kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,400 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

7 Commits

Author SHA1 Message Date
James Munnelly c60b23f298 use authentication.kubernetes.io/issued-credential-id audit annotation in serviceaccount token registry endpoint 
Kubernetes-commit: 7f12735fffdc490eae59e98d0f03638067b028de
 2024-02-02 16:57:16 +00:00
James Munnelly f2ba735b90 KEP-4193: bound service account token improvements 
Kubernetes-commit: 76463e21d4dec90b4d49975b182a13e1fdb6b20a
 2023-09-19 15:23:28 +01:00
cici37 4ab24fc5f7 Move client_builder to k8s.io/controller-manager 
Kubernetes-commit: 95acec5a3b4c07afba17b526e5cb031f8bb88630
 2020-05-26 17:01:36 -07:00
Clayton Coleman 49ac3bd853 Avoid allocating when performing VisitRulesFor on service accounts 
Service account authorization checks are done frequently and were
observed to perform 7% of allocations on a system running e2e tests.
The allocation comes from when we walk the authorization rules to
find matching service accounts.

Optimize the check for service account names to avoid allocating.

Kubernetes-commit: 4c87a14e6b1809359fcb6566d883a169ff0db259
 2019-03-11 11:50:44 -04:00
Cao Shufeng 81eb3429e7 remove useless argument "name" 
Kubernetes-commit: 2e97611bc62b88c48777d6209a0ed28d17d0e52d
 2017-08-29 13:16:16 +00:00
Dr. Stefan Schimanski 05c91315e2 Move first pkg/api/validation's into apimachinery 2017-01-17 10:46:17 -05:00
Dr. Stefan Schimanski c0fd39038a genericapiserver: cut off pkg/serviceaccount dependency 2017-01-17 10:46:17 -05:00