Skip to content

Commit 53e6129

Browse files
k8s-ci-robotk8s-ci-robot
authored
Merge pull request #2528 from oliviassss/update-certificates
remove undesired certificates before adding new ones
2 parents 76bd7e3 + 9b65f3f commit 53e6129

File tree

1 file changed

+10
-10
lines changed

1 file changed

+10
-10
lines changed

pkg/deploy/elbv2/listener_manager.go

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -176,48 +176,48 @@ func (m *defaultListenerManager) updateSDKListenerWithExtraCertificates(ctx cont
176176
currentExtraCertARNs.Insert(certARNs...)
177177
}
178178

179-
for _, certARN := range desiredExtraCertARNs.Difference(currentExtraCertARNs).List() {
180-
req := &elbv2sdk.AddListenerCertificatesInput{
179+
for _, certARN := range currentExtraCertARNs.Difference(desiredExtraCertARNs).List() {
180+
req := &elbv2sdk.RemoveListenerCertificatesInput{
181181
ListenerArn: sdkLS.Listener.ListenerArn,
182182
Certificates: []*elbv2sdk.Certificate{
183183
{
184184
CertificateArn: awssdk.String(certARN),
185185
},
186186
},
187187
}
188-
m.logger.Info("adding certificate to listener",
188+
m.logger.Info("removing certificate from listener",
189189
"stackID", resLS.Stack().StackID(),
190190
"resourceID", resLS.ID(),
191191
"arn", awssdk.StringValue(sdkLS.Listener.ListenerArn),
192192
"certificateARN", certARN)
193-
if _, err := m.elbv2Client.AddListenerCertificatesWithContext(ctx, req); err != nil {
193+
if _, err := m.elbv2Client.RemoveListenerCertificatesWithContext(ctx, req); err != nil {
194194
return err
195195
}
196-
m.logger.Info("added certificate to listener",
196+
m.logger.Info("removed certificate from listener",
197197
"stackID", resLS.Stack().StackID(),
198198
"resourceID", resLS.ID(),
199199
"arn", awssdk.StringValue(sdkLS.Listener.ListenerArn),
200200
"certificateARN", certARN)
201201
}
202202

203-
for _, certARN := range currentExtraCertARNs.Difference(desiredExtraCertARNs).List() {
204-
req := &elbv2sdk.RemoveListenerCertificatesInput{
203+
for _, certARN := range desiredExtraCertARNs.Difference(currentExtraCertARNs).List() {
204+
req := &elbv2sdk.AddListenerCertificatesInput{
205205
ListenerArn: sdkLS.Listener.ListenerArn,
206206
Certificates: []*elbv2sdk.Certificate{
207207
{
208208
CertificateArn: awssdk.String(certARN),
209209
},
210210
},
211211
}
212-
m.logger.Info("removing certificate from listener",
212+
m.logger.Info("adding certificate to listener",
213213
"stackID", resLS.Stack().StackID(),
214214
"resourceID", resLS.ID(),
215215
"arn", awssdk.StringValue(sdkLS.Listener.ListenerArn),
216216
"certificateARN", certARN)
217-
if _, err := m.elbv2Client.RemoveListenerCertificatesWithContext(ctx, req); err != nil {
217+
if _, err := m.elbv2Client.AddListenerCertificatesWithContext(ctx, req); err != nil {
218218
return err
219219
}
220-
m.logger.Info("removed certificate from listener",
220+
m.logger.Info("added certificate to listener",
221221
"stackID", resLS.Stack().StackID(),
222222
"resourceID", resLS.ID(),
223223
"arn", awssdk.StringValue(sdkLS.Listener.ListenerArn),

0 commit comments

Comments
 (0)