Documentation
¶
Index ¶
Constants ¶
View Source
const ( Debug = "debug" HubbleCACertFile = "hubble-ca-cert-file" HubbleCAKeyFile = "hubble-ca-key-file" HubbleCAGenerate = "hubble-ca-generate" HubbleCACommonName = "hubble-ca-common-name" HubbleCAValidityDuration = "hubble-ca-validity-duration" HubbleCAConfigMapName = "hubble-ca-config-map-name" HubbleCAConfigMapNamespace = "hubble-ca-config-map-namespace" HubbleServerCertGenerate = "hubble-server-cert-generate" HubbleServerCertCommonName = "hubble-server-cert-common-name" HubbleServerCertValidityDuration = "hubble-server-cert-validity-duration" HubbleServerCertSecretName = "hubble-server-cert-secret-name" HubbleServerCertSecretNamespace = "hubble-server-cert-secret-namespace" HubbleRelayServerCertGenerate = "hubble-relay-server-cert-generate" HubbleRelayServerCertCommonName = "hubble-relay-server-cert-common-name" HubbleRelayServerCertValidityDuration = "hubble-relay-server-cert-validity-duration" HubbleRelayServerCertSecretName = "hubble-relay-server-cert-secret-name" HubbleRelayServerCertSecretNamespace = "hubble-relay-server-cert-secret-namespace" HubbleRelayClientCertGenerate = "hubble-relay-client-cert-generate" HubbleRelayClientCertCommonName = "hubble-relay-client-cert-common-name" HubbleRelayClientCertValidityDuration = "hubble-relay-client-cert-validity-duration" HubbleRelayClientCertSecretName = "hubble-relay-client-cert-secret-name" HubbleRelayClientCertSecretNamespace = "hubble-relay-client-cert-secret-namespace" CiliumNamespace = "cilium-namespace" ExternalWorkloadCACertFile = "externalworkload-ca-cert-file" ExternalWorkloadCAKeyFile = "externalworkload-ca-key-file" ExternalWorkloadCertsGenerate = "externalworkload-certs-generate" ExternalWorkloadCACertCommonName = "externalworkload-ca-cert-common-name" ExternalWorkloadCACertValidityDuration = "externalworkload-ca-cert-validity-duration" ExternalWorkloadCACertSecretName = "externalworkload-ca-cert-secret-name" ExternalWorkloadServerCertCommonName = "externalworkload-server-cert-common-name" ExternalWorkloadServerCertValidityDuration = "externalworkload-server-cert-validity-duration" ExternalWorkloadServerCertSecretName = "externalworkload-server-cert-secret-name" ExternalWorkloadAdminCertCommonName = "externalworkload-admin-cert-common-name" ExternalWorkloadAdminCertValidityDuration = "externalworkload-admin-cert-validity-duration" ExternalWorkloadAdminCertSecretName = "externalworkload-admin-cert-secret-name" ExternalWorkloadClientCertCommonName = "externalworkload-client-cert-common-name" ExternalWorkloadClientCertValidityDuration = "externalworkload-client-cert-validity-duration" ExternalWorkloadClientCertSecretName = "externalworkload-client-cert-secret-name" K8sKubeConfigPath = "k8s-kubeconfig-path" K8sRequestTimeout = "k8s-request-timeout" )
Variables ¶
View Source
var Config = &CertGenConfig{}
Config is the main configuration as obtained from command-line arguments, environment variables and config files.
Functions ¶
This section is empty.
Types ¶
type CertGenConfig ¶
type CertGenConfig struct {
// Debug enables debug messages
Debug bool
// K8sKubeConfigPath is the path to the kubeconfig
// If empty, the in-cluster configuration is used
K8sKubeConfigPath string
// K8sRequestTimeout specifies the timeout for K8s API requests
K8sRequestTimeout time.Duration
// HubbleCACertFile is the path to the Hubble CA cert PEM (if HubbleCAGenerate is false)
HubbleCACertFile string
// HubbleCAKeyFile is the path to the Hubble CA key PEM (if HubbleCAGenerate is false)
HubbleCAKeyFile string
// HubbleCAGenerate can be set to true to generate and store a new Hubble CA
HubbleCAGenerate bool
// HubbleCACommonName is the CN of the Hubble CA
HubbleCACommonName string
// HubbleCAValidityDuration of certificate
HubbleCAValidityDuration time.Duration
// HubbleCAConfigMapName where the Hubble CA cert will be stored
HubbleCAConfigMapName string
// HubbleCAConfigMapNamespace where the Hubble CA cert will be stored
HubbleCAConfigMapNamespace string
// HubbleRelayClientCertGenerate can be set to true to generate and store a Hubble Relay client cert
HubbleRelayClientCertGenerate bool
// HubbleRelayClientCertCommonName is the CN of the Hubble Relay client cert
HubbleRelayClientCertCommonName string
// HubbleRelayClientCertValidityDuration of certificate
HubbleRelayClientCertValidityDuration time.Duration
// HubbleRelayClientCertSecretName where the Hubble Relay client cert and key will be stored
HubbleRelayClientCertSecretName string
// HubbleRelayClientCertSecretNamespace where the Hubble Relay client cert and key will be stored
HubbleRelayClientCertSecretNamespace string
// HubbleRelayServerCertGenerate can be set to true to generate and store a Hubble Relay server cert
HubbleRelayServerCertGenerate bool
// HubbleRelayServerCertCommonName is the CN of the Hubble Relay server cert
HubbleRelayServerCertCommonName string
// HubbleRelayServerCertValidityDuration of certificate
HubbleRelayServerCertValidityDuration time.Duration
// HubbleRelayServerCertSecretName where the Hubble Relay server cert and key will be stored
HubbleRelayServerCertSecretName string
// HubbleRelayServerCertSecretNamespace where the Hubble Relay server cert and key will be stored
HubbleRelayServerCertSecretNamespace string
// HubbleServerCertGenerate can be set to true to generate and store a Hubble server cert
HubbleServerCertGenerate bool
// HubbleServerCertCommonName is the CN of the Hubble server cert
HubbleServerCertCommonName string
// HubbleServerCertValidityDuration of certificate
HubbleServerCertValidityDuration time.Duration
// HubbleServerCertSecretName where the Hubble server cert and key will be stored
HubbleServerCertSecretName string
// HubbleServerCertSecretNamespace where the Hubble server cert and key will be stored
HubbleServerCertSecretNamespace string
// CiliumNamespace where the secrets and configmaps will be stored
CiliumNamespace string
// ExternalWorkloadCACertFile is the path to the ExternalWorkload CA cert PEM (if ExternalWorkloadCertsGenerate is false)
ExternalWorkloadCACertFile string
// ExternalWorkloadCAKeyFile is the path to the ExternalWorkload CA key PEM (if ExternalWorkloadCertsGenerate is false)
ExternalWorkloadCAKeyFile string
// ExternalWorkloadCertsGenerate can be set to true to generate and store a new ExternalWorkload secrets and configmap
// New CA ConfigMap is created if created if existing one is not found. Delete the old ConfigMap to force regeneration.
// New CA is created if CA cert and key are not given.
// Server and client certs are created on each invocation.
ExternalWorkloadCertsGenerate bool
// ExternalWorkloadCACertCommonName is the CN of the ExternalWorkload CA
ExternalWorkloadCACertCommonName string
// ExternalWorkloadCACertValidityDuration of certificate
ExternalWorkloadCACertValidityDuration time.Duration
// ExternalWorkloadCACertSecretName where the ExternalWorkload CA cert will be stored
ExternalWorkloadCACertSecretName string
// ExternalWorkloadServerCertCommonName is the CN of the ExternalWorkload server cert
ExternalWorkloadServerCertCommonName string
// ExternalWorkloadServerCertValidityDuration of certificate
ExternalWorkloadServerCertValidityDuration time.Duration
// ExternalWorkloadServerCertSecretName where the ExternalWorkload server cert and key will be stored
ExternalWorkloadServerCertSecretName string
// ExternalWorkloadAdminCertCommonName is the CN of the ExternalWorkload admin cert
ExternalWorkloadAdminCertCommonName string
// ExternalWorkloadAdminCertValidityDuration of certificate
ExternalWorkloadAdminCertValidityDuration time.Duration
// ExternalWorkloadAdminCertSecretName where the ExternalWorkload admin cert and key will be stored
ExternalWorkloadAdminCertSecretName string
// ExternalWorkloadClientCertCommonName is the CN of the ExternalWorkload client cert
ExternalWorkloadClientCertCommonName string
// ExternalWorkloadClientCertValidityDuration of certificate
ExternalWorkloadClientCertValidityDuration time.Duration
// ExternalWorkloadClientCertSecretName where the ExternalWorkload client cert and key will be stored
ExternalWorkloadClientCertSecretName string
}
CertGenConfig contains the main configuration options
func (*CertGenConfig) PopulateFrom ¶
func (c *CertGenConfig) PopulateFrom(vp *viper.Viper)
PopulateFrom populates the config struct with the values provided by vp
Source Files
Click to show internal directories.
Click to hide internal directories.