certificates

package
v1.136.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 20, 2026 License: Apache-2.0 Imports: 29 Imported by: 1

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var DefaultSyncPeriod = 5 * time.Minute

DefaultSyncPeriod is the default sync period for the certificate reconciler and reloader.

Functions

func AddCertificateManagementToManager 

func AddCertificateManagementToManager(
	ctx context.Context,
	mgr manager.Manager,
	sourceCluster cluster.Cluster,
	clock clock.Clock,
	sourceWebhookConfigs webhook.Configs,
	shootWebhookConfigs *webhook.Configs,
	atomicShootWebhookConfigs *atomic.Value,
	shootNamespaceSelector map[string]string,
	shootWebhookManagedResourceName string,
	componentName string,
	doNotPrefixComponentName bool,
	namespace string,
	mode string,
	url string,
) error

AddCertificateManagementToManager adds reconcilers to the given manager that manage the webhook certificates, namely - generate and auto-rotate the webhook CA and server cert using a secrets manager (in leader only) - fetch current webhook server cert and write it to disk for the webhook server to pick up (in all replicas)

func GenerateUnmanagedCertificates 

func GenerateUnmanagedCertificates(providerName string, doNotPrefixComponentName bool, certDir, mode, url string) ([]byte, error)

GenerateUnmanagedCertificates generates a one-off CA and server cert for a webhook server. The server certificate and key are written to certDir. This is useful for local development.

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.