Keyfactor
diff --git a/‎.github/workflows/autochangelog.yml‎
Lines changed: 48 additions & 0 deletions b/‎.github/workflows/autochangelog.yml‎
Lines changed: 48 additions & 0 deletions
diff --git a/‎.github/workflows/keyfactor-merge-store-types.yml‎
Lines changed: 27 additions & 0 deletions b/‎.github/workflows/keyfactor-merge-store-types.yml‎
Lines changed: 27 additions & 0 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 78 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎Keyfactor.Orchestrators.K8S.sln‎
Lines changed: 1 addition & 1 deletion b/‎Keyfactor.Orchestrators.K8S.sln‎
Lines changed: 1 addition & 1 deletion
@@ -0,0 +1,48 @@
+#name: Auto Changelog
+#on:
+#  push:
+#    branches:
+#      - main
+#      - release*
+#      - pan_feedback
+##name: autochangelog
+##
+##on:
+##  repository_dispatch:
+##    types: [autochangelog]
+#
+#jobs:
+#  push:
+#    name: Push Container
+#    runs-on: ubuntu-latest
+#    steps:
+#      - name: Checkout Code
+#        uses: actions/checkout@v2
+#        with:
+#          fetch-depth: '0'
+#      - run: git fetch --depth=1 origin +refs/tags/*:refs/tags/*
+#      - name: autochangelog-action
+#        id: ac
+#        uses: rubenfiszel/[email protected]
+#        with:
+#          changelog_file: './CHANGELOG.md'
+#          manifest_file: './manifest.yaml'
+#          dry_run: false
+#          issues_url_prefix: 'https://github.com/org/repo/issues/'
+#          tag_prefix: 'v'
+#      - name: Create Pull Request
+#        id: cpr
+#        uses: peter-evans/create-pull-request@v2
+#        with:
+#          token: ${{ secrets.GITHUB_TOKEN }}
+#          commit-message: 'Update changelog and manifest'
+#          title: 'ci: release ${{ steps.ac.outputs.version }}'
+#          body: |
+#            Release [${{ steps.ac.outputs.version }}](https://github.com/org/repo/releases/tag/v${{ steps.ac.outputs.version }})
+#          labels: autorelease
+#          branch: automatic-release-prs
+#          reviewers: your-reviewers-list
+#      - name: Check outputs
+#        run: |
+#          echo "Pull Request Number - ${{ env.PULL_REQUEST_NUMBER }}"
+#          echo "Pull Request Number - ${{ steps.cpr.outputs.pr_number }}"
@@ -0,0 +1,27 @@
+name: Keyfactor Merge Cert Store Types
+on: [workflow_dispatch]
+
+jobs:
+  get-manifest-properties:
+    runs-on: windows-latest
+    outputs:
+      update_catalog: ${{ steps.read-json.outputs.update_catalog }}
+      integration_type:  ${{ steps.read-json.outputs.integration_type }}
+    steps:
+      - uses: actions/checkout@v3
+      - name: Store json
+        id: read-json
+        shell: pwsh
+        run: |
+          $json = Get-Content integration-manifest.json | ConvertFrom-Json
+          $myvar = $json.update_catalog
+          echo "update_catalog=$myvar" | Out-File -FilePath $Env:GITHUB_OUTPUT -Encoding utf8 -Append
+          $myvar = $json.integration_type
+          echo "integration_type=$myvar" | Out-File -FilePath $Env:GITHUB_OUTPUT -Encoding utf8 -Append
+
+  call-update-store-types-workflow:
+    needs: get-manifest-properties
+    if: needs.get-manifest-properties.outputs.integration_type == 'orchestrator' && (github.event_name == 'push' || github.event_name == 'workflow_dispatch')
+    uses: Keyfactor/actions/.github/workflows/update-store-types.yml@main
+    secrets: 
+      token: ${{ secrets.UPDATE_STORE_TYPES }}
@@ -0,0 +1,78 @@
+# 1.1.1
+
+## Features
+- feat(storetypes): `K8SPKCS12` store type added to support PKCS12, .P12, PFX, files in K8S `opaque` secrets.
+- feat(storetypes): `K8SJKS` store type added to support JKS files in K8S `opaque` secrets.
+- feat(storetypes): `K8SCLUSTER` store type added to support PEM files in K8S `opaque` and `tls` secrets for an entire cluster as a single store.
+- feat(storetypes): `K8SNS` store type added to support PEM files in K8S `opaque` and `tls` secrets for a single namespace as a single store.
+- feat(discovery): Support added for: `K8SNS`, `K8SPKCS12`, `K8SJKS` store types.
+- feat(management): Support added for:,`K8SCLUSTER`, `K8SNS`, `K8SPKCS12`, `K8SJKS` store types.
+- feat(inventory): Support added for: `K8SCLUSTER`, `K8SNS`, `K8SPKCS12`, `K8SJKS` store types.
+
+# 1.0.6
+
+## Bug Fixes
+- fix(base): If unable to convert to x509Certificate2 object then just use raw bytes from job.
+- fix(client): Replace remaining "private_keys" refs to "tls.key"
+- fix(management): Private keys coming from Keyfactor command are not stored unencrypted in secrets.
+- fix(management): Remove check for cert bytes in HandleTlsSecret
+- fix(management): Condition for handling "create_store" includes check of PEM and alias.
+
+## Other Changes
+- chore(scripts): Add script to stand up Hashicorp Vault CA and create some certs then push them into K8S secrets.
+
+# 1.0.4
+
+## Bug Fixes
+- fix(management): Opaque secrets now manage tls.crt and tls.key rather than `certificates` and `private_keys`. 
+Only a single cert and key are supported.
+
+# 1.0.3
+
+## Bug Fixes
+- fix(base): Add additional logic extracting private keys
+- fix(base): Verbose logging.
+- fix(client): Discovery locations now include cluster name.
+- fix(discovery): StorePath now includes cluster name from kubeconfig credentials.
+- fix(management): When creating `X509Certificate2` include flag to allow export.
+- fix(scripts): Fixed k8s service account scripts to default to index 0 and added notes about assumption.
+
+## Other Changes
+- chore(docs): Added docs about `StorePath`
+
+# 1.0.2
+
+## Bug Fixes
+- fix(base): Add support for empty or null `ServerUsername` and default to `kubeconfig`
+- fix(base): Throw configuration exception if `ServerPassword` is null or empty.
+- fix(client): Init kf logger properly.
+- fix(client): Remove will search all secret keys to check for cert rather than just managed keys.
+- fix(discovery): Remove duplicate locations from results and print out discovered locations in the message.
+- fix(discovery): Lists all namespaces and then checks if namespace is in the "Directories to search" parameter rather than filter by API call.
+- fix(discovery): Now checks the storetype passed to determine what K8S secret type to import when checking secret keys.
+- fix(inventory): Added more logging
+- fix(inventory): When secret is not found on K8S inventory is assumed empty.
+- fix(management): Add support for `createStore`
+- fix(management): Enable use of "create store" tick box, which triggers an empty management job.
+- fix(manifest): Capability names match docs
+- fix(store-types): Update store types to require server and remove `KubeSvcCreds` field.
+
+
+## Other Changes
+- chore(docs): Removed KubeSvcCreds reference from PAM stub.
+
+# 1.0.1
+
+## Bug Fixes
+- fix(base): Parse `KubeNamespace` and `KubeSecretName` from storepath if contains `/`
+- fix(inventory): Allowing for secret key tls.crt and tls.key for `Opaque` secret types.
+- fix(inventory): Returned certs list now returns list of certs.
+
+## Other Changes
+- chore(docs): Remove references to `KubeSvcCreds` field, and instead force `Needs Server` which implicitly adds fields 
+for `ServerUsername` and `ServerPassword`
+
+# 1.0.0
+- Initial release
+
+
@@ -5,7 +5,7 @@ VisualStudioVersion = 17.3.32929.385
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Keyfactor.Orchestrators.K8S", "kubernetes-orchestrator-extension\Keyfactor.Orchestrators.K8S.csproj", "{F497D7FA-AC9F-4BB2-935F-6A7569ACC173}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "TestConsole", "TestConsole\TestConsole.csproj", "{8C2C6B52-E386-4DAE-B596-7EE4E64EB0F4}"
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "TestConsole", "TestConsole\TestConsole.csproj", "{8C2C6B52-E386-4DAE-B596-7EE4E64EB0F4}"
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution