apiserver

Commit Graph

Author	SHA1	Message	Date
Tim St. Clair	8ff532a4cb	Implement audit policy logic Kubernetes-commit: a5de309ee261aea15bb1cc12647b32640c2ac196	2017-06-13 20:47:28 +00:00
Clayton Coleman	2f49bbbf91	Subresources are not included in apiserver prometheus metrics Subresources are very often completely different code paths and errors generated on those code paths are important to distinguish. Kubernetes-commit: ad431c454c1306fdcc2134a3626444984d350f46	2017-06-13 20:47:28 +00:00
Tim St. Clair	dac438aa53	Update existing code for audit API changes Kubernetes-commit: 4c54970d31f0e35f21247514fb946081e6ee0be5	2017-06-13 20:47:28 +00:00
Tim St. Clair	78e974150d	Append X-Forwarded-For in proxy handler Kubernetes-commit: 6875e953782076237a0c20facc05eeb5d49aa161	2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski	94ea219615	Update bazel Kubernetes-commit: 9fdc36a47ada0bc34ee53b68edd085d368ed9012	2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski	ec8d130fa7	audit: wire through non-nil context everywhere Kubernetes-commit: ce942d19c378ecd335e7e158e30cdc184f9d6184	2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski	f7d766d92d	audit: add audit event to the context and fill in handlers Kubernetes-commit: 0b5bcb021932355b3ff7c2b45fb579f4adad84bf	2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski	6bd3c73150	apiserver: move LongRunningRequestCheck type into endpoints/request Kubernetes-commit: c1bf6e832e2887ef6cd0e7b7fa97a168fdf474e5	2017-06-13 20:47:27 +00:00
Wojciech Tyczynski	1d0b329280	Pass RequestInfo to GenerateLink Kubernetes-commit: b4018f7da18f1e61e59c5c48cae4178db2714f85	2017-06-13 20:47:27 +00:00
Wojciech Tyczynski	d82b8bc329	Pass Context to GenerateLink Kubernetes-commit: 25f0fe1adb199697565487b9dfacc4ed8ecdccbb	2017-06-13 20:47:27 +00:00
deads2k	283dd09ef7	tighten and simplify owners in some staging repos Kubernetes-commit: e7871dbab26459163fd916b83563c4815c7ca43c	2017-06-13 20:47:27 +00:00
Jordan Liggitt	781a66f4fb	Return MethodNotSupported when accessing unwatcheable resource with ?watch=true Kubernetes-commit: da8ae29620811f3dc058e0e665d402a208a1fe6c	2017-06-13 20:47:27 +00:00
yupengzte	e701e40544	format re Signed-off-by: yupengzte <yu.peng36@zte.com.cn> Kubernetes-commit: 9eee70656fc411029c91edafdbfa327eb0736528	2017-05-20 17:28:13 +00:00
Shyam Jeedigunta	b10ed3c56c	Copy static variable 'verb' before instrumenting APIserver call to prevent overwriting Kubernetes-commit: 4d457f55f4b190012440c8a454a2aee338a42c4d	2017-05-19 17:28:21 +00:00
Tim St. Clair	b2138bb657	Update generated files Kubernetes-commit: 6565f68cfab218c1c143edc8028f2bc2183b4150	2017-05-19 17:28:21 +00:00
Dr. Stefan Schimanski	2a11524990	apiserver: no Status in body for http 204 Kubernetes-commit: 8902dae1c4e12a0b5933beb965b148b4150c970d	2017-05-17 17:27:53 +00:00
nikhiljindal	404503d3e6	Updating generic registry to return UID while deleting the object Kubernetes-commit: 44fc88cecd5ab175fe7907eb7b975f0a00cb2305	2017-05-16 17:27:51 +00:00
Chao Xu	3ffeae2ff7	hack/update-bazel.sh Kubernetes-commit: 14045d253d11c801ad94f0928cb9b13a224ee18f	2017-05-13 17:27:43 +00:00
Chao Xu	e46eb82a82	remove invocation of k8s.io/client-go/pkg/api/install change import of client-go/api/helper to kubernetes/api/helper remove unnecessary use of client-go/api.registry change use of client-go/pkg/util to kubernetes/pkg/util remove dependency on client-go/pkg/apis/extensions remove unnecessary invocation of k8s.io/client-go/extension/intsall change use of k8s.io/client-go/pkg/apis/authentication to v1 Kubernetes-commit: c354076aa41e3cf417b291d5f0eff2b70395ac30	2017-05-13 17:27:42 +00:00
Ryan Hitchman	4e16eae82b	Escape "<>&" in apiserver errors to avoid triggering vulnerability scanners. Simple XSS scans might fetch /<script>alert('vulnerable')</script>, and fail when the response body includes the script tag verbatim, despite the headers directing the browser to interpret the response as text. This isn't a real vulnerability, but it's easier to fix this here than it is to fix the scanners. Kubernetes-commit: dd4bb1213d8447632fa651195980cbfae2546fb3	2017-05-12 17:30:09 +00:00
mbohlool	1ce699c0dd	Add GroupVersionKind and Action extensions to OpenAPI operations Kubernetes-commit: fca7003dc5bd122e2123ef260e8612663f74a65b	2017-05-12 17:30:09 +00:00
deads2k	4989e215f2	handle registered third parties Kubernetes-commit: b512073457d02f326ac39d5774582a92c763c47f	2017-05-12 17:30:08 +00:00
Chao Xu	e84e32eaa5	remove references to client-go/pkg/api Kubernetes-commit: d978f22e04519f6eecfde839110c398dc28d4e8e	2017-05-03 20:36:26 +00:00
deads2k	2b31ba8b9c	separate discovery from the apiserver Kubernetes-commit: e099f5eee60ad32661d28a2eda9d615ac25ba9a4	2017-05-02 20:36:05 +00:00
Dr. Stefan Schimanski	21f84e3d21	apiserver: split endpoint tests from client-go Kubernetes-commit: 67ca42b2d7e9efb5701618fb3d7faa62c53101c5	2017-05-02 20:36:05 +00:00
Cao Shufeng	51bdb8b7fc	Fix PathPrefix for subresources Kubernetes-commit: dde1221839a340f14924b399012e1aa137367092	2017-04-28 20:36:29 +00:00
deads2k	63fa51033e	build external watch event so simple encoders can encode Kubernetes-commit: f53c9a7e59fe71c038cf727ac2072e5eb9efc6b9	2017-04-28 20:36:29 +00:00
deads2k	a32f3c1391	fix cluster scoped self-link Kubernetes-commit: 5746d876e3e4ff41696569d3d8e80ef3979d5186	2017-04-25 20:36:18 +00:00
Anthony Yeh	9841cf11a1	PATCH: Fix erroneous meaningful conflict for numeric values. The wrong json package was used, resulting in patches being unmarshaled with numbers as float64 rather than int64. This in turn confused HasConflicts() which expects numeric types to match. The end result was false positives of meaningful conflicts, such as: ``` there is a meaningful conflict (firstResourceVersion: "8517", currentResourceVersion: "8519"): diff1={"metadata":{"resourceVersion":"8519"},"spec":{"replicas":0},"status":{"conditions":null,"fullyLabeledReplicas":null,"replicas":0}} , diff2={"spec":{"replicas":0}} ``` Kubernetes-commit: 1ab6a33db486adc060e1b63eecbdc06aabdde1f6	2017-04-24 20:36:05 +00:00
Cao Shufeng	32da3a6527	refactor code from restful namer Some codes are replaced because they will never run. Kubernetes-commit: 939b962975aabcb1587f40b0eb05a30d05168cc4	2017-04-24 20:36:05 +00:00
Cao Shufeng	ad7e6c7d72	Update basic audit filter's comment message Kubernetes-commit: 267288249b0dac2e7ae60bd53bef2afe8a574c28	2017-04-24 20:36:05 +00:00
Jordan Liggitt	28f3b58b8b	Include system:authenticated group when impersonating Kubernetes-commit: 86623ed2414d98d6ddc7f28028b88d17d8d8f6ec	2017-04-21 20:35:37 +00:00
gmarek	94dd05e8db	Fix traces for get requests Kubernetes-commit: 2a49281b55278bb6932e8862304cff0becaaabf3	2017-04-19 20:35:36 +00:00
xilabao	fa06d09988	remove useless check in audit.go Kubernetes-commit: 4b8abd811dbea5b92c807b64b427eab296567b1d	2017-04-18 20:35:41 +00:00
Matt Liggett	3b01985067	Use regexp instead of substring to do search and replace. enisoc pointed out how ToLower can change (lengthen even!) the length of a string given arbitrary input. Kubernetes-commit: fe202fcfc47c7e0fa7d75dc933c9988bb5a53e5e	2017-04-17 20:35:48 +00:00
Mike Danese	2aab760a2a	autogenerated Kubernetes-commit: a05c3c0efdc5822049e34b1a5a1ee259c5fb1906	2017-04-15 20:35:23 +00:00
Matt Liggett	6c87ad1f20	Drop leading path of KUBECTL.EXE if it shows up in User-Agent. Kubernetes-commit: 4cff7c3d30f4f6b4377d52ec29ec4866f1d28bb9	2017-04-14 20:35:35 +00:00
deads2k	540c5cf18e	remove dependency on gorestful for rest handling Kubernetes-commit: c5e2f7c229d8194386de97df7ff6c1b0f71be4c7	2017-04-11 20:35:21 +00:00
deads2k	d3546820d7	remove go-restful from namer for rest handling Kubernetes-commit: da27957390b99c3053922e75f220a8b09c20d7f6	2017-04-10 20:35:11 +00:00
Abhishek Dasgupta	ba77f4a298	Updated key.pm and cert.pm to remove error in setting up localhostCert pool. Signed-off-by: Abhishek Dasgupta <a10gupta@linux.vnet.ibm.com> Kubernetes-commit: 0d42da1b9345e2a649f298ac4f77807143e7befa	2017-04-10 20:35:11 +00:00
Cao Shufeng	d08e3dad61	Fix empty RBAC Forbidden message Kubernetes-commit: 30844541d55b302b06bd85f12d8cf0193e7e4240	2017-04-08 20:35:19 +00:00
supereagle	02ca4828ef	fix some typos in apiserver Kubernetes-commit: e35b7d10821bc2c7b4b59e1da3808d46356be69d	2017-04-07 20:35:14 +00:00
Jordan Liggitt	fa876f6773	Fix original object mutation on patch retry Kubernetes-commit: c415e4aeabe5e5514dcdbf2c01c533533c25f4c1	2017-04-06 20:35:16 +00:00
Dr. Stefan Schimanski	18fcdcc57b	k8s.io/apiserver: make maxRetryWhenPatchConflicts public Kubernetes-commit: be6be1370b5d1c9b6269c24f663426e3bac93c72	2017-03-31 20:37:15 +00:00
Jordan Liggitt	8543f589d2	Ensure patched objects are defaulted correctly Kubernetes-commit: 464db160b410b22dba53af6d11fa097f0fa4fd6b	2017-03-18 19:56:09 +00:00
Dominik Schulz	37527becd4	Clean user agent This commit cleans common browser user-agents to reduce the metrics cardinality in exported prometheus metrics. Kubernetes-commit: b5c89a8be68e031e12d6750ed6cc470de4cc3fdf	2017-03-18 19:56:09 +00:00
ymqytw	7306f452f2	switch to k8s json to avoid number conversion issue Kubernetes-commit: b29f4c26d799dca6606b45a0e03f7f931abcdefc	2017-03-18 19:56:09 +00:00
deads2k	e8086d93fd	show patch error as string not byte slice Kubernetes-commit: ea887557d36cec45744c11019aa3fd64d44f24f7	2017-03-18 19:56:09 +00:00
Chao Xu	a258201e01	registry changes Kubernetes-commit: 93686da1044ea5396978a9bc86468dd3d1c32190	2017-03-18 19:56:09 +00:00
Clayton Coleman	55e799bbec	Don't log context or full request URI due to security concerns These lines may contain information that cannot be safely logged to disk. Only deal with known parameters, also bump to V(2) to be consistent with other logging. Kubernetes-commit: f6300555f4c105f60c5a4cb0a0cdfc01899b833d	2017-03-18 19:56:08 +00:00

1 2

68 Commits