eee025a27a
add ability to authenticators for dynamic update of certs
...
Kubernetes-commit: 51195dd86012c4c4b17a1707ef50a46fa046f74f
2019-09-05 09:59:59 -04:00
f591b4fabd
add ability to pre-configure poststarthooks for apiservers
...
Kubernetes-commit: f14f4c933ee01d219ffbfa846875171e179019b7
2019-08-28 08:53:20 -04:00
1b75e5416d
Use same 'minimum resource version' semantics both when watch cache is enabled and disabled
...
Kubernetes-commit: 1406f7adf20a9ceaf5b8270ec9a61dd9e450ae8a
2018-12-04 16:55:59 -08:00
f7fbf2eee4
Limit YAML/JSON decode size
...
Kubernetes-commit: 8ef4566cefebf49f9a806a36df2105c9149785a1
2019-09-27 16:36:48 -04:00
92d2515aca
Don't leak a go routine on panic
...
Kubernetes-commit: a4ae7b9081f3ddedd0d588688215ddbe26274f75
2019-09-30 11:34:15 -07:00
7400a466d2
Explicitly handle returned error values in admission metrics_test
...
Kubernetes-commit: 774641ebdbdc7fe89380e7e1e77f5ebbe843ecec
2019-08-21 12:13:33 -07:00
20ecceebd3
Cache serializations
...
Kubernetes-commit: 25a728ae5eb0ae067d21679fad915c0555242470
2019-08-25 09:55:52 +02:00
4b6162fe6b
CachingObject
...
Kubernetes-commit: 4cd81549f9a6a325183e6c43c831ecf79f434b8e
2019-08-25 06:16:49 +02:00
94a2664cd3
Implement support for CacheableObject
...
Kubernetes-commit: 970f103e2c079da98743db35e38fd411a64e2e04
2019-08-15 22:02:33 +02:00
f186d58ea0
Fix transformObject to work with CacheableObject.
...
Kubernetes-commit: 1dd43724ce97b610aae7f9e0f3842f0798ec9d7b
2019-08-19 09:55:49 +02:00
4aa6bc019e
Implement Encoder.Identifier() method
...
Kubernetes-commit: cd4215ad8b95773a793f69fc2e8bf93c7ede97aa
2019-08-14 16:23:03 +02:00
d77c4fc8ba
Always set content-type & nosniff
...
Kubernetes-commit: ef6cba0b3635fc99eb658ecd4a29cf63bb234cb6
2019-01-03 11:13:28 -08:00
3e0b6a7493
Apply current parses the yaml object 3 times
...
This is super expensive and not needed at all since we don't have to
reparse the entire object. Remove all allocations but the first one.
Kubernetes-commit: 31c644a1e79c685b52683ed1e84964186a37f3ff
2019-09-25 12:38:38 -07:00
4f9778fb9d
replace bytes.Compare() with bytes.Equal()
...
Kubernetes-commit: 66be69bb0e7fd147be650385d272ae14ee2857c8
2019-09-27 10:06:50 +08:00
81b54ad46e
Add tests and benchmarks for endpoints and node
...
Kubernetes-commit: 0b7ea8bb0e9cc10335044f9ef75920d59462a4ca
2019-09-20 13:32:06 -07:00
db9f1ff5ea
Improve fieldmanager tests and benchmarks
...
Kubernetes-commit: fae9d0ee2136d3443cdd87b1a26a06d7857b01ee
2019-09-10 14:06:08 -07:00
adeca208bc
remove apiserver loopback client QPS limit
...
Kubernetes-commit: c37547c1dd85510d3de62fcc2cd7f4226cfc21db
2019-07-23 16:35:45 +08:00
5f565617cd
Add metrics of authentication overall latency.
...
Add alpha tags to authentication_attempts explicitly.
Kubernetes-commit: 0c0d69e8be69fd2e1c62a292ed44be6c0d4158fc
2019-09-04 20:50:24 +08:00
0ca78287c0
Propagate context to ExponentialBackoff
...
Kubernetes-commit: 4c686ddc1c5f9bc5c28d711dd56551b1ac003faa
2019-09-24 09:43:04 -04:00
d1d66bda16
Propagate context to Authorize() calls
...
Kubernetes-commit: 92eb072989eba22236d034b56cc2bf159dfb4915
2019-09-24 10:06:32 -04:00
6c75819b84
Split fieldmanager with interface
...
Kubernetes-commit: 2c67bf47db8557b6481a5181bdae924e91665988
2019-09-12 10:57:21 -07:00
26cf2f2052
expose and use an AddHealthChecks method directly on config
...
Kubernetes-commit: 97b58ece4a2ad1a366a9cf7deea9581373931238
2019-09-13 17:04:00 -07:00
7e547519cf
Add note on the role of BenchmarkSimpleCache
...
Kubernetes-commit: dd48a022c063e9f507ff62e1796a273d38036cb4
2019-09-11 14:39:57 -07:00
a64485969d
Verify the response audience matches one of apiAuds
...
Kubernetes-commit: d66d0472057dc59dff5ac686aea4304e5fe2eded
2019-09-13 06:41:23 -07:00
ba8f49cc73
Ensure conversions are registered for metainternalversion codecs
...
Kubernetes-commit: 54163527a69a8c868b87d301876559495220d1b0
2019-09-11 16:30:08 +02:00
0da8f30350
replace time.Now().Sub with time.Since
...
Kubernetes-commit: 0205215425607a7a390eaa6493033511626bb189
2019-09-03 20:43:32 +08:00
223a2b92f0
Propagate and honor http.ErrAbortHandler
...
Kubernetes-commit: 43415294a72d13a6d685ec0e2ecb274fada7587c
2019-09-11 11:16:31 -04:00
912f3b47b9
Refactor FieldManager tests to make them simpler
...
This is the first step on this, but there are a few improvements that
I'd like to do here.
Kubernetes-commit: b10ad55119a155b776b272a7139dfbed604b05d6
2019-09-10 15:05:26 -07:00
53db7e198a
change envelope transformer to return status error for better monitoring
...
Change-Id: I8263c4673d5f57617acf315c7af6ebe5aacd9c7c
Kubernetes-commit: cba43530d77d7f28bc302912e8f43c4a69fdec3b
2019-09-10 13:12:31 -07:00
0c12043fe4
Generated files
...
Kubernetes-commit: bbedc4f7ed436d28ed574615a33f8d03f7c8a2f0
2019-09-09 08:55:04 -04:00
a653e5ab1a
Export UserInfo conversion, use authnv1.UserInfo in audit
...
Kubernetes-commit: 0e787a4b78a849fa66a02126721dd185e7c00955
2019-09-09 08:54:54 -04:00
5bce489f18
fix some ineffassigns
...
Signed-off-by: haoshuwei <haoshuwei24@gmail.com>
Kubernetes-commit: aaed9daf9b44757e767d93bd45d1bb0412c00243
2019-09-09 18:52:17 +08:00
fc05a0cd5b
endpoints: fix admission test types
...
Kubernetes-commit: 420f010f8798a8938ff4332ca53bbac8a8e09c01
2019-09-09 08:36:52 +02:00
0682f6518c
fix some missing errors return statements
...
Signed-off-by: haoshuwei <haoshuwei24@gmail.com>
Kubernetes-commit: c4fe8f11b200d0a97e8ce447e5af592b5c4870d0
2019-09-09 13:54:14 +08:00
66fb39740e
Return proper Kind in error for Cacher
...
Kubernetes-commit: e4d880bd62fc694bffc188a680c9c088a86a5167
2019-09-07 19:42:56 -07:00
298cf1beec
Encryption config: correctly handle overlapping providers
...
This change updates NewPrefixTransformers to not short-circuit on
the first transformer that has a matching prefix. If the same type
of encryption ProviderConfiguration is used more than once, they
will share the same prefix. A failure in the first one should not
prevent a later match from being attempted.
Added TestCBCKeyRotationWithOverlappingProviders unit test to
prevent regressions. Note that this test explicitly exercises this
flow using an EncryptionConfiguration object as the structure of the
resulting transformer is an important part of the check.
Signed-off-by: Monis Khan <mkhan@redhat.com>
Kubernetes-commit: 4dc16f29a7285a4bcaff1915728953d8a55e1b6e
2019-09-06 12:09:43 -04:00
a50931ba7e
Move Update Apply conflict test to field manager test
...
Kubernetes-commit: 9828f986afd4db79a10c78bee1cc2e449faee3a6
2019-08-30 14:47:39 -07:00
754a749970
Fix typo in EnableInf*l*ightQuotaHandler flag
...
Kubernetes-commit: a71178ef62053555592c37caec8cd4c635231970
2019-08-23 15:16:29 -07:00
c229c2ca0a
Merge pull request #81453 from joshmsamuels/master
...
Apply will fail with managed fields + tests
Kubernetes-commit: 64718f678695884c93d6d3df8f5799614746bea2
2019-09-13 08:22:53 +00:00
1d85fa9bea
Remove myself from reviewers across the repo so that PRs are no
...
longer assigned to me by blunderbuss.
Move myself to be an emeritus approver for the cluster directory.
Kubernetes-commit: 9d211ab352f78482fde7ec593b3dcacea9bcc139
2019-08-27 15:57:09 -07:00
a0989eba0f
in GuaranteedUpdate, retry on precondition check failure if we are working with cached data
...
Kubernetes-commit: 88f0be6e59aa56570deaa2a9163d0eb3a3ae20f8
2019-09-03 17:26:39 -07:00
495219a608
test
...
Kubernetes-commit: 2670651a3c06028b6aaadb9dc7151d71357364bf
2019-09-03 17:09:12 -07:00
25bf5d3b30
Add integration test for webhook client auth
...
Kubernetes-commit: e734c70e037cf1311581eb61ae3e45adaa76771b
2019-09-02 22:37:07 -04:00
80b9dc503b
Plumb service port, URL port to webhook client auth resolution
...
Kubernetes-commit: d127042cb81cbf545332ec3124161525ef84183c
2019-09-02 22:38:36 -04:00
2de636a948
Search client auth with and without port
...
Kubernetes-commit: 2f5dde7672eaf90c7086f86a5a4ee190559f3bb2
2019-09-02 22:38:55 -04:00
b1cbdafe99
Use CRD validation field in server-side apply
...
Kubernetes-commit: c0617933d4bec5b00dbbfcd24edb7d7e7fc5509d
2019-08-28 15:28:49 -07:00
da748a626b
Add support for konnectivity service to the etcd3 client.
...
If konnectivity service is enabled, the etcd client will now use it.
This did require moving a few methods to break circular dependencies.
Factored in feedback from lavalamp and wenjiaswe.
Kubernetes-commit: edbb0fa2fe2084d5d9ce0cf9dc0d1b2d820bb392
2019-08-27 15:58:06 -07:00
956977bd20
Use http/1.1 in apiserver->webhook clients
...
Kubernetes-commit: ddc697866afd1e58cd2ee504277b405052546202
2019-08-28 13:37:50 -04:00
ce4eaaeeb3
Make webhook benchmarks parallel
...
Kubernetes-commit: 601b7d33a9cf0b724cdabb5de81b0bf2821f0fca
2019-08-28 13:27:38 -04:00
050d1b223c
add /livez as a liveness endpoint for kube-apiserver
...
go fmt
make func private
refactor config_test
Two primary refactorings:
1. config test checkPath method is now each a distinct test
run (which makes it easier to see what is actually failing)
2. TestNewWithDelegate's root path check now parses the json output and
does a comparison against a list of expected paths (no more whitespace
and ordering issues when updating this test, yay).
go fmt
modify and simplify existing integration test for readyz/livez
simplify integration test
set default rbac policy rules for livez
rename a few functions and the entrypoint command line argument (and etcetera)
simplify interface for installing readyz and livez and make auto-register completion a bootstrapped check
untangle some of the nested functions, restructure the code
Kubernetes-commit: aa1b2d6d35c92a31be17357fc66cfc1eca8a67e0
2019-08-26 16:57:25 -07:00
David Eads