Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update charts CRDs to latest version #133

Merged
merged 3 commits into from
Aug 17, 2023
Merged

Update charts CRDs to latest version #133

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
ec82af9
Add execute permission to required scripts
acumino Aug 17, 2023
1e23f69
Copy CRDs to charts on `make generate`
acumino Aug 17, 2023
b65946e
Delete old unmaintained CRDs
acumino Aug 17, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@

REGISTRY := eu.gcr.io/gardener-project
EXECUTABLE := cert-controller-manager
REPO_ROOT := $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST))))
PROJECT := github.com/gardener/cert-management
CERT_IMAGE_REPOSITORY := $(REGISTRY)/cert-controller-manager
VERSION := $(shell cat VERSION)
Expand All @@ -14,6 +15,7 @@ IMAGE_TAG := $(VERSION)
revendor:
@GO111MODULE=on go mod tidy
@GO111MODULE=on go mod vendor
@chmod +x $(REPO_ROOT)/vendor/github.com/gardener/controller-manager-library/hack/run-in.sh

.PHONY: check
check:
Expand Down Expand Up @@ -50,6 +52,7 @@ test:
generate:
@./hack/generate-code
@GO111MODULE=on go generate ./pkg/apis/cert/...
cp ./pkg/apis/cert/crds/*.yaml ./charts/cert-management/templates/

.PHONY: docker-images
docker-images:
Expand Down
282 changes: 282 additions & 0 deletions charts/cert-management/templates/cert.gardener.cloud_certificaterevocations.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,282 @@
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.11.3
creationTimestamp: null
name: certificaterevocations.cert.gardener.cloud
spec:
group: cert.gardener.cloud
names:
kind: CertificateRevocation
listKind: CertificateRevocationList
plural: certificaterevocations
shortNames:
- certrevoke
singular: certificaterevocation
scope: Namespaced
versions:
- additionalPrinterColumns:
- description: Certificate to be revoked
jsonPath: .spec.certificateRef.name
name: CERTIFICATE
type: string
- description: status of revocation
jsonPath: .status.state
name: STATUS
type: string
- description: timestamp of complete revocation
jsonPath: .status.revocationApplied
name: REVOKED_AT
priority: 500
type: date
- description: if true certificate objects should be renewed before revoking old
certificates certificate(s)
jsonPath: .spec.renew
name: RENEW
type: boolean
- description: qualifying all certificates valid before this timestamp
jsonPath: .spec.qualifyingDate
name: QUALIFIED_AT
type: date
- description: object creation timestamp
jsonPath: .metadata.creationTimestamp
name: AGE
type: date
name: v1alpha1
schema:
openAPIV3Schema:
description: CertificateRevocation is the certificate revocation custom resource.
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type: string
metadata:
type: object
spec:
description: CertificateRevocationSpec is the spec of the certificate
revocation.
properties:
certificateRef:
description: CertificateRef is the references to the certificate to
be revoked
properties:
name:
description: Name is the name of the certificate in the same namespace.
type: string
namespace:
description: Namespace is the namespace of the certificate CR.
type: string
required:
- name
- namespace
type: object
qualifyingDate:
description: QualifyingDate specifies that any certificate with the
same DNS names like the given 'certificateRef' should be revoked
if it is valid before this date. If not specified, it will be filled
with the current time.
format: date-time
type: string
renew:
description: Renew specifies if certificate objects should be renewed
before revoking old certificates
type: boolean
type: object
status:
description: CertificateRevocationStatus is the status of the certificate
request.
properties:
message:
description: Message is the status or error message.
type: string
objects:
description: ObjectStatuses contains the statuses of the involved
certificate objects
properties:
failed:
description: Failed is the list of certificate objects whose processing
failed
items:
description: CertificateRef is the reference of the issuer by
name.
properties:
name:
description: Name is the name of the certificate in the
same namespace.
type: string
namespace:
description: Namespace is the namespace of the certificate
CR.
type: string
required:
- name
- namespace
type: object
type: array
processing:
description: Processing is the list of certificate objects to
be processed
items:
description: CertificateRef is the reference of the issuer by
name.
properties:
name:
description: Name is the name of the certificate in the
same namespace.
type: string
namespace:
description: Namespace is the namespace of the certificate
CR.
type: string
required:
- name
- namespace
type: object
type: array
renewed:
description: Renewed is the list of certificate objects successfully
renewed
items:
description: CertificateRef is the reference of the issuer by
name.
properties:
name:
description: Name is the name of the certificate in the
same namespace.
type: string
namespace:
description: Namespace is the namespace of the certificate
CR.
type: string
required:
- name
- namespace
type: object
type: array
revoked:
description: Revoked is the list of certificate objects successfully
revoked (without renewal)
items:
description: CertificateRef is the reference of the issuer by
name.
properties:
name:
description: Name is the name of the certificate in the
same namespace.
type: string
namespace:
description: Namespace is the namespace of the certificate
CR.
type: string
required:
- name
- namespace
type: object
type: array
type: object
observedGeneration:
description: ObservedGeneration is the observed generation of the
spec.
format: int64
type: integer
revocationApplied:
description: RevocationApplied is the timestamp when the revocation
was completed
format: date-time
type: string
secrets:
description: SecretStatuses contains the statuses of the involved
certificate secrets
properties:
failed:
description: Failed is the list of certificate secrets whose revocation
failed
items:
description: CertificateSecretRef is a reference to a secret
together with the serial number
properties:
name:
description: name is unique within a namespace to reference
a secret resource.
type: string
namespace:
description: namespace defines the space within which the
secret name must be unique.
type: string
serialNumber:
description: SerialNumber is the serial number of the certificate
type: string
required:
- serialNumber
type: object
x-kubernetes-map-type: atomic
type: array
processing:
description: Processing is the list of certificate secrets to
be processed
items:
description: CertificateSecretRef is a reference to a secret
together with the serial number
properties:
name:
description: name is unique within a namespace to reference
a secret resource.
type: string
namespace:
description: namespace defines the space within which the
secret name must be unique.
type: string
serialNumber:
description: SerialNumber is the serial number of the certificate
type: string
required:
- serialNumber
type: object
x-kubernetes-map-type: atomic
type: array
revoked:
description: Revoked is the list of certificate secrets successfully
revoked
items:
description: CertificateSecretRef is a reference to a secret
together with the serial number
properties:
name:
description: name is unique within a namespace to reference
a secret resource.
type: string
namespace:
description: namespace defines the space within which the
secret name must be unique.
type: string
serialNumber:
description: SerialNumber is the serial number of the certificate
type: string
required:
- serialNumber
type: object
x-kubernetes-map-type: atomic
type: array
type: object
state:
description: State is the certificate state.
type: string
required:
- state
type: object
required:
- spec
type: object
served: true
storage: true
subresources:
status: {}
Loading