215ca01104
run update bazel
...
Kubernetes-commit: 5c9e020d7dfb369d3cdfb765baa3dff922d8e83d
2018-01-13 18:09:47 +08:00
d395a1e811
update admission test cases
...
Kubernetes-commit: 82c3d2492cb43f9f81e8a18e1dce2e8ab7e4e56a
2018-01-15 14:58:09 +08:00
b636311708
refactor admission flag: add two admission flags and make plugins auto in recommended order
...
Kubernetes-commit: 7c5f9e0bbaff15570f1709e70b7fa6952395d7cd
2018-01-15 14:58:57 +08:00
e090ce7de2
Fix loading structured admission plugin config
...
Kubernetes-commit: 34328ea87dc9ac61bd036228102c952017cb81d0
2018-01-18 02:32:28 -05:00
08a8cccb0a
Adding support for custom TLS ciphers in api server and kubelet
...
Kubernetes-commit: d7dbc96c70d480f0b81cd83ae3abd34b69c1e70d
2017-07-12 23:49:41 -07:00
2a2505e824
remove duplicated import
...
Kubernetes-commit: 4e7398b67b12390486012dd6f9d708dd64f961f3
2018-01-11 19:15:11 +08:00
574b95f04b
admission: do not leak admission config types outside of the plugins
...
Kubernetes-commit: 1a552bbe149373c056ee004304d7e5abaa89f4c6
2017-11-27 14:44:04 +01:00
346b48d948
periodically flush writer
...
Kubernetes-commit: 410b4016fd3dc97cdaf0a8e2bc20726900db772e
2018-01-13 13:14:31 -05:00
3365692578
sync: squashed up to merge eb7be2699bcbecb2703d3c046b27c2a8e8b1b6dd in 188e6ebcdbcfd0617dc12e51e8e6a66ce89f3955
2018-01-13 19:39:22 +00:00
551699fb67
Pass RecommendedConfig into ExtraAdmissionInitializers
...
Kubernetes-commit: 5a3cfd27ed818b971f36032d85e2de2db586a4e5
2018-01-02 09:32:04 +01:00
73975eaf19
Simplify extra initializer logic
...
Kubernetes-commit: a8127df3bb396717b4fb2a7f688c1f98e6bef6b4
2017-12-20 12:17:44 +01:00
82b64e7264
add admission into RecommendedOption
...
Kubernetes-commit: 6149df089e2667fefb740e408ece883fd76dd40e
2017-12-01 11:07:28 +08:00
9dd28d8beb
Fix ExternalAddress parsing problem under IPv6
...
`!strings.Contains(host, ":")` will fail miserably under ipv6
Kubernetes-commit: c258d4df84089b08b9cbd37b1dee4b00576a2532
2018-01-04 14:00:04 -05:00
0f7253ee99
validate admission-control param
...
Kubernetes-commit: 64a7c60e00a1f6cf92710415e0e3dee133ebab7c
2017-11-30 14:34:36 +08:00
b703119a83
Do not time-out profiler requests.
...
Kubernetes-commit: aa4fd0b69aa7804b0f3c666aa734243cdc11c51d
2018-01-02 14:42:01 +01:00
c8a97ee31a
Autogenerate BUILD files
...
Kubernetes-commit: efee0704c60a2ee3049268a41535aaee7f661f6c
2017-12-23 13:06:26 -08:00
0d11a9c252
Use []byte in place of string in envelope.Service.
...
Kubernetes-commit: 5005a541d6b5b7d950ed621d9c9fd247abb9b4af
2017-11-07 04:24:53 +05:30
30e6bc192e
Drop using cloud provider to set host address feature
...
As part of the larger plan to drop --cloud-provider and --cloud-config
from kube-apiserver, we need to stop calling Cloud Provider API to
find the external ip address when one is not specified on the command
line.
When ExternalHost is not specified, we check if AdvertiseAddress is
specified and use that, if that is missing then we use os.Hostname().
When testing this feature, found a problem that when ExternalHost
is specified, the port was not added in the generated URL. So fixed
that as well.
Kubernetes-commit: 31332fa84a0928085200ba5a2e35118516ee2c48
2017-12-04 15:06:07 -05:00
46f7a60026
wrong number of args in apiserver/pkg
...
Signed-off-by: yuexiao-wang <wang.yuexiao@zte.com.cn>
Kubernetes-commit: 235df842fafe21fe90f5691ca5eb1ab775fbe54d
2017-11-24 10:01:54 +08:00
8977dcee4a
Make audit batch webhook backend configurable
...
Signed-off-by: Mik Vyatskov <vmik@google.com>
Kubernetes-commit: 7e717ef3a6a57d31251ccee94d9e2dd29a70c27b
2017-11-30 18:47:48 +01:00
53b8960359
move the MutatingAdmissionWebhook to the last in the mutating amdission
...
plugin chain.
Kubernetes-commit: 8e8e32fa05f02331f724930933dfa34be995247c
2017-11-17 14:16:37 -08:00
e16244b0bc
Merge pull request #55812 from deads2k/admission-17-external
...
Automatic merge from submit-queue (batch tested with PRs 55812, 55752, 55447, 55848, 50984). If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md ">here</a>.
Make versioned types for webhook admission config
Versioned webhook admission config type as promised in https://github.com/kubernetes/kubernetes/pull/54414 .
@kubernetes/sig-api-machinery-pr-reviews
@ericchiang as promised. fyi.
```yaml
kind: AdmissionConfiguration
apiVersion: apiserver.k8s.io/v1alpha1
plugins:
- name: GenericAdmissionWebhook
configuration:
kind: WebhookAdmission
apiVersion: apiserver.config.k8s.io/v1alpha1
kubeConfigFile: /path/to/my/file
```
`ADMISSION_CONTROL_CONFIG_FILE=../foo.yaml hack/local-up-cluster.sh`
Kubernetes-commit: 25ebf875b4235cb8f43be2aec699d62e78339cec
2017-12-07 04:34:43 +00:00
170e8ac6dd
pass listener to genericapiserver
...
Kubernetes-commit: 6ba30f678c232793430a98770e7a851f1e814fd2
2017-11-16 13:32:12 +08:00
2ee052ccdf
admission: make metrics compositional and move to metrics sub-package
...
Kubernetes-commit: baba0c827bfddfdc56b69c88e19406966ef900a2
2017-11-17 11:49:55 +01:00
4406561b46
add detail to flag help
...
Kubernetes-commit: 2956314cde74f0481be1da6107cc266f56127173
2017-11-17 15:22:53 -08:00
1b638a5be7
generated bazel
...
Kubernetes-commit: 6193360eb52b00727df08f67eb8fc364a8df85e9
2017-11-15 16:21:28 -08:00
cb8d15718f
Adding the mutating webhook
...
Kubernetes-commit: ea123f82aae5bc46b9a91c4543c8f742d0db52da
2017-11-14 16:36:28 -08:00
b02e718318
remove duplicated import
...
Kubernetes-commit: 86968e44d09e713b8cd5adca5705bba7e511c033
2017-11-14 11:36:32 +08:00
f88f0f12a1
Reorganize the admission webhook code.
...
Moved client and kubeconfig related code to webhook/config;
Moved the rule matcher to webhook/rules;
Left TODOs saying we are going to move some other common utilities;
Other code is moved to webhook/validation.
Kubernetes-commit: 1adfacc7eb41da109e970a9c2985fd55b4cbbdfd
2017-11-05 18:11:47 -08:00
c37db061da
remove redundant code in admission initializer
...
Kubernetes-commit: 9d1e6d3e2cc25db8e07db446d00390059c8264f8
2017-11-08 10:54:06 +08:00
755a845d5a
update bazel and staging godep
...
Kubernetes-commit: 3c44e2a6167c349fb17c9741959ca24998ae3738
2017-11-02 19:36:01 +08:00
065ff42f34
gracefully shutdown apiserver after all non-long running requests finish
...
Kubernetes-commit: db4f0de28075f34bb4bfa8d821ad25cd3a7eba1f
2017-11-02 19:29:31 +08:00
06a5d25846
move authorizers over to new interface
...
Kubernetes-commit: 12125455d84c75562e6dd6a183762549adff747f
2017-09-29 14:21:40 -07:00
8ae36bdf36
apiserver: remove scheme arg from NewUnsecuredEtcd3TestClientServer
...
Kubernetes-commit: 11d9dd8ceca2d8f6d00b36ebc4982a142f547d5d
2017-10-30 13:18:49 +01:00
9493c48653
Log error when a healthz check fails
...
Kubernetes-commit: 1bcfe909125acc567258d4937fc2c08206d14d08
2017-09-26 12:58:12 +02:00
198ca9b2e0
Use GVK from storage in API registration
...
Kubernetes-commit: 5913fccada6097c984b168ab15c243a8b20876e5
2017-10-27 04:29:04 -04:00
eecedb2781
Revert "audit backend run shutdown gracefully after http handler finish"
...
This reverts commit f42686081bff88e44b339562c4927775f4439671.
Kubernetes-commit: f6a89df3fb719f4db565c7dade63575ccbdb3031
2017-10-30 15:26:51 +01:00
d1aa17bde6
audit backend run shutdown gracefully after http handler finish
...
Kubernetes-commit: f42686081bff88e44b339562c4927775f4439671
2017-10-20 16:26:49 +08:00
3843f2885c
remove the nesting directory webhook/webhook
...
Kubernetes-commit: ca8131877ad4fcab76388360e04ff9eb05af41a4
2017-10-26 14:19:49 -07:00
3cb246ace6
move webhook admission to generic apiserver
...
Kubernetes-commit: 8c1fe1f61a1de754a2cfed1966f4a1f8024ca618
2017-10-24 08:48:05 -04:00
cc18a64aad
audit backend run before http server start and register presShutdown hook
...
Kubernetes-commit: b96613722f0830ad2b9b8304a21cca0ec1d8fd2e
2017-10-20 16:26:49 +08:00
d3f753a815
update admission webhook to accept client config
...
Kubernetes-commit: 0859798e8e278ec382dcbeb77914f40bf2c78a2c
2017-10-18 12:57:59 -04:00
80d8099973
Added PreShutdownHooks to the apiserver
...
Kubernetes-commit: 0840e6d86925f9bfa0b9beea0e7ddf52791e8523
2017-10-12 21:20:46 -04:00
063df5c7b3
fix typos: remove duplicated word in comments
...
Kubernetes-commit: 87c29a08e1f51b2989ff15fc3e5857bc287e401f
2017-06-17 17:17:22 +08:00
f4dbe23125
update BUILD files
...
Kubernetes-commit: aee5f457dbfd70c2d15c33e392dce6a3ca710116
2017-10-12 13:52:10 -07:00
670d5651ed
rename test file name
...
Kubernetes-commit: 81d87466c89772c11b460cdb02df488ffb58d770
2017-09-29 14:51:55 +08:00
19cfabed24
Mark etcd-quorum-read as deprecated.
...
Kubernetes-commit: 2a454dcea0b867bab44796a86a8b27f04b49528d
2017-10-12 19:42:12 +08:00
136304ddb2
removes k8s.io/kubernetes/pkg/api dependency from the webhook plugin.
...
Kubernetes-commit: fa96700b76de3df759b3dddb747da575c909acec
2017-10-09 22:15:25 +02:00
9074f20eb7
generated
...
Kubernetes-commit: bbac32c299eb0660e89870a7fbc698c79af04b51
2017-10-04 17:27:09 -07:00
9696b0c05e
move initializer to the generic apiserver
...
move k8s.io/kubernetes/plugin/pkg/admission/initialization to
k8s.io/apiserver/pkg/admission/plugin/initialization/initialization.go;
move k8s.io/kubernetes/pkg/kubeapiserver/admission/configuration to
k8s.io/apiserver/pkg/admission/configuration.
Kubernetes-commit: 89a0511fcb22caf23427587c026952b2a387f293
2017-10-04 16:54:08 -07:00
3cfc602704
apimachinery: mechanical removal of ObjectCopier plumbing
...
Kubernetes-commit: 509df603b18d356777176953e5d160b6f3d0bba9
2017-10-06 13:30:12 +02:00
f189d35f0e
removes Authorizer and ExternalClientSet from kubeapiserver's admission initializer.
...
Kubernetes-commit: 6b1f1d14148fe3962594d8f4c9ca15d1c6171819
2017-10-03 18:08:30 +02:00
a7bf68f0d6
storage, etcd3: add an option for configuring interval of compaction requests from apiserver
...
This commit adds an option for controlling request of compaction to
etcd3 from apiserver. There is a situation that apiserver cannot fully
own its etcd cluster (e.g. sharing it with canal). In such a case,
apiserver should have limited access in terms of etcd's auth
functionality so it don't have a priviledge to issue compaction
requests. It means that the compaction requests should be issued by
other component and apiserver's compaction requests are needless.
For such use cases, this commit adds a new flag
`storagebackend.Config.CompactionInterval`. If the flag is non 0,
apiserver issues the compaction requests like current behaviour (the
default is 5 minutes). If it is 0, apiserver doesn't issue the
requests. It can be configured with a newly added option of apiserver
`--etcd-compaction-interval`.
Kubernetes-commit: 87d4d3e92be6b93517f189082b0451cee6957ee5
2017-09-01 14:06:25 +09:00
941c87ca76
moved admission interfaces WantsClientCert, WantsAuthorizer and WantsExternalKubeClientSet to apiserver
...
Kubernetes-commit: 475493ced69f47dd78d72ff98bf2c5853fc5ea19
2017-09-27 22:05:34 +02:00
1c446c37e3
adds two new fields to AdmissionOption.
...
The first one being RecommendedPluginOrder the second one being DefaultOffPlugins.
In case a cluster-admin did not provide plugin names they will be derived from these fields.
Kubernetes-commit: 7a92947588070a8eedd0bf50edcfbf0fcc1d4096
2017-08-24 21:36:39 +02:00
1caba4b96e
Collapse all metrics handlers into common code
...
Remove the MonitorRequest method and replace with a method that takes
request.RequestInfo, which is our default way to talk about API objects.
Preserves existing semantics for calls.
Kubernetes-commit: 10e6dc5ed3573118c56fa8823b387e47c8e8ae06
2017-09-11 14:53:18 -04:00
548cb7f4e2
move specialDefaultResourcePrefixes out of vendor/k8s.io/apiserver
...
Kubernetes-commit: 0084d70b56fb0b262f75f1b837001be04a694fb6
2017-09-07 10:19:30 +08:00
65c833f23a
Fix apiserver help message
...
Kubernetes-commit: acad74670dd1167ea0e90b2eeef6946d3871bdbf
2017-09-04 17:22:25 +08:00
7d0b0b91fc
Report "resource" scope where possible
...
Also rename the variables to match the concept
Kubernetes-commit: c13a3c03201c9082c4b373b7af8b99d7effd5a62
2017-09-22 11:42:04 +00:00
644d9a8cf1
Allow watch cache to be disabled per type
...
Currently setting watch cache size for a given resource does not disable
the watch cache. This commit adds a new `default-watch-cache-size` flag
to map to the existing field, and refactors how watch cache sizes are
calculated to bring all of the code into one place. It also adds debug
logging to startup to allow us to verify watch cache enablement in
production.
Kubernetes-commit: fc2d201e155296f311ae0a9278b00dcae2d68708
2017-09-09 21:44:33 +00:00
9f41d17af2
Update bazel
...
Kubernetes-commit: fbd310dbc7312fcae4267dd64326a1e7b4a0a8ae
2017-09-09 21:44:32 +00:00
a063c5336d
apiserver: avoid panics on nil sub-option structs
...
Kubernetes-commit: b153268da79d2acf14e042945959801c3dba8221
2017-09-09 21:44:32 +00:00
97e22b00fa
apiserver: split core API creation from secure serving
...
Kubernetes-commit: 2b64d3a0fd2ccdad4b2f21acb484a36e04381856
2017-09-09 21:44:32 +00:00
75cf96f31e
apiserver: stratify versioned informer construction
...
Kubernetes-commit: ca3f7453464f6866a3bf467c8b9d8e132484cfb4
2017-09-09 21:44:32 +00:00
8ec769da6b
apiserver: allow disabling authz/n via options
...
Kubernetes-commit: dffe50f8bd820295f7f1fbc56a6269b6b8c6966b
2017-09-09 21:44:32 +00:00
e4b1b0656b
apiserver: make config completion structural recursion
...
Kubernetes-commit: 1bcea54104cb7f53e58924dd5413cf4ba7ceb587
2017-09-09 21:44:32 +00:00
d2f7a0c820
Log a warning when --audit-policy-file not passed to apiserver
...
Kubernetes-commit: 3b91f1cc0d32278a9baf2a4b9b4e416cbfb2457f
2017-09-09 21:44:31 +00:00
702960b762
Provide field info in storage configuration
...
Kubernetes-commit: 1fde2698ec152901856062eb89cc5d2742925ce2
2017-09-09 21:44:30 +00:00
0c7ac2906f
set AdvancedAuditing feature gate to true by default
...
Kubernetes-commit: 1388426898f46de5e8730c3f71ce3ccaf50337b8
2017-09-09 21:44:30 +00:00
9f885389e9
make url parsing in apiserver configurable
...
Kubernetes-commit: ccc7c9bdfa80caee93953a96dec0d689d93f08e5
2017-09-04 14:03:48 +00:00
eaf131e1fc
Provide whole delegate chain to kube aggregator
...
Kubernetes-commit: 7cbdb90890ac89ec15be2b21b5cbdc51e94e42d6
2017-09-04 14:03:46 +00:00
3c2866020c
Switch audit output to v1beta1
...
Kubernetes-commit: f3487f08c6c2444adde9ba110263c9132769332b
2017-09-03 14:04:14 +00:00
460257fd61
Server side implementation of paging for etcd3
...
Add a feature gate in the apiserver to control whether paging can be
used. Add controls to the storage factory that allow it to be disabled
per resource. Use a JSON encoded continuation token that can be
versioned. Create a 410 error if the continuation token is expired.
Adds GetContinue() to ListMeta.
Kubernetes-commit: 8952a0cb722b77459cf2701632a30f5b264f5aba
2017-09-03 14:04:12 +00:00
677d724b3a
Allow audit to log authorization failures
...
Kubernetes-commit: 9fef244d4ccce0ea8daf37ab86a7af4892d000cf
2017-09-03 14:04:12 +00:00
c5c5445b49
basic logging for healthz installer
...
- InstallHandler is the public interface through which all interaction
occurs.
- It is good to know whether the default ping is occurring to know due
to manual installation or automatic installation.
- It is good to know how many handlers are installed to see whether
code changes are taking effect.
- It is good to know the names of the handlers that are installed to
make sure that a handler a user thinks is installed is being
installed at runtime.
- Print all the checkers once
Kubernetes-commit: efa66227d4fbcfad9fec21755b898f5d10d3344c
2017-09-03 14:04:11 +00:00
a50d8a0b4f
add selfsubjectrulesreview api
...
Kubernetes-commit: f14c1384387ac196e87334b5a0e05e01d7581387
2017-09-03 14:04:10 +00:00
b9e05868ba
Unify cloudprovided and normal KMS plugins
...
Kubernetes-commit: 6a4afc897c2ed4fb80f1b6121a06f86bc8095cd8
2017-09-01 16:37:07 +00:00
e1e8bebf50
Add --request-timeout to allow the global request timeout of 60 seconds to be configured.
...
Kubernetes-commit: cb764756c6f152bfb866b161315369bc47ebf13c
2017-08-29 13:18:50 +00:00
e74487ab1a
set --audit-log-format default to json
...
Updates: https://github.com/kubernetes/kubernetes/issues/48561
Kubernetes-commit: 130f5d10adf13492f3435ab85a50d357a6831f6e
2017-08-29 13:18:49 +00:00
49516f112c
Remove deprecated flag "long-running-request-regexp".
...
Kubernetes-commit: 72f4ab70e28a945ce25d40524696d0a486f8969e
2017-08-29 13:18:48 +00:00
91f15f8472
Add an OrDie version for AddPostStartHook
...
Simplifies usage and consolidate the error message so it is always
the same everywhere.
Signed-off-by: Simo Sorce <simo@redhat.com>
Kubernetes-commit: 15c54ffa7750c3037f464933c2b678a9a94cea82
2017-08-29 13:18:47 +00:00
504f70acec
Add enj as reviewer to OWNERS
...
Adding myself as a reviewer for the following areas:
- API
- auth
- registry
- storage (etcd)
Signed-off-by: Monis Khan <mkhan@redhat.com>
Kubernetes-commit: dd06794bc20ef1e0889af576c7a4f7a2f607e49d
2017-08-29 13:16:16 +00:00
e89debc597
fix typo
...
Kubernetes-commit: 2ad04cb46dfa84fbd3b169f555ee0ed71b277428
2017-08-29 13:16:15 +00:00
24a3b34c79
audit: disable new v1beta1 types until incompatible changes are done
...
Kubernetes-commit: 1dc251a1604b1576258f123ac8dd8390bba2e4a9
2017-08-29 13:16:13 +00:00
86ef841256
apiservers: add synchronous shutdown mechanism on SIGTERM+INT
...
Kubernetes-commit: 11b25366bc7bfe2ad273c8bf9c332fd9d233bffc
2017-08-29 13:16:11 +00:00
7313c11a9e
add validation for fed-apiserver
...
Kubernetes-commit: f2ea31fd925f764f8c684710d9cd345663e88d17
2017-08-29 13:16:11 +00:00
2384086d1e
apimachinery: remove misleading NewDefaultRESTMapper
...
Kubernetes-commit: 87c9f89cb15b2a64271dbdd292e2ce4abe7ab84a
2017-08-29 13:16:11 +00:00
2c8f1ce1d5
apimachinery: remove pre-apigroups import prefix logic
...
Kubernetes-commit: 8728576236698083f619c4fab06943b174f3fc61
2017-08-29 13:16:10 +00:00
6c539a43c6
Use buildozer to delete licenses() rules except under third_party/
...
Kubernetes-commit: a7f49c906df816123e7d4ccbd4cebab411519465
2017-08-29 13:15:24 +00:00
6caa2933ae
Use buildozer to remove deprecated automanaged tags
...
Kubernetes-commit: 33276f06be5e872bf53ca62a095fcf0a6b6c11a8
2017-08-29 13:15:24 +00:00
f8c99c82f6
Autogenerate BUILD files
...
Kubernetes-commit: cf55f9ed45e6df2431d47cfc5b9c9b30758527f1
2017-08-29 13:15:23 +00:00
31be6bf988
validate kube-apiserver options
...
Kubernetes-commit: de406f83cfafc4033a935821a05cd8d8e5f50099
2017-08-29 13:15:23 +00:00
5cfd8381c1
add some checks for fedration-apiserver options
...
Kubernetes-commit: 172ab88ce848d2c2e6c344535d3011d4ac558a37
2017-08-29 13:15:23 +00:00
c685a3bb9c
generated: bazel
...
Kubernetes-commit: 1ebbce2f6cad617a53225478efd4ffde30741475
2017-08-29 13:14:37 +00:00
8ba1feb05c
Timeout filter returns 504 and an inconsistent error body
...
Our rules are that code of the error must match code of the response. We
were also not setting the correct reason. This updates the timeout
filter to be consistent with other clients, without changing the error
code (504 is correct). The new message properly indicates the request
may still be running, which the old message did not do.
Kubernetes-commit: 74f6669b4983a9295dc0549ad15e44d70a18cc8f
2017-08-29 13:14:36 +00:00
19ee3e9e2f
Report non-resource URLs in max-in-flight correctly
...
This potentially has high cardinality, however we can rate limit based
on queries to these endpoints as well.
Kubernetes-commit: 022a5463dcf20126b02e9d9f797ea1e589de1dd1
2017-08-29 13:14:36 +00:00
139dfbd0e1
Update generic errors with the new http package codes
...
All of these errors are now part of the standard HTTP method. Formalize
those into our error types and remove duplication and unclear
separation.
Kubernetes-commit: d3be1ac92eb644e284915a55fe67942c33f88d4c
2017-08-29 13:14:36 +00:00
44942b068a
Run hack/update-bazel.sh to generate BUILD files
...
Kubernetes-commit: 3579017b865ddbc5449d6bba87346f086e4b93ff
2017-08-29 13:13:51 +00:00
c229fe60e4
fix typo in staging/src/k8s.io/apiserver/pkg/server/config.go
...
Kubernetes-commit: 1382d2f6e8baa2342e2b117b527d4b74d3b539ee
2017-08-29 13:13:50 +00:00
0ee5e1006e
remove dead log handler and increase verbosity
...
Kubernetes-commit: 9e263af7dacafe590cc585f0c37123310a2a9a4f
2017-08-29 13:13:06 +00:00
7dfcb9c56f
This adds an etcd health check endpoint to kube-apiserver
...
addressing https://github.com/kubernetes/kubernetes/issues/48215 .
Kubernetes-commit: 47d748c5dc989ea46142569bf42636c622fe128a
2017-08-29 13:13:05 +00:00
be2b87fdb8
cleanup dead installer code
...
Kubernetes-commit: c2874941620c264813b6bfa42913f95fd0cc2317
2017-08-29 13:13:05 +00:00
f26c819f3d
Update Bazel
...
Kubernetes-commit: 1806609596aa05f3ee2d941fd26978451b946383
2017-08-29 13:13:04 +00:00
e671fe20d7
Update main repo references to new kube-openapi repo
...
Kubernetes-commit: 400b77b48f972b1e10854980586559d5852088c7
2017-08-29 13:13:04 +00:00
72a8a7817c
Revert "Separate Build and Serving parts of OpenAPI spec handler"
...
This reverts commit 0a886ffaf8b9de97ef8134a4182b719ba2c6f22f.
Kubernetes-commit: 56fd5853b347e985b4fd02e251ee8da4ae6e35a2
2017-08-29 13:13:04 +00:00
2de4d08b67
Revert "Aggregate OpenAPI specs"
...
This reverts commit 1a1d9a0394cbdb1d1e2412ae8f0157799eb5329c.
Kubernetes-commit: 88868402b863b1f59a339d3a218bf62c264721ee
2017-08-29 13:13:04 +00:00
fe5fc30248
Add cloudprovidedkms provider support
...
Kubernetes-commit: 68a32c06b4d69970ac2489ff5177d5703ca604cd
2017-08-01 23:56:38 +00:00
55fe632ce2
Add unit tests for KMS transformer initialization
...
Kubernetes-commit: b76c63a9f086d978532c5b7ca565cb3ccd90b32e
2017-08-01 23:56:38 +00:00
c75b59c1cd
Add KMS plugin registry
...
Kubernetes-commit: 49989439d7dab525d22b73936d533ae736b50491
2017-08-01 23:56:38 +00:00
d156370a82
Add apiserver metric for response sizes split by namespace scope
...
Kubernetes-commit: 5facb62806a7f5d442bff8f77418b53cd58544f9
2017-07-29 13:55:24 +00:00
7f0ff974d5
rate limiting should not affect system masters
...
Kubernetes-commit: 8a3b4d81e6c3a74fa1afa5fd17d3bf42ba1e856d
2017-07-28 13:56:11 +00:00
a2a05bd86f
ParseEncryptionConfiguration: simplify code.
...
Also improves function name in godoc and many error messages.
Kubernetes-commit: bf51722ffbfa5521b8c516b8751435f004aacacf
2017-07-28 13:56:11 +00:00
7def9ae6ce
Fixup go2idl references
...
Kubernetes-commit: edfbb9aa6424ef975d717177886ca9cbdabe34c6
2017-07-28 13:56:11 +00:00
5f2f70a255
Validate --storage-backend type.
...
Kubernetes-commit: fcf2df9ad7ea688d75b2e9abb036b9d7abcc6e7c
2017-07-28 13:56:10 +00:00
530dec4a81
adding validations on kube-apiserver audit log options
...
Signed-off-by: huangjiuyuan <jiuyuan.huang@daocloud.io>
Kubernetes-commit: 21d0f815645ca3452719faf1ad69c63a9c3f3db2
2017-07-19 03:49:08 +00:00
817e4db05c
maxinflight handler should let panicrecovery handler call NewLogged
...
Kubernetes-commit: 6ffbbad21790ccf1f1f7063a0800a4696a572c76
2017-07-16 04:08:42 +00:00
f3f629bfe7
remove svg mime type extension
...
Signed-off-by: sakeven <jc5930@sina.cn>
Kubernetes-commit: 795953c0c4db03d182b941af5af03ff51652de72
2017-07-16 04:08:42 +00:00
8bc6800aeb
support json output for log backend of advanced audit
...
Kubernetes-commit: bc94370e9cbf3e54dc7dab1dbfc7404815eafb4c
2017-07-16 04:08:41 +00:00
c521c8f6b5
Record 429 and timeout errors to prometheus
...
Allows gathering of load being shed.
Kubernetes-commit: 2e33a2f0bc8ac82aecadcb19cf6e41259454d182
2017-07-16 04:08:41 +00:00
e110054277
TestLoopbackHostPort should accept IPv6 loopback host
...
Kubernetes-commit: 8469b013333baec0dc2fc43a6bfb7493fcf019e8
2017-07-16 04:08:40 +00:00
276c240fae
Fix 401/403 apiserver errors do not return 'Status' objects
...
Kubernetes-commit: 3d6479f7216dcb61e56ab6dd53fad7176930645d
2017-07-05 23:59:23 +00:00
fc0bd6b232
make the panic handler first
...
Kubernetes-commit: 9b43bd4a5b234d528ebc0fd059ae69eedced8c7f
2017-07-05 23:59:22 +00:00
924adf12df
Add Validate() function for audit options
...
Kubernetes-commit: cf8e3ccf1959942342ed0c10f6b43d46beb65e04
2017-07-05 08:39:49 +00:00
d57ea42cc0
Add NYTimes/gziphandler dependency
...
Kubernetes-commit: f617df7d6a63692ae8e0b2863f3b44f6ea02d355
2017-07-01 08:39:43 +00:00
242da91bc8
openapi: Read Accept-Content to send gzip if needed
...
Kubernetes-commit: bd38dd4d12b77126ba9c129b74b2b444f9f2a3a1
2017-07-01 08:39:43 +00:00
b74e5942e2
add compression to GET and LIST api requests
...
this feature is gated; disabled by default
Kubernetes-commit: c305f72315a83c16c40fbbfd06b563f9e67208ff
2017-06-28 00:14:31 +00:00
c4948f98da
incluster config will be used when creating external shared informers.
...
previously the loopback configuration was used to talk to the server.
As a consequence a custom API server was unable to talk to the root API server.
Kubernetes-commit: 074544b3b024156e4ce91de5778281dbe1b47a72
2017-06-28 00:14:31 +00:00
0fc5fed423
manually fix openapi-gen
...
Kubernetes-commit: 4379bbdafbd38bdc67f2ceb5cb7a4e778baebf04
2017-06-28 00:14:31 +00:00
6ed25fddc6
Fix api description
...
Kubernetes-commit: f7ce20d2e4b4c24cfa7440e135abf78e538673bb
2017-06-16 22:11:33 +00:00
205eddae2b
Fix typo in secretbox transformer prefix
...
Kubernetes-commit: 2c820c205073ec96acf8c0cf140db2381f377425
2017-06-15 22:11:39 +00:00
e4286c2402
Revert "add gzip compression to GET and LIST requests"
...
This reverts commit fc650a54d02f358c7fc65fa25b8312028bd4e944.
Kubernetes-commit: 63e3e2fa7b04bd3d3f1fccb63391f17ea01e06a8
2017-06-13 20:47:32 +00:00
f1876a2211
Add configuration for AESCBC, Secretbox encryption
...
Add tests for new transformers
Kubernetes-commit: 13073407422c62ee2131968060c85ce8b6488de4
2017-06-13 20:47:32 +00:00
8401e3b61b
change the default storage location to avoid double prefixing
...
Kubernetes-commit: bc3434c084e405769417a08195700cd6be02211f
2017-06-13 20:47:32 +00:00
8c02c5efc4
add gzip compression to GET and LIST requests
...
closes #44164
Kubernetes-commit: fc650a54d02f358c7fc65fa25b8312028bd4e944
2017-06-13 20:47:32 +00:00
fcc6b93d70
Load initializers from dynamic config
...
Handle failure cases on startup gracefully to avoid causing cascading
errors and poor initialization in other components. Initial errors from
config load cause the initializer to pause and hold requests. Return
typed errors to better communicate failures to clients.
Add code to handle two specific cases - admin wants to bypass
initialization defaulting, and mirror pods (which want to bypass
initialization because the kubelet owns their lifecycle).
Kubernetes-commit: 772ab8e1b4163c17d285a2789321762a8f2dc9f3
2017-06-13 20:47:31 +00:00
8ab96afbb9
Avoid * in filenames
...
Kubernetes-commit: b5e5e93201ccbc1b4ed1da0378c1f550508bfc4f
2017-06-13 20:47:31 +00:00
0bd6ffe372
Update Bazel
...
Kubernetes-commit: c2f2a33dc51e33634317dcc125543d3d05dab500
2017-06-13 20:47:31 +00:00
f03a4943d7
Aggregate OpenAPI specs
...
Kubernetes-commit: 1a1d9a0394cbdb1d1e2412ae8f0157799eb5329c
2017-06-13 20:47:31 +00:00
f10f5391f1
Separate Build and Serving parts of OpenAPI spec handler
...
Kubernetes-commit: 0a886ffaf8b9de97ef8134a4182b719ba2c6f22f
2017-06-13 20:47:31 +00:00
bfb371141a
Remove unused servePath from GetOperationIDAndTags and GetDefinitionName
...
Kubernetes-commit: ef8ee84cd07dedf0a441d455f54b55a6468b4b3d
2017-06-13 20:47:31 +00:00
5fa08b8c5e
Allow initialization of resources
...
Add support for creating resources that are not immediately visible to
naive clients, but must first be initialized by one or more privileged
cluster agents. These controllers can mark the object as initialized,
allowing others to see them.
Permission to override initialization defaults or modify an initializing
object is limited per resource to a virtual subresource "RESOURCE/initialize"
via RBAC.
Initialization is currently alpha.
Kubernetes-commit: 331eea67d8000e5c4b37e2234a90903c15881c2f
2017-06-13 20:47:30 +00:00
0b1c13686c
Add configuration options for encryption providers
...
Add location transformer, config for transformers
Location transformer helps choose the most specific transformer for
read/write operations depending on the path of resource being accessed.
Configuration allows use of --experimental-encryption-provider-config
to set up encryption providers. Only AEAD is supported at the moment.
Add new files to BUILD, AEAD => k8s-aes-gcm
Use group resources to select encryption provider
Update tests for configuration parsing
Remove location transformer
Allow specifying providers per resource group in configuration
Add IdentityTransformer configuration option
Fix minor issues with initial AEAD implementation
Unified parsing of all configurations
Parse configuration using a union struct
Run configuration parsing in APIserver, refactor parsing
More gdoc, fix minor bugs
Add test coverage for combined transformers
Use table driven tests for encryptionconfig
Kubernetes-commit: 9760d00d08ef0619e30a7b1b90fd290cab960069
2017-06-13 20:47:30 +00:00
efae6ed84b
Pre-generate SNI test certs
...
Kubernetes-commit: 6554dfc4456869e299b8f6a8f686e8c3cee073d9
2017-06-13 20:47:30 +00:00
d6f1990c7c
apiserver: avoid resolving 'localhost'
...
The golang stdlib resolve localhost first via the external DNS server,
not via /etc/hosts. If your DNS resolve localhost.<search-domain>, the
API server won't start.
Kubernetes-commit: 63cd572c74a40933d8e6928e084601810b724a81
2017-06-13 20:47:30 +00:00
be1a712a68
apiserver: add a webhook implementation of the audit backend
...
Kubernetes-commit: a88e0187f9f6083ed68d18e939a776c44c728e4b
2017-06-13 20:47:30 +00:00
42d367c84c
register all generic admission plugins when AdmissionOptions are created.
...
lifecycle plugin: make use of the libraries under k8s.io/client-go/pkg/api and k8s.io/client-go/kubernetes
for the client libraries instead of k8s.io/kubernetes/client/*
move registration to AdmissionOptions
Kubernetes-commit: 77eb2f39500f1fcf66899ea557791e7bca851449
2017-06-13 20:47:29 +00:00
10de73bc53
move CRD behind TPR
...
Kubernetes-commit: 18177e2bdeafbddeb3d66fec0b8cb88794cd69ff
2017-06-13 20:47:29 +00:00
8ff532a4cb
Implement audit policy logic
...
Kubernetes-commit: a5de309ee261aea15bb1cc12647b32640c2ac196
2017-06-13 20:47:28 +00:00
ecba80695f
remove init blocks from all admission plugins
...
Kubernetes-commit: c5019bf6962475ffff94ef4993bdc651b79f650c
2017-06-13 20:47:28 +00:00
94ea219615
Update bazel
...
Kubernetes-commit: 9fdc36a47ada0bc34ee53b68edd085d368ed9012
2017-06-13 20:47:28 +00:00
ec8d130fa7
audit: wire through non-nil context everywhere
...
Kubernetes-commit: ce942d19c378ecd335e7e158e30cdc184f9d6184
2017-06-13 20:47:28 +00:00
f7d766d92d
audit: add audit event to the context and fill in handlers
...
Kubernetes-commit: 0b5bcb021932355b3ff7c2b45fb579f4adad84bf
2017-06-13 20:47:28 +00:00
6bd3c73150
apiserver: move LongRunningRequestCheck type into endpoints/request
...
Kubernetes-commit: c1bf6e832e2887ef6cd0e7b7fa97a168fdf474e5
2017-06-13 20:47:27 +00:00
283dd09ef7
tighten and simplify owners in some staging repos
...
Kubernetes-commit: e7871dbab26459163fd916b83563c4815c7ca43c
2017-06-13 20:47:27 +00:00
032de8d661
Update bazel
...
Kubernetes-commit: 4d4abf3ba625488bd8a1b577f15b85db3c0fccac
2017-05-21 17:28:01 +00:00
e57f74f648
bugfix: form parameters should have type in OpenAPI spec
...
Kubernetes-commit: 4b0fbfe1ee23e5498ecc4786d3eeec222710473b
2017-05-21 17:28:01 +00:00
d5a4874935
Add protobuf binary version of openapi spec
...
Kubernetes-commit: 161b480107d94fae0373a2d7221413ec7a816229
2017-05-21 17:28:01 +00:00
b10e93e2f5
bazel update
...
Kubernetes-commit: 7b0950b298c876668d469d4b5b2ad7a4dcd344fc
2017-05-16 17:27:51 +00:00
ceeef3670c
This PR implements AdmissionOptions.ApplyTo
...
ApplyTo adds the admission chain to the server configuration the method lazily initializes a generic plugin
that is appended to the list of pluginInitializers.
apiserver.Config will hold an instance of SharedInformerFactory to ensure we only have once instance.
The field will be initialized in apisever.SecureServingOptions
Kubernetes-commit: 8cea69aa9812d6627ebdfa4f8b9c1d7624a8f3f5
2017-05-16 17:27:50 +00:00
00b83db9b8
plumb stopch to post start hook index since many of them are starting go funcs
...
Kubernetes-commit: be39283923650ad96539640ca988fbf194db2be4
2017-05-12 17:30:09 +00:00
f72563011c
Remove mentioning insecure server (which is not supported anymore)
...
Kubernetes-commit: 6c448319ac4b6e05db87b126db136c609eceec55
2017-05-12 17:30:09 +00:00
49f3eb05d8
refactor names for the apiserver handling chain
...
Kubernetes-commit: 4389f715768661731f0aae7438b2cc8414c9746a
2017-05-12 17:30:09 +00:00
234a9303e9
apiserver: tri-state watch cache capacity: off, default, value
...
Kubernetes-commit: b799e62e1aa82a1f1ff87597e762734cd702cdee
2017-05-12 17:30:09 +00:00
1ce699c0dd
Add GroupVersionKind and Action extensions to OpenAPI operations
...
Kubernetes-commit: fca7003dc5bd122e2123ef260e8612663f74a65b
2017-05-12 17:30:09 +00:00
a44fceadf3
Update go-restful dependency
...
Kubernetes-commit: ea042c6ca0fc7eb8017012ca56d6879b8cf10637
2017-05-12 17:30:08 +00:00
e640e78936
apiserver: fix --tls-sni-cert-key doc string
...
Kubernetes-commit: 53365880086f0d0d53002de7ce816284da41f4d0
2017-05-12 17:30:08 +00:00
ec0ac3b1aa
update the doc of function NewPathRecorderMux
...
Kubernetes-commit: 8b54081939c400d904dbf02fe5143c9dc11ad0ac
2017-05-12 17:30:08 +00:00
0a32c6d3e2
Fix yet another bug in OpenAPI extension generation
...
Kubernetes-commit: bcd0288e607ee1a1eba3d69dbb7d533f7ef2e4ba
2017-05-05 20:36:47 +00:00
585812f439
use our own serve mux that directs how we want
...
Kubernetes-commit: c837c7fb1a227ef8c772ad15b08ff47593379543
2017-05-04 20:36:37 +00:00
2b31ba8b9c
separate discovery from the apiserver
...
Kubernetes-commit: e099f5eee60ad32661d28a2eda9d615ac25ba9a4
2017-05-02 20:36:05 +00:00
1512c30ca6
Delete "hard-coded" default value in flags usage.
...
Kubernetes-commit: 420caf200cdb1ba41d6af43c5695c29de2082851
2017-04-29 20:35:54 +00:00
79f762de77
componentstatus: support client cert health check
...
etcd has support for client-cert-auth, which can be configured via the flag `--ca-file`,
when that is enabled, all the client requests must present with a client certificate,
however, the current component status check uses a single transport for all of the checks,
this is wrong, the checks should be different for each of different component, and make
each of them use different transport(tls configurations).
Kubernetes-commit: b1040171b68217dccb617de85defa4a5063c638b
2017-04-22 20:36:06 +00:00
fdb6bac0df
bazel update
...
Kubernetes-commit: 4a3dcff3bfb49317cee8fb209f6b915fc9e82f1a
2017-04-21 20:35:37 +00:00
3422dafac7
Split out AdmissionOptions
...
In the long term AdmissionOptions will accepts various dependencies
and spit out AdmissionControl
Kubernetes-commit: de9706bc15ffc3a6a4ef30a00d5c7ea9a8881396
2017-04-21 20:35:37 +00:00
6c1b74403d
apiserver: Update genericapiserver to panic on listener error
...
Previously runServer would try to listen again if a listener error
occurred. This commit changes the response to a panic to allow a
process manager (systemd/kubelet/etc) to react to the failure.
Kubernetes-commit: 30fb3be4d29179cf551e3030ade37d94d9acc8c9
2017-04-20 20:35:32 +00:00
6d6242ff50
Fix gofmt errors
...
Kubernetes-commit: 6681835b0c00122a408bd4addd47b02840b6208c
2017-04-18 20:35:41 +00:00
2aab760a2a
autogenerated
...
Kubernetes-commit: a05c3c0efdc5822049e34b1a5a1ee259c5fb1906
2017-04-15 20:35:23 +00:00
631ed9acef
add deregistration for paths
...
Kubernetes-commit: cd950364e5259659a771caf5b564de7a8319969b
2017-04-13 20:35:21 +00:00
320e34b1d9
pkg/admission: make plugin registry non-global
...
Kubernetes-commit: 63f547e1b15ed94ef91c69a7e294b3506bd8c918
2017-04-12 20:35:22 +00:00
f8217a24e4
Bugfix: OpenAPI generator should pass generate type extensions
...
Kubernetes-commit: ab5bcf6d2da5fc9cd2374e966f87e20a95d59ed6
2017-04-12 20:35:22 +00:00
01f14fece5
only log stacks on server errors
...
Kubernetes-commit: b73cddb2278d792c7e07d4e69969df32636ecb6d
2017-04-10 20:35:11 +00:00
72998a2b11
Allow disabling specific post-start hooks
...
Kubernetes-commit: 2c89ff59e22e0d9c825203c4cb94613a3b246d64
2017-03-31 20:37:16 +00:00
b137e92ccf
Plumb cipher/tls version serving options
...
Kubernetes-commit: e156aca4f21331465ba9406be362b9f16b8aba9e
2017-03-31 20:37:15 +00:00
1d9d56a19e
Update godoc for discovery registration
...
Kubernetes-commit: 85b23bb98a2c80fe631e20785e5e7172cb69e518
2017-03-31 20:37:15 +00:00
38fb6e78f7
move legacy insecure options out of the main flow
...
Kubernetes-commit: cd297546807fc08546905a2b96879d13bcf3a30b
2017-03-31 20:37:15 +00:00
c2afcd59a6
move insecure options to kubeapiserver
...
Kubernetes-commit: c2f8ef1b1a4e0e60379b7b7447d59a87b0b0ccf9
2017-03-31 20:37:15 +00:00
b3af46c0dc
wire in aggregation
...
Kubernetes-commit: 8e26fa25da6d3b1deb333fe2484f794795d1c6b9
2017-03-31 20:37:15 +00:00
8c644986dc
require codecfactory
...
Kubernetes-commit: 087a03022106c02f82a497f65b945f3cbab3f643
2017-03-31 20:37:15 +00:00
6e5dbf8e26
rewire aggregation handling chain to be normal
...
Kubernetes-commit: b28966b48ae8e3e10427e0347f33a36053884e0a
2017-03-31 20:37:15 +00:00
91f0fac434
force callers to specify the cert dns names
...
Kubernetes-commit: f31eb0a77f0616a5c4c3477b6d87a5a6726845cc
2017-03-31 20:37:15 +00:00
ba9d99da29
React to go-systemd changes
...
Kubernetes-commit: 085db20a02b222e8a909da02fc5025aeee6ebc57
2017-03-31 20:37:15 +00:00
e314f85f65
Preserve API group order in discovery, prefer extensions over apps
...
Kubernetes-commit: 707f0fb131b5ff89caae7c45a0e4b59991bd7bc2
2017-03-31 20:37:15 +00:00
43ba6dde7a
allow combining API servers
...
Kubernetes-commit: bccef75d7ae43be333e068748bb6f998dafa6d9d
2017-03-31 20:37:15 +00:00
4620c09303
allow fallthrough handling from go-restful routes
...
Kubernetes-commit: 02efeeaf4087533803299356de1673c8400bc351
2017-03-31 20:37:15 +00:00
1e6581d944
use - to indicate audit log goes to system out
...
Kubernetes-commit: 91f461283ec25dd43d55db97f981723a94f208b8
2017-03-31 20:37:15 +00:00
0f41d276a9
Force etcd2 to use application/json, add base64-wrapper decoder as fallback
...
Kubernetes-commit: 87e32c75321bad09707683cb15d6a0c41f4b6f0d
2017-03-18 19:56:09 +00:00
8543f589d2
Ensure patched objects are defaulted correctly
...
Kubernetes-commit: 464db160b410b22dba53af6d11fa097f0fa4fd6b
2017-03-18 19:56:09 +00:00
48679afa87
apiserver: Add non-blocking run method to simplify testing
...
Kubernetes-commit: 6f70b977ff6c6f9ba7ba1971d38ce3bd49243266
2017-03-18 19:56:09 +00:00
33e10a040b
Add pprof trace support
...
Add pprof trace support and --enable-contention-profiling to those
components that don't already have it.
Kubernetes-commit: b011529d8a1486bc2316a049db35759086d2994b
2017-03-18 19:56:09 +00:00
1c5eb397bb
Server timeout returns an incorrect error
...
Not a valid Status object in JSON
Kubernetes-commit: 60d83657516f63b51e43f5b2350821cb5b6835f0
2017-03-18 19:56:09 +00:00
8aacf17ba5
allow incluster authentication info lookup
...
Kubernetes-commit: 3d039f60cf998746a95181cacf5d3d69b83b46b0
2017-03-18 19:56:09 +00:00
9c5ae42f4d
add aggregation integration test
...
Kubernetes-commit: 5cfe26dece13c77bd17fd10e47d2c00bf5da9b6d
2017-03-18 19:56:09 +00:00
51e6651c84
apiserver/pkg/server: include scheme in insecure self client config
...
Kubernetes-commit: 6891505db9c02769b903446946a2506276329eb9
2017-03-18 19:56:09 +00:00
7170396682
tweak defaults for recommended apiserver options
...
Kubernetes-commit: acba2cbd6d188a34f4c3032c933921ba22a0f77c
2017-03-18 19:56:08 +00:00
63e29dca6f
Use new runtime.Object <-> map[string]interface{} converter
2017-02-27 15:10:34 -05:00
954f7be538
apiserver: self-signed in-memory cert for loopback
2017-02-27 15:10:34 -05:00
025f3f79e4
redact detailed errors from healthz and expose in default policy
2017-02-27 15:10:33 -05:00
1e2d8fe122
remove cycle that snuck into tests
2017-02-23 09:48:09 -05:00
36ad26fdd3
Don't use base64 encoding with etcd v3
2017-02-23 09:48:09 -05:00
0446eafcdb
fix misspell "roughly" in config.go
2017-02-23 09:48:09 -05:00
73c30cda7e
staging/src/*: run gofmt
2017-02-23 09:48:09 -05:00
585aca0c2c
k8s.io/apiserver: straighten EtcdOptions, backend Config and kube RESTOptionsFactory
2017-02-16 08:03:03 -05:00
1a57a29c12
k8s.io/apiserver: fixup imports and renamed packages
2017-02-16 08:03:03 -05:00
9f1d603944
k8s.io/apiserver: move server storage code into subpackage
2017-02-16 08:03:03 -05:00
147d3934cf
auto-create the loopback token
2017-02-14 14:04:06 -05:00
bed500fca9
fix bug of runServer function in server.go
2017-02-13 07:36:42 -05:00
c2c4ecb2ff
create sample-apiserver repo for people to inspect
2017-02-13 07:36:42 -05:00
9d21f84d8f
streamline etcd options for aggregated api server
2017-02-13 07:36:42 -05:00
5566a0ef65
move storage serialization type to etcd options
2017-02-13 07:36:42 -05:00
2e34520350
add feature enablement options to recommendedoptions
2017-02-13 07:36:42 -05:00
8c39f8c871
move --runtime-config to kubeapiserver
2017-02-13 07:36:42 -05:00
d3c1c03062
move auditoptions to separate struct
2017-02-13 07:36:42 -05:00
aed020968e
add recommended aggregated api server options
2017-02-13 07:36:42 -05:00
284a95797b
apiserver command line options lead to config
2017-02-13 07:36:41 -05:00
ad39e3715b
add apiserver API group for structured configuration
2017-02-13 07:36:41 -05:00
ac15385364
add liggitt to apimachinery/apiserver packages
2017-02-13 07:36:41 -05:00
a372fcad62
Mechanical fixup imports: pkg/genericapiserver
2017-02-13 07:36:41 -05:00
f3c3e07241
Mechanical move: pkg/genericapiserver -> k8s.io/apiserver
2017-02-13 07:36:41 -05:00
6025c228e6
pkg/storage/etcd: cut off pkg/api scheme
2017-02-02 09:36:48 -05:00
c4b078bb1d
move apiserver options
2017-02-02 09:36:48 -05:00
b0801a1423
move swagger route to apiserver
2017-02-02 09:36:48 -05:00
32ddb5c9d2
move genericapiserver/server/filters to apiserver
2017-01-27 14:15:18 -05:00
466822b370
remove go get failing import comment
2017-01-19 13:02:01 -05:00
855c38d53e
genericapiserver: fix imports
2017-01-19 10:27:27 -05:00
dc90e9a003
genericapiserver: move packages
...
Towards a sane k8s.io/apiserver package structure.
2017-01-19 10:27:27 -05:00
hzxuzhonghu
Jordan Liggitt
Victor Garcia
Cao Shufeng
Dr. Stefan Schimanski
ilackarms
Yu Liao
Davanum Srinivas
Marcin Owsiany
Jeff Grafton
Saksham Sharma
yuexiao-wang
Mik Vyatskov
Chao Xu
Kubernetes Submit Queue
Daniel Smith
Mike Danese
Henrik Schmidt
David Eads
Robert Rati
supereagle
xiangpengzhao
p0lyn0mial
Hitoshi Mitake
Clayton Coleman
Shiyang Wang
tengqm
Kubernetes Publisher
mbohlool
Maciej Szulik
Morgan Bauer
xilabao
Joe Betz
Simo Sorce
Monis Khan
duan-yue
m1093782566
huangjiuyuan
bjhaid
Shyam Jeedigunta
Slava Semushin
sakeven
Aaron Crickenberger
Antoine Pelisse
zhengjiajin
Saksham Sharma
Eric Chiang
Tim St. Clair
Nail Islamov
zhouhaibing089
Maru Newby
Christoph Blecker
Andy Goldstein
Wojciech Tyczynski
jg Chen
linyouchong