mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-01-03 11:45:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Be sure to update the DEFAULT cert instead of the per-FederationDomain cert when the supervisor is using an IP address

Browse Source
This commit is contained in:
Joshua Casey
2024-09-01 14:02:46 -05:00
parent dc72a36cb1
commit ca9503e4c0
6 changed files with 171 additions and 131 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
test/testlib/client.go
View File

@@ -367,6 +367,11 @@ func CreateTestFederationDomain(
createContext, cancel := context.WithTimeout(ctx, time.Minute)
defer cancel()
// If the issuer is an IP address, then we have to update the DEFAULT cert, and there's no secret associated with this FederationDomain
if NewSupervisorIssuer(t, spec.Issuer).IsIPAddress() {
spec.TLS = nil
}
federationDomainsClient := NewSupervisorClientset(t).ConfigV1alpha1().FederationDomains(testEnv.SupervisorNamespace)
federationDomain, err := federationDomainsClient.Create(createContext, &supervisorconfigv1alpha1.FederationDomain{
ObjectMeta: TestObjectMeta(t, "oidc-provider"),