History

Matt Moyer 657488fe90 Create CredentialIssuer at install, not runtime. Previously, our controllers would automatically create a CredentialIssuer with a singleton name. The helpers we had for this also used "raw" client access and did not take advantage of the informer cache pattern. With this change, the CredentialIssuer is always created at install time in the ytt YAML. The controllers now only update the existing CredentialIssuer status, and they do so using the informer cache as much as possible. This change is targeted at only the kubecertagent controller to start. The impersonatorconfig controller will be updated in a following PR along with other changes. Signed-off-by: Matt Moyer <moyerm@vmware.com>		2021-05-19 17:15:25 -05:00
..
README.md	Restructure docs into new layout.	2021-02-23 11:11:07 -06:00
authentication.concierge.pinniped.dev_jwtauthenticators.yaml	Generated	2021-02-10 21:52:09 -05:00
authentication.concierge.pinniped.dev_webhookauthenticators.yaml	Generated	2021-02-10 21:52:09 -05:00
config.concierge.pinniped.dev_credentialissuers.yaml	Fix a copy-paste typo in the ImpersonationProxyInfo JSON field name.	2021-03-12 13:24:05 -06:00
deployment.yaml	Create CredentialIssuer at install, not runtime.	2021-05-19 17:15:25 -05:00
helpers.lib.yaml	deploy: wire API group suffix through YTT templates	2021-01-19 17:23:06 -05:00
rbac.yaml	Split out kube-cert-agent service account and bindings.	2021-05-04 10:09:33 -05:00
values.yaml	fix a typo in some comments	2021-03-22 09:34:58 -07:00
z0_crd_overlay.yaml	deploy: wire API group suffix through YTT templates	2021-01-19 17:23:06 -05:00

README.md

Pinniped Concierge Deployment

See the how-to guide for details.