Documentation ¶
Index ¶
- func IsValidCertificate(s *corev1.Secret, domains []string, minimumLifespan time.Duration) (bool, error)
- func MakeEndpoints(o *v1alpha1.Certificate, opts ...func(*corev1.Endpoints)) *corev1.Endpoints
- func MakeSecret(o *v1alpha1.Certificate, cert *tls.Certificate) (*corev1.Secret, error)
- func MakeService(o *v1alpha1.Certificate, opts ...func(*corev1.Service)) *corev1.Service
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func IsValidCertificate ¶
func IsValidCertificate(s *corev1.Secret, domains []string, minimumLifespan time.Duration) (bool, error)
IsValidCertificate checks whether the certificate within the given Secret is valid for a list of domains with at least the specified minimum lifespan remaining in the NotAfter field.
func MakeEndpoints ¶
MakeEndpoints creates an Endpoints, which we will point at ourselves. We populate the endpoints with out own Pod's IP address, which we get via the downward API.
func MakeSecret ¶
func MakeSecret(o *v1alpha1.Certificate, cert *tls.Certificate) (*corev1.Secret, error)
MakeSecret creates a TLS-type secret from the given tls.Certificate.
func MakeService ¶
MakeService creates a Service, which we will point at ourselves. This service does not have a selector because it is created alongside the Certificate, but we will point it at our Pod running in the system namespace by directly manipulating Endpoints (see below).
Types ¶
This section is empty.