Skip to content

Commit a64adad

Browse files
author
Maurice Faber
authored
fix: cert arn and name (#223)
1 parent c920056 commit a64adad

File tree

5 files changed

+34
-17
lines changed

5 files changed

+34
-17
lines changed

src/fixtures/values.ts

Lines changed: 9 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -143,6 +143,7 @@ export default {
143143
},
144144
ingress: {
145145
certArn: undefined,
146+
certName: undefined,
146147
domain: 'onprem.example.com',
147148
forwardPath: false,
148149
hasCert: false,
@@ -162,10 +163,11 @@ export default {
162163
serviceType: 'svcPredeployed',
163164
},
164165
ingress: {
165-
certArn: undefined,
166+
certArn: 'some-arn',
167+
certName: undefined,
166168
domain: 'dev.onprem.example.com',
167169
forwardPath: false,
168-
hasCert: false,
170+
hasCert: true,
169171
auth: false,
170172
path: undefined,
171173
subdomain: 'hello.team-otomi',
@@ -183,6 +185,7 @@ export default {
183185
},
184186
ingress: {
185187
certArn: undefined,
188+
certName: undefined,
186189
domain: 'onprem.private.net',
187190
forwardPath: false,
188191
hasCert: false,
@@ -203,9 +206,10 @@ export default {
203206
},
204207
ingress: {
205208
certArn: undefined,
209+
certName: 'bla',
206210
domain: 'some.com',
207211
forwardPath: false,
208-
hasCert: false,
212+
hasCert: true,
209213
auth: false,
210214
path: undefined,
211215
subdomain: 'hello',
@@ -248,6 +252,7 @@ export default {
248252
},
249253
ingress: {
250254
certArn: undefined,
255+
certName: undefined,
251256
domain: 'onprem.example.com',
252257
forwardPath: false,
253258
hasCert: false,
@@ -332,6 +337,7 @@ export default {
332337
ingress: {
333338
auth: false,
334339
certArn: undefined,
340+
certName: undefined,
335341
domain: 'dev.onprem.example.com',
336342
forwardPath: false,
337343
hasCert: false,
@@ -442,11 +448,6 @@ export default {
442448
},
443449
},
444450
additionalClusters: [
445-
{
446-
name: 'dev',
447-
domainSuffix: 'dev.eks.otomi.cloud',
448-
provider: 'aws',
449-
},
450451
{
451452
name: 'demo',
452453
domainSuffix: 'demo.eks.otomi.cloud',

src/openapi/service.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -96,7 +96,7 @@ Ingress:
9696
type: boolean
9797
certName:
9898
description: The name of a TLS secret known to exist in the team namespace.
99-
example: www-example-com
99+
example: example-com
100100
title: Secret name
101101
type: string
102102
certArn:

src/otomi-stack.ts

Lines changed: 20 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -563,7 +563,20 @@ export default class OtomiStack {
563563

564564
loadService(svcRaw, teamId): void {
565565
// Create service
566-
const svc = omit(svcRaw, 'domain', 'forwardPath', 'hasCert', 'auth', 'ksvc', 'paths', 'type', 'ownHost', 'tlsPass')
566+
const svc = omit(
567+
svcRaw,
568+
'certArn',
569+
'certName',
570+
'domain',
571+
'forwardPath',
572+
'hasCert',
573+
'auth',
574+
'ksvc',
575+
'paths',
576+
'type',
577+
'ownHost',
578+
'tlsPass',
579+
)
567580
svc.teamId = teamId
568581
if (!('name' in svcRaw)) {
569582
debug('Unknown service structure')
@@ -591,16 +604,17 @@ export default class OtomiStack {
591604
const cluster: Cluster = this.getSetting('cluster') as Cluster
592605
const url = getServiceUrl({ domain: svcRaw.domain, name: svcRaw.name, teamId, cluster, dns })
593606
svc.ingress = {
594-
hasCert: 'hasCert' in svcRaw,
595607
auth: 'auth' in svcRaw,
596608
certArn: svcRaw.certArn || undefined,
609+
certName: svcRaw.certName || undefined,
597610
domain: url.domain,
598-
subdomain: url.subdomain,
599-
useDefaultSubdomain: !svcRaw.domain && svcRaw.ownHost,
600-
path: svcRaw.paths && svcRaw.paths.length ? svcRaw.paths[0] : undefined,
601611
forwardPath: 'forwardPath' in svcRaw,
612+
hasCert: 'hasCert' in svcRaw,
613+
path: svcRaw.paths && svcRaw.paths.length ? svcRaw.paths[0] : undefined,
614+
subdomain: url.subdomain,
602615
tlsPass: 'tlsPass' in svcRaw,
603616
type: svcRaw.type,
617+
useDefaultSubdomain: !svcRaw.domain && svcRaw.ownHost,
604618
}
605619
}
606620

@@ -638,6 +652,7 @@ export default class OtomiStack {
638652
else svcCloned.domain = `${ing.subdomain}.${ing.domain}`
639653
if (ing.auth) svcCloned.auth = true
640654
if (ing.hasCert) svcCloned.hasCert = true
655+
if (ing.certName) svcCloned.certName = ing.certName
641656
if (ing.certArn) svcCloned.certArn = ing.certArn
642657
if (ing.path) svcCloned.paths = [ing.path]
643658
if (ing.forwardPath) svcCloned.forwardPath = true

test/env/settings.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -41,9 +41,6 @@ otomi:
4141
conftest:
4242
enabled: true
4343
additionalClusters:
44-
- name: dev
45-
domainSuffix: dev.eks.otomi.cloud
46-
provider: aws
4744
- name: demo
4845
domainSuffix: demo.eks.otomi.cloud
4946
provider: aws

test/env/teams/services.otomi.yaml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,8 @@ teamConfig:
2828
id: f818a64d-25a4-46e0-9eaf-769b78866031
2929
ownHost: true
3030
type: public
31+
certArn: some-arn
32+
hasCert: true
3133
- name: hello-private
3234
id: f818a64d-25a4-46e0-9eaf-769b78866032
3335
domain: hello-private.team-otomi.dev.onprem.private.net
@@ -36,6 +38,8 @@ teamConfig:
3638
id: f818a64d-25a4-46e0-9eaf-769b78866033
3739
domain: hello.some.com
3840
type: public
41+
hasCert: true
42+
certName: bla
3943
- name: servant2
4044
id: f818a64d-25a4-46e0-9eaf-769b7886603d
4145
ksvc:

0 commit comments

Comments
 (0)