servingcert

package
v3.7.0-0.178.1+incompa... Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 26, 2017 License: Apache-2.0 Imports: 21 Imported by: 0

Documentation

Index

Constants

View Source
const (
	// ServingCertSecretAnnotation stores the name of the secret to generate into.
	ServingCertSecretAnnotation = "service.alpha.openshift.io/serving-cert-secret-name"
	// ServingCertCreatedByAnnotation stores the of the signer common name.  This could be used later to see if the
	// services need to have the the serving certs regenerated.  The presence and matching of this annotation prevents
	// regeneration
	ServingCertCreatedByAnnotation = "service.alpha.openshift.io/serving-cert-signed-by"
	// ServingCertErrorAnnotation stores the error that caused cert generation failures.
	ServingCertErrorAnnotation = "service.alpha.openshift.io/serving-cert-generation-error"
	// ServingCertErrorNumAnnotation stores how many consecutive errors we've hit.  A value of the maxRetries will prevent
	// the controller from reattempting until it is cleared.
	ServingCertErrorNumAnnotation = "service.alpha.openshift.io/serving-cert-generation-error-num"
	// ServiceUIDAnnotation is an annotation on a secret that indicates which service created it, by UID
	ServiceUIDAnnotation = "service.alpha.openshift.io/originating-service-uid"
	// ServiceNameAnnotation is an annotation on a secret that indicates which service created it, by Name to allow reverse lookups on services
	// for comparison against UIDs
	ServiceNameAnnotation = "service.alpha.openshift.io/originating-service-name"
	// ServingCertExpiryAnnotation is an annotation that holds the expiry time of the certificate.  It accepts time in the
	// RFC3339 format: 2018-11-29T17:44:39Z
	ServingCertExpiryAnnotation = "service.alpha.openshift.io/expiry"
)

Variables

This section is empty.

Functions

This section is empty.

Types

type ServiceServingCertController

type ServiceServingCertController struct {
	// contains filtered or unexported fields
}

ServiceServingCertController is responsible for synchronizing Service objects stored in the system with actual running replica sets and pods.

func NewServiceServingCertController

func NewServiceServingCertController(services informers.ServiceInformer, secrets informers.SecretInformer, serviceClient kcoreclient.ServicesGetter, secretClient kcoreclient.SecretsGetter, ca *crypto.CA, dnsSuffix string, resyncInterval time.Duration) *ServiceServingCertController

NewServiceServingCertController creates a new ServiceServingCertController. TODO this should accept a shared informer

func (*ServiceServingCertController) Run

func (sc *ServiceServingCertController) Run(workers int, stopCh <-chan struct{})

Run begins watching and syncing.

type ServiceServingCertUpdateController added in v1.5.0

type ServiceServingCertUpdateController struct {
	// contains filtered or unexported fields
}

ServiceServingCertUpdateController is responsible for synchronizing Service objects stored in the system with actual running replica sets and pods.

func NewServiceServingCertUpdateController added in v1.5.0

func NewServiceServingCertUpdateController(services informers.ServiceInformer, secrets informers.SecretInformer, secretClient kcoreclient.SecretsGetter, ca *crypto.CA, dnsSuffix string, resyncInterval time.Duration) *ServiceServingCertUpdateController

NewServiceServingCertUpdateController creates a new ServiceServingCertUpdateController. TODO this should accept a shared informer

func (*ServiceServingCertUpdateController) Run added in v1.5.0

func (sc *ServiceServingCertUpdateController) Run(workers int, stopCh <-chan struct{})

Run begins watching and syncing.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL