csr

package

v0.54.0 Latest Latest Go to latest Published: Oct 22, 2024 License: Apache-2.0 Imports: 20 Imported by: 0

Details

View Source

const (
	ReasonApproved = "AutoApproved"
)

View Source

var ErrNodeCertificateNotFound = errors.New("node certificate not found")

func WatchCastAINodeCSRs(ctx context.Context, log logrus.FieldLogger, client kubernetes.Interface, c chan *Certificate)

type ApprovalManager struct {
	// contains filtered or unexported fields
}

func NewApprovalManager(log logrus.FieldLogger, clientset kubernetes.Interface) *ApprovalManager

func (h *ApprovalManager) Start(ctx context.Context)

func (h *ApprovalManager) Stop()

type Certificate struct {
	Name           string
	RequestingUser string
	// contains filtered or unexported fields
}

Certificate wraps v1 and v1beta1 csr.

func GetCertificateByNodeName(ctx context.Context, client kubernetes.Interface, nodeName string) (*Certificate, error)

GetCertificateByNodeName lists all csr objects and parses request pem encoded cert to find it by node name.

func (c *Certificate) ApproveCertificate(ctx context.Context, client kubernetes.Interface) (*Certificate, error)

ApproveCertificate approves csr.

func (c *Certificate) Approved() bool

func (c *Certificate) DeleteCertificate(ctx context.Context, client kubernetes.Interface) error

DeleteCertificate deletes csr.

func (c *Certificate) NewCSR(ctx context.Context, client kubernetes.Interface) (*Certificate, error)

NewCSR creates new csr.

func (c *Certificate) Validate() error