Open Issues Need Help
View All on GitHubAI Summary: This issue proposes adding the `groups` field from the `CertificateRequest`'s `UserInfo` to the `cr` map used for CEL validation in approver-policy. This would allow policies to leverage user group information from OIDC providers for more granular certificate issuance control, simplifying existing workarounds.
approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.
AI Summary: This issue addresses a problem where installing multiple Helm charts that rely on CRDs and webhooks simultaneously can fail. The standard `helm install` command completes before the CRDs and their associated webhooks are fully ready, leading to subsequent installations failing. The proposed solutions involve improving readiness checks within the components themselves or implementing a Kubernetes Job to verify webhook readiness before the Helm installation is considered complete.
approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.