Documentation
¶
Index ¶
Constants ¶
View Source
const ( // KonnectDataPlaneCertPurpose is a ossconsts.CertPurposeLabel value indicating a certificate is by DataPlanes for Konnect // authentication. KonnectDataPlaneCertPurpose = "konnect-dataplane" // DataPlaneKonnectClientCertificateName is the name and label used to identify resources related to the Konnect // client certificate, including the Certificate, its Secret, and volume. DataPlaneKonnectClientCertificateName = "konnect-cert" // DataPlaneKonnectClientCertificatePath is the mount path for the Konnect client certificate. DataPlaneKonnectClientCertificatePath = "/var/konnect-client-certificate/" // ClusterCertEnvKey is the environment variable name for cluster certificates. ClusterCertEnvKey = "KONG_CLUSTER_CERT" // ClusterCertKeyEnvKey is the environment variable name for cluster certificate keys. ClusterCertKeyEnvKey = "KONG_CLUSTER_CERT_KEY" )
Variables ¶
This section is empty.
Functions ¶
func CreateKonnectCert ¶
func CreateKonnectCert( ctx context.Context, logger logr.Logger, dataplane *operatorv1beta1.DataPlane, cl client.Client, certOpts ...CertOpt, ) error
CreateKonnectCert creates a cert-manager certificate request for a DataPlane.
func MountAndUseKonnectCert ¶
func MountAndUseKonnectCert(ctx context.Context, logger logr.Logger, dataplane *operatorv1beta1.DataPlane, cl client.Client, desiredDeployment *k8sresources.Deployment) error
MountAndUseKonnectCert looks for an operator-managed Konnect certificate for a DataPlane, modifies that DataPlane's Deployment to mount it in the proxy container, and configures the proxy environment to authenticate to Konnect using it.
Types ¶
type CertOpt ¶
type CertOpt func(*certmanagerv1.Certificate)
CertOpt modifies generated cerfificates.
func WithSecretLabel ¶
WithSecretLabel adds a label "key:value" to the secrets generated for the certificate.
Source Files
Click to show internal directories.
Click to hide internal directories.