Kubernetes > Applications > Uninstall Cert Manager
Problem to solve
Users should be able to uninstall Cert Manager.
Proposal
Allow users to uninstall Cert Manager.
- The current disabled
Installed
button now becomes anUninstall
default button - Clicking
Uninstall
presents a confirmation modal to the user to confirm their action.
Modal text:
Uninstall Cert Manager
You are about to uninstall Cert Manager from your cluster. The associated certificate will be deleted and cannot be restored.
[Cancel] [Uninstall Cert Manager]
Permissions and Security
Documentation
Testing
What does success look like, and how can we measure that?
Links / references
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.
Designs
- Show closed items
- Issuegitlab-org/gitlab#35247014.81Category:Fuzz Testing GitLab Ultimate Technical Writing UX devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec tw finished type feature workflow production
- Issuegitlab-org/gitlab#35246514.81auto updated devops application security testing frontend section sec
- Issuegitlab-org/gitlab#35207314.8Category:Fuzz Testing GitLab Ultimate backend devops application security testing feature enhancement fuzzing coverage group dynamic analysis section sec type bug workflow verification
- Issuegitlab-org/gitlab#35163214.8Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec type feature workflow verification
- Issuegitlab-org/gitlab#35153914.8Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec type feature workflow verification
- Issuegitlab-org/gitlab#35097514.82Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec type feature workflow verification
- Issuegitlab-org/gitlab#35097414.82Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec type feature workflow in dev
- Issuegitlab-org/gitlab#34901414.8Category:Fuzz Testing GitLab Ultimate devops application security testing feature flag frontend fuzzing coverage group dynamic analysis missed:14.7 section sec type feature workflow in dev
- Issuegitlab-org/gitlab#34748314.7Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis missed:14.6 section sec type bug workflow verification
- Issuegitlab-org/gitlab#34509014.73Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis section sec type feature workflow verification
- Issuegitlab-org/gitlab#34508914.73Category:Fuzz Testing auto updated devops application security testing frontend group dynamic analysis section sec workflow verification
- Issuegitlab-org/gitlab#34508814.63Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis missed:14.5 section sec type feature workflow verification
- Issuegitlab-org/gitlab#34148614.55Category:Fuzz Testing backend devops application security testing feature addition fuzzing coverage group dynamic analysis section sec type feature
- Issuegitlab-org/gitlab#34148514.55Category:Fuzz Testing backend devops application security testing feature addition fuzzing coverage group dynamic analysis section sec type feature
- Issuegitlab-org/gitlab#34148914.82Category:Fuzz Testing Technical Writing backend devops application security testing documentation feature addition fuzzing coverage group dynamic analysis missed:14.6 missed:14.7 section sec tw-weight 8 type feature
- Issuegitlab-org/gitlab#34148714.65Category:Fuzz Testing backend devops application security testing feature enhancement fuzzing coverage group dynamic analysis section sec type feature
- Issuegitlab-org/gitlab#34258014.62Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis missed:14.5 section sec type feature workflow verification
- Issuegitlab-org/gitlab#34258314.82Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis missed:14.6 missed:14.7 section sec type feature workflow verification
- Issuegitlab-org/gitlab#34243314.63Category:Fuzz Testing GitLab Ultimate devops application security testing feature enhancement frontend fuzzing coverage group dynamic analysis missed:14.5 section sec type feature workflow verification
- Issuegitlab-org/gitlab#34133814.4automation:ml devops package group package registry section ops
- Issuegitlab-org/gitlab#34121814.6Category:Package Registry Generic Package Repository auto updated devops package fuzzing coverage group package registry missed:14.4 missed:14.5 section ops
- Epicgitlab-org#668323Dec 18, 2021 – Jan 17, 2022Category:Fuzz Testing backend devops create frontend fuzzing coverage group dynamic analysis missed:14.2 section sec
- Issuegitlab-org/gitlab#33973214.5Category:Fuzz Testing GitLab Ultimate backend devops application security testing direction fuzzing coverage group dynamic analysis missed:14.3 missed:14.4 section sec type feature workflow in dev
- Epicgitlab-org#640647Jul 18 – Aug 17, 2021Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing frontend fuzzing coverage group dynamic analysis section sec type feature
- Issuegitlab-org/gitlab#33494114.7Category:Fuzz Testing Technical Writing backend devops application security testing documentation fuzzing coverage group dynamic analysis missed:14.2 missed:14.3 missed:14.4 missed:14.5 missed:14.6 section sec tw-weight 5 workflow refinement
- Issuegitlab-org/gitlab#27316914.2Category:Fuzz Testing devops application security testing fuzzing coverage group dynamic analysis missed:13.8 section sec
- Issuegitlab-org/gitlab#32689513.113Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing direction frontend fuzzing coverage group dynamic analysis missed-deliverable missed:13.10 section sec type feature workflow in review
- Issuegitlab-org/gitlab#32689613.112Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing direction frontend fuzzing coverage group dynamic analysis missed-deliverable missed:13.10 section sec type feature workflow in review
- Issuegitlab-org/gitlab#32689413.111Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing direction frontend fuzzing coverage group dynamic analysis missed-deliverable missed:13.10 section sec type feature workflow verification
- Issuegitlab-org/gitlab#28059213.112Category:Fuzz Testing Deliverable GitLab Ultimate backend devops application security testing direction fuzzing coverage group dynamic analysis section sec type feature workflow in dev
- Issuegitlab-org/gitlab#32636113.113Category:Fuzz Testing Deliverable GitLab Ultimate backend devops application security testing direction fuzzing coverage group dynamic analysis section sec type feature workflow in dev
- Issuegitlab-org/gitlab#32636213.112Category:Fuzz Testing Deliverable GitLab Ultimate backend devops application security testing direction fuzzing coverage group dynamic analysis section sec type feature workflow in dev
- Issuegitlab-org/gitlab#29444413.113Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing direction frontend fuzzing coverage group dynamic analysis missed-deliverable missed:13.10 section sec type feature workflow verification
- Issuegitlab-org/gitlab#32161814.3Category:Fuzz Testing backend devops create frontend fuzzing coverage group dynamic analysis missed:14.2 section sec
- Issuegitlab-org/gitlab#32789714.52Category:Fuzz Testing GitLab Ultimate devops application security testing frontend fuzzing coverage group dynamic analysis section sec type feature workflow production
- Issuegitlab-org/gitlab#32088613.103Category:Fuzz Testing GitLab Ultimate devops application security testing direction frontend fuzzing coverage group dynamic analysis section sec workflow verification
- Issuegitlab-org/gitlab#29954413.101Category:Fuzz Testing Deferred UX Deliverable UX devops create frontend group dynamic analysis workflow in dev
- Issuegitlab-org/gitlab#29442513.92Category:Fuzz Testing GitLab Ultimate backend devops application security testing direction frontend fuzzing coverage group dynamic analysis section sec type feature workflow production
- Issuegitlab-org/gitlab#28059314.32Category:Fuzz Testing GitLab Ultimate backend devops application security testing direction frontend fuzzing coverage group dynamic analysis section sec type feature workflow production
- Issuegitlab-org/gitlab#28059013.9Category:Fuzz Testing backend devops application security testing fuzzing coverage group dynamic analysis missed:13.7 section sec type feature workflow ready for development
- Issuegitlab-org/gitlab#32841814.8Category:Fuzz Testing GitLab Ultimate devops application security testing feature flag frontend fuzzing coverage group dynamic analysis missed:14.7 section sec type feature
- Issuegitlab-org/gitlab#29074113.10Category:Fuzz Testing Deliverable devops application security testing fuzzing coverage group dynamic analysis missed-deliverable missed:13.8 section sec workflow verification
- Issuegitlab-org/gitlab#268004Category:Fuzz Testing GitLab Ultimate UX FY21-Q4 backend devops application security testing direction feature enhancement frontend fuzzing coverage group dynamic analysis section sec secure:refinement-backend secure:refinement-frontend type feature workflow refinement
- Issuegitlab-org/gitlab#32847514.2Category:Fuzz Testing Deliverable GitLab Ultimate devops application security testing frontend fuzzing coverage group dynamic analysis section sec type feature workflow refinement
Activity
-
Newest first Oldest first
-
Show all activity Show comments only Show history only
- Taurie Davis added Category:Kubernetes Management depth devopsconfigure [DEPRECATED] typefeature + 1 deleted label
added Category:Kubernetes Management depth devopsconfigure [DEPRECATED] typefeature + 1 deleted label
- Taurie Davis added to epic &1201 (closed)
added to epic &1201 (closed)
- Mark Fletcher mentioned in issue #61126 (closed)
mentioned in issue #61126 (closed)
- 🤖 GitLab Bot 🤖 mentioned in issue #61458 (closed)
mentioned in issue #61458 (closed)
- 🤖 GitLab Bot 🤖 mentioned in issue #61739 (closed)
mentioned in issue #61739 (closed)
- 🤖 GitLab Bot 🤖 mentioned in issue #62026 (closed)
mentioned in issue #62026 (closed)
- Daniel Gruesso changed milestone to %12.1
changed milestone to %12.1
- Daniel Gruesso added backend frontend labels
- Daniel Gruesso added direction label
added direction label
- 🤖 GitLab Bot 🤖 added [deprecated] Accepting merge requests label
added [deprecated] Accepting merge requests label
- Maintainer
In relation to https://gitlab.com/gitlab-org/gitlab-ce/issues/63974, I was trying to get this manually working as a way to work around this upstream issue when updating the ACME email with an existing cert-manager installation.
I ran into two problems:
-
Firstly, the
uninstall_command
needs to overridename
tocertmanager
to match theinstall_command
. Otherwise, it will try to uninstallcert_manager
, which will not work. -
Secondly, our current version of cert-manger (0.5.2) is quite outdated, and does not uninstall cleanly.
I was able to work around both issues and get a re-installation working.
Edited by Hordur Freyr Yngvason -
Collapse replies - Maintainer
The resource cleanup can be done using kubeclient as follows:
# workaround for https://github.com/jetstack/cert-manager/issues/870 # build a kubeclient capable of cleaning up leftover custom resources from cert-manager v0.5.2 kube = cluster.kubeclient.send(:build_kubeclient, 'apis/apiextensions.k8s.io', 'v1beta1') custom_resources = %w(clusterissuers.certmanager.k8s.io issuers.certmanager.k8s.io certificates.certmanager.k8s.io) custom_resources.each do |custom_resource| kube.delete_custom_resource_definition(custom_resource) end
- Hordur Freyr Yngvason mentioned in issue #63974 (moved)
mentioned in issue #63974 (moved)
- Maintainer
I have a couple of concerns:
-
Is the ACME account worth backing up?
-
Are there any additional cleanup steps we need to document? E.g. what if the user wants to revoke certificates (see upstream issues 1, 2, and Let's Encrypt docs)?
-
Collapse replies - Developer
Backups: For the first iteration at least I don't think we need to worry about backing up the account as it would require a non-trivial amount of extra functionality (around where we store backups, and how a user retrieves them). Linking to those backup/restore instructions from our docs is a good idea though.
Revoking: Maybe we could link to the revocation docs too?
- Maintainer
Agreed that docs should suffice in both cases
Edited by Hordur Freyr Yngvason
- Daniel Gruesso changed milestone to %12.2
changed milestone to %12.2
- Daniel Gruesso added Deliverable label
added Deliverable label
- Dylan Griffith assigned to @tigerwnz
assigned to @tigerwnz
- 🤖 GitLab Bot 🤖 removed [deprecated] Accepting merge requests label
removed [deprecated] Accepting merge requests label
- Tiger Watson added workflowin dev label
added workflowin dev label
- Tiger Watson created branch
60664-kubernetes-applications-uninstall-cert-manager
to address this issuecreated branch
60664-kubernetes-applications-uninstall-cert-manager
to address this issue - Tiger Watson mentioned in merge request !31166 (merged)
mentioned in merge request !31166 (merged)
- Jean du Plessis assigned to @ealcantara
assigned to @ealcantara
- Developer
@tigerwnz: Please, let me know if the first iteration of this deliverable requires FE support or if we’ll rely on the current UI for uninstalling apps. I’ll keep an eye on this to offer as much support as necessary.
Collapse replies - Developer
Thanks @ealcantara! !31166 (merged) is re-using the current UI - I didn't even have to change any frontend code for it to "just work"! So for iteration one I don't think we'll need anything frontend.
Edited by Tiger Watson
- Tiger Watson added workflowin review label and removed workflowin dev label
added workflowin review label and removed workflowin dev label
- Thong Kuah mentioned in issue #65617 (closed)
mentioned in issue #65617 (closed)
- Tiger Watson added workflowverification label and removed workflowin review label
added workflowverification label and removed workflowin review label
- Tiger Watson closed
closed
- Daniel Gruesso mentioned in merge request gitlab-com/www-gitlab-com!28101 (merged)
mentioned in merge request gitlab-com/www-gitlab-com!28101 (merged)
- 🤖 GitLab Bot 🤖 added groupconfigure [DEPRECATED] label
added groupconfigure [DEPRECATED] label
- Dylan Griffith mentioned in issue #60434 (moved)
mentioned in issue #60434 (moved)
- 🤖 GitLab Bot 🤖 added groupenvironments label and removed groupconfigure [DEPRECATED] label
added groupenvironments label and removed groupconfigure [DEPRECATED] label
- 🤖 GitLab Bot 🤖 changed the description
Compare with previous version changed the description