fix: no ingress-class annotation on CA secretes

Signed-off-by: Mattia Lavacca <[email protected]>
Kong · Dec 17, 2024 · 22af265 · 22af265
1 parent b0149fe
commit 22af265
Showing 1 changed file with 2 additions and 5 deletions.
diff --git a/internal/store/store.go b/internal/store/store.go
@@ -719,8 +719,7 @@ func (s Store) ListCACerts() ([]*corev1.Secret, []*corev1.ConfigMap, error) {
 	err = cache.ListAll(s.stores.Secret,
 		labels.NewSelector().Add(*req),
 		func(ob interface{}) {
-			p, ok := ob.(*corev1.Secret)
-			if ok && s.isValidIngressClass(&p.ObjectMeta, annotations.IngressClassKey, s.getIngressClassHandling()) {
+			if p, ok := ob.(*corev1.Secret); ok {
 				secrets = append(secrets, p)
 			}
 		})
@@ -730,9 +729,7 @@ func (s Store) ListCACerts() ([]*corev1.Secret, []*corev1.ConfigMap, error) {
 	err = cache.ListAll(s.stores.ConfigMap,
 		labels.NewSelector().Add(*req),
 		func(ob interface{}) {
-			p, ok := ob.(*corev1.ConfigMap)
-			// We don't check the ingressClass here, as configmaps as CA certs are used for Gateway API BackendTLSPolicies.
-			if ok {
+			if p, ok := ob.(*corev1.ConfigMap); ok {
 				configMaps = append(configMaps, p)
 			}
 		})