kubernetes: k8s.io/kubernetes/pkg/controller/certificates Index | Files | Directories

package certificates

import "k8s.io/kubernetes/pkg/controller/certificates"

Package certificates implements an abstract controller that is useful for building controllers that manage CSRs


Package Files

certificate_controller.go certificate_controller_utils.go

func GetCertApprovalCondition Uses

func GetCertApprovalCondition(status *certificates.CertificateSigningRequestStatus) (approved bool, denied bool)

func HasTrueCondition Uses

func HasTrueCondition(csr *certificates.CertificateSigningRequest, conditionType certificates.RequestConditionType) bool

HasCondition returns true if the csr contains a condition of the specified type with a status that is set to True or is empty

func IgnorableError Uses

func IgnorableError(s string, args ...interface{}) ignorableError

IgnorableError returns an error that we shouldn't handle (i.e. log) because it's spammy and usually user error. Instead we will log these errors at a higher log level. We still need to throw these errors to signal that the sync should be retried.

func IsCertificateRequestApproved Uses

func IsCertificateRequestApproved(csr *certificates.CertificateSigningRequest) bool

IsCertificateRequestApproved returns true if a certificate request has the "Approved" condition and no "Denied" conditions; false otherwise.

type CertificateController Uses

type CertificateController struct {
    // contains filtered or unexported fields

func NewCertificateController Uses

func NewCertificateController(
    name string,
    kubeClient clientset.Interface,
    csrInformer certificatesinformers.CertificateSigningRequestInformer,
    handler func(*certificates.CertificateSigningRequest) error,
) *CertificateController

func (*CertificateController) Run Uses

func (cc *CertificateController) Run(workers int, stopCh <-chan struct{})

Run the main goroutine responsible for watching and syncing jobs.


approverPackage approver implements an automated approver for kubelet certificates.
cleanerPackage cleaner implements an automated cleaner that does garbage collection on CSRs that meet specific criteria.
signerPackage signer implements a CA signer that uses keys stored on local disk.

Package certificates imports 17 packages (graph) and is imported by 46 packages. Updated 2020-09-24. Refresh now. Tools for package owners.