kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,316 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

140 Commits

Author SHA1 Message Date
David Eads bf5feefec3 add an admission decorator chain 
Kubernetes-commit: 1ae856484b8a827b7ce6018ddfa103493a2cb97d
 2018-02-14 09:27:25 -05:00
Dr. Stefan Schimanski 89b7bf377a Update generated files 
Kubernetes-commit: 5483ab7679dd055422131fd1c22a18eee39a775e
 2018-02-08 19:37:08 +01:00
Dr. Stefan Schimanski 0520d284e2 controller-manager: add authz/n to options, nil by default 
Kubernetes-commit: cecd663c21d139a3a5a15b43a8dda8de26180246
 2018-02-08 14:19:02 +01:00
Dr. Stefan Schimanski 338a852bbb apiserver: make SecureServingOptions and authz/n options re-usable 
Kubernetes-commit: 4e0114b0dd3701b68c02d038edcf4fbe84515a68
 2018-01-31 16:17:48 +01:00
hzxuzhonghu 808a483472 pass listener in integration test to prevent port in use flake 
Kubernetes-commit: a6c43c6a5ca7cc4449684d5e68d73773be91cd41
 2018-01-29 11:58:23 +08:00
Wu Qiang 43cefec1d0 Update endpoint value in test code 
Kubernetes-commit: 31f74303fc48df5d88105c9742a103eae742f478
 2018-02-09 01:23:25 +00:00
Wu Qiang be4ee1ba37 Remove configfile for kms in encryption config 
Kubernetes-commit: 5ae61ed386e3fbc3b7e91d343afadadd52ac027d
 2018-01-26 11:53:24 +00:00
Wu Qiang a32d2bb427 Update for review comments 
Kubernetes-commit: 2e7af38d6b4c8ed9e1fb23930b98ed8d2ad68aa0
 2018-01-25 05:39:48 +00:00
Wu Qiang 580a800cad Only support unix socket for kms gRPC, also add Version method 
Kubernetes-commit: a6368bb04c1100d1dce1c6bf680056882835b395
 2017-12-18 09:29:56 +00:00
Wu Qiang e4061faec3 Fix verify error and address review comments 
Signed-off-by: Wu Qiang <qiang.q.wu@oracle.com>

Kubernetes-commit: 16b04d68b1ae180d61ea4ca06d1c8139c25a652f
 2017-11-15 11:20:12 +08:00
Wu Qiang dbe35e5c4e Update kms provider config for gRPC client service 
Kubernetes-commit: 31fb539f1735debd38e705fcb96a05ea0313c5f5
 2017-11-14 09:05:52 +00:00
halfcrazy 6f8c3a80da fix typo in package apiserver 
Kubernetes-commit: 0da91a8577ddfdeaff985cbb6c0da69d5a2ffc81
 2018-02-01 03:04:33 +08:00
hzxuzhonghu 9e657b874d deprecate insecure http flags and remove already deprecated public-address-override 
Kubernetes-commit: 24c687fdad009fec01703ae0f93ab141b97c0028
 2018-01-30 16:05:33 +08:00
David Eads 0989af6244 remove --tls-ca-file which had no effect 
Kubernetes-commit: 114711f77d1f12e10b1190db02ca17302992f5ad
 2018-01-29 10:29:14 -05:00
David Eads b16b687dc5 generated 
Kubernetes-commit: 4ce7bcced4cc68a833759a218f9c3be7f72fd1c0
 2018-01-19 11:55:55 -05:00
David Eads 6b198535d6 add options for min tls levels 
Kubernetes-commit: ad1680347071cb5bb66ab49c7325eb21d83e143c
 2018-01-19 11:50:47 -05:00
hzxuzhonghu 7eedbab968 run update bazel and staging-godep 
Kubernetes-commit: eff1f20ff14cc450968788974d77b472c82fface
 2018-01-20 17:21:44 +08:00
hzxuzhonghu f5af0796fc pass APIEnablement through apiserver chain 
Kubernetes-commit: 2f403b7ad18a179514f1de77e29f1a2549ef030a
 2017-12-21 11:27:20 +08:00
hzxuzhonghu 215ca01104 run update bazel 
Kubernetes-commit: 5c9e020d7dfb369d3cdfb765baa3dff922d8e83d
 2018-01-13 18:09:47 +08:00
hzxuzhonghu d395a1e811 update admission test cases 
Kubernetes-commit: 82c3d2492cb43f9f81e8a18e1dce2e8ab7e4e56a
 2018-01-15 14:58:09 +08:00
hzxuzhonghu b636311708 refactor admission flag: add two admission flags and make plugins auto in recommended order 
Kubernetes-commit: 7c5f9e0bbaff15570f1709e70b7fa6952395d7cd
 2018-01-15 14:58:57 +08:00
Jordan Liggitt e090ce7de2 Fix loading structured admission plugin config 
Kubernetes-commit: 34328ea87dc9ac61bd036228102c952017cb81d0
 2018-01-18 02:32:28 -05:00
Victor Garcia 08a8cccb0a Adding support for custom TLS ciphers in api server and kubelet 
Kubernetes-commit: d7dbc96c70d480f0b81cd83ae3abd34b69c1e70d
 2017-07-12 23:49:41 -07:00
Dr. Stefan Schimanski 574b95f04b admission: do not leak admission config types outside of the plugins 
Kubernetes-commit: 1a552bbe149373c056ee004304d7e5abaa89f4c6
 2017-11-27 14:44:04 +01:00
Yu Liao 3365692578 sync: squashed up to merge eb7be2699bcbecb2703d3c046b27c2a8e8b1b6dd in 188e6ebcdbcfd0617dc12e51e8e6a66ce89f3955 2018-01-13 19:39:22 +00:00
Dr. Stefan Schimanski 551699fb67 Pass RecommendedConfig into ExtraAdmissionInitializers 
Kubernetes-commit: 5a3cfd27ed818b971f36032d85e2de2db586a4e5
 2018-01-02 09:32:04 +01:00
Dr. Stefan Schimanski 73975eaf19 Simplify extra initializer logic 
Kubernetes-commit: a8127df3bb396717b4fb2a7f688c1f98e6bef6b4
 2017-12-20 12:17:44 +01:00
xuzhonghu 82b64e7264 add admission into RecommendedOption 
Kubernetes-commit: 6149df089e2667fefb740e408ece883fd76dd40e
 2017-12-01 11:07:28 +08:00
hzxuzhonghu 0f7253ee99 validate admission-control param 
Kubernetes-commit: 64a7c60e00a1f6cf92710415e0e3dee133ebab7c
 2017-11-30 14:34:36 +08:00
Jeff Grafton c8a97ee31a Autogenerate BUILD files 
Kubernetes-commit: efee0704c60a2ee3049268a41535aaee7f661f6c
 2017-12-23 13:06:26 -08:00
Saksham Sharma 0d11a9c252 Use []byte in place of string in envelope.Service. 
Kubernetes-commit: 5005a541d6b5b7d950ed621d9c9fd247abb9b4af
 2017-11-07 04:24:53 +05:30
Mik Vyatskov 8977dcee4a Make audit batch webhook backend configurable 
Signed-off-by: Mik Vyatskov <vmik@google.com>

Kubernetes-commit: 7e717ef3a6a57d31251ccee94d9e2dd29a70c27b
 2017-11-30 18:47:48 +01:00
Chao Xu 53b8960359 move the MutatingAdmissionWebhook to the last in the mutating amdission 
plugin chain.

Kubernetes-commit: 8e8e32fa05f02331f724930933dfa34be995247c
 2017-11-17 14:16:37 -08:00
Kubernetes Submit Queue e16244b0bc Merge pull request #55812 from deads2k/admission-17-external 
Automatic merge from submit-queue (batch tested with PRs 55812, 55752, 55447, 55848, 50984). If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md">here</a>.

Make versioned types for webhook admission config

Versioned webhook admission config type as promised in https://github.com/kubernetes/kubernetes/pull/54414.

@kubernetes/sig-api-machinery-pr-reviews
@ericchiang as promised.  fyi.

```yaml
kind: AdmissionConfiguration
apiVersion: apiserver.k8s.io/v1alpha1
plugins:
- name: GenericAdmissionWebhook
  configuration:
    kind: WebhookAdmission
    apiVersion: apiserver.config.k8s.io/v1alpha1
    kubeConfigFile: /path/to/my/file
```

`ADMISSION_CONTROL_CONFIG_FILE=../foo.yaml hack/local-up-cluster.sh`

Kubernetes-commit: 25ebf875b4235cb8f43be2aec699d62e78339cec
 2017-12-07 04:34:43 +00:00
hzxuzhonghu 170e8ac6dd pass listener to genericapiserver 
Kubernetes-commit: 6ba30f678c232793430a98770e7a851f1e814fd2
 2017-11-16 13:32:12 +08:00
Dr. Stefan Schimanski 2ee052ccdf admission: make metrics compositional and move to metrics sub-package 
Kubernetes-commit: baba0c827bfddfdc56b69c88e19406966ef900a2
 2017-11-17 11:49:55 +01:00
Daniel Smith 4406561b46 add detail to flag help 
Kubernetes-commit: 2956314cde74f0481be1da6107cc266f56127173
 2017-11-17 15:22:53 -08:00
Chao Xu 1b638a5be7 generated bazel 
Kubernetes-commit: 6193360eb52b00727df08f67eb8fc364a8df85e9
 2017-11-15 16:21:28 -08:00
Chao Xu cb8d15718f Adding the mutating webhook 
Kubernetes-commit: ea123f82aae5bc46b9a91c4543c8f742d0db52da
 2017-11-14 16:36:28 -08:00
Chao Xu f88f0f12a1 Reorganize the admission webhook code. 
Moved client and kubeconfig related code to webhook/config;
Moved the rule matcher to webhook/rules;
Left TODOs saying we are going to move some other common utilities;
Other code is moved to webhook/validation.

Kubernetes-commit: 1adfacc7eb41da109e970a9c2985fd55b4cbbdfd
 2017-11-05 18:11:47 -08:00
hzxuzhonghu c37db061da remove redundant code in admission initializer 
Kubernetes-commit: 9d1e6d3e2cc25db8e07db446d00390059c8264f8
 2017-11-08 10:54:06 +08:00
Chao Xu 3843f2885c remove the nesting directory webhook/webhook 
Kubernetes-commit: ca8131877ad4fcab76388360e04ff9eb05af41a4
 2017-10-26 14:19:49 -07:00
David Eads 3cb246ace6 move webhook admission to generic apiserver 
Kubernetes-commit: 8c1fe1f61a1de754a2cfed1966f4a1f8024ca618
 2017-10-24 08:48:05 -04:00
David Eads d3f753a815 update admission webhook to accept client config 
Kubernetes-commit: 0859798e8e278ec382dcbeb77914f40bf2c78a2c
 2017-10-18 12:57:59 -04:00
Jeff Grafton f4dbe23125 update BUILD files 
Kubernetes-commit: aee5f457dbfd70c2d15c33e392dce6a3ca710116
 2017-10-12 13:52:10 -07:00
hzxuzhonghu 670d5651ed rename test file name 
Kubernetes-commit: 81d87466c89772c11b460cdb02df488ffb58d770
 2017-09-29 14:51:55 +08:00
xiangpengzhao 19cfabed24 Mark etcd-quorum-read as deprecated. 
Kubernetes-commit: 2a454dcea0b867bab44796a86a8b27f04b49528d
 2017-10-12 19:42:12 +08:00
p0lyn0mial 136304ddb2 removes k8s.io/kubernetes/pkg/api dependency from the webhook plugin. 
Kubernetes-commit: fa96700b76de3df759b3dddb747da575c909acec
 2017-10-09 22:15:25 +02:00
Chao Xu 9074f20eb7 generated 
Kubernetes-commit: bbac32c299eb0660e89870a7fbc698c79af04b51
 2017-10-04 17:27:09 -07:00
Chao Xu 9696b0c05e move initializer to the generic apiserver 
move k8s.io/kubernetes/plugin/pkg/admission/initialization to
k8s.io/apiserver/pkg/admission/plugin/initialization/initialization.go;
move k8s.io/kubernetes/pkg/kubeapiserver/admission/configuration to
k8s.io/apiserver/pkg/admission/configuration.

Kubernetes-commit: 89a0511fcb22caf23427587c026952b2a387f293
 2017-10-04 16:54:08 -07:00