Documentation
¶
Overview ¶
Package app implements a server that runs a stand-alone version of the certificates controller for GKE clusters.
Package app implements a server that runs a stand-alone version of the certificates controller.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func NewGKECertificatesControllerCommand ¶
NewGKECertificatesControllerCommand creates a new *cobra.Command with default parameters.
func Run ¶
func Run(s *GKECertificatesController) error
Run runs the GKECertificatesController. This should never exit.
Types ¶
type GKECertificatesController ¶
type GKECertificatesController struct {
Kubeconfig string
ClusterSigningGKEKubeconfig string
ClusterSigningGKERetryBackoff metav1.Duration
ApproveAllKubeletCSRsForGroup string
}
GKECertificatesController is the main context object for the package.
func NewGKECertificatesController ¶
func NewGKECertificatesController() *GKECertificatesController
Create a new instance of a GKECertificatesController with default parameters.
func (*GKECertificatesController) AddFlags ¶
func (s *GKECertificatesController) AddFlags(fs *pflag.FlagSet)
AddFlags adds flags for a specific GKECertificatesController to the specified FlagSet.
type GKESigner ¶
type GKESigner struct {
// contains filtered or unexported fields
}
GKESigner uses external calls to GKE in order to sign certificate signing requests.
func NewGKESigner ¶
func NewGKESigner(kubeConfigFile string, retryBackoff time.Duration, recorder record.EventRecorder) (*GKESigner, error)
NewGKESigner will create a new instance of a GKESigner.
func (*GKESigner) Sign ¶
func (s *GKESigner) Sign(csr *certificates.CertificateSigningRequest) (*certificates.CertificateSigningRequest, error)
Sign will make an external call to GKE order to sign the given *certificates.CertificateSigningRequest, using the GKESigner's kubeConfigFile.
Source Files