6f8c3a80da
fix typo in package apiserver
...
Kubernetes-commit: 0da91a8577ddfdeaff985cbb6c0da69d5a2ffc81
2018-02-01 03:04:33 +08:00
ebf7a386f9
fix some typos in filters
...
Kubernetes-commit: b9308355a64c4138ac9558f790ed0f716f44c743
2018-01-26 16:43:22 +08:00
9e657b874d
deprecate insecure http flags and remove already deprecated public-address-override
...
Kubernetes-commit: 24c687fdad009fec01703ae0f93ab141b97c0028
2018-01-30 16:05:33 +08:00
531b9b5202
remove dead testing code
...
Kubernetes-commit: 3e6bfcb5dbc35a9e845504043a345fd42ed5ce27
2018-01-29 09:50:40 -05:00
0989af6244
remove --tls-ca-file which had no effect
...
Kubernetes-commit: 114711f77d1f12e10b1190db02ca17302992f5ad
2018-01-29 10:29:14 -05:00
db4dae8a12
refactor resource_config.go thoroughly and remove useless code in registry
...
Kubernetes-commit: d0d1e1dcc473d75c5dae6d4710ac67f4f8ba44c6
2018-01-27 15:18:25 +08:00
5640ff2e39
remove support enable-disable api resources
...
Kubernetes-commit: 64a12258e8470405e8d628baa1d191363712763b
2018-01-26 15:48:00 +08:00
f2c38580dc
Add a metric to track usage of inflight request limit.
...
Kubernetes-commit: 000d7bac29b9239a29531a526d382394d8d60353
2018-01-16 15:48:20 +00:00
b16b687dc5
generated
...
Kubernetes-commit: 4ce7bcced4cc68a833759a218f9c3be7f72fd1c0
2018-01-19 11:55:55 -05:00
6b198535d6
add options for min tls levels
...
Kubernetes-commit: ad1680347071cb5bb66ab49c7325eb21d83e143c
2018-01-19 11:50:47 -05:00
7eedbab968
run update bazel and staging-godep
...
Kubernetes-commit: eff1f20ff14cc450968788974d77b472c82fface
2018-01-20 17:21:44 +08:00
f5af0796fc
pass APIEnablement through apiserver chain
...
Kubernetes-commit: 2f403b7ad18a179514f1de77e29f1a2549ef030a
2017-12-21 11:27:20 +08:00
d8aa7399d2
Add apiserver metric for number of requests dropped by 'inflight-request' filters.
...
Kubernetes-commit: 32c66c2b56afe0c716169d9705f84172155ddbb4
2018-01-16 15:48:20 +00:00
215ca01104
run update bazel
...
Kubernetes-commit: 5c9e020d7dfb369d3cdfb765baa3dff922d8e83d
2018-01-13 18:09:47 +08:00
d395a1e811
update admission test cases
...
Kubernetes-commit: 82c3d2492cb43f9f81e8a18e1dce2e8ab7e4e56a
2018-01-15 14:58:09 +08:00
b636311708
refactor admission flag: add two admission flags and make plugins auto in recommended order
...
Kubernetes-commit: 7c5f9e0bbaff15570f1709e70b7fa6952395d7cd
2018-01-15 14:58:57 +08:00
e090ce7de2
Fix loading structured admission plugin config
...
Kubernetes-commit: 34328ea87dc9ac61bd036228102c952017cb81d0
2018-01-18 02:32:28 -05:00
08a8cccb0a
Adding support for custom TLS ciphers in api server and kubelet
...
Kubernetes-commit: d7dbc96c70d480f0b81cd83ae3abd34b69c1e70d
2017-07-12 23:49:41 -07:00
2a2505e824
remove duplicated import
...
Kubernetes-commit: 4e7398b67b12390486012dd6f9d708dd64f961f3
2018-01-11 19:15:11 +08:00
574b95f04b
admission: do not leak admission config types outside of the plugins
...
Kubernetes-commit: 1a552bbe149373c056ee004304d7e5abaa89f4c6
2017-11-27 14:44:04 +01:00
346b48d948
periodically flush writer
...
Kubernetes-commit: 410b4016fd3dc97cdaf0a8e2bc20726900db772e
2018-01-13 13:14:31 -05:00
3365692578
sync: squashed up to merge eb7be2699bcbecb2703d3c046b27c2a8e8b1b6dd in 188e6ebcdbcfd0617dc12e51e8e6a66ce89f3955
2018-01-13 19:39:22 +00:00
551699fb67
Pass RecommendedConfig into ExtraAdmissionInitializers
...
Kubernetes-commit: 5a3cfd27ed818b971f36032d85e2de2db586a4e5
2018-01-02 09:32:04 +01:00
73975eaf19
Simplify extra initializer logic
...
Kubernetes-commit: a8127df3bb396717b4fb2a7f688c1f98e6bef6b4
2017-12-20 12:17:44 +01:00
82b64e7264
add admission into RecommendedOption
...
Kubernetes-commit: 6149df089e2667fefb740e408ece883fd76dd40e
2017-12-01 11:07:28 +08:00
9dd28d8beb
Fix ExternalAddress parsing problem under IPv6
...
`!strings.Contains(host, ":")` will fail miserably under ipv6
Kubernetes-commit: c258d4df84089b08b9cbd37b1dee4b00576a2532
2018-01-04 14:00:04 -05:00
0f7253ee99
validate admission-control param
...
Kubernetes-commit: 64a7c60e00a1f6cf92710415e0e3dee133ebab7c
2017-11-30 14:34:36 +08:00
b703119a83
Do not time-out profiler requests.
...
Kubernetes-commit: aa4fd0b69aa7804b0f3c666aa734243cdc11c51d
2018-01-02 14:42:01 +01:00
c8a97ee31a
Autogenerate BUILD files
...
Kubernetes-commit: efee0704c60a2ee3049268a41535aaee7f661f6c
2017-12-23 13:06:26 -08:00
0d11a9c252
Use []byte in place of string in envelope.Service.
...
Kubernetes-commit: 5005a541d6b5b7d950ed621d9c9fd247abb9b4af
2017-11-07 04:24:53 +05:30
30e6bc192e
Drop using cloud provider to set host address feature
...
As part of the larger plan to drop --cloud-provider and --cloud-config
from kube-apiserver, we need to stop calling Cloud Provider API to
find the external ip address when one is not specified on the command
line.
When ExternalHost is not specified, we check if AdvertiseAddress is
specified and use that, if that is missing then we use os.Hostname().
When testing this feature, found a problem that when ExternalHost
is specified, the port was not added in the generated URL. So fixed
that as well.
Kubernetes-commit: 31332fa84a0928085200ba5a2e35118516ee2c48
2017-12-04 15:06:07 -05:00
46f7a60026
wrong number of args in apiserver/pkg
...
Signed-off-by: yuexiao-wang <wang.yuexiao@zte.com.cn>
Kubernetes-commit: 235df842fafe21fe90f5691ca5eb1ab775fbe54d
2017-11-24 10:01:54 +08:00
8977dcee4a
Make audit batch webhook backend configurable
...
Signed-off-by: Mik Vyatskov <vmik@google.com>
Kubernetes-commit: 7e717ef3a6a57d31251ccee94d9e2dd29a70c27b
2017-11-30 18:47:48 +01:00
53b8960359
move the MutatingAdmissionWebhook to the last in the mutating amdission
...
plugin chain.
Kubernetes-commit: 8e8e32fa05f02331f724930933dfa34be995247c
2017-11-17 14:16:37 -08:00
e16244b0bc
Merge pull request #55812 from deads2k/admission-17-external
...
Automatic merge from submit-queue (batch tested with PRs 55812, 55752, 55447, 55848, 50984). If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md ">here</a>.
Make versioned types for webhook admission config
Versioned webhook admission config type as promised in https://github.com/kubernetes/kubernetes/pull/54414 .
@kubernetes/sig-api-machinery-pr-reviews
@ericchiang as promised. fyi.
```yaml
kind: AdmissionConfiguration
apiVersion: apiserver.k8s.io/v1alpha1
plugins:
- name: GenericAdmissionWebhook
configuration:
kind: WebhookAdmission
apiVersion: apiserver.config.k8s.io/v1alpha1
kubeConfigFile: /path/to/my/file
```
`ADMISSION_CONTROL_CONFIG_FILE=../foo.yaml hack/local-up-cluster.sh`
Kubernetes-commit: 25ebf875b4235cb8f43be2aec699d62e78339cec
2017-12-07 04:34:43 +00:00
170e8ac6dd
pass listener to genericapiserver
...
Kubernetes-commit: 6ba30f678c232793430a98770e7a851f1e814fd2
2017-11-16 13:32:12 +08:00
2ee052ccdf
admission: make metrics compositional and move to metrics sub-package
...
Kubernetes-commit: baba0c827bfddfdc56b69c88e19406966ef900a2
2017-11-17 11:49:55 +01:00
4406561b46
add detail to flag help
...
Kubernetes-commit: 2956314cde74f0481be1da6107cc266f56127173
2017-11-17 15:22:53 -08:00
1b638a5be7
generated bazel
...
Kubernetes-commit: 6193360eb52b00727df08f67eb8fc364a8df85e9
2017-11-15 16:21:28 -08:00
cb8d15718f
Adding the mutating webhook
...
Kubernetes-commit: ea123f82aae5bc46b9a91c4543c8f742d0db52da
2017-11-14 16:36:28 -08:00
b02e718318
remove duplicated import
...
Kubernetes-commit: 86968e44d09e713b8cd5adca5705bba7e511c033
2017-11-14 11:36:32 +08:00
f88f0f12a1
Reorganize the admission webhook code.
...
Moved client and kubeconfig related code to webhook/config;
Moved the rule matcher to webhook/rules;
Left TODOs saying we are going to move some other common utilities;
Other code is moved to webhook/validation.
Kubernetes-commit: 1adfacc7eb41da109e970a9c2985fd55b4cbbdfd
2017-11-05 18:11:47 -08:00
c37db061da
remove redundant code in admission initializer
...
Kubernetes-commit: 9d1e6d3e2cc25db8e07db446d00390059c8264f8
2017-11-08 10:54:06 +08:00
755a845d5a
update bazel and staging godep
...
Kubernetes-commit: 3c44e2a6167c349fb17c9741959ca24998ae3738
2017-11-02 19:36:01 +08:00
065ff42f34
gracefully shutdown apiserver after all non-long running requests finish
...
Kubernetes-commit: db4f0de28075f34bb4bfa8d821ad25cd3a7eba1f
2017-11-02 19:29:31 +08:00
06a5d25846
move authorizers over to new interface
...
Kubernetes-commit: 12125455d84c75562e6dd6a183762549adff747f
2017-09-29 14:21:40 -07:00
8ae36bdf36
apiserver: remove scheme arg from NewUnsecuredEtcd3TestClientServer
...
Kubernetes-commit: 11d9dd8ceca2d8f6d00b36ebc4982a142f547d5d
2017-10-30 13:18:49 +01:00
9493c48653
Log error when a healthz check fails
...
Kubernetes-commit: 1bcfe909125acc567258d4937fc2c08206d14d08
2017-09-26 12:58:12 +02:00
198ca9b2e0
Use GVK from storage in API registration
...
Kubernetes-commit: 5913fccada6097c984b168ab15c243a8b20876e5
2017-10-27 04:29:04 -04:00
eecedb2781
Revert "audit backend run shutdown gracefully after http handler finish"
...
This reverts commit f42686081bff88e44b339562c4927775f4439671.
Kubernetes-commit: f6a89df3fb719f4db565c7dade63575ccbdb3031
2017-10-30 15:26:51 +01:00
halfcrazy