fixup! Certificate support for image registry

Signed-off-by: Todd Short <tshort@redhat.com>
operator-framework · Jun 21, 2024 · 6155df5 · 6155df5
1 parent 0c20937
commit 6155df5
Show file tree

Hide file tree

Showing 3 changed files with 36 additions and 36 deletions.
diff --git a/Tiltfile b/Tiltfile
@@ -1,7 +1,7 @@
 if not os.path.exists('../tilt-support'):
     fail('Please clone https://github.com/operator-framework/tilt-support to ../tilt-support')
 
-load('../tilt-support/Tiltfile', 'deploy_repo')
+load('../tilt-support/Tiltfile', 'deploy_repo', 'process_yaml')
 
 config.define_string_list('repos', args=True)
 cfg = config.parse()
@@ -16,6 +16,8 @@ repo = {
     'starting_debug_port': 30000,
 }
 
+process_yaml("testdata/certs/issuers.yaml")
+
 for r in repos:
     if r == 'operator-controller':
         deploy_repo('operator-controller', repo)

diff --git a/scripts/install.tpl.sh b/scripts/install.tpl.sh
@@ -35,41 +35,7 @@ function kubectl_wait() {
 kubectl apply -f "https://github.com/cert-manager/cert-manager/releases/download/${cert_mgr_version}/cert-manager.yaml"
 kubectl_wait "cert-manager" "deployment/cert-manager-webhook" "60s"
 
-# Create the self-signed certificate for the ClusterIssuer and the ClusterIssuer
-kubectl apply -f - <<EOF
-apiVersion: cert-manager.io/v1
-kind: Issuer
-metadata:
-  name: self-sign-issuer
-  namespace: cert-manager
-spec:
-  selfSigned: {}
----
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: olmv1-ca
-  namespace: cert-manager
-spec:
-  isCA: true
-  commonName: olmv1-ca
-  secretName: olmv1-ca
-  privateKey:
-    algorithm: ECDSA
-    size: 256
-  issuerRef:
-    name: self-sign-issuer
-    kind: Issuer
-    group: cert-manager.io
----
-apiVersion: cert-manager.io/v1
-kind: ClusterIssuer
-metadata:
-  name: olmv1-ca
-spec:
-  ca:
-    secretName: olmv1-ca
-EOF
+kubectl apply -f testdata/certs/issuers.yaml
 
 kubectl apply -f "https://github.com/operator-framework/catalogd/releases/download/${catalogd_version}/catalogd.yaml"
 kubectl_wait "olmv1-system" "deployment/catalogd-controller-manager" "60s"

diff --git a/testdata/certs/issuers.yaml b/testdata/certs/issuers.yaml
@@ -0,0 +1,32 @@
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  name: self-sign-issuer
+  namespace: cert-manager
+spec:
+  selfSigned: {}
+---
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: olmv1-ca
+  namespace: cert-manager
+spec:
+  isCA: true
+  commonName: olmv1-ca
+  secretName: olmv1-ca
+  privateKey:
+    algorithm: ECDSA
+    size: 256
+  issuerRef:
+    name: self-sign-issuer
+    kind: Issuer
+    group: cert-manager.io
+---
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: olmv1-ca
+spec:
+  ca:
+    secretName: olmv1-ca