Skip to content

Commit b5b1588

Browse files
committed
fix(management): SeparateChain property support added to K8STLSSECR and K8SSecret store-types
1 parent 6e78526 commit b5b1588

File tree

3 files changed

+12
-5
lines changed

3 files changed

+12
-5
lines changed

kubernetes-orchestrator-extension/Clients/KubeClient.cs

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -948,13 +948,13 @@ public V1Secret CreateOrUpdateCertificateStoreSecret(K8SJobCertificate jobCertif
948948

949949
public V1Secret CreateOrUpdateCertificateStoreSecret(string keyPem, string certPem, List<string> chainPem,
950950
string secretName,
951-
string namespaceName, string secretType, bool append = false, bool overwrite = false, bool remove = false)
951+
string namespaceName, string secretType, bool append = false, bool overwrite = false, bool remove = false, bool separateChain = true)
952952
{
953953
_logger.LogTrace("Entered CreateOrUpdateCertificateStoreSecret()");
954954

955955
_logger.LogDebug($"Attempting to create new secret {secretName} in namespace {namespaceName}");
956956
_logger.LogTrace("Calling CreateNewSecret()");
957-
var k8SSecretData = CreateNewSecret(secretName, namespaceName, keyPem, certPem, chainPem, secretType);
957+
var k8SSecretData = CreateNewSecret(secretName, namespaceName, keyPem, certPem, chainPem, secretType, separateChain);
958958
_logger.LogTrace("Finished calling CreateNewSecret()");
959959

960960
_logger.LogTrace("Entering try/catch block to create secret...");
@@ -1277,7 +1277,7 @@ public V1Secret CreateOrUpdateBuddyPass(string secretName, string passwordFieldN
12771277
}
12781278

12791279
private V1Secret CreateNewSecret(string secretName, string namespaceName, string keyPem, string certPem,
1280-
List<string> chainPem, string secretType, bool separateChain = false)
1280+
List<string> chainPem, string secretType, bool separateChain = true)
12811281
{
12821282
_logger.LogTrace("Entered CreateNewSecret()");
12831283
_logger.LogDebug("Attempting to create new secret...");

kubernetes-orchestrator-extension/Jobs/JobBase.cs

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -738,6 +738,11 @@ private void InitializeProperties(dynamic storeProperties)
738738
Logger.LogDebug("KubeSecretKey not found in store properties");
739739
CertificateDataFieldName = "";
740740
}
741+
742+
if (storeProperties.ContainsKey("SeparateChain"))
743+
{
744+
SeparateChain = storeProperties["SeparateChain"];
745+
}
741746
}
742747
catch (Exception)
743748
{

kubernetes-orchestrator-extension/Jobs/Management.cs

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -450,7 +450,7 @@ private V1Secret HandleTlsSecret(string certAlias, K8SJobCertificate certObj, st
450450

451451
var keyPem = certObj.PrivateKeyPem;
452452
if (!string.IsNullOrEmpty(keyPem)) keyPems = new[] { keyPem };
453-
453+
454454
Logger.LogDebug("Calling CreateOrUpdateCertificateStoreSecret() to create or update secret in Kubernetes...");
455455
var createResponse = KubeClient.CreateOrUpdateCertificateStoreSecret(
456456
certObj.PrivateKeyPem,
@@ -460,7 +460,9 @@ private V1Secret HandleTlsSecret(string certAlias, K8SJobCertificate certObj, st
460460
KubeNamespace,
461461
"tls_secret",
462462
append,
463-
overwrite
463+
overwrite,
464+
false,
465+
SeparateChain
464466
);
465467
if (createResponse == null)
466468
Logger.LogError("createResponse is null");

0 commit comments

Comments
 (0)