Add TLSStores to Kubernetes CRD

2020-02-24 08:14:06 -08:00 · 2020-02-24 08:14:06 -08:00 · a474e196ea
commit a474e196ea
parent 101aefbfe8
34 changed files with 1560 additions and 6 deletions
--- a/pkg/provider/kubernetes/crd/traefik/v1alpha1/ingressroute.go
+++ b/pkg/provider/kubernetes/crd/traefik/v1alpha1/ingressroute.go
@ -38,7 +38,9 @@ type TLS struct {
 	// certificate details.
 	SecretName string `json:"secretName"`
 	// Options is a reference to a TLSOption, that specifies the parameters of the TLS connection.
-	Options      *TLSOptionRef  `json:"options,omitempty"`
+	Options *TLSOptionRef `json:"options,omitempty"`
+	// Store is a reference to a TLSStore, that specifies the parameters of the TLS store.
+	Store        *TLSStoreRef   `json:"store,omitempty"`
 	CertResolver string         `json:"certResolver,omitempty"`
 	Domains      []types.Domain `json:"domains,omitempty"`
 }
@ -49,6 +51,12 @@ type TLSOptionRef struct {
 	Namespace string `json:"namespace"`
 }

+// TLSStoreRef is a ref to the TLSStore resource.
+type TLSStoreRef struct {
+	Name      string `json:"name"`
+	Namespace string `json:"namespace"`
+}
+
 // LoadBalancerSpec can reference either a Kubernetes Service object (a load-balancer of servers),
 // or a TraefikService object (a traefik load-balancer of services).
 type LoadBalancerSpec struct {
--- a/pkg/provider/kubernetes/crd/traefik/v1alpha1/ingressroutetcp.go
+++ b/pkg/provider/kubernetes/crd/traefik/v1alpha1/ingressroutetcp.go
@ -32,9 +32,11 @@ type TLSTCP struct {
 	SecretName  string `json:"secretName"`
 	Passthrough bool   `json:"passthrough"`
 	// Options is a reference to a TLSOption, that specifies the parameters of the TLS connection.
-	Options      *TLSOptionTCPRef `json:"options"`
-	CertResolver string           `json:"certResolver"`
-	Domains      []types.Domain   `json:"domains,omitempty"`
+	Options *TLSOptionTCPRef `json:"options"`
+	// Store is a reference to a TLSStore, that specifies the parameters of the TLS store.
+	Store        *TLSStoreTCPRef `json:"store"`
+	CertResolver string          `json:"certResolver"`
+	Domains      []types.Domain  `json:"domains,omitempty"`
 }

 // TLSOptionTCPRef is a ref to the TLSOption resources.
@ -43,6 +45,12 @@ type TLSOptionTCPRef struct {
 	Namespace string `json:"namespace"`
 }

+// TLSStoreTCPRef is a ref to the TLSStore resources.
+type TLSStoreTCPRef struct {
+	Name      string `json:"name"`
+	Namespace string `json:"namespace"`
+}
+
 // ServiceTCP defines an upstream to proxy traffic.
 type ServiceTCP struct {
 	Name             string `json:"name"`
--- a/pkg/provider/kubernetes/crd/traefik/v1alpha1/register.go
+++ b/pkg/provider/kubernetes/crd/traefik/v1alpha1/register.go
@ -41,6 +41,8 @@ func addKnownTypes(scheme *runtime.Scheme) error {
 		&MiddlewareList{},
 		&TLSOption{},
 		&TLSOptionList{},
+		&TLSStore{},
+		&TLSStoreList{},
 		&TraefikService{},
 		&TraefikServiceList{},
 	)
--- a/pkg/provider/kubernetes/crd/traefik/v1alpha1/tlsstore.go
+++ b/pkg/provider/kubernetes/crd/traefik/v1alpha1/tlsstore.go
@ -0,0 +1,42 @@
+package v1alpha1
+
+import (
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// +genclient
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// TLSStore is a specification for a TLSStore resource.
+type TLSStore struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata"`
+
+	Spec TLSStoreSpec `json:"spec"`
+}
+
+// +k8s:deepcopy-gen=true
+
+// TLSStoreSpec configures a TLSStore resource.
+type TLSStoreSpec struct {
+	DefaultCertificate DefaultCertificate `json:"defaultCertificate"`
+}
+
+// +k8s:deepcopy-gen=true
+
+// DefaultCertificate holds a secret name for the TLSOption resource.
+type DefaultCertificate struct {
+	// SecretName is the name of the referenced Kubernetes Secret to specify the
+	// certificate details.
+	SecretName string `json:"secretName,omitempty"`
+}
+
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// TLSStoreList is a list of TLSStore resources.
+type TLSStoreList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata"`
+
+	Items []TLSStore `json:"items"`
+}
--- a/pkg/provider/kubernetes/crd/traefik/v1alpha1/zz_generated.deepcopy.go
+++ b/pkg/provider/kubernetes/crd/traefik/v1alpha1/zz_generated.deepcopy.go
@ -108,6 +108,22 @@ func (in *ClientTLS) DeepCopy() *ClientTLS {
 	return out
 }

+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *DefaultCertificate) DeepCopyInto(out *DefaultCertificate) {
+	*out = *in
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new DefaultCertificate.
+func (in *DefaultCertificate) DeepCopy() *DefaultCertificate {
+	if in == nil {
+		return nil
+	}
+	out := new(DefaultCertificate)
+	in.DeepCopyInto(out)
+	return out
+}
+
 // DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
 func (in *DigestAuth) DeepCopyInto(out *DigestAuth) {
 	*out = *in
@ -793,6 +809,11 @@ func (in *TLS) DeepCopyInto(out *TLS) {
 		*out = new(TLSOptionRef)
 		**out = **in
 	}
+	if in.Store != nil {
+		in, out := &in.Store, &out.Store
+		*out = new(TLSStoreRef)
+		**out = **in
+	}
 	if in.Domains != nil {
 		in, out := &in.Domains, &out.Domains
 		*out = make([]types.Domain, len(*in))
@ -932,6 +953,115 @@ func (in *TLSOptionTCPRef) DeepCopy() *TLSOptionTCPRef {
 	return out
 }

+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *TLSStore) DeepCopyInto(out *TLSStore) {
+	*out = *in
+	out.TypeMeta = in.TypeMeta
+	in.ObjectMeta.DeepCopyInto(&out.ObjectMeta)
+	out.Spec = in.Spec
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLSStore.
+func (in *TLSStore) DeepCopy() *TLSStore {
+	if in == nil {
+		return nil
+	}
+	out := new(TLSStore)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *TLSStore) DeepCopyObject() runtime.Object {
+	if c := in.DeepCopy(); c != nil {
+		return c
+	}
+	return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *TLSStoreList) DeepCopyInto(out *TLSStoreList) {
+	*out = *in
+	out.TypeMeta = in.TypeMeta
+	in.ListMeta.DeepCopyInto(&out.ListMeta)
+	if in.Items != nil {
+		in, out := &in.Items, &out.Items
+		*out = make([]TLSStore, len(*in))
+		for i := range *in {
+			(*in)[i].DeepCopyInto(&(*out)[i])
+		}
+	}
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLSStoreList.
+func (in *TLSStoreList) DeepCopy() *TLSStoreList {
+	if in == nil {
+		return nil
+	}
+	out := new(TLSStoreList)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *TLSStoreList) DeepCopyObject() runtime.Object {
+	if c := in.DeepCopy(); c != nil {
+		return c
+	}
+	return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *TLSStoreRef) DeepCopyInto(out *TLSStoreRef) {
+	*out = *in
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLSStoreRef.
+func (in *TLSStoreRef) DeepCopy() *TLSStoreRef {
+	if in == nil {
+		return nil
+	}
+	out := new(TLSStoreRef)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *TLSStoreSpec) DeepCopyInto(out *TLSStoreSpec) {
+	*out = *in
+	out.DefaultCertificate = in.DefaultCertificate
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLSStoreSpec.
+func (in *TLSStoreSpec) DeepCopy() *TLSStoreSpec {
+	if in == nil {
+		return nil
+	}
+	out := new(TLSStoreSpec)
+	in.DeepCopyInto(out)
+	return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *TLSStoreTCPRef) DeepCopyInto(out *TLSStoreTCPRef) {
+	*out = *in
+	return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TLSStoreTCPRef.
+func (in *TLSStoreTCPRef) DeepCopy() *TLSStoreTCPRef {
+	if in == nil {
+		return nil
+	}
+	out := new(TLSStoreTCPRef)
+	in.DeepCopyInto(out)
+	return out
+}
+
 // DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
 func (in *TLSTCP) DeepCopyInto(out *TLSTCP) {
 	*out = *in
@ -940,6 +1070,11 @@ func (in *TLSTCP) DeepCopyInto(out *TLSTCP) {
 		*out = new(TLSOptionTCPRef)
 		**out = **in
 	}
+	if in.Store != nil {
+		in, out := &in.Store, &out.Store
+		*out = new(TLSStoreTCPRef)
+		**out = **in
+	}
 	if in.Domains != nil {
 		in, out := &in.Domains, &out.Domains
 		*out = make([]types.Domain, len(*in))