const (
CSRControllerName = "certificatesigningrequests-issuer-vault"
)
func NewVault(ctx *controllerpkg.Context) certificatesigningrequests.Signer
Vault is a controller for signing Kubernetes CertificateSigningRequest using Vault Issuers.
type Vault struct {
// contains filtered or unexported fields
}
func (v *Vault) Sign(ctx context.Context, csr *certificatesv1.CertificateSigningRequest, issuerObj cmapi.GenericIssuer) error
Sign attempts to sign the given CertificateSigningRequest based on the provided Vault Issuer or ClusterIssuer. This function updates the CertificateSigningRequest resource if signing was successful. Returns an error which, if not nil, should trigger a retry.