Documentation
¶
Overview ¶
Package kubestore contains an ipn.StateStore implementation using Kubernetes Secrets.
Index ¶
- type Store
- func (s *Store) ReadState(id ipn.StateKey) ([]byte, error)
- func (s *Store) ReadTLSCertAndKey(domain string) (cert, key []byte, err error)
- func (s *Store) SetDialer(d func(ctx context.Context, network, address string) (net.Conn, error))
- func (s *Store) String() string
- func (s *Store) WriteState(id ipn.StateKey, bs []byte) (err error)
- func (s *Store) WriteTLSCertAndKey(domain string, cert, key []byte) (err error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Store ¶
type Store struct {
// contains filtered or unexported fields
}
Store is an ipn.StateStore that uses a Kubernetes Secret for persistence.
func New ¶
New returns a new Store that persists state to Kubernets Secret(s). Tailscale state is stored in a Secret named by the secretName parameter. TLS certs are stored and retrieved from state Secret or separate Secrets named after TLS endpoints if running in cert share mode.
func (*Store) ReadTLSCertAndKey ¶ added in v1.82.0
ReadTLSCertAndKey reads a TLS cert and key from memory or from a domain-specific Secret. It first checks the in-memory store, if not found in memory and running cert store in read-only mode, looks up a Secret. Note that write replicas of HA Ingress always retrieve TLS certs from Secrets.
func (*Store) WriteState ¶
WriteState implements the StateStore interface.
Source Files