec/$field_name\", \"value\": $field_value}]"
 
     echo "✅ Issuer specification field added successfully."
@@ -534,6 +524,9 @@ if "$IS_LOCAL_DEPLOYMENT" = "true"; then
     echo "🐳 Building ${FULL_IMAGE_NAME} Docker image..."
     docker build -t ${FULL_IMAGE_NAME} .
     echo "✅ Docker image built successfully"
+
+    echo "📦 Listing Docker images..."
+    docker images --format "table {{.Repository}}\t{{.Tag}}\t{{.CreatedAt}}\t{{.Size}}" | head -11
 fi
 
 # 5. Deploy the command-cert-manager-issuer Helm chart if not exists
@@ -589,6 +582,7 @@ echo ""
 # Deploy Issuer
 echo "🔐 Deploying $ISSUER_NAMESPACE namespace if not exists..."
 kubectl create namespace ${ISSUER_NAMESPACE} --dry-run=client -o yaml | kubectl apply -f -
+regenerate_issuer
 echo "✅ $ISSUER_NAMESPACE namespace is ready"
 echo ""
 
diff --git a/go.mod b/go.mod
@@ -6,7 +6,7 @@ toolchain go1.24.0
 
 require (
 	github.com/Keyfactor/keyfactor-auth-client-go v1.3.0
-	github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.1
+	github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.2
 	github.com/cert-manager/cert-manager v1.16.2
 	github.com/go-logr/logr v1.4.2
 	github.com/stretchr/testify v1.10.0
diff --git a/go.sum b/go.sum
@@ -24,8 +24,8 @@ github.com/AzureAD/microsoft-authentication-library-for-go v1.4.2 h1:oygO0locgZJ
 github.com/AzureAD/microsoft-authentication-library-for-go v1.4.2/go.mod h1:wP83P5OoQ5p6ip3ScPr0BAq0BvuPAvacpEuSzyouqAI=
 github.com/Keyfactor/keyfactor-auth-client-go v1.3.0 h1:otC213b6CYzqeN9b3CRlH1Qj1hTFIN5nqPA8gTlHdLg=
 github.com/Keyfactor/keyfactor-auth-client-go v1.3.0/go.mod h1:97vCisBNkdCK0l2TuvOSdjlpvQa4+GHsMut1UTyv1jo=
-github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.1 h1:FkERxNxOyoSHBJP/vS60DLH0g+f8mKeJd8IUAGhV8m8=
-github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.1/go.mod h1:VnVW8x+pChhnOWBR1PNYPeCQQjlWIK1bwHI8i8j7UPI=
+github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.2 h1:7VsZOYgMHAO2a1eeyVgDKel9TJXXYRQpd1EvSvp8lKA=
+github.com/Keyfactor/keyfactor-go-client-sdk/v25 v25.0.2/go.mod h1:VnVW8x+pChhnOWBR1PNYPeCQQjlWIK1bwHI8i8j7UPI=
 github.com/alexbrainman/sspi v0.0.0-20231016080023-1a75b4708caa h1:LHTHcTQiSGT7VVbI0o4wBRNQIgn917usHWOd6VAffYI=
 github.com/alexbrainman/sspi v0.0.0-20231016080023-1a75b4708caa/go.mod h1:cEWa1LVoE5KvSD9ONXsZrj0z6KqySlCCNKHlLzbqAt4=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
