-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for certificate annotations on Istio Gateway/Virtual Service #78
Comments
Hi Daniel, We need to plan of we can just do the implementation assuming (and documenting) that all clusters are running these newer versions or we provide an option to switch this on for a while. This issue will be updated once the implmentation happens. Thanks & Regards, |
Hi Pavan, external-dns-management 0.18.4 is already present in Gardener Canary. |
Hi @Pavan-SAP, I have tested After putting annotation to gateway object:
ceritificate object is created in the same namespace as gateway with name
and owner reference is set to originating gateway. Can you please come up with proposal how this feature can be utilized by cap-operator? |
In our setup (cluster-setup) we need to also specify another annotation This annotation is supported by shoot-cert-service v1.45.0. |
New version of https://github.com/gardener/cert-management/releases/tag/v0.14.0 enables possibility to annotate "Istio Gateway/Virtual Service" as a result certificate manager will be able to create certificate secret in istio namespace.
And thus cap-operator will not need to create certificate object in istio system namespace.
The text was updated successfully, but these errors were encountered: