keyvault

package

v0.2.12 Latest Latest Go to latest Published: Nov 4, 2025 License: MIT Imports: 30 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/Azure/aks-app-routing-operator

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func NewEventMirror(manager ctrl.Manager, conf *config.Config) error
func NewPlaceholderPodController(manager ctrl.Manager, conf *config.Config, ingressManager util.IngressManager) error
type EventMirror
- func (e *EventMirror) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error)
type PlaceholderPodController
- func (p *PlaceholderPodController) Reconcile(ctx context.Context, req ctrl.Request) (res ctrl.Result, retErr error)

Constants ¶

This section is empty.

Variables ¶

View Source

var EventMirrorSelector = fields.AndSelectors(
	fields.ParseSelectorOrDie(fmt.Sprintf("%s=%s", involvedObjectKindField, eventKindPod)),
	fields.ParseSelectorOrDie(fmt.Sprintf("%s=%s", reasonField, eventReasonFailedMount)),
)

EventMirrorSelector is a selector for Events that are relevant to the EventMirror controller

Functions ¶

func NewEventMirror ¶

func NewEventMirror(manager ctrl.Manager, conf *config.Config) error

func NewPlaceholderPodController ¶

func NewPlaceholderPodController(manager ctrl.Manager, conf *config.Config, ingressManager util.IngressManager) error

Types ¶

type EventMirror ¶

type EventMirror struct {
	// contains filtered or unexported fields
}

EventMirror copies events published to pod resources by the Keyvault CSI driver into ingress events. This allows users to easily determine why a certificate might be missing for a given ingress.

func (*EventMirror) Reconcile ¶

func (e *EventMirror) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error)

type PlaceholderPodController ¶

type PlaceholderPodController struct {
	// contains filtered or unexported fields
}

PlaceholderPodController manages a single-replica deployment of no-op pods that mount the Keyvault secrets referenced by each secret provider class managed by IngressSecretProviderClassReconciler.

This is necessitated by the Keyvault CSI implementation, which requires at least one mount in order to start mirroring the Keyvault values into corresponding Kubernetes secret(s).

func (*PlaceholderPodController) Reconcile ¶

func (p *PlaceholderPodController) Reconcile(ctx context.Context, req ctrl.Request) (res ctrl.Result, retErr error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL