search

openshift / service-serving-cert-signer

Archiving in favor of https://github.com/openshift/service-ca-operator
Apache License 2.0
13 stars 18 forks source link

create resources for SSCS #5

Closed deads2k closed 6 years ago

deads2k commented 6 years ago

WIP while I sort out the library-go and api fixes.

Adds a simple operator that handles a basic create scenario. It has some auto-stomping features, but not a full set. After more common bits come out for the operator, we have surprisingly little code.

/assign @mfojtik @sttts

TODO after this

  1. configmap rotation - needed for general config updates
  2. config merging - needed to merge in user defined config
  3. secret rotation - needed to properly manage serving signer keys
  4. CA bundle writing
  5. expiry for signing keys
  6. controller healthz failure on new key present
mfojtik commented 6 years ago

@deads2k added some comments, mostly nits, the code looks good

deads2k commented 6 years ago

deps sorted out. comments addressed. I'll merge once this goes green.