Documentation
¶
Index ¶
- func NewEventMirror(manager ctrl.Manager, conf *config.Config) error
- func NewIngressSecretProviderClassReconciler(manager ctrl.Manager, conf *config.Config, ingressManager IngressManager) error
- func NewPlaceholderPodController(manager ctrl.Manager, conf *config.Config, ingressManager IngressManager) error
- type EventMirror
- type IngressManager
- type IngressSecretProviderClassReconciler
- type PlaceholderPodController
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type EventMirror ¶
type EventMirror struct {
// contains filtered or unexported fields
}
EventMirror copies events published to pod resources by the Keyvault CSI driver into ingress events. This allows users to easily determine why a certificate might be missing for a given ingress.
type IngressManager ¶
IngressManager returns a boolean indicating whether the Ingress is being managed by us
func NewIngressManager ¶
func NewIngressManager(icNames map[string]struct{}) IngressManager
NewIngressManager returns an IngressManager from a set of ingress class names that web app routing manages
type IngressSecretProviderClassReconciler ¶
type IngressSecretProviderClassReconciler struct {
// contains filtered or unexported fields
}
IngressSecretProviderClassReconciler manages a SecretProviderClass for each ingress resource that references a Keyvault certificate. The SPC is used to mirror the Keyvault values into a k8s secret so that it can be used by the ingress controller.
type PlaceholderPodController ¶
type PlaceholderPodController struct {
// contains filtered or unexported fields
}
PlaceholderPodController manages a single-replica deployment of no-op pods that mount the Keyvault secrets referenced by each secret provider class managed by IngressSecretProviderClassReconciler.
This is necessitated by the Keyvault CSI implementation, which requires at least one mount in order to start mirroring the Keyvault values into corresponding Kubernetes secret(s).
Source Files