Skip to content

Commit fb94da3

Browse files
eslutskyeslutsky
committed
introduce trust-manager operand to the cert-manager
Signed-off-by: Evgeny Slutsky <eslutsky@redhat.com>
1 parent 4061c3a commit fb94da3

18 files changed

+2385
-115
lines changed

assets/optional/cert-manager/crd/bases/certificaterequests.cert-manager.io-crd.yaml

Lines changed: 14 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -6,9 +6,10 @@ metadata:
66
helm.sh/resource-policy: keep
77
labels:
88
app: cert-manager
9+
app.kubernetes.io/component: crds
910
app.kubernetes.io/instance: cert-manager
1011
app.kubernetes.io/name: cert-manager
11-
app.kubernetes.io/version: v1.18.4
12+
app.kubernetes.io/version: v1.19.2
1213
name: certificaterequests.cert-manager.io
1314
spec:
1415
group: cert-manager.io
@@ -25,13 +26,13 @@ spec:
2526
scope: Namespaced
2627
versions:
2728
- additionalPrinterColumns:
28-
- jsonPath: .status.conditions[?(@.type=="Approved")].status
29+
- jsonPath: .status.conditions[?(@.type == "Approved")].status
2930
name: Approved
3031
type: string
31-
- jsonPath: .status.conditions[?(@.type=="Denied")].status
32+
- jsonPath: .status.conditions[?(@.type == "Denied")].status
3233
name: Denied
3334
type: string
34-
- jsonPath: .status.conditions[?(@.type=="Ready")].status
35+
- jsonPath: .status.conditions[?(@.type == "Ready")].status
3536
name: Ready
3637
type: string
3738
- jsonPath: .spec.issuerRef.name
@@ -40,7 +41,7 @@ spec:
4041
- jsonPath: .spec.username
4142
name: Requester
4243
type: string
43-
- jsonPath: .status.conditions[?(@.type=="Ready")].message
44+
- jsonPath: .status.conditions[?(@.type == "Ready")].message
4445
name: Status
4546
priority: 1
4647
type: string
@@ -128,13 +129,17 @@ spec:
128129
The `name` field of the reference must always be specified.
129130
properties:
130131
group:
131-
description: Group of the resource being referred to.
132+
description: |-
133+
Group of the issuer being referred to.
134+
Defaults to 'cert-manager.io'.
132135
type: string
133136
kind:
134-
description: Kind of the resource being referred to.
137+
description: |-
138+
Kind of the issuer being referred to.
139+
Defaults to 'Issuer'.
135140
type: string
136141
name:
137-
description: Name of the resource being referred to.
142+
description: Name of the issuer being referred to.
138143
type: string
139144
required:
140145
- name
@@ -224,6 +229,7 @@ spec:
224229
- netscape sgc
225230
type: string
226231
type: array
232+
x-kubernetes-list-type: atomic
227233
username:
228234
description: |-
229235
Username contains the name of the user that created the CertificateRequest.

assets/optional/cert-manager/crd/bases/certificates.cert-manager.io-crd.yaml

Lines changed: 33 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -6,9 +6,10 @@ metadata:
66
helm.sh/resource-policy: keep
77
labels:
88
app: cert-manager
9+
app.kubernetes.io/component: crds
910
app.kubernetes.io/instance: cert-manager
1011
app.kubernetes.io/name: cert-manager
11-
app.kubernetes.io/version: v1.18.4
12+
app.kubernetes.io/version: v1.19.2
1213
name: certificates.cert-manager.io
1314
spec:
1415
group: cert-manager.io
@@ -25,7 +26,7 @@ spec:
2526
scope: Namespaced
2627
versions:
2728
- additionalPrinterColumns:
28-
- jsonPath: .status.conditions[?(@.type=="Ready")].status
29+
- jsonPath: .status.conditions[?(@.type == "Ready")].status
2930
name: Ready
3031
type: string
3132
- jsonPath: .spec.secretName
@@ -35,7 +36,7 @@ spec:
3536
name: Issuer
3637
priority: 1
3738
type: string
38-
- jsonPath: .status.conditions[?(@.type=="Ready")].message
39+
- jsonPath: .status.conditions[?(@.type == "Ready")].message
3940
name: Status
4041
priority: 1
4142
type: string
@@ -96,6 +97,7 @@ spec:
9697
- type
9798
type: object
9899
type: array
100+
x-kubernetes-list-type: atomic
99101
commonName:
100102
description: |-
101103
Requested common name X509 certificate subject attribute.
@@ -111,6 +113,7 @@ spec:
111113
items:
112114
type: string
113115
type: array
116+
x-kubernetes-list-type: atomic
114117
duration:
115118
description: |-
116119
Requested 'duration' (i.e. lifetime) of the Certificate. Note that the
@@ -126,6 +129,7 @@ spec:
126129
items:
127130
type: string
128131
type: array
132+
x-kubernetes-list-type: atomic
129133
encodeUsagesInRequest:
130134
description: |-
131135
Whether the KeyUsage and ExtKeyUsage extensions should be set in the encoded CSR.
@@ -138,6 +142,7 @@ spec:
138142
items:
139143
type: string
140144
type: array
145+
x-kubernetes-list-type: atomic
141146
isCA:
142147
description: |-
143148
Requested basic constraints isCA value.
@@ -158,13 +163,17 @@ spec:
158163
The `name` field of the reference must always be specified.
159164
properties:
160165
group:
161-
description: Group of the resource being referred to.
166+
description: |-
167+
Group of the issuer being referred to.
168+
Defaults to 'cert-manager.io'.
162169
type: string
163170
kind:
164-
description: Kind of the resource being referred to.
171+
description: |-
172+
Kind of the issuer being referred to.
173+
Defaults to 'Issuer'.
165174
type: string
166175
name:
167-
description: Name of the resource being referred to.
176+
description: Name of the issuer being referred to.
168177
type: string
169178
required:
170179
- name
@@ -324,23 +333,27 @@ spec:
324333
items:
325334
type: string
326335
type: array
336+
x-kubernetes-list-type: atomic
327337
emailAddresses:
328338
description: EmailAddresses is a list of Email Addresses that are permitted or excluded.
329339
items:
330340
type: string
331341
type: array
342+
x-kubernetes-list-type: atomic
332343
ipRanges:
333344
description: |-
334345
IPRanges is a list of IP Ranges that are permitted or excluded.
335346
This should be a valid CIDR notation.
336347
items:
337348
type: string
338349
type: array
350+
x-kubernetes-list-type: atomic
339351
uriDomains:
340352
description: URIDomains is a list of URI domains that are permitted or excluded.
341353
items:
342354
type: string
343355
type: array
356+
x-kubernetes-list-type: atomic
344357
type: object
345358
permitted:
346359
description: Permitted contains the constraints in which the names must be located.
@@ -350,23 +363,27 @@ spec:
350363
items:
351364
type: string
352365
type: array
366+
x-kubernetes-list-type: atomic
353367
emailAddresses:
354368
description: EmailAddresses is a list of Email Addresses that are permitted or excluded.
355369
items:
356370
type: string
357371
type: array
372+
x-kubernetes-list-type: atomic
358373
ipRanges:
359374
description: |-
360375
IPRanges is a list of IP Ranges that are permitted or excluded.
361376
This should be a valid CIDR notation.
362377
items:
363378
type: string
364379
type: array
380+
x-kubernetes-list-type: atomic
365381
uriDomains:
366382
description: URIDomains is a list of URI domains that are permitted or excluded.
367383
items:
368384
type: string
369385
type: array
386+
x-kubernetes-list-type: atomic
370387
type: object
371388
type: object
372389
otherNames:
@@ -390,6 +407,7 @@ spec:
390407
type: string
391408
type: object
392409
type: array
410+
x-kubernetes-list-type: atomic
393411
privateKey:
394412
description: |-
395413
Private key options. These include the key algorithm and size, the used
@@ -555,31 +573,37 @@ spec:
555573
items:
556574
type: string
557575
type: array
576+
x-kubernetes-list-type: atomic
558577
localities:
559578
description: Cities to be used on the Certificate.
560579
items:
561580
type: string
562581
type: array
582+
x-kubernetes-list-type: atomic
563583
organizationalUnits:
564584
description: Organizational Units to be used on the Certificate.
565585
items:
566586
type: string
567587
type: array
588+
x-kubernetes-list-type: atomic
568589
organizations:
569590
description: Organizations to be used on the Certificate.
570591
items:
571592
type: string
572593
type: array
594+
x-kubernetes-list-type: atomic
573595
postalCodes:
574596
description: Postal codes to be used on the Certificate.
575597
items:
576598
type: string
577599
type: array
600+
x-kubernetes-list-type: atomic
578601
provinces:
579602
description: State/Provinces to be used on the Certificate.
580603
items:
581604
type: string
582605
type: array
606+
x-kubernetes-list-type: atomic
583607
serialNumber:
584608
description: Serial number to be used on the Certificate.
585609
type: string
@@ -588,12 +612,14 @@ spec:
588612
items:
589613
type: string
590614
type: array
615+
x-kubernetes-list-type: atomic
591616
type: object
592617
uris:
593618
description: Requested URI subject alternative names.
594619
items:
595620
type: string
596621
type: array
622+
x-kubernetes-list-type: atomic
597623
usages:
598624
description: |-
599625
Requested key usages and extended key usages.
@@ -659,6 +685,7 @@ spec:
659685
- netscape sgc
660686
type: string
661687
type: array
688+
x-kubernetes-list-type: atomic
662689
required:
663690
- issuerRef
664691
- secretName

0 commit comments

Comments
 (0)