ContainerImage.Pinniped/internal/controller
Andrew Keesler e05213f9dd
supervisor-generate-key: use EC keys intead of RSA
EC keys are smaller and take less time to generate. Our integration
tests were super flakey because generating an RSA key would take up to
10 seconds *gasp*. The main token verifier that we care about is
Kubernetes, which supports P256, so hopefully it won't be that much of
an issue that our default signing key type is EC. The OIDC spec seems
kinda squirmy when it comes to using non-RSA signing algorithms...

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2020-10-15 11:33:08 -04:00
..
apicerts kubecertagent: use initial event for when key can't be found 2020-09-24 16:54:20 -04:00
identityprovider Sort idpcache keys to make things as deterministic as possible. 2020-09-22 10:03:32 -05:00
issuerconfig kube_config_info_publisher.go no longer watches cic's with an informer 2020-09-24 09:19:57 -07:00
kubecertagent Fix expected CIC status message on non-hosted control planes 2020-09-24 17:56:55 -04:00
supervisorconfig supervisor-generate-key: use EC keys intead of RSA 2020-10-15 11:33:08 -04:00
utils.go Add Go vanity import paths. 2020-09-18 14:56:24 -05:00