kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,418 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

269 Commits

Author SHA1 Message Date
k8s-ci-robot 56ccfac26d
Merge pull request #5317 from gambol99/node_registration 
Node Authorization Service
 2018-07-19 05:17:41 -07:00
k8s-ci-robot 423ef6e78d
Merge pull request #5441 from kampka/weave-network-encryption 
Add weave network encryption secret
 2018-07-18 07:32:31 -07:00
k8s-ci-robot 00d7237b19
Merge pull request #5426 from aleerizw/update-kube-router-manifest 
Added metrics port and health check to kube-router
 2018-07-15 12:15:05 -07:00
k8s-ci-robot c3608afa06
Merge pull request #5392 from rajansandeep/scrape 
Add prometheus scrape port to CoreDNS service
 2018-07-15 12:14:55 -07:00
k8s-ci-robot bfafff1310
Merge pull request #5380 from shrinandj/fix-calico-mtu 
Allow setting MTU for calico networking.
 2018-07-15 10:54:56 -07:00
Christian Kampka 3bf8a8fcd2 Add weave network encryption secret 2018-07-13 16:57:48 +02:00
Ali Rizwan 100674e1bf Added metrics port and health check to kube-router 2018-07-10 16:20:19 +02:00
Rodrigo Menezes 414b3a780b Rename hept.io authenticator to aws authenticator 2018-07-08 10:10:19 -07:00
Rohith 92115b2341 - dropping the specific flags and using a genenic --feature gate model for the authorizers, meaning i don't need to come back to the API whenever we want to make changes 2018-07-06 20:15:18 +01:00
Rohith fd6cef8180 Requested Changes 
- switching to using code rather than a template for the systemd unit creation as requested in review
- as part of the review, changing the name of the ca from tls-ca to tls-client-ca
- changing the api from DisableAddressCheck to EnableAddressCheck and defaulting to true if no set
- fixing up the test for node-authorizer and shifting the parsing of the certificates as suggested in reviews to a method
 2018-07-06 20:14:35 +01:00
Rohith 338a6d721c Changes 
- including the config only when there is something to include i.e. no nulls please
- fixing up the pod security policies for system:nodes groups, needs a mapping to permit manifests
 2018-07-06 20:14:35 +01:00
Rohith cfc55c942c - just fixing up the yaml object 2018-07-06 20:14:35 +01:00
Rohith 342d577fb6 - adding the node authorization addon deployment manifest 2018-07-06 20:14:35 +01:00
Shri Javadekar 3c4239645f Override mtu only if explicitly specified. 
Testing Done:

1. Created a cluster without explicitly setting MTU. Verified that the calico nodes came up. The config map didn't have any mtu setting. The FELIX_IPINIPMTU env variable was not set.

2. Created a cluster by explicitly setting the MTU in the kops config. Verified that calico nodes came up. Config map had correct value for "mtu". The FELIX_IPINIPMTU env variable was set to correct value.
 2018-06-28 23:30:51 -07:00
Sandeep Rajan 9506ebd58f add prometheus scrape port 2018-06-28 17:01:01 -04:00
Shri Javadekar e4638de5f4 Allow setting MTU for calico networking 
This commit does the following two changes:

1. Changes the default calico mtu to 8198.
2. Enables setting the mtu explicitly in the config as:
```
  networking:
    calico:
      mtu: 2048
```

Testing done:

1. Created cluster on AWS with networking set to calico. No additional details were provided. Verified that the mtu was set to 8198. Also verified that the FELIX_IPINIPMTU environment variable was set to 8198.
2. Created a cluster explicitly setting the calico mtu to 2048. Verified that the mtu for the 'cali*' interfaces inside the pods was set to 2048. Also, verified that the FELIX_IPINIPMTU environment variable was set to 2048.
3. make test passed.

Closes #4042
 2018-06-25 15:18:15 -07:00
Maciej Kwiek e1a0f4a73e Etcd TLS support for Cilium 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-06-20 14:27:24 +02:00
Maciej Kwiek ca52ad5685 More configuration options for cilium 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-06-15 11:48:12 +02:00
Sandeep Rajan e92de7951c correct deployment yaml 2018-06-12 11:29:24 -04:00
k8s-ci-robot e27656b821
Merge pull request #5308 from mikesplain/kube_dns_prometheus_scrape 
Add prometheus scrape to kube-dns
 2018-06-11 12:12:26 -07:00
Mike Splain 24c6b3343f Add prometheus scrape to kube-dns 2018-06-11 14:22:42 -04:00
Rohith 2d5bd2cfd9 - update the IAM policy to ensure the kubelet permision is skipped 
- update the PKI to ensure on new clusters the certificate it not created
 2018-06-11 09:57:26 +01:00
Rohith 96eb0fbf0e - adding the fix for the psp for kubelet manifest since the kubelet no longer exists 2018-06-11 09:57:26 +01:00
k8s-ci-robot 02daea62ae
Merge pull request #5119 from ripta/avpc-custom-image 
Amazon VPC CNI: Upgrade to v1.0 and Allow Custom Images
 2018-06-10 22:40:27 -07:00
k8s-ci-robot aef1afbc02
Merge pull request #4724 from gambol99/custom_kube_dns 
Customize KubeDNS
 2018-06-10 18:52:01 -07:00
Ripta Pasay 32ddcc74bb Update the kops amazon-vpc-routed-eni manifest from the official v1.0 release 2018-06-06 17:33:00 -07:00
Rodrigo Menezes 991cd3e27c Do not generate heptio-authenticator config 2018-06-05 17:21:22 -07:00
Ripta Pasay 3610bf20d0 Upgrade default Amazon VPC Networking image to v1.0.0 2018-06-05 15:39:36 -07:00
Rodrigo Menezes 1fdbb2fe47 Update heptio authenticator 2018-06-05 11:45:08 -07:00
Ripta Pasay ebe8889234 Add ImageName to AmazonVPCNetworkingSpec to allow configurable plugin images 2018-06-04 18:49:22 -07:00
Sandeep Rajan f82024e6ed coredns image from gcr.io 2018-06-04 16:54:11 -04:00
k8s-ci-robot 53b2715413
Merge pull request #5095 from martinhoefling/upgrade_flannel_v0.10.0 
Upgrade to flannel v0.10.0 and explicitly specify amd64 arch
 2018-06-01 23:04:57 -07:00
Kashif Saadat 1b9162b7b6 Correct PSP RoleBinding with namespace for kube-system 2018-06-01 17:52:42 +01:00
k8s-ci-robot 775b877a10
Merge pull request #5197 from rdrgmnzs/heptio_authenticator 
Setup heptio authenticator
 2018-06-01 07:12:55 -07:00
k8s-ci-robot 56310f2783
Merge pull request #5208 from nebril/bump-cilium 
Bump Cilium version to released
 2018-05-31 19:06:59 -07:00
Kashif Saadat e9dae6121b PSP Updates, new apiGroup for k8s v1.10 and limit kube-system SA access to its own namespace 2018-05-30 12:30:03 +01:00
Maciej Kwiek 0c987d4dbd Bump Cilium version 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-05-30 12:26:16 +02:00
Sandeep Rajan f173476007 update manifest 2018-05-24 08:20:41 -04:00
Rodrigo Menezes 5ce8f9e712 Setup heptio authenticator 2018-05-23 17:48:33 -07:00
Rohith de977e627e Customize KubeDNS 
This PR adds the ability for users to customize the kubedns upstream nameservers and provider stubdomains, as per [here](https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/)
 2018-05-13 17:08:56 +01:00
k8s-ci-robot cc25a5a977
Merge pull request #4041 from rajansandeep/corednskops 
CoreDNS in Kops as an addon
 2018-05-10 15:26:54 -07:00
Martin Hoefling e5d954398d Upgrade to flannel v0.10.0 and explicitly specify amd64 arch 2018-05-02 22:31:37 +02:00
Kashif Saadat 0057405d3b Make LogSeveritySys configurable for Canal Networking 2018-04-26 15:47:29 +01:00
Sandeep Rajan eaac019e34 CoreDNS in kops as an addon 
fix test
 2018-04-20 17:03:17 -04:00
JuanJo Ciarlante 01ca06ef2b upgrade kube-dns to 1.14.10, fixes #4986 2018-04-18 08:58:15 -03:00
Justin Santa Barbara a5e58b243e Release 1.9.0 2018-04-11 10:07:36 -04:00
k8s-ci-robot 063afb28d7
Merge pull request #4954 from brb/weave-net-2.3.0 
Bump Weave Net to 2.3.0
 2018-04-10 22:24:55 -07:00
k8s-ci-robot 22a34586cc
Merge pull request #3498 from gambol99/psp 
Pod Security Policies
 2018-04-10 07:43:09 -07:00
Rohith cc695c3805 - changing the version to >= 1.9 as it only really makes sense on theses versions 2018-04-10 14:20:41 +01:00
Martynas Pumputis 85758f8909 Bump Weave Net to 2.3.0 2018-04-10 10:57:38 +02:00