kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,099 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

1730 Commits

Author SHA1 Message Date
Kubernetes Publisher 86ddcb4842 Merge pull request #123737 from enj/enj/i/cel_email_verified 
Require email_verified to be used when email is set as username via CEL

Kubernetes-commit: 9a160fa7808755fddd5fe8573040bef4d2ba7a0c
 2024-03-08 20:12:31 +00:00
Kubernetes Publisher 4beab40010 Merge pull request #123435 from tallclair/apparmor-ga 
AppArmor fields API

Kubernetes-commit: bd25605619cbfb46b075002a6db58b4e489fc8cb
 2024-03-07 05:34:52 +00:00
Kubernetes Publisher 17663913a4 Merge pull request #123758 from liggitt/protobump 
[CVE-2024-24786] Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0

Kubernetes-commit: a5f5f44157c49fdfb6384862c7cb34c2ddbd4cce
 2024-03-06 17:29:40 +00:00
Jordan Liggitt 0a86214bd0 Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0 
Kubernetes-commit: c6673d2346c814ddb4629c569bdc659ffa0c583f
 2024-03-06 09:47:28 -05:00
Kubernetes Publisher 04449c9b06 Merge pull request #123405 from cici37/vapGA 
[KEP-3488]Promote ValidatingAdmissionPolicy to GA

Kubernetes-commit: 2b521e5f8e6b99e84d464d8fa35658aed35bd13c
 2024-03-06 05:23:36 +00:00
Kubernetes Publisher 69478b14d0 Merge pull request #123721 from enj/enj/i/authn_config_doc_nesting 
Fix AuthenticationConfiguration docs around nested claims via CEL

Kubernetes-commit: 7a20def5ba9f8e399f21467a194e85f21cbd6a47
 2024-03-05 21:36:06 +00:00
Kubernetes Publisher 8b057c4a4f Merge pull request #123561 from enj/enj/i/validate_jwt_sa_iss 
Prevent conflicts between service account and jwt issuers

Kubernetes-commit: 26600b17abcbeadf7f759a66b9b5ea5d8cc7a62a
 2024-03-05 05:11:51 +00:00
Kubernetes Publisher 6a1a5d2f87 Merge pull request #123532 from serathius/separate-rpc 
Move cacher watch to separate rpc preventing starvation

Kubernetes-commit: 5b6d8a42931fd0eb7ba762cd46ad1655e46018a5
 2024-03-05 05:11:39 +00:00
Kubernetes Publisher 70e2d9115d Merge pull request #123413 from seans3/tunneling-spdy-websockets 
PortForward: Tunnel SPDY through WebSockets

Kubernetes-commit: f745503112e06d6ff199e929d536c6a29825c01a
 2024-03-05 05:11:34 +00:00
Kubernetes Publisher 7092a3d47e Merge pull request #123660 from xigang/cacher/watch 
cleanup: if triggerValue has a value fast break

Kubernetes-commit: a4eaf6e1200fa6f2050c71ef7a7e8ab27a8e4947
 2024-03-04 13:20:46 +00:00
Sean Sullivan f4bc37078e portforward: tunnel spdy through websockets 
Kubernetes-commit: 8b447d8c97e8823b4308eb91cf7d75693e867c61
 2024-02-21 08:56:07 +00:00
Kubernetes Publisher e92429c2ad Merge pull request #123225 from aramase/aramase/f/kep_3331_latency_metrics 
Add `apiserver_authentication_jwt_authenticator_latency_seconds` metric

Kubernetes-commit: 6d2ee131ebd13ce2ec2448300bb99f4ea942f1a9
 2024-03-04 01:15:11 +00:00
Kubernetes Publisher 6f43b57386 Merge pull request #123640 from liggitt/authz-beta-config 
Duplicate v1alpha1 AuthorizationConfiguration to v1beta1

Kubernetes-commit: 8674282a054d3ae32e2e009dab6f8a0da3689828
 2024-03-02 21:03:19 +00:00
Kubernetes Publisher cc00aa34b6 Merge pull request #123611 from ritazh/authz-mcmetrics 
Add authz webhook matchcondition metrics

Kubernetes-commit: 3e1da218014b5a4e5c95ee79404093302104438b
 2024-03-02 05:50:07 +00:00
Kubernetes Publisher 00ac59edfa Merge pull request #122975 from aramase/aramase/c/cleanup_authn_validation 
cleanup structured authn/authz error logic

Kubernetes-commit: 4e8674f4e582c7d33143c42990d9409990d979a3
 2024-03-02 05:50:03 +00:00
Kubernetes Publisher 0d2b79b3b6 Merge pull request #122882 from Jefftree/agg-discovery-v2-usage 
Use Aggregated Discovery v2 types and promote to GA

Kubernetes-commit: 3f25211d69b4412e3e926835067918f86f629f3e
 2024-03-02 01:40:36 +00:00
Kubernetes Publisher 4fa5c0c492 Merge pull request #123529 from thockin/go-workspaces 
Go workspaces for k/k and k/staging/*

Kubernetes-commit: df366107d16aa2e2cdd620be41e592184f379da4
 2024-03-01 21:19:35 +00:00
Kubernetes Publisher 57928aa72c Merge pull request #123560 from ivelichkovich/master 
kep-3716 GA, remove feature gate

Kubernetes-commit: 6cc77a577e56c68e4fde81865e022e05e8e02538
 2024-03-01 08:22:12 +00:00
Kubernetes Publisher e3922247fe Merge pull request #123458 from aramase/aramase/i/min_jwt_payload 
add min valid jwt payload to API docs for structured authn config

Kubernetes-commit: 5cf4fbe524ca1479607a4880949a032064556f76
 2024-03-01 00:40:31 +00:00
Tim Hockin 0f77d82857 Fix up go.mod files after reviews 
Because of how the previous 100+ commits were done, so changes snuck
thru that properly belong in earlier commits but it's not really
possible to do that without a lot of effort.

We agreed it was OK to "spackle" these cracks with a final commit.

Kubernetes-commit: 21715e6bbd19c932576ff268843d8ead3edb05e4
 2024-02-28 16:50:55 -08:00
Kubernetes Publisher 0a2e73e991 Merge pull request #123562 from jpbetz/bump-cel-go-0_17_8 
Bump cel-go to v0.17.8 to pick up CEL estimated cost fix

Kubernetes-commit: fe8a12d264c88ac3cd0fb97d73c936de3fdd9788
 2024-02-28 23:18:35 +00:00
Joe Betz 5957e27e51 Bump cel-go to v0.17.8 to pick up CEL estimated cost fix 
Kubernetes-commit: d49949b64205ca68222d001806d127fc6d7489f9
 2024-02-28 10:52:36 -05:00
Tim Hockin 27e765eeff Remove old gengo detritus 
Kubernetes-commit: 812d5fff4011df4693dcdace516feec30ebff8ba
 2024-02-26 23:31:41 -08:00
Tim Hockin 510f374e58 Re-vendor latest kube-openapi and gengo/v2 
./hack/pin-dependency.sh k8s.io/kube-openapi latest
./hack/pin-dependency.sh k8s.io/gengo/v2 latest
./hack/update-vendor.sh

Kubernetes-commit: 6f2f3735e04df5e4822176a2784069634c3c74a3
 2024-02-26 17:02:22 -08:00
Kubernetes Publisher 3e22226ac6 Merge pull request #123281 from seans3/remote-command-websocket-beta 
RemoteCommand over WebSockets to Beta

Kubernetes-commit: f7ca532472f035db2aedc8a1f86639dfd1dc596f
 2024-02-28 12:29:10 +00:00
Kubernetes Publisher f663919323 Merge pull request #123538 from jiahuif-forks/fix/cel/mutation-library-map-support 
CEL mutation library: add support for map

Kubernetes-commit: 286cdad32d7967a5f3b84a8924448ea914d44c00
 2024-02-28 12:29:05 +00:00
Kubernetes Publisher e79edc2673 Merge pull request #123540 from enj/enj/i/jwt_iss 
jwt: strictly support compact serialization only

Kubernetes-commit: 236f1b0f6b4cbb7e372a72d181c6285bdaf74873
 2024-02-28 00:35:48 +00:00
Kubernetes Publisher fe1489716d Merge pull request #123348 from hoskeri/update-go-x-crypto-19 
Update x/crypto to 0.19.

Kubernetes-commit: 9a9028983806af26e7b48223f3a92922e94725df
 2024-02-21 20:38:58 +00:00
Kubernetes Publisher 290f0e4aff Merge pull request #123392 from thockin/depreciate 
Cleanup: s/depreciated/deprecated/g

Kubernetes-commit: 11785bb815d58eb553be3a1fa305464c35d860cc
 2024-02-21 12:41:17 +00:00
Kubernetes Publisher d23525a070 Merge pull request #123342 from logicalhan/storage-metric 
bump the stability level of apiserver_storage_size_bytes to STABLE

Kubernetes-commit: e613eb33885171a0584aa58cfad9e7c157d23326
 2024-02-21 12:41:14 +00:00
Abhijit Hoskeri 759c2142c7 Update x/crypto to 0.19. 
Main reason is to pick up updated CA roots.

Full diff: https://github.com/golang/crypto/compare/v0.16.0...v0.19.0

Kubernetes-commit: d3a0e296defbb0b55e591e273004e79e7ebfb1fd
 2024-02-16 20:18:14 +00:00
Kubernetes Publisher f68fe095ce Merge pull request #120902 from linxiulei/watch_stack 
Add handler to run execution in separate goroutine

Kubernetes-commit: 6c046796175de51e33290804a7665db5fa752a80
 2024-02-16 12:34:38 +00:00
Kubernetes Publisher 2c41261361 Merge pull request #123306 from alexzielenski/apiserver/policy/move-owners 
move OWNERS from validating to all new parent policy folder

Kubernetes-commit: 8a57e3cc2b57ff6889643a0900324996c52eaac0
 2024-02-15 20:34:51 +00:00
Kubernetes Publisher 53b26606c5 Merge pull request #123305 from aramase/aramase/f/kep_3331_audience_match_policy_follow_up 
Add integration test for multiple audience in structured authn

Kubernetes-commit: 50bf3a2060ea798600af1a4c125e0b62d08e9680
 2024-02-15 16:34:53 +00:00
Kubernetes Publisher f980dbe8f0 Merge pull request #123250 from benluddy/dep-bump-cbor-v2.6.0 
Bump github.com/fxamacker/cbor/v2 to v2.6.0.

Kubernetes-commit: e305e773bbfe8c5bdf9c57881a875e168b004b8c
 2024-02-15 01:39:12 +00:00
Kubernetes Publisher 503dabd7e9 Merge pull request #123179 from aramase/aramase/f/encryption_config_reload_metric 
Add `apiserver_encryption_config_controller_automatic_reloads_total` metric and deprecate success/failure counter

Kubernetes-commit: 7abb063b42c7770628ee2b69e25370cf6334882a
 2024-02-13 17:30:58 +00:00
Ben Luddy 137045a592 Bump github.com/fxamacker/cbor/v2 to v2.6.0. 
Kubernetes-commit: aac43dc96f2b679f0ab030fd3512c7e03b0f2df4
 2024-02-12 15:46:17 -05:00
Kubernetes Publisher 9d6ad00bf4 Merge pull request #121486 from benluddy/cbor-stub 
KEP-4222: Add stub CBOR serializer.

Kubernetes-commit: 48228bf9dbac308f43abd59a53fdc069fbddee0f
 2024-02-10 01:48:31 +00:00
José Carlos Chávez f099bff723 chore: adds consistent vanity import to files and provides tooling for verifying and updating them. (#120642) 
* chore: drops update vanity imports from script.

* chore: changes copyright year to 2024.

* chore: makes lint happy.

Kubernetes-commit: 6d6398ef9266abce3518a4c9a3d4e4d8feeffdc1
 2024-02-08 14:10:27 +00:00
Kubernetes Publisher 7b91578b43 Merge pull request #122557 from liangyuanpeng/anp_0.29 
Bump konnectivity-client to v0.29.0

Kubernetes-commit: 6972fd7d0be4f85b98737aaf8c2e105b42c0de6e
 2024-02-05 17:30:47 +00:00
Kubernetes Publisher 0dd0e74922 Merge pull request #122886 from jiahuif-forks/feature/cel/mutating-library 
[CEL Library] Unstructured Object Construction Support

Kubernetes-commit: 2363cdcc399cbf428210efb2c51575ddcad2b84a
 2024-01-27 01:29:38 +00:00
Kubernetes Publisher 9d32b8c86a Merge pull request #120631 from liyuerich/ptrderef 
Drop deprecated pointer package

Kubernetes-commit: fb1aea9a289e155fa21a57e9512acd61ed1b786b
 2024-01-24 21:29:42 +00:00
Lan Liang d24017c506 Update konnectivity to 0.29.0 
update konnectivity server&agent images to 0.29.0

  bump konnectivity deps to 0.29.0

Signed-off-by: Lan Liang <gcslyp@gmail.com>

Kubernetes-commit: d3b8eba690f8eeaf41b4fdf56c943004be501e4e
 2024-01-02 05:52:55 +00:00
Ben Luddy f9391f6b1d Update vendoring to take new CBOR library dependency. 
Kubernetes-commit: 09a1abda998fc37e2e29a120a82be7c6271656e0
 2023-10-17 16:51:52 -04:00
Kubernetes Publisher 888034e53f Merge pull request #122518 from cici37/celEnv29 
Update env version, add cost for previous added func, add tests, etc.

Kubernetes-commit: 31197eba75040cb0b88f488caf18a4c87182abed
 2024-01-23 21:29:53 +00:00
Kubernetes Publisher 338910dbd7 Merge pull request #122873 from p0lyn0mial/upstream-reflector-usewatchlist-pointer 
client-go/reflector: make UseWatchList a pointer

Kubernetes-commit: 445869a59bdbd1c587b72b52c5da94c1d1c316a1
 2024-01-22 21:32:29 +00:00
Kubernetes Publisher 9f9c32c4ac Merge pull request #122842 from pohly/klog-update 
dependencies: klog v2.120.1

Kubernetes-commit: b27b56a46c4c1e6be0dc2b1a0230d86223a7e903
 2024-01-18 21:34:52 +00:00
Kubernetes Publisher da46024a72 Merge pull request #122839 from pohly/ginkgo-gomega-update 
dependencies: ginkgo v2.15.0, gomega v1.31.0

Kubernetes-commit: c82da711b0e2184f851675aac4596bbd0f74763f
 2024-01-18 21:34:51 +00:00
Patrick Ohly 3a9c95f3b6 dependencies: klog v2.120.1 
Kubernetes-commit: e2222f1e304831cbbc57b61afa373612297055fb
 2024-01-18 16:58:40 +01:00
Patrick Ohly 78fd4a492b dependencies: ginkgo v2.15.0, gomega v1.31.0 
The main reason for updating is support for reporting the cause of context
cancellation: Ginkgo provides that information when canceling a context and
Gomega polling code includes that when generating a failure message.

Kubernetes-commit: 18f0af1f000f95749ca1ea075d62ca89e86bb7da
 2024-01-18 12:45:55 +01:00