diff --git a/enterprise/clusterissuer/4.1.4/app-changelog.md b/enterprise/clusterissuer/4.1.4/app-changelog.md deleted file mode 100644 index 65c1caccf6..0000000000 --- a/enterprise/clusterissuer/4.1.4/app-changelog.md +++ /dev/null @@ -1,9 +0,0 @@ - - -## [clusterissuer-4.1.4](https://github.com/truecharts/charts/compare/clusterissuer-4.1.3...clusterissuer-4.1.4) (2023-10-27) - -### Fix - -- fix malformed yaml output ([#14028](https://github.com/truecharts/charts/issues/14028)) - - \ No newline at end of file diff --git a/enterprise/clusterissuer/4.1.4/charts/common-14.0.9.tgz b/enterprise/clusterissuer/4.1.4/charts/common-14.0.9.tgz deleted file mode 100644 index 570d2bbefa..0000000000 Binary files a/enterprise/clusterissuer/4.1.4/charts/common-14.0.9.tgz and /dev/null differ diff --git a/enterprise/clusterissuer/4.1.4/CHANGELOG.md b/enterprise/clusterissuer/4.2.0/CHANGELOG.md similarity index 86% rename from enterprise/clusterissuer/4.1.4/CHANGELOG.md rename to enterprise/clusterissuer/4.2.0/CHANGELOG.md index 33d5abf8e6..79c2daa86d 100644 --- a/enterprise/clusterissuer/4.1.4/CHANGELOG.md +++ b/enterprise/clusterissuer/4.2.0/CHANGELOG.md @@ -4,6 +4,19 @@ +## [clusterissuer-4.2.0](https://github.com/truecharts/charts/compare/clusterissuer-4.1.4...clusterissuer-4.2.0) (2023-10-28) + +### Chore + +- Fix typo in categories and make them singular ([#13693](https://github.com/truecharts/charts/issues/13693)) + + ### Feat + +- Add ability to create cluster-wide certificates ([#13852](https://github.com/truecharts/charts/issues/13852)) + + + + ## [clusterissuer-4.1.4](https://github.com/truecharts/charts/compare/clusterissuer-4.1.3...clusterissuer-4.1.4) (2023-10-27) ### Fix @@ -84,16 +97,3 @@ - update helm general non-major ([#11034](https://github.com/truecharts/charts/issues/11034)) - - -## [clusterissuer-3.0.1](https://github.com/truecharts/charts/compare/clusterissuer-3.0.0...clusterissuer-3.0.1) (2023-07-26) - -### Fix - -- fix `issuerRef` for self-signed CAs ([#10847](https://github.com/truecharts/charts/issues/10847)) - - - - -## [clusterissuer-3.0.0](https://github.com/truecharts/charts/compare/clusterissuer-2.0.1...clusterissuer-3.0.0) (2023-07-25) - diff --git a/enterprise/clusterissuer/4.1.4/Chart.yaml b/enterprise/clusterissuer/4.2.0/Chart.yaml similarity index 90% rename from enterprise/clusterissuer/4.1.4/Chart.yaml rename to enterprise/clusterissuer/4.2.0/Chart.yaml index ff98289969..d8b31deeab 100644 --- a/enterprise/clusterissuer/4.1.4/Chart.yaml +++ b/enterprise/clusterissuer/4.2.0/Chart.yaml @@ -10,7 +10,7 @@ keywords: dependencies: - name: common repository: https://library-charts.truecharts.org - version: 14.0.9 + version: 14.1.0 kubeVersion: ">=1.16.0-0" maintainers: - email: info@truecharts.org @@ -21,9 +21,8 @@ sources: - https://github.com/truecharts/charts/tree/master/charts/enterprise/clusterissuer - https://cert-manager.io/ type: application -version: 4.1.4 +version: 4.2.0 annotations: - truecharts.org/catagories: | - - core + truecharts.org/category: core truecharts.org/SCALE-support: "true" truecharts.org/grade: U diff --git a/enterprise/clusterissuer/4.1.4/LICENSE b/enterprise/clusterissuer/4.2.0/LICENSE similarity index 100% rename from enterprise/clusterissuer/4.1.4/LICENSE rename to enterprise/clusterissuer/4.2.0/LICENSE diff --git a/enterprise/clusterissuer/4.1.4/README.md b/enterprise/clusterissuer/4.2.0/README.md similarity index 100% rename from enterprise/clusterissuer/4.1.4/README.md rename to enterprise/clusterissuer/4.2.0/README.md diff --git a/enterprise/clusterissuer/4.2.0/app-changelog.md b/enterprise/clusterissuer/4.2.0/app-changelog.md new file mode 100644 index 0000000000..6ec93fdb5a --- /dev/null +++ b/enterprise/clusterissuer/4.2.0/app-changelog.md @@ -0,0 +1,13 @@ + + +## [clusterissuer-4.2.0](https://github.com/truecharts/charts/compare/clusterissuer-4.1.4...clusterissuer-4.2.0) (2023-10-28) + +### Chore + +- Fix typo in categories and make them singular ([#13693](https://github.com/truecharts/charts/issues/13693)) + + ### Feat + +- Add ability to create cluster-wide certificates ([#13852](https://github.com/truecharts/charts/issues/13852)) + + \ No newline at end of file diff --git a/enterprise/clusterissuer/4.1.4/app-readme.md b/enterprise/clusterissuer/4.2.0/app-readme.md similarity index 100% rename from enterprise/clusterissuer/4.1.4/app-readme.md rename to enterprise/clusterissuer/4.2.0/app-readme.md diff --git a/enterprise/clusterissuer/4.2.0/charts/common-14.1.0.tgz b/enterprise/clusterissuer/4.2.0/charts/common-14.1.0.tgz new file mode 100644 index 0000000000..cc0f8e990a Binary files /dev/null and b/enterprise/clusterissuer/4.2.0/charts/common-14.1.0.tgz differ diff --git a/enterprise/clusterissuer/4.1.4/ix_values.yaml b/enterprise/clusterissuer/4.2.0/ix_values.yaml similarity index 87% rename from enterprise/clusterissuer/4.1.4/ix_values.yaml rename to enterprise/clusterissuer/4.2.0/ix_values.yaml index 51f5c994b2..70218d5c15 100644 --- a/enterprise/clusterissuer/4.1.4/ix_values.yaml +++ b/enterprise/clusterissuer/4.2.0/ix_values.yaml @@ -94,3 +94,15 @@ clusterIssuer: # fulldomain: "" # subdomain: "" # allowFrom: [] + +clusterCertificates: + # Namespaces in which the certificates must be available + # Accepts comma-separated regex expressions + # replicationNamespaces: 'ix-.*' + certificates: [] + # - name: mycert + # enabled: true + # certificateIssuer: selfsigned + # hosts: + # - my.domain.com + # - '*.my.domain.com' diff --git a/enterprise/clusterissuer/4.1.4/questions.yaml b/enterprise/clusterissuer/4.2.0/questions.yaml similarity index 90% rename from enterprise/clusterissuer/4.1.4/questions.yaml rename to enterprise/clusterissuer/4.2.0/questions.yaml index e9c9d78962..e6d1d868fa 100644 --- a/enterprise/clusterissuer/4.1.4/questions.yaml +++ b/enterprise/clusterissuer/4.2.0/questions.yaml @@ -371,6 +371,53 @@ questions: valid_chars: '^[a-z]+(-?[a-z]){0,63}-?[a-z]+$' default: "selfsigned" + - variable: clusterCertificates + group: App Configuration + label: Cluster Wide Certificates (Experimental) + description: "Creates certificates for use within the entire cluster. Can be used to create wildcard certificates." + schema: + additional_attrs: true + type: dict + attrs: + - variable: certificates + label: Cluster Certificates + schema: + type: list + default: [] + items: + - variable: enabled + label: Enabled + schema: + type: boolean + default: true + - variable: name + label: Certificate Name + schema: + type: string + required: true + default: "" + - variable: certificateIssuer + label: Cert-Manager clusterIssuer + description: "One of the Cert-Manager clusterIssuers defined above" + schema: + type: string + required: true + valid_chars: '^[a-z]+(-?[a-z]){0,63}-?[a-z]+$' + default: "selfsigned" + - variable: hosts + label: Certificate Hosts + description: "NOTE: Creation of wildcard certificates with an ACME issuer requires a DNSO1 solver to be set up." + schema: + type: list + default: [] + items: + - variable: host + label: Host + schema: + type: string + default: "" + required: true + - variable: customMetrics group: Metrics label: Prometheus Metrics diff --git a/enterprise/clusterissuer/4.1.4/templates/NOTES.txt b/enterprise/clusterissuer/4.2.0/templates/NOTES.txt similarity index 100% rename from enterprise/clusterissuer/4.1.4/templates/NOTES.txt rename to enterprise/clusterissuer/4.2.0/templates/NOTES.txt diff --git a/enterprise/clusterissuer/4.1.4/templates/clusterissuer/_ACME.tpl b/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_ACME.tpl similarity index 100% rename from enterprise/clusterissuer/4.1.4/templates/clusterissuer/_ACME.tpl rename to enterprise/clusterissuer/4.2.0/templates/clusterissuer/_ACME.tpl diff --git a/enterprise/clusterissuer/4.1.4/templates/clusterissuer/_CA.tpl b/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_CA.tpl similarity index 100% rename from enterprise/clusterissuer/4.1.4/templates/clusterissuer/_CA.tpl rename to enterprise/clusterissuer/4.2.0/templates/clusterissuer/_CA.tpl diff --git a/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_clusterCertificates.tpl b/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_clusterCertificates.tpl new file mode 100644 index 0000000000..86ff731b3f --- /dev/null +++ b/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_clusterCertificates.tpl @@ -0,0 +1,35 @@ +{{- define "certmanager.clusterissuer.clusterCertificates" -}} + {{- if .Values.clusterCertificates -}} + {{- $certs := dict -}} + {{- $secretTemplates := dict -}} + {{- $certNamespace := (include "tc.v1.common.lib.metadata.namespace" (dict "rootCtx" $ "objectData" $certs "caller" "ClusterCertificates")) -}} + {{- $replicationNamespaces := ".*" -}} + {{- if .Values.clusterCertificates.replicationNamespaces -}} + {{- $replicationNamespaces = .Values.clusterCertificates.replicationNamespaces -}} + {{- else if .Values.ixChartContext -}} + {{- $replicationNamespaces = "ix-.*" -}} + {{- end -}} + {{- $reflectorAnnotations := (dict + "reflector.v1.k8s.emberstack.com/reflection-allowed" "true" + "reflector.v1.k8s.emberstack.com/reflection-auto-enabled" "true" + "reflector.v1.k8s.emberstack.com/reflection-allowed-namespaces" (printf "%v,%v" $certNamespace $replicationNamespaces) + "reflector.v1.k8s.emberstack.com/reflection-auto-namespaces" $replicationNamespaces ) -}} + {{- $certAnnotations := (mustMerge ($reflectorAnnotations) (include "tc.v1.common.lib.metadata.allAnnotations" $ | fromYaml)) -}} + + {{- $_ := set $secretTemplates "annotations" $certAnnotations -}} + + {{- range .Values.clusterCertificates.certificates -}} + {{- $_ := set $certs .name dict -}} + {{- $currentCert := (index $certs (.name)) -}} + {{- $_ := set $currentCert "enabled" .enabled -}} + {{- $_ := set $currentCert "nameOverride" .name -}} + {{- $_ := set $currentCert "hosts" .hosts -}} + {{- $_ := set $currentCert "certificateIssuer" .certificateIssuer -}} + {{- $_ := set $currentCert "secretTemplate" $secretTemplates -}} + {{- end -}} + + {{- $_ := set .Values "cert" $certs -}} + {{/* Render the ClusterWide Certificate(s) */}} + {{- include "tc.v1.common.spawner.certificate" . | nindent 0 -}} + {{- end -}} +{{- end -}} diff --git a/enterprise/clusterissuer/4.1.4/templates/clusterissuer/_selfSigned.tpl b/enterprise/clusterissuer/4.2.0/templates/clusterissuer/_selfSigned.tpl similarity index 100% rename from enterprise/clusterissuer/4.1.4/templates/clusterissuer/_selfSigned.tpl rename to enterprise/clusterissuer/4.2.0/templates/clusterissuer/_selfSigned.tpl diff --git a/enterprise/clusterissuer/4.1.4/templates/common.yaml b/enterprise/clusterissuer/4.2.0/templates/common.yaml similarity index 57% rename from enterprise/clusterissuer/4.1.4/templates/common.yaml rename to enterprise/clusterissuer/4.2.0/templates/common.yaml index 874f41f5c4..8d713d12f0 100644 --- a/enterprise/clusterissuer/4.1.4/templates/common.yaml +++ b/enterprise/clusterissuer/4.2.0/templates/common.yaml @@ -7,3 +7,8 @@ {{- include "certmanager.clusterissuer.acme" . }} {{- include "certmanager.clusterissuer.selfsigned" . }} {{- include "certmanager.clusterissuer.ca" . }} + +{{/* Must be called after the initial loader.apply template, + because it overrides .Values.cert in order to generate + the additional cluster-wide certificates */}} +{{- include "certmanager.clusterissuer.clusterCertificates" . }} diff --git a/enterprise/clusterissuer/4.1.4/values.yaml b/enterprise/clusterissuer/4.2.0/values.yaml similarity index 100% rename from enterprise/clusterissuer/4.1.4/values.yaml rename to enterprise/clusterissuer/4.2.0/values.yaml diff --git a/enterprise/clusterissuer/item.yaml b/enterprise/clusterissuer/item.yaml index ad9d3aa7c9..049eb15ebc 100644 --- a/enterprise/clusterissuer/item.yaml +++ b/enterprise/clusterissuer/item.yaml @@ -1,5 +1,4 @@ icon_url: https://truecharts.org/img/hotlink-ok/chart-icons/clusterissuer.png categories: - core - screenshots: []