Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var DefaultSyncPeriod = 5 * time.Minute
DefaultSyncPeriod is the default sync period for the certificate reconciler and reloader.
Functions ¶
func AddCertificateManagementToManager ¶
func AddCertificateManagementToManager( ctx context.Context, mgr manager.Manager, clock clock.Clock, sourceWebhookConfig client.Object, shootWebhookConfig *admissionregistrationv1.MutatingWebhookConfiguration, atomicShootWebhookConfig *atomic.Value, shootNamespaceSelector map[string]string, shootWebhookManagedResourceName string, componentName string, namespace string, mode string, url string, ) error
AddCertificateManagementToManager adds reconcilers to the given manager that manage the webhook certificates, namely - generate and auto-rotate the webhook CA and server cert using a secrets manager (in leader only) - fetch current webhook server cert and write it to disk for the webhook server to pick up (in all replicas)
func GenerateUnmanagedCertificates ¶
GenerateUnmanagedCertificates generates a one-off CA and server cert for a webhook server. The server certificate and key are written to certDir. This is useful for local development.
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.