Documentation
¶
Index ¶
- Constants
- Variables
- func Known() map[string]Constructor
- func NameForIssuer(i v1alpha1.GenericIssuer) (string, error)
- func Register(name string, fn Constructor)
- func RegisterIssuer(name string, c IssuerConstructor)
- type ACMEOptions
- type BlockingEventHandler
- type Constructor
- type Context
- type Helper
- type IngressShimOptions
- type Interface
- type IssuerConstructor
- type IssuerFactory
- type IssuerOptions
- type QueuingEventHandler
Constants ¶
const ( // IssuerACME is the name of the ACME issuer IssuerACME string = "acme" // IssuerCA is the name of the simple issuer IssuerCA string = "ca" // IssuerVault is the name of the Vault issuer IssuerVault string = "vault" // IssuerSelfSigned is a self signing issuer IssuerSelfSigned string = "selfsigned" )
Variables ¶
var (
KeyFunc = cache.DeletionHandlingMetaNamespaceKeyFunc
)
Functions ¶
func Known ¶
func Known() map[string]Constructor
Known returns a map of the registered controller Constructors
func NameForIssuer ¶ added in v0.5.0
func NameForIssuer(i v1alpha1.GenericIssuer) (string, error)
nameForIssuer determines the name of the issuer implementation given an Issuer resource.
func Register ¶
func Register(name string, fn Constructor)
Register registers a controller constructor with the controller package
func RegisterIssuer ¶ added in v0.5.0
func RegisterIssuer(name string, c IssuerConstructor)
Register will register an issuer constructor so it can be used within the application. 'name' should be unique, and should be used to identify this issuer. TODO: move this method to be on Factory, and invent a way to obtain a SharedFactory. This will make testing easier.
Types ¶
type ACMEOptions ¶ added in v0.5.0
type BlockingEventHandler ¶
type BlockingEventHandler struct {
WorkFunc func(obj interface{})
}
BlockingEventHandler is an implementation of cache.ResourceEventHandler that simply synchronously calls it's WorkFunc upon calls to OnAdd, OnUpdate or OnDelete.
func (*BlockingEventHandler) Enqueue ¶
func (b *BlockingEventHandler) Enqueue(obj interface{})
func (*BlockingEventHandler) OnAdd ¶
func (b *BlockingEventHandler) OnAdd(obj interface{})
func (*BlockingEventHandler) OnDelete ¶
func (b *BlockingEventHandler) OnDelete(obj interface{})
func (*BlockingEventHandler) OnUpdate ¶
func (b *BlockingEventHandler) OnUpdate(old, new interface{})
type Constructor ¶
Constructor is a function that creates a new control loop given a controller Context.
type Context ¶
type Context struct {
// Client is a Kubernetes clientset
Client kubernetes.Interface
// CMClient is a cert-manager clientset
CMClient clientset.Interface
// Recorder to record events to
Recorder record.EventRecorder
// SharedIndexInformer instances for Kubernetes types
KubeSharedInformerFactory kubeinformers.SharedInformerFactory
// instances
SharedInformerFactory informers.SharedInformerFactory
IssuerOptions
ACMEOptions
IngressShimOptions
}
Context contains various types that are used by controller implementations. We purposely don't have specific informers/listers here, and instead keep a reference to a SharedInformerFactory so that controllers can choose themselves which listers are required.
func (*Context) IssuerFactory ¶
func (c *Context) IssuerFactory() IssuerFactory
type Helper ¶ added in v0.5.0
type Helper struct {
// contains filtered or unexported fields
}
Type Helper provides a set of commonly useful functions for use when building a cert-manager controller. An instance of Helper is made available as part of a controller's context.
func NewHelper ¶ added in v0.5.0
func NewHelper(issuerLister cmlisters.IssuerLister, clusterIssuerLister cmlisters.ClusterIssuerLister) *Helper
NewHelper will construct a new instance of a Helper using values supplied on the provided controller context.
func (*Helper) GetGenericIssuer ¶ added in v0.5.0
func (h *Helper) GetGenericIssuer(ref cmapi.ObjectReference, ns string) (cmapi.GenericIssuer, error)
GetGenericIssuer will return an Issuer for the given IssuerRef. The namespace parameter must be provided if an 'Issuer' is referenced. This namespace will be used to read the Issuer resource. In most cases, the ns parameter should be set to the namespace of the resource that defines the IssuerRef (i.e. the namespace of the Certificate resource).
type IngressShimOptions ¶ added in v0.5.0
type Interface ¶
Interface represents a controller that can run. 'workers' should be the number of independent goroutines for this controller in question that are to be run, and the workers should shut down upon a signal on stopCh. This method should block until all workers have exited cleanly, thus allowing for graceful shutdown of control loops.
type IssuerConstructor ¶ added in v0.5.0
issuerConstructor constructs an issuer given an Issuer resource and a Context. An error will be returned if the appropriate issuer is not registered.
type IssuerFactory ¶ added in v0.5.0
type IssuerFactory interface {
IssuerFor(v1alpha1.GenericIssuer) (issuer.Interface, error)
}
IssuerFactory is an interface that can be used to obtain Issuer implementations. It determines which issuer implementation to use by introspecting the given Issuer resource.
func NewIssuerFactory ¶ added in v0.5.0
func NewIssuerFactory(ctx *Context) IssuerFactory
NewIssuerFactory returns a new issuer factory with the given issuer context. The context will be injected into each Issuer upon creation.
type IssuerOptions ¶ added in v0.5.0
type IssuerOptions struct {
// ClusterResourceNamespace is the namespace to store resources created by
// non-namespaced resources (e.g. ClusterIssuer) in.
ClusterResourceNamespace string
// ClusterIssuerAmbientCredentials controls whether a cluster issuer should
// pick up ambient credentials, such as those from metadata services, to
// construct clients.
ClusterIssuerAmbientCredentials bool
// IssuerAmbientCredentials controls whether an issuer should pick up ambient
// credentials, such as those from metadata services, to construct clients.
IssuerAmbientCredentials bool
// RenewBeforeExpiryDuration is the default 'renew before expiry' time for Certificates.
// Once a certificate is within this duration until expiry, a new Certificate
// will be attempted to be issued.
RenewBeforeExpiryDuration time.Duration
}
func (IssuerOptions) CanUseAmbientCredentials ¶ added in v0.5.0
func (o IssuerOptions) CanUseAmbientCredentials(iss cmapi.GenericIssuer) bool
func (IssuerOptions) CertificateNeedsRenew ¶ added in v0.5.0
func (o IssuerOptions) CertificateNeedsRenew(cert *x509.Certificate) bool
func (IssuerOptions) ResourceNamespace ¶ added in v0.5.0
func (o IssuerOptions) ResourceNamespace(iss cmapi.GenericIssuer) string
type QueuingEventHandler ¶
type QueuingEventHandler struct {
Queue workqueue.RateLimitingInterface
}
QueuingEventHandler is an implementation of cache.ResourceEventHandler that simply queues objects that are added/updated/deleted.
func (*QueuingEventHandler) Enqueue ¶
func (q *QueuingEventHandler) Enqueue(obj interface{})
func (*QueuingEventHandler) OnAdd ¶
func (q *QueuingEventHandler) OnAdd(obj interface{})
func (*QueuingEventHandler) OnDelete ¶
func (q *QueuingEventHandler) OnDelete(obj interface{})
func (*QueuingEventHandler) OnUpdate ¶
func (q *QueuingEventHandler) OnUpdate(old, new interface{})
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package test contains testing utilities used for constructing fake Contexts which can be used during tests.
|
Package test contains testing utilities used for constructing fake Contexts which can be used during tests. |