From ec806b926d59c5ff39b05cc465f4fd9e5f6a7a02 Mon Sep 17 00:00:00 2001 From: Istio Automation Date: Mon, 19 Oct 2020 19:10:27 -0700 Subject: [PATCH] Automator: update istio.io@ reference docs (#8316) --- .../reference/commands/istioctl/index.html | 18 ++++++++++++ .../reference/commands/operator/index.html | 18 ++++++++++++ .../reference/commands/pilot-agent/index.html | 18 ++++++++++++ .../commands/pilot-discovery/index.html | 18 ++++++++++++ .../config/istio.mesh.v1alpha1/index.html | 29 ++++++++++++++----- 5 files changed, 94 insertions(+), 7 deletions(-) diff --git a/content/en/docs/reference/commands/istioctl/index.html b/content/en/docs/reference/commands/istioctl/index.html index 7057d72160..d2b978235d 100644 --- a/content/en/docs/reference/commands/istioctl/index.html +++ b/content/en/docs/reference/commands/istioctl/index.html @@ -5400,6 +5400,12 @@ These environment variables affect the behavior of the istioctl com Defines the cluster and service registry that this Istiod instance is belongs to +ENABLE_ADMIN_ENDPOINTS +Boolean +false +If this is set to true, dangerous admin endpoins will be exposed on the debug interface. Not recommended for production. + + ENABLE_CA_SERVER Boolean true @@ -5676,6 +5682,12 @@ These environment variables affect the behavior of the istioctl com If set to false, virtualService delegate will not be supported. +PILOT_ENABLE_WORKLOAD_ENTRY_AUTOREGISTRATION +Boolean +false +Enables auto-registering WorkloadEntries based on associated WorkloadGroups upon XDS connection by the workload. + + PILOT_ENABLE_XDS_CACHE Boolean true @@ -5772,6 +5784,12 @@ These environment variables affect the behavior of the istioctl com If enabled, Pilot will use EndpointSlices as the source of endpoints for Kubernetes services. By default, this is false, and Endpoints will be used. This requires the Kubernetes EndpointSlice controller to be enabled. Currently this is mutual exclusive - either Endpoints or EndpointSlices will be used +PILOT_WORKLOAD_ENTRY_GRACE_PERIOD +Time Duration +10s +The amount of time an auto-registered workload can remain disconnected from all Pilot instances before the associated WorkloadEntry is cleaned up. + + PILOT_XDS_CACHE_SIZE Integer 20000 diff --git a/content/en/docs/reference/commands/operator/index.html b/content/en/docs/reference/commands/operator/index.html index df45ea64ed..539047ff45 100644 --- a/content/en/docs/reference/commands/operator/index.html +++ b/content/en/docs/reference/commands/operator/index.html @@ -153,6 +153,12 @@ These environment variables affect the behavior of the operator com Defines the cluster and service registry that this Istiod instance is belongs to +ENABLE_ADMIN_ENDPOINTS +Boolean +false +If this is set to true, dangerous admin endpoins will be exposed on the debug interface. Not recommended for production. + + ENABLE_CA_SERVER Boolean true @@ -375,6 +381,12 @@ These environment variables affect the behavior of the operator com If set to false, virtualService delegate will not be supported. +PILOT_ENABLE_WORKLOAD_ENTRY_AUTOREGISTRATION +Boolean +false +Enables auto-registering WorkloadEntries based on associated WorkloadGroups upon XDS connection by the workload. + + PILOT_ENABLE_XDS_CACHE Boolean true @@ -471,6 +483,12 @@ These environment variables affect the behavior of the operator com If enabled, Pilot will use EndpointSlices as the source of endpoints for Kubernetes services. By default, this is false, and Endpoints will be used. This requires the Kubernetes EndpointSlice controller to be enabled. Currently this is mutual exclusive - either Endpoints or EndpointSlices will be used +PILOT_WORKLOAD_ENTRY_GRACE_PERIOD +Time Duration +10s +The amount of time an auto-registered workload can remain disconnected from all Pilot instances before the associated WorkloadEntry is cleaned up. + + PILOT_XDS_CACHE_SIZE Integer 20000 diff --git a/content/en/docs/reference/commands/pilot-agent/index.html b/content/en/docs/reference/commands/pilot-agent/index.html index b8a0cc0153..fddacff918 100644 --- a/content/en/docs/reference/commands/pilot-agent/index.html +++ b/content/en/docs/reference/commands/pilot-agent/index.html @@ -632,6 +632,12 @@ These environment variables affect the behavior of the pilot-agent The type of ECC signature algorithm to use when generating private keys +ENABLE_ADMIN_ENDPOINTS +Boolean +false +If this is set to true, dangerous admin endpoins will be exposed on the debug interface. Not recommended for production. + + ENABLE_CA_SERVER Boolean true @@ -944,6 +950,12 @@ These environment variables affect the behavior of the pilot-agent If set to false, virtualService delegate will not be supported. +PILOT_ENABLE_WORKLOAD_ENTRY_AUTOREGISTRATION +Boolean +false +Enables auto-registering WorkloadEntries based on associated WorkloadGroups upon XDS connection by the workload. + + PILOT_ENABLE_XDS_CACHE Boolean true @@ -1040,6 +1052,12 @@ These environment variables affect the behavior of the pilot-agent If enabled, Pilot will use EndpointSlices as the source of endpoints for Kubernetes services. By default, this is false, and Endpoints will be used. This requires the Kubernetes EndpointSlice controller to be enabled. Currently this is mutual exclusive - either Endpoints or EndpointSlices will be used +PILOT_WORKLOAD_ENTRY_GRACE_PERIOD +Time Duration +10s +The amount of time an auto-registered workload can remain disconnected from all Pilot instances before the associated WorkloadEntry is cleaned up. + + PILOT_XDS_CACHE_SIZE Integer 20000 diff --git a/content/en/docs/reference/commands/pilot-discovery/index.html b/content/en/docs/reference/commands/pilot-discovery/index.html index bf0bd358ba..027d7d661f 100644 --- a/content/en/docs/reference/commands/pilot-discovery/index.html +++ b/content/en/docs/reference/commands/pilot-discovery/index.html @@ -527,6 +527,12 @@ These environment variables affect the behavior of the pilot-discoveryThe default TTL of issued workload certificates. Applied when the client sets a non-positive TTL in the CSR. +ENABLE_ADMIN_ENDPOINTS +Boolean +false +If this is set to true, dangerous admin endpoins will be exposed on the debug interface. Not recommended for production. + + ENABLE_CA_SERVER Boolean true @@ -767,6 +773,12 @@ These environment variables affect the behavior of the pilot-discoveryIf set to false, virtualService delegate will not be supported. +PILOT_ENABLE_WORKLOAD_ENTRY_AUTOREGISTRATION +Boolean +false +Enables auto-registering WorkloadEntries based on associated WorkloadGroups upon XDS connection by the workload. + + PILOT_ENABLE_XDS_CACHE Boolean true @@ -863,6 +875,12 @@ These environment variables affect the behavior of the pilot-discoveryIf enabled, Pilot will use EndpointSlices as the source of endpoints for Kubernetes services. By default, this is false, and Endpoints will be used. This requires the Kubernetes EndpointSlice controller to be enabled. Currently this is mutual exclusive - either Endpoints or EndpointSlices will be used +PILOT_WORKLOAD_ENTRY_GRACE_PERIOD +Time Duration +10s +The amount of time an auto-registered workload can remain disconnected from all Pilot instances before the associated WorkloadEntry is cleaned up. + + PILOT_XDS_CACHE_SIZE Integer 20000 diff --git a/content/en/docs/reference/config/istio.mesh.v1alpha1/index.html b/content/en/docs/reference/config/istio.mesh.v1alpha1/index.html index 9e0456e8ef..7786c0ec12 100644 --- a/content/en/docs/reference/config/istio.mesh.v1alpha1/index.html +++ b/content/en/docs/reference/config/istio.mesh.v1alpha1/index.html @@ -464,16 +464,17 @@ inclusion annotations sidecar.istio.io/statsInclusionRegexps, and sidecar.istio.io/statsInclusionSuffixes). For example, to enable stats for circuit breaker, retry, and upstream connections, you can specify stats -matcher as follow: -yaml -proxy_stats_matcher: - inclusion_regexps: +matcher as follow:

+ +
proxyStatsMatcher:
+  inclusionRegexps:
     - .*circuit_breakers.*
-  inclusion_prefixes:
+  inclusionPrefixes:
     - upstream_rq_retry
     - upstream_cx
-yaml
-Note including more Envoy stats might increase number of time series
+
+ +

Note including more Envoy stats might increase number of time series collected by prometheus significantly. Care needs to be taken on Prometheus resource provision and configuration to reduce cardinality.

@@ -962,6 +963,20 @@ See +disableEnvoyListenerLog +bool + +

This flag disables Envoy Listener logs. +See Listener Access Log +Istio Enables Envoy’s listener access logs on “NoRoute” response flag. +Default value is false.

+ No