apiserver

Commit Graph

Author	SHA1	Message	Date
Mike Danese	a6a121887a	force implementors of dyanmiccertificates providers to think about notify Right now, `_, ok := provider.(Notifier); !ok` can mean one of two things: 1. The provider does not support notification because the provided content is static. 2. The implementor of the provider hasn't gotten around to implementing Notifier yet. These have very different implications. We should not force consumers of these interfaces to have to figure out the static of Notifier across sometimes numerous different implementations. Instead, we should force implementors to implement Notifier, even if it's a noop. Change-Id: Ie7a26697a9a17790bfaa58d67045663bcc71e3cb Kubernetes-commit: 9b7d654a08d694d20226609f7075b112fb18639b	2021-04-09 16:59:17 -07:00
Jack Kleeman	40fefa1b37	Plumb dynamic SNI certificates We create and use a dynamic certificate provider for the SNI serving certificates. Currently we only use static serving certificate providers, so the files are not reloaded, but we should be able to move to a provider that is able to reload later on. Kubernetes-commit: 84bc6b151d0726db0c737443874577f044e0e9c8	2019-10-08 19:03:56 +01:00
Jack Kleeman	8da4640a3d	Plumb dynamic serving certificates We create and use a dynamic certificate provider for the main apiserver serving certificates: SNI will be handled separately later. Currently we only use static serving certificate providers, so the files are not reloaded, but we should be able to move to a provider that is able to reload later on. Kubernetes-commit: 6f89f1027488aeba4af0786988c2fd2ace9a6f1d	2019-10-07 18:49:24 +01:00

Author

SHA1

Message

Date

Mike Danese

a6a121887a

force implementors of dyanmiccertificates providers to think about notify

Right now, `_, ok := provider.(Notifier); !ok` can mean one of two
things:

1. The provider does not support notification because the provided
   content is static.
2. The implementor of the provider hasn't gotten around to implementing
   Notifier yet.

These have very different implications. We should not force consumers of
these interfaces to have to figure out the static of Notifier across
sometimes numerous different implementations. Instead, we should force
implementors to implement Notifier, even if it's a noop.

Change-Id: Ie7a26697a9a17790bfaa58d67045663bcc71e3cb

Kubernetes-commit: 9b7d654a08d694d20226609f7075b112fb18639b

2021-04-09 16:59:17 -07:00

Jack Kleeman

40fefa1b37

Plumb dynamic SNI certificates

We create and use a dynamic certificate provider for the SNI serving
certificates. Currently we only use static serving certificate
providers, so the files are not reloaded, but we should be able to move
to a provider that is able to reload later on.

Kubernetes-commit: 84bc6b151d0726db0c737443874577f044e0e9c8

2019-10-08 19:03:56 +01:00

Jack Kleeman

8da4640a3d

Plumb dynamic serving certificates

We create and use a dynamic certificate provider for the main apiserver
serving certificates: SNI will be handled separately later. Currently we
only use static serving certificate providers, so the files are not
reloaded, but we should be able to move to a provider that is able to
reload later on.

Kubernetes-commit: 6f89f1027488aeba4af0786988c2fd2ace9a6f1d

2019-10-07 18:49:24 +01:00

3 Commits