Documentation
¶
Index ¶
- Constants
- Variables
- func EnsureTLSSecretFromKeyvault(ctx context.Context, kv azsecrets.Client, ch clienthelper.Writer, ...) error
- func GetInternalLoadBalancer(ctx context.Context, armLoadBalancersClient armnetwork.LoadBalancersClient, ...) (*armnetwork_sdk.LoadBalancer, error)
- func MigrateInternalLoadBalancerZones(ctx context.Context, _env env.Interface, log *logrus.Entry, ...) (*api.OpenShiftClusterDocument, error)
- func RenewMDSDCertificate(ctx context.Context, log *logrus.Entry, _env env.Interface, ...) error
- func TLSSecretsFromKeyVault(ctx context.Context, kv azsecrets.Client, targets []types.NamespacedName, ...) ([]runtime.Object, error)
- type FakeOpenShiftClusterDocumentVersionerService
- type Interface
- type MsiCertificateRefreshResult
- type MsiKeyVaultStore
Constants ¶
View Source
const (
OneCertPublicIssuerName = "OneCertV2-PublicCA"
)
Variables ¶
View Source
var CredentialsRequestGroupVersionResource = schema.GroupVersionResource{ Group: cloudcredentialv1.SchemeGroupVersion.Group, Version: cloudcredentialv1.SchemeGroupVersion.Version, Resource: "credentialsrequests", }
Functions ¶
func EnsureTLSSecretFromKeyvault ¶
func EnsureTLSSecretFromKeyvault(ctx context.Context, kv azsecrets.Client, ch clienthelper.Writer, target types.NamespacedName, certificateName string) error
func GetInternalLoadBalancer ¶
func GetInternalLoadBalancer(ctx context.Context, armLoadBalancersClient armnetwork.LoadBalancersClient, ocProps api.OpenShiftClusterProperties) (*armnetwork_sdk.LoadBalancer, error)
func MigrateInternalLoadBalancerZones ¶
func MigrateInternalLoadBalancerZones( ctx context.Context, _env env.Interface, log *logrus.Entry, db database.OpenShiftClusters, armLoadBalancersClient armnetwork.LoadBalancersClient, armClusterPrivateLinkServices armnetwork.PrivateLinkServicesClient, resourceSkusClient armcompute.ResourceSKUsClient, doc *api.OpenShiftClusterDocument, ) (*api.OpenShiftClusterDocument, error)
func RenewMDSDCertificate ¶
func RenewMDSDCertificate(ctx context.Context, log *logrus.Entry, _env env.Interface, ch clienthelper.Interface) error
"Rotate" the MDSD certificates in the cluster. The copy that is rotated from comes from RP-Config, and is only able to be updated when the RP is updated.
Types ¶
type FakeOpenShiftClusterDocumentVersionerService ¶
type FakeOpenShiftClusterDocumentVersionerService struct {
// contains filtered or unexported fields
}
func (*FakeOpenShiftClusterDocumentVersionerService) Get ¶
func (fake *FakeOpenShiftClusterDocumentVersionerService) Get(ctx context.Context, doc *api.OpenShiftClusterDocument, dbOpenShiftVersions database.OpenShiftVersions, env env.Interface, installViaHive bool) (*api.OpenShiftVersion, error)
type Interface ¶
type Interface interface {
Install(ctx context.Context) error
Delete(ctx context.Context) error
Update(ctx context.Context) error
AdminUpdate(ctx context.Context) error
}
func New ¶
func New(ctx context.Context, log *logrus.Entry, _env env.Interface, db database.OpenShiftClusters, dbGateway database.Gateway, dbOpenShiftVersions database.OpenShiftVersions, dbPlatformWorkloadIdentityRoleSets database.PlatformWorkloadIdentityRoleSets, aead encryption.AEAD, billing billing.Manager, doc *api.OpenShiftClusterDocument, subscriptionDoc *api.SubscriptionDocument, hiveClusterManager hive.ClusterManager, metricsEmitter metrics.Emitter, ) (Interface, error)
New returns a cluster manager
type MsiCertificateRefreshResult ¶
type MsiCertificateRefreshResult int
const ( MsiCertificateRefreshResultUnchanged MsiCertificateRefreshResult = iota MsiCertificateRefreshResultCreated MsiCertificateRefreshResultRenewed )
func EnsureClusterMsiCertificateWithParams ¶
func EnsureClusterMsiCertificateWithParams(ctx context.Context, clusterDocID string, cluster *api.OpenShiftCluster, nowFunc func() time.Time, kvStore MsiKeyVaultStore, msiDataplane dataplane.ClientFactory) (MsiCertificateRefreshResult, error)
type MsiKeyVaultStore ¶
type MsiKeyVaultStore interface {
GetSecret(ctx context.Context, name string, version string, options *azsecrets.GetSecretOptions) (azsecrets.GetSecretResponse, error)
SetSecret(ctx context.Context, name string, parameters azsecrets.SetSecretParameters, options *azsecrets.SetSecretOptions) (azsecrets.SetSecretResponse, error)
}
Source Files
¶
- acrtoken.go
- apply.go
- arooperator.go
- billing.go
- cluster.go
- clustermsi.go
- clusterserviceprincipal.go
- condition.go
- consolebranding.go
- correct_cert_issuer.go
- defaults.go
- delete.go
- denyassignment.go
- deploybaseresources.go
- deploybaseresources_additional.go
- disableupdates.go
- ensureendpoints.go
- fixinfraid.go
- fixmcscert.go
- fixmcsuserdata.go
- fixsrekubeconfig.go
- fixssh.go
- fixuserkubeconfig.go
- gatewayprivateendpoint.go
- gatherlogs.go
- generate.go
- hive.go
- install.go
- install_version.go
- ipaddresses.go
- kubeconfig.go
- loadbalancerinternal.go
- loadbalancerprofile.go
- mdsd.go
- networkprofile.go
- nsg.go
- platformworkloadidentities.go
- removebootstrap.go
- removeprivatednszone.go
- samples.go
- serviceprincipal.go
- sshkeys.go
- start_vms.go
- storageSuffix.go
- storageaccounts.go
- storageclass.go
- tls.go
- validate.go
- version.go
- workloadidentityresources.go
Directories
Click to show internal directories.
Click to hide internal directories.