cert-manager
diff --git a/‎deploy/charts/openshift-routes/templates/rbac.yaml‎
Lines changed: 10 additions & 2 deletions b/‎deploy/charts/openshift-routes/templates/rbac.yaml‎
Lines changed: 10 additions & 2 deletions
diff --git a/‎internal/cmd/app/app.go‎
Lines changed: 7 additions & 5 deletions b/‎internal/cmd/app/app.go‎
Lines changed: 7 additions & 5 deletions
diff --git a/‎internal/controller/controller.go‎
Lines changed: 14 additions & 5 deletions b/‎internal/controller/controller.go‎
Lines changed: 14 additions & 5 deletions
@@ -32,7 +32,7 @@ rules:
 - apiGroups:
   - cert-manager.io
   resources:
-  - certificaterequests
+  - certificates
   verbs:
   - create
   - get
@@ -41,11 +41,19 @@ rules:
 - apiGroups:
     - cert-manager.io
   resources:
-    - certificaterequests/status
+    - certificates/status
   verbs:
     - get
     - list
     - watch
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
 
@@ -69,19 +69,21 @@ func Command() *cobra.Command {
 				return fmt.Errorf("connected to the Kubernetes API, but the Openshift Route v1 CRD does not appear to be installed")
 			}
 
-			// Check if v1 cert-manager CertificateRequests exist in the API server
-			apiServerHasCertificateRequests := false
+			// Check if v1 cert-manager Certificates exist in the API server
+			apiServerHasCertificates := false
 			cmResources, err := cl.Discovery().ServerResourcesForGroupVersion("cert-manager.io/v1")
 			if err != nil {
 				return fmt.Errorf("couldn't check if cert-manager.io/v1 exists in the kubernetes API: %w", err)
 			}
+
 			for _, r := range cmResources.APIResources {
-				if r.Kind == "CertificateRequest" {
-					apiServerHasCertificateRequests = true
+				if r.Kind == "Certificate" {
+					apiServerHasCertificates = true
 					break
 				}
 			}
-			if !apiServerHasCertificateRequests {
+
+			if !apiServerHasCertificates {
 				return fmt.Errorf("connected to the Kubernetes API, but the cert-manager v1 CRDs do not appear to be installed")
 			}
 
 
@@ -26,6 +26,8 @@ import (
 	routev1client "github.com/openshift/client-go/route/clientset/versioned"
 	"k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/kubernetes"
+	corev1client "k8s.io/client-go/kubernetes/typed/core/v1"
 	"k8s.io/client-go/rest"
 	"k8s.io/client-go/tools/record"
 	"sigs.k8s.io/controller-runtime/pkg/builder"
@@ -35,9 +37,10 @@ import (
 	"github.com/cert-manager/openshift-routes/internal/cmd/app/options"
 )
 
-type Route struct {
+type RouteController struct {
 	routeClient   routev1client.Interface
 	certClient    cmclient.Interface
+	coreClient    corev1client.CoreV1Interface
 	eventRecorder record.EventRecorder
 
 	log logr.Logger
@@ -67,7 +70,7 @@ func shouldSync(log logr.Logger, route *routev1.Route) bool {
 	return false
 }
 
-func (r *Route) Reconcile(ctx context.Context, req reconcile.Request) (reconcile.Result, error) {
+func (r *RouteController) Reconcile(ctx context.Context, req reconcile.Request) (reconcile.Result, error) {
 	log := r.log.WithValues("object", req.NamespacedName)
 	log.V(5).Info("started reconciling")
 	route, err := r.routeClient.RouteV1().Routes(req.Namespace).Get(ctx, req.Name, metav1.GetOptions{})
@@ -86,7 +89,7 @@ func (r *Route) Reconcile(ctx context.Context, req reconcile.Request) (reconcile
 	return r.sync(ctx, req, route.DeepCopy())
 }
 
-func New(base logr.Logger, config *rest.Config, recorder record.EventRecorder) (*Route, error) {
+func New(base logr.Logger, config *rest.Config, recorder record.EventRecorder) (*RouteController, error) {
 	routeClient, err := routev1client.NewForConfig(config)
 	if err != nil {
 		return nil, err
@@ -95,10 +98,15 @@ func New(base logr.Logger, config *rest.Config, recorder record.EventRecorder) (
 	if err != nil {
 		return nil, err
 	}
+	clientset, err := kubernetes.NewForConfig(config)
+	if err != nil {
+		return nil, err
+	}
 
-	return &Route{
+	return &RouteController{
 		routeClient:   routeClient,
 		certClient:    certClient,
+		coreClient:    clientset.CoreV1(),
 		log:           base.WithName("route"),
 		eventRecorder: recorder,
 	}, nil
@@ -109,9 +117,10 @@ func AddToManager(mgr manager.Manager, opts *options.Options) error {
 	if err != nil {
 		return err
 	}
+
 	return builder.
 		ControllerManagedBy(mgr).
 		For(&routev1.Route{}).
-		Owns(&cmapi.CertificateRequest{}).
+		Owns(&cmapi.Certificate{}).
 		Complete(controller)
 }
Original file line number	Diff line number	Diff line change
`@@ -69,19 +69,21 @@ func Command() *cobra.Command {`
`69`	`69`	`return fmt.Errorf("connected to the Kubernetes API, but the Openshift Route v1 CRD does not appear to be installed")`
`70`	`70`	`}`
`71`	`71`
`72`		`- // Check if v1 cert-manager CertificateRequests exist in the API server`
`73`		`- apiServerHasCertificateRequests := false`
	`72`	`+ // Check if v1 cert-manager Certificates exist in the API server`
	`73`	`+ apiServerHasCertificates := false`
`74`	`74`	`cmResources, err := cl.Discovery().ServerResourcesForGroupVersion("cert-manager.io/v1")`
`75`	`75`	`if err != nil {`
`76`	`76`	`return fmt.Errorf("couldn't check if cert-manager.io/v1 exists in the kubernetes API: %w", err)`
`77`	`77`	`}`
	`78`	`+`
`78`	`79`	`for _, r := range cmResources.APIResources {`
`79`		`- if r.Kind == "CertificateRequest" {`
`80`		`- apiServerHasCertificateRequests = true`
	`80`	`+ if r.Kind == "Certificate" {`
	`81`	`+ apiServerHasCertificates = true`
`81`	`82`	`break`
`82`	`83`	`}`
`83`	`84`	`}`
`84`		`- if !apiServerHasCertificateRequests {`
	`85`	`+`
	`86`	`+ if !apiServerHasCertificates {`
`85`	`87`	`return fmt.Errorf("connected to the Kubernetes API, but the cert-manager v1 CRDs do not appear to be installed")`
`86`	`88`	`}`
`87`	`89`