-
Notifications
You must be signed in to change notification settings - Fork 74
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support injection pem into an existing configmap #58
Comments
I like this idea and would love to see it implemented. Suggesting a small adjustment to the proposed API: spec:
target:
configMapSelector:
my-label-key: my-label-value The type of the selector should be |
/good-first-issue |
@erikgb: Please ensure the request meets the requirements listed here. If this request no longer meets these requirements, the label can be removed In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
I have a suggestion to the UX here, which I think can increase the usability/flexibility. What do you think of just having a well-known annotation/label key that you could add to any configmap or secret. Assuming the name of the trust-manager Bundle is apiVersion: v1
kind: ConfigMap
metadata:
labels:
trust.cert-manager.io/inject-bundle: my-ca-bundle
name: ca-inject
namespace: apache |
I would like to see this feature implemented, and I think I know how it could be done. /assign |
I discussed this issue with the cert-manager maintainers on today's stand-up, and if ever implemented this will probably require a design. /remove-help |
/priority important-longterm |
Issues go stale after 90d of inactivity. |
/remove-lifecycle stale |
It would be great if it was supported to have certificates injected into existing ConfigMaps if they are labelled, similar to the approach that ist available in OpenShift https://docs.openshift.com/container-platform/4.11/networking/configuring-a-custom-pki.html#certificate-injection-using-operators_configuring-a-custom-pki
Something like the snippet belo would inject the bundle to configmaps with the provided label.
The text was updated successfully, but these errors were encountered: