Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

changed default type of certificate secret to kubernetes.io/tls #74

Merged
merged 1 commit into from
May 17, 2021
Merged

changed default type of certificate secret to kubernetes.io/tls #74

merged 1 commit into from
May 17, 2021

Conversation

MartinWeindel
Copy link
Member

What this PR does / why we need it:
The default secret type of certificate secrets is changed from Opaque to kubernetes.io/tls to avoid problems with some client applications like contour.
Already existing certificate secrets will keep their original type, as the secret type is immutable. To change the secret type the secret has to been deleted and a reconciliation of the certificate has to be triggered either by restarting the cert-controller-manager or recreating the certificate object.

Which issue(s) this PR fixes:
Fixes #73

Special notes for your reviewer:

Release note:

changed default type of certificate secret to `kubernetes.io/tls`

@MartinWeindel MartinWeindel requested a review from a team as a code owner May 14, 2021 13:29
@gardener-robot gardener-robot added needs/review Needs review size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels May 14, 2021
@MartinWeindel
Copy link
Member Author

/invite @timuthy

@gardener-robot-ci-2 gardener-robot-ci-2 added the reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) label May 14, 2021
@gardener-robot gardener-robot requested a review from timuthy May 14, 2021 13:29
@gardener-robot-ci-2 gardener-robot-ci-2 added needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels May 14, 2021
@MartinWeindel MartinWeindel force-pushed the change-secret-type-tls branch from de2b97e to a54efaf Compare May 17, 2021 06:49
@gardener-robot-ci-3 gardener-robot-ci-3 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels May 17, 2021
@MartinWeindel MartinWeindel requested a review from timuthy May 17, 2021 06:59
timuthy
timuthy approved these changes May 17, 2021
View reviewed changes
Copy link
Member

@timuthy timuthy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@gardener-robot gardener-robot added reviewed/lgtm Has approval for merging and removed needs/review Needs review labels May 17, 2021
@mandelsoft mandelsoft merged commit bb974ec into master May 17, 2021
@mandelsoft mandelsoft deleted the change-secret-type-tls branch May 17, 2021 09:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@timuthy timuthy timuthy approved these changes

@mandelsoft mandelsoft mandelsoft approved these changes

Assignees
No one assigned
Labels
needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) reviewed/lgtm Has approval for merging size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Secret type "Opaque" or "kubernetes.io/tls"
6 participants
@MartinWeindel @mandelsoft @timuthy @gardener-robot-ci-2 @gardener-robot-ci-3 @gardener-robot