kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,013 Commits 29 Branches 1,436 Tags 31 MiB
Commit Graph

122 Commits

Author SHA1 Message Date
Jeff Grafton f4dbe23125 update BUILD files 
Kubernetes-commit: aee5f457dbfd70c2d15c33e392dce6a3ca710116
 2017-10-12 13:52:10 -07:00
Cao Shufeng b920c935aa run hack/update-all.sh 
Kubernetes-commit: b69285af7ff117018f9cd6c756e2d6b352cd9d42
 2017-10-12 11:29:41 +08:00
Cao Shufeng f7e881914a support micro time for advanced audit 
Kubernetes-commit: 817bc6954ca9af02013fd8f492f8ef865c217b0d
 2017-09-25 11:56:30 +08:00
Di Xu a9d3dd8d8f fix some typos in api types 
Kubernetes-commit: a1cee9ab3bc50310498554f3929676b577943062
 2017-07-19 22:07:12 +08:00
Jeff Grafton eabf5a2c6e Use buildozer to delete licenses() rules 
Kubernetes-commit: 02fb4200dcdf8636eac5953d04b2c4af912f443b
 2017-09-21 14:54:29 -07:00
Jeff Grafton ecbbfb0461 Use buildozer to remove deprecated automanaged tags 
Kubernetes-commit: 532bd482dfbe25c6fc970d2175f7e02fec2fc8c0
 2017-09-21 14:53:56 -07:00
Kubernetes Publisher 7b23343a61 conversion-gen: make staging dirs independent of living in vendor/ 
Kubernetes-commit: f5451127512e42294564efae97d4cb669df54f49
 2017-09-22 11:42:06 +00:00
Cao Shufeng 26f73b45d4 fix docstring of advanced audit policy 
Kubernetes-commit: 22f4c1ad4db102d66ec829a64ab601919f2019f5
 2017-09-05 14:03:27 +00:00
Dr. Stefan Schimanski 433a5a01a7 audit: fix fuzzer 
Kubernetes-commit: 58dd0879a754baff151913184ab5e1cd924fb19d
 2017-09-05 14:03:26 +00:00
Cao Shufeng 3827624a56 generated: update API resources 
./hack/update-codegen.sh
./hack/update-generated-protobuf.sh

Kubernetes-commit: b50acbdf0152f59e5fd6b065560aed4f85717a7a
 2017-09-04 14:03:48 +00:00
Cao Shufeng 4905dd9b0c Provide a way to omit Event stages in audit policy 
Updates https://github.com/kubernetes/kubernetes/issues/48561
This provide a way to omit some stages for each audit policy rule.

For example:
  apiVersion: audit.k8s.io/v1beta1
  kind: Policy
  - level: Metadata
    resources:
       - group: "rbac.authorization.k8s.io"
         resources: ["roles"]
    omitStages:
      - "RequestReceived"

RequestReceived stage will not be emitted to audit backends with
previous config.

Kubernetes-commit: 47ba91450fbe7d9002bfc9d4a48a73256252821f
 2017-09-04 14:03:48 +00:00
Cao Shufeng 92f836da87 update generated protobuf for audit v1beta1 api 
Kubernetes-commit: ea519bc06020d2b2a68fa46a3f57c9d66827659d
 2017-09-04 14:03:47 +00:00
Cao Shufeng 626d406dd0 run hack/update-codecgen.sh and hack/update-bazel.sh 
Kubernetes-commit: f94ca49e6307a7a668a7f5eb037891ac2045e167
 2017-09-01 16:38:54 +00:00
Cao Shufeng 9ab155429e Split APIVersion into APIGroup and APIVersion in audit events 
audit.Event.ObjectRef.APIVersion currently holds both the the API group and
version, separated by a /. This change break these out into separate fields.

This is part of:
https://github.com/kubernetes/kubernetes/issues/48561

Kubernetes-commit: c57eebfe2f8d36361d510f0afd926777a44cccd2
 2017-09-01 16:38:54 +00:00
Tim Hockin 39fbd1db4a Remove generated JSON code 
Kubernetes-commit: 9e2fccd1de5384a6ecadf54849f612a10ecfe93a
 2017-09-01 16:38:01 +00:00
Eric Chiang b4c852ede3 generated: update API resources 
./hack/update-codegen.sh
	./hack/update-codecgen.sh
	./hack/update-generated-protobuf.sh

Kubernetes-commit: 9caff69027e09f4617f06f30a6359072503ecc47
 2017-09-01 16:38:01 +00:00
Eric Chiang 1fa829c7c8 Audit policy v1beta1 now supports matching subresources and resource names. 
policy:
	- level: Metadata
	  resources:
	  - group: ""
	    resources ["pods/logs"]
	- level: None
	  resources:
	  - group: ""
	    resources: ["configmaps"]
	    resourceNames: ["controller-leader"]

The top level resource no longer matches the subresource. For example "pods"
no longer matches requests to the logs subresource on pods.

```release-note
Audit policy supports matching subresources and resource names, but the top level resource no longer matches the subresouce. For example "pods" no longer matches requests to the logs subresource of pods. Use "pods/logs" to match subresources.
```

Kubernetes-commit: 85491f1578b9b97751a332d3b957d874cecf27b3
 2017-09-01 16:38:01 +00:00
Jordan Liggitt 064c57bb9b Generated files 
Kubernetes-commit: c7defb806fc6c69deb4ab57655c3fa323ba8bebd
 2017-08-29 13:18:49 +00:00
Cao Shufeng d7bd79fee1 [advanced audit api] fuzz Event with random value 
This is an error import by me:
https://github.com/kubernetes/kubernetes/pull/49115

We need to fuzz other parts of Event with random value, otherwise
this round trip test will not make too much sense.
@sttts @ericchiang

Kubernetes-commit: f2ec610455f3756afebfcbd99c108abc86a5015d
 2017-08-29 13:17:13 +00:00
Cao Shufeng 24b54db39e run hack/update-all.sh 
Kubernetes-commit: 0410221c3fec1a54cde05104b92e44e13cddc77a
 2017-08-29 13:16:13 +00:00
Cao Shufeng 3468d049a7 upgrade advanced audit to v1beta1 
Kubernetes-commit: f4e8b8f1464e588306d5c1c4ffdc1a6cb1e9313b
 2017-08-29 13:16:13 +00:00
Dr. Stefan Schimanski 2c8f1ce1d5 apimachinery: remove pre-apigroups import prefix logic 
Kubernetes-commit: 8728576236698083f619c4fab06943b174f3fc61
 2017-08-29 13:16:10 +00:00
Jeff Grafton 6c539a43c6 Use buildozer to delete licenses() rules except under third_party/ 
Kubernetes-commit: a7f49c906df816123e7d4ccbd4cebab411519465
 2017-08-29 13:15:24 +00:00
Jeff Grafton 6caa2933ae Use buildozer to remove deprecated automanaged tags 
Kubernetes-commit: 33276f06be5e872bf53ca62a095fcf0a6b6c11a8
 2017-08-29 13:15:24 +00:00
Jeff Grafton f8c99c82f6 Autogenerate BUILD files 
Kubernetes-commit: cf55f9ed45e6df2431d47cfc5b9c9b30758527f1
 2017-08-29 13:15:23 +00:00
Cao Shufeng 4ace90bfb4 Return Audit-Id http header for trouble shooting 
Kubernetes-commit: 4a1e7ddaa6e0d2e92ce27d9846cfc8407e1fcb60
 2017-08-29 13:14:38 +00:00
Jeff Grafton 44942b068a Run hack/update-bazel.sh to generate BUILD files 
Kubernetes-commit: 3579017b865ddbc5449d6bba87346f086e4b93ff
 2017-08-29 13:13:51 +00:00
Dr. Stefan Schimanski 4f763bd819 Add missing ugorji codecs for auth/v1, settings/v1alphav1 and storage/v1 
Kubernetes-commit: 51df7cf59de2a7fbaad61e4a1a13598668028de5
 2017-08-29 13:13:07 +00:00
supereagle 2faadf8c85 update generated deepcopy code 
Kubernetes-commit: a1c880ece3574a2c7170e0d040489d56dd912e08
 2017-08-29 13:13:04 +00:00
Nikhita Raghunath 9e00357e52 fuzzer: remove unreachable code 
Kubernetes-commit: 365abedff55108ce9f96b5e186622b91a415cba2
 2017-07-28 13:56:11 +00:00
Dr. Stefan Schimanski aaf3784254 Unify fuzzers and roundtrip tests 
Kubernetes-commit: ecc811d263894ae54bbe62a3b1ba14847a260e95
 2017-07-28 13:56:11 +00:00
Dr. Stefan Schimanski e24df9a2e5 Update generated code 
Kubernetes-commit: 8dd0989b395b29b872e1f5e06934721863e4a210
 2017-07-19 03:49:08 +00:00
Dr. Stefan Schimanski 36b2f4560f deepcopy: add interface deepcopy funcs 
- add DeepCopyObject() to runtime.Object interface
- add DeepCopyObject() via deepcopy-gen
- add DeepCopyObject() manually
- add DeepCopySelector() to selector interfaces
- add custom DeepCopy func for TableRow.Cells

Kubernetes-commit: 39d95b9b065fffebe5b6f233d978fe1723722085
 2017-07-19 03:49:08 +00:00
Dr. Stefan Schimanski 8304eb8a20 audit: fix deepcopy registration 
Kubernetes-commit: ad23081273785668ee2520e5349cf0b05f64e41f
 2017-07-16 04:08:41 +00:00
Cao Shufeng af4570c690 update events' ResponseStatus at Metadata level 
ResponseStatus is populated in MetadataLevel, so we also update it in
MetadataLevel.

Kubernetes-commit: b6abcacb38d5da7c70ea9f3e6f673c8beeb90092
 2017-07-04 08:39:44 +00:00
Cao Shufeng 0ce81fed2f add validate for advanced audit policy 
This change checks group name and non-resrouce URLs format for audit
policy.

Kubernetes-commit: 7437b88386665ff4a16fe37d02818285636ec8ce
 2017-07-04 08:39:44 +00:00
Chao Xu 8be42ee0d0 run hack/update-all 
Kubernetes-commit: 60604f8818aecbc9c3736fbc32747cc0a535bc80
 2017-06-28 00:14:31 +00:00
Chao Xu e5d0493897 make all works. generated harmless covnersion/deepcoy chagnes 
Kubernetes-commit: 847b048fa0b2e83d4d4c39ceb37e9e0262d5a968
 2017-06-28 00:14:31 +00:00
Chao Xu 81b7aaaa7d run root-rewrite-import-client-go-api-types 
Kubernetes-commit: f2d3220a11111f86b2f481e70e3c1ca4f5896f44
 2017-06-28 00:14:31 +00:00
Chao Xu 150b64eff5 run hack/update-codegen.sh 
Kubernetes-commit: e185f7e2770039a799a21af9362ed999197dcc33
 2017-06-28 00:14:31 +00:00
Clayton Coleman 5f00d0e8e2 generated: protobuf with stable map ordering 
Kubernetes-commit: 606825eea47f41c72a3da1d4d2a769a340e1b69d
 2017-06-20 00:06:38 +00:00
Christoph Blecker 4587b5cf81 Update docs/ URLs to point to proper locations 
Kubernetes-commit: 1bdc7a29aee051ccef4bb21dcd9d43ee47b2a5d8
 2017-06-13 20:47:32 +00:00
Tim St. Clair fe3c2f4191 Generate protobuf for the audit API 
Kubernetes-commit: d7d54357205e62a2912ded53f2b307205bfccf2b
 2017-06-13 20:47:31 +00:00
Chao Xu 3f8656c5e3 generated defaults files 
generated bazel

Kubernetes-commit: 902c501595dfd044b3e7062e1518f7f3025751a5
 2017-06-13 20:47:30 +00:00
Dr. Stefan Schimanski f695ec4d4b audit-types: add Panic stage 
Kubernetes-commit: 3e9c8aaac689d9b0a11849b09aced266b48b3af8
 2017-06-13 20:47:29 +00:00
Tim St. Clair 8ff532a4cb Implement audit policy logic 
Kubernetes-commit: a5de309ee261aea15bb1cc12647b32640c2ac196
 2017-06-13 20:47:28 +00:00
Cao Shufeng 7618d3f6da Fix doc about Verb for advanced audit feature 
Kubernetes-commit: 312d117f51972fdaaf691100452942c61e163224
 2017-06-13 20:47:28 +00:00
Tim St. Clair 4fa7bd1587 Generated code 
Kubernetes-commit: 7bc9b3004956e84dd29ab66a7fb24e9924d960b7
 2017-06-13 20:47:28 +00:00
Tim St. Clair 2c15f760d9 Update audit API with missing pieces 
Kubernetes-commit: 4c98cab4dbccdc6ba005c08bf45c48aeb8e142b9
 2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski 94ea219615 Update bazel 
Kubernetes-commit: 9fdc36a47ada0bc34ee53b68edd085d368ed9012
 2017-06-13 20:47:28 +00:00
Dr. Stefan Schimanski f7d766d92d audit: add audit event to the context and fill in handlers 
Kubernetes-commit: 0b5bcb021932355b3ff7c2b45fb579f4adad84bf
 2017-06-13 20:47:28 +00:00
Tim St. Clair b2138bb657 Update generated files 
Kubernetes-commit: 6565f68cfab218c1c143edc8028f2bc2183b4150
 2017-05-19 17:28:21 +00:00
Tim St. Clair d9744c1278 Add internal audit API types 
Kubernetes-commit: cdacc1f6dfe85b99a0e8da7b1081eadeee1258ff
 2017-05-19 17:28:21 +00:00
Christoph Blecker 64f3b76260 Update generated files 
Kubernetes-commit: 4361a9146e34d74fce9c0193b11b920ffbd0eda8
 2017-05-18 17:28:00 +00:00
Cao Shufeng 549abf6787 Fix docs for advanced audit 
Kubernetes-commit: 22ba5eb0756d4eb936db3d911be7a79fffbb142e
 2017-05-17 17:27:53 +00:00
Tim St. Clair ccd060c4df hack/update-bazel.sh 
Kubernetes-commit: 951aa18225ed27d3f6b181c9403e4c4755c30ae1
 2017-05-16 17:27:51 +00:00
Tim St. Clair 801bfb00d4 Internal audit API 
Kubernetes-commit: ce2d57802f984678bc6ea0143c63602e0a4fb54e
 2017-05-16 17:27:51 +00:00
Chao Xu 4b7a66ff7e make it possible to move SchemeBuilder with zz_generated.deepcopy.go 
Kubernetes-commit: d0b94538b9744d0c06df6ddec2604be168568f9d
 2017-04-28 20:36:29 +00:00
Lucas Käldström 1b6b98500b Update protobuf 
Kubernetes-commit: f32e6d8a892504835454af4e740da5c9dd17c0a1
 2017-04-26 20:36:15 +00:00
Mike Danese 2aab760a2a autogenerated 
Kubernetes-commit: a05c3c0efdc5822049e34b1a5a1ee259c5fb1906
 2017-04-15 20:35:23 +00:00
Jordan Liggitt 662942f8b8 Remove vestiges of defaulting from conversion path, switch to top-level default registration only 
Kubernetes-commit: ad116026d9fefe70bbc37f30b9d299ca3af6e43c
 2017-04-14 20:35:34 +00:00
Sahdev P. Zala c44e920355 Conversion generated code changes for golint fix 
The exported or public functions requires a doc comment to pass golint.
This commit has changes of conversion generated code. The actual doc
changes are added into a separate commit for a clean review.

Kubernetes-commit: 08639023d027e0b69e3b3e5535b04148e084b1bd
 2017-04-12 20:35:21 +00:00
Timothy St. Clair 3c7e90361c Update generated due to proto-shift 
Kubernetes-commit: 818dd4443dc4760c90edd3aa608265d2573c7cc9
 2017-04-12 20:35:21 +00:00
Jordan Liggitt 66064e4297 generated files 
Kubernetes-commit: 939ca532aadc3c89d6ea40cf45fab44c0537d167
 2017-03-31 20:37:15 +00:00
Dr. Stefan Schimanski 07a502d3a2 apimachinery: handle duplicated and conflicting type registration 
Kubernetes-commit: 395be3b4010b0eef63e98961a14064360fdca26c
 2017-03-18 19:56:08 +00:00
Dr. Stefan Schimanski 73c30cda7e staging/src/*: run gofmt 2017-02-23 09:48:09 -05:00
deads2k 1227857843 move admission read logic 2017-02-13 07:36:41 -05:00
deads2k 90dc6e098c switch admission serialized config to an apiserver type 2017-02-13 07:36:41 -05:00
deads2k ad39e3715b add apiserver API group for structured configuration 2017-02-13 07:36:41 -05:00
Dr. Stefan Schimanski e4699fca43 pkg/genericapiserver/endpoints: cutting off pkg/api deps 2017-02-02 09:36:48 -05:00
Dr. Stefan Schimanski 4fbb344378 Update protobufs 2017-02-02 09:36:48 -05:00
Dr. Stefan Schimanski 8af0dd2e0a k8s.io/apiserver: add example api group 2017-02-02 09:36:48 -05:00