Fix chain completion and default certificate flag issues (#1978)
This commit is contained in:
Manuel Alejandro de Brito Fontes
GitHub
parent
5dc261dd9c
commit
444a56c001
3 changed files with 24 additions and 11 deletions
|
|
@ -118,11 +118,13 @@ func NewNGINXController(config *Configuration, fs file.Filesystem) *NGINXControl
|
|||
Proxy: &TCPProxy{},
|
||||
}
|
||||
|
||||
n.store = store.New(true,
|
||||
n.store = store.New(
|
||||
config.EnableSSLChainCompletion,
|
||||
config.Namespace,
|
||||
config.ConfigMapName,
|
||||
config.TCPConfigMapName,
|
||||
config.UDPConfigMapName,
|
||||
config.DefaultSSLCertificate,
|
||||
config.ResyncPeriod,
|
||||
config.Client,
|
||||
fs,
|
||||
|
|
|
|||
|
|
@ -198,11 +198,13 @@ type k8sStore struct {
|
|||
|
||||
// mu mutex used to avoid simultaneous incovations to syncSecret
|
||||
mu *sync.Mutex
|
||||
|
||||
defaultSSLCertificate string
|
||||
}
|
||||
|
||||
// New creates a new object store to be used in the ingress controller
|
||||
func New(checkOCSP bool,
|
||||
namespace, configmap, tcp, udp string,
|
||||
namespace, configmap, tcp, udp, defaultSSLCertificate string,
|
||||
resyncPeriod time.Duration,
|
||||
client clientset.Interface,
|
||||
fs file.Filesystem,
|
||||
|
|
@ -218,6 +220,7 @@ func New(checkOCSP bool,
|
|||
backendConfig: ngx_config.NewDefault(),
|
||||
mu: &sync.Mutex{},
|
||||
secretIngressMap: make(map[string]sets.String),
|
||||
defaultSSLCertificate: defaultSSLCertificate,
|
||||
}
|
||||
|
||||
eventBroadcaster := record.NewBroadcaster()
|
||||
|
|
@ -612,6 +615,10 @@ func (s k8sStore) Run(stopCh chan struct{}) {
|
|||
s.ReadSecrets(ing)
|
||||
}
|
||||
|
||||
if s.defaultSSLCertificate != "" {
|
||||
s.syncSecret(s.defaultSSLCertificate)
|
||||
}
|
||||
|
||||
// start goroutine to check for missing local secrets
|
||||
go wait.Until(s.checkMissingSecrets, 10*time.Second, stopCh)
|
||||
|
||||
|
|
|
|||
|
|
@ -70,6 +70,7 @@ func TestStore(t *testing.T) {
|
|||
fmt.Sprintf("%v/config", ns.Name),
|
||||
fmt.Sprintf("%v/tcp", ns.Name),
|
||||
fmt.Sprintf("%v/udp", ns.Name),
|
||||
"",
|
||||
10*time.Minute,
|
||||
clientSet,
|
||||
fs,
|
||||
|
|
@ -155,6 +156,7 @@ func TestStore(t *testing.T) {
|
|||
fmt.Sprintf("%v/config", ns.Name),
|
||||
fmt.Sprintf("%v/tcp", ns.Name),
|
||||
fmt.Sprintf("%v/udp", ns.Name),
|
||||
"",
|
||||
10*time.Minute,
|
||||
clientSet,
|
||||
fs,
|
||||
|
|
@ -294,6 +296,7 @@ func TestStore(t *testing.T) {
|
|||
fmt.Sprintf("%v/config", ns.Name),
|
||||
fmt.Sprintf("%v/tcp", ns.Name),
|
||||
fmt.Sprintf("%v/udp", ns.Name),
|
||||
"",
|
||||
10*time.Minute,
|
||||
clientSet,
|
||||
fs,
|
||||
|
|
@ -378,6 +381,7 @@ func TestStore(t *testing.T) {
|
|||
fmt.Sprintf("%v/config", ns.Name),
|
||||
fmt.Sprintf("%v/tcp", ns.Name),
|
||||
fmt.Sprintf("%v/udp", ns.Name),
|
||||
"",
|
||||
10*time.Minute,
|
||||
clientSet,
|
||||
fs,
|
||||
|
|
|
|||
Loading…
Reference in a new issue