rancher/dynamiclistener
1
0
Fork 0
forked from github/dynamiclistener
Code Issues Pull Requests Projects Releases Wiki Activity
79 Commits 4 Branches 17 Tags 210 KiB
a73b7d7f4c
Commit Graph

79 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Max Sokolovsky
a73b7d7f4c
Merge pull request #55 from genexpr/cherry-pick-filter 
Add filter helper method
 2022-01-07 13:23:23 -05:00
Darren Shepherd
b0dbb8fd60 Add filter helper method 
(cherry picked from commit 9b1b7d3132)
 2022-01-06 14:23:11 -05:00
Max Sokolovsky
7d99790dba
Merge pull request #54 from genexpr/merge-cert-updates-from-master 
Cherry-pick commits that allow setting certificate expiration date
 2022-01-04 12:55:30 -05:00
Max Sokolovsky
2c1c2032dc Use Go 1.16 2022-01-04 11:54:07 -05:00
Max Sokolovsky
acdc51060f update config to allow for specifying experiation in days (#53) 
(cherry picked from commit 148d38076d)
 2022-01-04 11:53:36 -05:00
Max Sokolovsky
3bf34c8ff9 Fix listenAndServe certificate expiration by preloading certs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 284cc004e8)
 2022-01-04 11:53:23 -05:00
Max Sokolovsky
097ec29ed8 Add README 
(cherry picked from commit bbac29e0fa)
 2022-01-04 11:52:40 -05:00
Max Sokolovsky
500cf6baf3 Fix defaultNewSignedCertExpirationDays const 
This a quick fix for 2644a6ed16

(cherry picked from commit f147aa4166)
 2022-01-04 11:47:37 -05:00
Max Sokolovsky
ada93274e5 Allow for default expiration days to be loaded from env 
(cherry picked from commit 2644a6ed16)
 2022-01-04 11:42:50 -05:00
Brian Downs
2df892b5d7
Add ability to force cert regeneration (#43) (#48) 
* add ability to force cert regeneration
 2021-11-15 14:05:41 -07:00
Brad Davidson
cec44b5e30 Update wrangler to v0.8.3 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-07-13 15:16:59 -07:00
Sjoerd Simons
8056fb92e8 Accept IPv6 address as CN names 
Expand the cnRegexp to also accept ipv6 addresses such as:
  * ::1
  * 2a00:1450:400e:80e::
  * 2a00:1450:400e:80e::200e

Fixes: #37

Signed-off-by: Sjoerd Simons <sjoerd@collabora.com>
(cherry picked from commit dc7452dbb8)
 2021-06-14 14:43:06 -07:00
Dan Ramich
51bda41d9c
Merge pull request #34 from dramich/wrangler 
Update wrangler and drop wrangler-api
 2021-04-23 08:46:33 -06:00
Dan Ramich
624606ae5a Update wrangler and drop wrangler-api 2021-04-22 15:44:19 -06:00
Hussein Galal
fc8cf5f3ea
Merge pull request #33 from galal-hussein/fix_load_certs 
Fixing loading certs to work with etcd only nodes
 2021-03-05 22:54:49 +02:00
galal-hussein
3878ff2a1f Fixing loading certs 2021-03-05 22:39:13 +02:00
Hussein Galal
1b2460c151
Merge pull request #32 from galal-hussein/fix_resversion 
Add check to update dynamic listener cert in etcd only nodes
 2021-03-01 21:58:18 +02:00
galal-hussein
e34610a1ae Add check to update dynamic listener cert in etcd only nodes 2021-03-01 21:52:45 +02:00
Brad Davidson
7c224dcdfb
Merge pull request #29 from brandond/force_reissue_0.2 
Allow forcing cert reissuance (v0.2 backport)
 2020-08-11 12:58:42 -07:00
Brad Davidson
53f6b38760 Allow forcing cert reissuance (#28) 
Refreshing the cert should force renewal as opposed to returning
early if the SANs aren't changing. This is currently breaking refresh
of expired certs as per:
https://github.com/rancher/k3s/issues/1621#issuecomment-669464318

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2020-08-10 17:12:39 -07:00
Darren Shepherd
479ab335d6 Add LoadOrGenClient to handle client cert generation 2020-08-10 17:12:39 -07:00
Darren Shepherd
2bfb7bd0cb Fix error masking issue 
Also don't do an extra lookup of TLS secret after update.
 2020-08-10 17:12:39 -07:00
Knic Knic
94e23c7edb fix certpath generation for windows 2020-04-25 22:59:52 -07:00
Darren Shepherd
52ede5ec92
Merge pull request #22 from ibuildthecloud/master 
Always allow configured SANs regardless of the FilterCN
 2020-04-17 19:33:42 -07:00
Darren Shepherd
5c222d5753 Don't parse x509 cert on each request 2020-04-17 19:31:42 -07:00
Darren Shepherd
74a61a850d Always allow configured SANs regardless of the FilterCN 2020-04-17 19:31:31 -07:00
Darren Shepherd
4436fc6b48
Merge pull request #21 from ibuildthecloud/master 
Add ability to confirm adding new CNs
 2020-04-02 22:10:05 -07:00
Darren Shepherd
4bac3f291f Add ability to confirm adding new CNs 2020-04-02 22:08:36 -07:00
Darren Shepherd
c992ce309c Reject bad CNs that will prevent the secret from being saved. 2020-04-02 22:07:45 -07:00
Darren Shepherd
763229ddcd
Merge pull request #20 from ibuildthecloud/master 
Add ability to limit the maximum number of SANs
 2020-03-18 23:17:31 -07:00
Darren Shepherd
171fcf6b79 If connection closing is enabled then don't support HTTP/2 2020-03-18 23:16:38 -07:00
Darren Shepherd
05d7922a86 Add ability to limit the maximum number of SANs 2020-03-18 23:16:38 -07:00
Darren Shepherd
1e67d402dc
Merge pull request #19 from ibuildthecloud/master 
For web browser based requests do not consider IPs in host headers
 2020-03-14 10:17:03 -07:00
Darren Shepherd
7e3fc0c594 For web browser based requests do not consider IPs in host headers 2020-03-14 10:16:11 -07:00
Darren Shepherd
111c5b43e9
Merge pull request #18 from ibuildthecloud/dropconn 
Wrong lock used to protect conn map
 2020-02-13 09:53:08 -07:00
Darren Shepherd
bd73d0d4bc Wrong lock used to protect conn map 2020-02-13 09:52:45 -07:00
Darren Shepherd
5276ad483a
Merge pull request #17 from ibuildthecloud/dropconn 
Add option to close connections on cert change
 2020-02-12 14:13:44 -07:00
Darren Shepherd
8545ce98db Add option to close connections on cert change 2020-02-12 14:00:40 -07:00
Darren Shepherd
3f92468568
Merge pull request #16 from ibuildthecloud/master 
Fix acme listener
 2020-02-07 14:28:38 -07:00
Darren Shepherd
5ba69b1c5f Fix acme listener 2020-02-07 14:20:45 -07:00
Darren Shepherd
6281628cd4
Merge pull request #15 from ibuildthecloud/master 
Add BindHost option
 2020-02-05 23:12:55 -07:00
Darren Shepherd
0b114dc0c2 Add BindHost option 2020-02-05 23:11:51 -07:00
Darren Shepherd
ece289ed54
Merge pull request #14 from ibuildthecloud/master 
Fix merging of the k8s secret to reduce the number of writes
 2020-02-04 12:49:56 -07:00
Darren Shepherd
bc68bf5499 Fix merging of the k8s secret to reduce the number of writes 2020-02-04 12:48:38 -07:00
Darren Shepherd
795bb90214
Merge pull request #13 from ibuildthecloud/master 
Add more helpers
 2020-01-30 22:41:53 -07:00
Darren Shepherd
dcc205f52d mod tidy 2020-01-30 22:41:19 -07:00
Darren Shepherd
4e8035fa46 Fix go fmt/vet issues 2020-01-30 22:41:19 -07:00
Darren Shepherd
a75e84bc81 Add more helpers 2020-01-30 22:41:19 -07:00
Darren Shepherd
ab900b5268
Merge pull request #12 from ibuildthecloud/master 
Add static storage and listener opts
 2019-12-04 11:35:09 -07:00
Darren Shepherd
f1484a07b3 Add static storage and listener opts 2019-12-04 11:32:00 -07:00