ContainerImage.Pinniped/internal/controller/apicerts
Ryan Richard 38802c2184 Add a way to set a default supervisor TLS cert for when SNI won't work
- Setting a Secret in the supervisor's namespace with a special name
  will cause it to get picked up and served as the supervisor's TLS
  cert for any request which does not have a matching SNI cert.
- This is especially useful for when there is no DNS record for an
  issuer and the user will be accessing it via IP address. This
  is not how we would expect it to be used in production, but it
  might be useful for other cases.
- Includes a new integration test
- Also suppress all of the warnings about ignoring the error returned by
  Close() in lines like `defer x.Close()` to make GoLand happier
2020-10-27 16:33:08 -07:00
..
apiservice_updater_test.go Merge branch 'main' into rename_stuff 2020-09-18 16:39:58 -07:00
apiservice_updater.go Merge branch 'main' into rename_stuff 2020-09-18 16:39:58 -07:00
certs_expirer_test.go dynamiccertauthority: fix cert expiration test failure 2020-10-23 15:34:25 -04:00
certs_expirer.go Merge branch 'main' into rename_stuff 2020-09-18 16:39:58 -07:00
certs_manager_test.go Concierge controllers add labels to all created resources 2020-10-15 10:14:23 -07:00
certs_manager.go Add a way to set a default supervisor TLS cert for when SNI won't work 2020-10-27 16:33:08 -07:00
certs_observer_test.go internal/provider -> internal/dynamiccert 2020-09-23 08:29:35 -04:00
certs_observer.go internal/provider -> internal/dynamiccert 2020-09-23 08:29:35 -04:00
doc.go Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
update_api_service_test.go Remove deprecated "pinniped.dev" API group. 2020-09-18 17:32:15 -05:00
update_api_service.go Paramaterize the APIService name in apiServiceUpdaterController rather than hardcoding. 2020-09-17 09:52:23 -05:00