Versions Compared

Version Old Version 2 New Version 3
Changes made by

Igor D.C.

Igor D.C.

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Create/Apply CSR (like other resources)
  2. Approve CSR (new via /subresources/approval)
    1. K8s signer will issue a certificate some time after approval of CSR takes place
    2. To read about the new /subresources level, checkĀ Supporting subresources
  3. Watch/monitor CSR to see when a .status is created
  4. Return signed certificate obtained from CSR .status.certificate all the way back to etcd
  5. DCM will read the certificate from etcd

...

Point #1 is simply calling DCM API to create resources and apply the logical cloud, after which etcd will be populated with all needed resources including CSR and rsync will be notified via gRPC.


Dev reference sheet:

To see what the monitor sees:

...