Skip to content
This repository has been archived by the owner on Jul 11, 2023. It is now read-only.

vault: Carve out fetching of Issuing CA into a function #2069

Merged
merged 1 commit into from
Nov 19, 2020
Merged

vault: Carve out fetching of Issuing CA into a function #2069

merged 1 commit into from
Nov 19, 2020

Conversation

draychev
Copy link
Contributor

@draychev draychev commented Nov 16, 2020
edited
Loading

The goal of this PR is to carve out the function figuring out the Issuing CA for the connected Hashicorp Vault in a separate function.

This obviously adds more code and still does the same thing. The idea is to eventually implement pki/revoke in the Hashi Vault API via the ReleaseCertificate function, so that the temp certificate does not linger around Vault and is never renewed etc.

The pki/revoke API call to Hashicorp Vault will happen as part of this GitHub Issue: #2068

ref #2070 #507

Affected area:

  • New Functionality [ ]
  • Documentation [ ]
  • Install [ ]
  • Control Plane [ ]
  • CLI Tool [ ]
  • Certificate Management [ ]
  • Networking [ ]
  • Metrics [ ]
  • SMI Policy [ ]
  • Security [ ]
  • Tests [ ]
  • CI System [ ]
  • Performance [ ]
  • Other [ ]

Please answer the following questions with yes/no.

  • Does this change contain code from or inspired by another project? If so, did you notify the maintainers and provide attribution?

@draychev draychev requested a review from a team as a code owner November 16, 2020 23:18
@draychev draychev closed this Nov 17, 2020
@draychev draychev deleted the small-refactor-hashi-vault-cert-issuer branch November 17, 2020 00:22
@draychev draychev restored the small-refactor-hashi-vault-cert-issuer branch November 17, 2020 00:59
@draychev draychev reopened this Nov 17, 2020
@codecov-io
Copy link

Codecov Report

Merging #2069 (9ef22e9) into main (e0513d3) will increase coverage by 0.10%.
The diff coverage is 70.00%.

Impacted file tree graph

@@            Coverage Diff             @@
##             main    #2069      +/-   ##
==========================================
+ Coverage   57.81%   57.91%   +0.10%     
==========================================
  Files         140      140              
  Lines        5781     5786       +5     
==========================================
+ Hits         3342     3351       +9     
+ Misses       2437     2433       -4     
  Partials        2        2
Impacted Files Coverage Δ
...certificate/providers/vault/certificate_manager.go 56.17% <70.00%> (+7.98%) ⬆️
pkg/catalog/proxy.go 100.00% <0.00%> (ø)
pkg/catalog/catalog.go 100.00% <0.00%> (ø)
pkg/catalog/debugger.go 97.22% <0.00%> (+0.07%) ⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update e0513d3...9ef22e9. Read the comment docs.

@draychev draychev merged commit 374d418 into openservicemesh:main Nov 19, 2020
@draychev draychev deleted the small-refactor-hashi-vault-cert-issuer branch November 19, 2020 21:12
draychev added a commit to draychev/osm that referenced this pull request Dec 14, 2020
@draychev
vault: Carve out fetching of Issuing CA into a function (openservicem…
75f6351 
…esh#2069)
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@ksubrmnn ksubrmnn ksubrmnn approved these changes

@eduser25 eduser25 eduser25 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@draychev @codecov-io @eduser25 @ksubrmnn