Regenerate server certs if CA changed

2024-06-07 19:41:36 +00:00 · 2019-07-30 14:55:25 -07:00 · 2019-07-30 14:55:25 -07:00 · a74d9e5282
commit a74d9e5282
parent 4a65764c3b
1 changed files with 5 additions and 3 deletions
--- a/pkg/tls/storage.go
+++ b/pkg/tls/storage.go
@ -65,8 +65,7 @@ func (l *listenerConfigStorage) Set(config *dynamiclistener.ListenerStatus) (*dy
 	obj.Status = *config
 	obj.Status.Revision = ""

-	if l.config.CACerts != "" && l.config.CAKey != "" {
-		obj.Status.CACert = ""
+	if l.config.CAKey != "" {
 		obj.Status.CAKey = ""
 	}

@ -94,7 +93,10 @@ func (l *listenerConfigStorage) fromStorage(obj *v1.ListenerConfig) *dynamiclist
 	copy.Status.Revision = obj.ResourceVersion

 	if l.config.CACerts != "" && l.config.CAKey != "" {
-		copy.Status.CACert = l.config.CACerts
+		if copy.Status.CACert != l.config.CACerts {
+			copy.Status.CACert = l.config.CACerts
+			copy.Status.GeneratedCerts = map[string]string{}
+		}
 		copy.Status.CAKey = l.config.CAKey
 	}