New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BUGFIX: Stricter CertificateRequest CSR webhook validation #6182

Merged

jetstack-bot merged 3 commits into cert-manager:master from inteon:stricter_certificaterequest_csr_webhook_validation

Jun 29, 2023

Commits on Jun 26, 2023

improve (Extended)KeyUsage parsing to be more consistent
```
Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
```
inteon committed Jun 26, 2023
Configuration menu
View commit details

Copy full SHA for 3938c75

Browse repository at this point
Copy the full SHA

3938c75 View commit details

Browse the repository at this point in the history
make CertificateRequest webhook validation more strict (the Usages ar…
```
…ray should always be the source of truth)

Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
```
inteon committed Jun 26, 2023
Configuration menu
View commit details

Copy full SHA for 6338701

Browse repository at this point
Copy the full SHA

6338701 View commit details

Browse the repository at this point in the history

Commits on Jun 28, 2023

add DontAllowInsecureCSRUsageDefinition feature gate to disable the s…
```
…trict CSR validation

Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>
```
inteon committed Jun 28, 2023
Configuration menu
View commit details

Copy full SHA for 2f56c3c

Browse repository at this point
Copy the full SHA

2f56c3c View commit details

Browse the repository at this point in the history