bifrost-admission-controller

module

v0.0.0-...-8ede676 Latest Latest Go to latest Published: Jan 31, 2024 License: GPL-3.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/nebed/bifrost-admission-controller

Links

Open Source Insights

README ¶

bifrost-admission-controller

An intended general-purpose admission controller

Current Feature

generate the ca.crt field from full chain certificate in tls.crt and append to the secret for ACME issued certificates

Operation

The admission controller contains a helm template that can be installed on kubernetes clusters It creates the MutatingWebhookConfiguration from within the Go code, hence it needs create and update permissions on the MutatingWebhookConfiguration resource.

The default MutatingWebhookConfiguration has a namespace selector and only watches namespaces with label acme-tls-update=enabled

Also when creating cert-manager certificate resources we need to set the SecretTemplate to have an annotation bifrost-acme-update-webhook.nebed.io/update=true

  secretTemplate:
    annotations:
      bifrost-acme-update-webhook.nebed.io/update: "true"

Directories ¶

Path	Synopsis
cmd

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL