kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,917 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

15 Commits

Author SHA1 Message Date
Joe Betz 92171c8c10 Add normalization support to CEL semver library, enable in base env 
Kubernetes-commit: 41469004282b2ad9034993427ce4ec9d1c7f88bb
 2025-03-07 11:10:43 -05:00
Joe Betz 9da95682e0 Add jsonpatch.escapeKey CEL function 
Kubernetes-commit: 712cc20996aedad5ac525184d76ea581f98d6e35
 2024-10-25 13:50:25 -04:00
Joe Betz 206e39c6f1 Test library and type names 
Kubernetes-commit: 430b1de921b85611b409887fe94988f81ec4d39f
 2024-09-10 17:07:29 -04:00
Joe Betz c90ac4722a Move CEL semver library into common libs, fix cost tests to use registered types 
Kubernetes-commit: e085f3818a3a1d04d895532cbdd233d797e0913b
 2024-09-10 16:55:57 -04:00
Joe Betz 6999423628 Add equality cost checking 
Kubernetes-commit: 0a2dfba067d7c75fafb9844f3cf4539153b582cf
 2024-08-27 14:42:58 -04:00
Joe Betz 7896cd7b57 add a type for each CEL library, register all types 
Kubernetes-commit: d2affe304847aa0bef3f81fa622d0b9c70a7f975
 2024-07-25 16:33:18 -04:00
Jordan Liggitt f14fc0f445 Adjust CEL cost calculation and versioning for authorization library 
Kubernetes-commit: 83bd512861aa11ec00a90e4ac382daa788dccf87
 2024-06-26 21:38:24 -04:00
Joel Speed f4ae0b7ca6 Add CIDR network CEL extension 
This adds new CEL functions to the library for validating if a string is a CIDR notation.

This will work in conjunction with the IPAddr to allow checking if an IPAddr exists within a particular network.

Kubernetes-commit: 2f585b451232814d6563329241e96f09bfd1cb73
 2023-11-15 19:04:48 +00:00
Joel Speed 3fe1439ba9 Add special IP validations to IP CEL type 
Kubernetes-commit: 13b22b23a1a5f8976fa608c7bc8b3048470b5c51
 2023-11-17 12:51:32 +00:00
Joel Speed ccfdc9aba1 Add IP address CEL extension 
This adds new CEL functions to the library for validating if a string is an IP address,
and, if it can be parsed as an IP address, adds additional accessors to get properties
of the IP address.

Kubernetes-commit: c6aa360d3ef9895323b239686719dd9223ee4f37
 2023-11-15 18:35:34 +00:00
Joe Betz eedba684cf Add CEL library lifecycle linter 
Kubernetes-commit: 980fa6a2b9edae577d1b71a28834afe1ca7dfe82
 2023-08-23 17:17:32 -04:00
Joe Betz e04cbed587 CEL lib: Expose errors on authz decisions instead of raising them from check(). 
Co-authored-by: Ben Luddy <bluddy@redhat.com>

Kubernetes-commit: 1053d1bbcf581f20300a821a951a14ae77915246
 2023-03-10 22:38:21 -05:00
Joe Betz f32e391a45 Introduce CEL EnvSets for managing safe rollout of new CEL features, libraries and expression variables 
Kubernetes-commit: e740f8340eedc89baccd120329b454a860385e2d
 2023-04-28 14:16:56 -04:00
Joe Betz f094db0dd5 Implement secondary authz 
Kubernetes-commit: 7bbda746fee7ae4e50647099b72c02327525ef7a
 2023-03-06 12:08:14 -05:00
Jiahui Feng 870da5a58e move CEL package to apiserver package. 
only anything that does not require Structural

Kubernetes-commit: 0dd316a5c11261c0e5fc7928d8697754b16ad461
 2022-10-07 15:02:47 -07:00