apiserver

History

Monis Khan 242620fc19 kmsv2: validate encrypt response at DEK generation time Prior to this change, we wait until the DEK is used to perform an encryption before validating the response. This means that the plugin could report healthy but all TransformToStorage calls would fail. Now we correctly cause the plugin to become unhealthy and do not attempt to use the newly generated DEK. Signed-off-by: Monis Khan <mok@microsoft.com> Kubernetes-commit: 5469c198e5d074c7e88e14c3dcbc3ebb2b37cfa8		2023-03-22 21:27:47 -04:00
..
admission	Custom match criteria (#116350 )	2023-03-16 04:20:31 +00:00
apis	Matchconditions admission webhooks alpha implementation for kep-3716 (#116261 )	2023-03-15 07:36:02 +00:00
audit	Combine RequestAuditConfig with RequestAuditConfigWithLevel	2022-11-02 15:23:48 -07:00
authentication	Clear front proxy headers after authentication is complete	2023-03-20 13:11:38 -04:00
authorization	Check in OWNERS modified by update-yamlfmt.sh	2021-12-09 21:31:26 -05:00
cel	Clean up reference to deleted denied function	2023-03-20 18:24:10 -07:00
endpoints	Clear front proxy headers after authentication is complete	2023-03-20 13:11:38 -04:00
features	Update kube_features comment for aggregated discovery and openapi v3	2023-03-21 15:18:41 -04:00
quota/v1	go1.19: change some atomic.Value to atomic.Bool	2022-09-06 17:13:44 +08:00
registry	Preserve UID/ResourceVersion in the BindingREST endpoint	2023-03-16 16:35:39 -04:00
server	kmsv2: validate encrypt response at DEK generation time	2023-03-22 21:27:47 -04:00
storage	kmsv2: validate encrypt response at DEK generation time	2023-03-22 21:27:47 -04:00
storageversion	go1.19: change some atomic.Value to atomic.Bool	2022-09-06 17:13:44 +08:00
util	apiserver: exclude APF queue wait time from SLO latency metrics (#116420 )	2023-03-15 07:35:21 +00:00
warning	track legacy service account tokens	2022-03-21 14:21:41 -07:00