import (
"context"
- "encoding/base64"
"encoding/json"
"strconv"
oldPrivateKeySecretKey = "tls.key"
)
-func CheckIfCertificateUpdateAndRetrieveOldCertificateAndPk(
+func RetrieveOldCertificateAndPkForCertificateUpdate(
k8sClient client.Client,
certificateRequest *cmapi.CertificateRequest,
ctx context.Context,
-) (bool, string, string) {
+) ([]byte, []byte) {
if !IsUpdateCertificateRevision(certificateRequest) {
- return false, "", ""
+ return []byte{}, []byte{}
}
- certificate, privateKey := RetrieveOldCertificateAndPk(k8sClient, certificateRequest, ctx)
- areCertAndPkPresent := certificate != "" && privateKey != ""
- return areCertAndPkPresent, certificate, privateKey
+ return RetrieveOldCertificateAndPk(k8sClient, certificateRequest, ctx)
}
func IsUpdateCertificateRevision(certificateRequest *cmapi.CertificateRequest) bool {
k8sClient client.Client,
certificateRequest *cmapi.CertificateRequest,
ctx context.Context,
-) (string, string) {
+) ([]byte, []byte) {
certificateConfigString := certificateRequest.ObjectMeta.Annotations[certificateConfigurationAnnotation]
var certificateConfig cmapi.Certificate
if err := json.Unmarshal([]byte(certificateConfigString), &certificateConfig); err != nil {
- return "", ""
+ return []byte{}, []byte{}
}
oldCertificateSecretName := certificateConfig.Spec.SecretName
oldCertificateSecretNamespacedName := types.NamespacedName{
}
var oldCertificateSecret core.Secret
if err := k8sClient.Get(ctx, oldCertificateSecretNamespacedName, &oldCertificateSecret); err != nil {
- return "", ""
+ return []byte{}, []byte{}
}
- oldCertificateString := base64.StdEncoding.EncodeToString(oldCertificateSecret.Data[oldCertificateSecretKey])
- oldPrivateKeyString := base64.StdEncoding.EncodeToString(oldCertificateSecret.Data[oldPrivateKeySecretKey])
- return oldCertificateString, oldPrivateKeyString
+ return oldCertificateSecret.Data[oldCertificateSecretKey], oldCertificateSecret.Data[oldPrivateKeySecretKey]
}