brings in new features:
- possibility to bypass the DNS resolution checks
- possibility to specify a
maxExpirationSecondscheck - enforcing a hard upper-limit to the maximum number of seconds a CSR can be requesting: 367 days (K8s default is one year)
- it is now possible to either configure the controller through environment variables or command line flags thanks to the
ffgo library
also, quite some refactoring to make the code easier to manage and to bring in new features
and upgrade of all dependencies (typically k8s-client and APIs to 0.23)
Container images available on Dockerhub: https://hub.docker.com/r/postfinance/kubelet-csr-approver