65b750e732
add init image field
2021-05-25 17:57:49 +00:00
1588a506a6
First operator integration: CoreDNS
...
Hidden behind a feature-flag, but when the UseAddonOperators feature
flag is set, we now use the cluster-addons CoreDNS operator instead of
our built-in manifests.
2021-05-25 06:29:07 -04:00
c5907d054a
Merge pull request #11560 from hakman/fix_spotinst_instance_types
...
Allow Spotinst to use comma separated instance types
2021-05-22 23:09:37 -07:00
1868313497
Add snapshot-controller
2021-05-22 09:19:35 +02:00
35e1d673a8
Allow Spotinst to use comma separated instance types
...
This is not ideal, but it's an already used behaviour, broken by the improved instance type field validation introduced recently.
2021-05-22 08:07:37 +03:00
fe7d6e5516
Merge pull request #11442 from hakman/ipv6
...
Add initial support for configuring IPv6 with AWS
2021-05-18 21:02:50 -07:00
cedbe1f360
Add initial support for configuring IPv6 with AWS
2021-05-19 06:21:07 +03:00
dd605fdbc3
Subsume StatusStore into fi.Cloud
2021-05-15 17:39:32 -07:00
af653a7842
Remove NoopStatusStore
2021-05-15 16:10:13 -07:00
d3469d6ec2
Remove code for no-longer-supported k8s versions
2021-05-07 23:40:03 -07:00
8bac63f951
Don't publish OIDC discovery if DiscoveryStore not set
2021-05-06 13:35:57 -07:00
aadcd9d448
Add more support for cilium 1.10
2021-05-03 16:10:56 +02:00
6199174d78
Apply suggestions from code review
...
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
2021-05-02 07:56:57 +02:00
6f8b3647cf
Add support for IRSA in he api
...
Apply suggestions from code review
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
2021-05-01 16:03:42 +02:00
3704ffd2c9
Merge pull request #11354 from codablock/external-cert-manager
...
Allow cert-manager to be provisioned externally
2021-04-30 13:45:59 -07:00
1da39a3fe1
Merge pull request #11361 from olemarkus/oidc-awsidcprovider
...
Configure aws oidc provider
2021-04-30 11:41:59 -07:00
d1ab0af511
Allow cert-manager to be provisioned externally
2021-04-30 20:33:59 +02:00
d8de9fcad6
Merge pull request #11314 from olemarkus/cilium-fix-hubble
...
Expose hubble agent when hubble is enabled
2021-04-30 10:59:59 -07:00
75933682ed
Rename serviceaccountissuerdiscovery struct
2021-04-30 19:19:06 +02:00
460586833b
Add toggle for AWS OIDC provider. Free it from any feature flag
2021-04-30 19:19:06 +02:00
25b5f0cfb2
Move publicDataStore to serviceAccountIssuerDiscovery.discoveryStore
2021-04-30 19:19:06 +02:00
7c0be997e1
Expose hubble agent when hubble is enabled
...
Also enables PKI for the addon
2021-04-30 17:52:19 +02:00
7e20f87822
[addons/nth] Add capability to define resources
...
Node termination handler as all daemonSets may play a critical role in
capacity planning, define resource policy for chosing instanceType etc.
In this commit, we enable users to define resources themselves to meet
their needs and also removed limits to convey with the chosen strategy
to avoid limits on such components.
Signed-off-by: dntosas <ntosas@gmail.com>
2021-04-30 14:13:11 +03:00
88ed9f68bd
Add support for configuring Cilium enable-host-reachable-services.
...
After upgrading Cilium to 1.8 via kops one of our clusters had a total
outage due to cilium reporting errors as below:
```
level=error msg="endpoint regeneration failed" containerID= datapathPolicyRevision=0 desiredPolicyRevision=1 endpointID=592 error="Failed to load tc filter: exit status 1" identity=40147 ipv4= ipv6= k8sPodName=/ subsys=endpoint
```
upon searching Cilium slack we found the below thread:
https://cilium.slack.com/archives/C1MATJ5U5/p1616400216167600
which recommended setting `enable-host-reachable-services` to true will
address the problems. We set the field and it fixed our issues too,
however we observed that kops does not have a means to configure this
hence this PR.
We will like to have this backported after it has been merged.
2021-04-27 12:49:27 -05:00
17e46e5a2c
Merge pull request #11322 from johngmyers/warmpool-cluster
...
Add cluster-level warmPool settings
2021-04-27 02:09:38 -07:00
d90ace058b
Merge pull request #11304 from dntosas/update-aws-csi-ebs
...
[csi/aws] Bump templates + add support for warm pools
2021-04-26 02:37:01 -07:00
428041bc0f
Add cluster-level warmPool settings
2021-04-25 20:22:04 -07:00
5ad32230bb
Fix typo
2021-04-25 13:42:12 -07:00
fb39ddd0e7
Merge pull request #11316 from johngmyers/warm-enabled
...
Allow disabling warm pool by setting WarmPool.MaxSize to 0
2021-04-25 09:05:00 -07:00
af6d4d585f
[csi/aws] Bump templates to latest stable version …
...
- Update manifests
- Bump components version
- Add API capability of setting Version + VolumeLimit
- Remove snapshot-controller resources as it should be independent from
any CSI driver
Signed-off-by: dntosas <ntosas@gmail.com>
2021-04-25 16:45:15 +03:00
55e154a526
Update Ubuntu images to latest version
2021-04-25 09:24:20 +03:00
1948018d1f
Disallow negative warmpool sizes
2021-04-24 16:44:36 -07:00
044b5f6d0d
Allow disabling warm pool by setting WarmPool.MaxSize to 0
2021-04-24 16:35:46 -07:00
b0664176bc
Merge pull request #11259 from olemarkus/warm-life-cycle-hook
...
Make nodeup able to complete the warming life cycle hook
2021-04-24 02:05:15 -07:00
bc20262a47
Merge pull request #11281 from javipolo/cert-manager-default-issuer
...
Add ability to set a default Issuer in certManager addon
2021-04-24 01:21:14 -07:00
1ec0bd18e8
Enable support for the ASG WarmPool lifecycle hook
...
Update pkg/model/iam/iam_builder.go
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
2021-04-24 09:40:52 +02:00
2649cbc598
Merge pull request #10995 from haugenj/release-1.19
...
Add NTH Queue Processor Mode
2021-04-22 12:15:58 -07:00
36722afb0f
change casing Asg->ASG
2021-04-22 13:07:01 -05:00
bf20c6a4b7
Add ability to set a default Issuer in certManager addon
2021-04-21 22:39:25 +02:00
9c46f5046a
Merge pull request #11235 from olemarkus/warm-provision
...
Make it possible to enable/configure warm pool
2021-04-20 21:44:10 -07:00
221568a7a6
Add Azure image to alpha/stable channel
...
Remove the default image hard-coded in populate_instancegroup_spec.go.
2021-04-20 09:47:03 -07:00
020652e096
Add ability to enable/configure warm pool for ASG
...
Apply suggestions from code review
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
Apply suggestions from code review
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
2021-04-20 09:02:09 +02:00
7e48dad4d2
add ManagedAsgTag, merge templates, improve docs
2021-04-19 16:51:08 -05:00
d07b067249
Add NTH queue-processor mode
2021-04-19 15:43:05 -05:00
146f9b4cbb
Merge pull request #11248 from dntosas/cilium-resources
...
[cilium] Add support for choosing resources
2021-04-19 10:23:45 -07:00
55524935d7
[cilium] Add support for choosing resources
...
Cilium as a CNI is a critical component for the cluster so it would be safe
to have some guaranteed resources as well as allowing the users to
define them based on their needs.
In this commit, we init default requested resources and add the
capability of user-defined values.
Signed-off-by: dntosas <ntosas@gmail.com>
2021-04-19 11:30:02 +03:00
c39f7d652c
Merge pull request #11241 from johngmyers/remove-unused
...
Remove unused constants
2021-04-15 21:58:21 -07:00
f67c9daa96
Fix golint issue caused by typo
...
Signed-off-by: Guangwen Feng <fenggw-fnst@cn.fujitsu.com>
2021-04-16 08:41:57 +08:00
46834dcdf7
Remove unused constants
2021-04-15 11:35:45 -07:00
1b0117a088
Remove validations for EBS from cluster validation
2021-04-15 01:41:42 +09:00
baff30d66e
Add an option to skip NTP installation
...
Add NTPConfig to ClusterSpec. NTPConfig has the SkipInstall option.
https://github.com/kubernetes/kops/issues/9661
2021-03-31 12:33:32 -07:00
a01ee1d0fe
Merge pull request #11140 from jurriaanpro/cluster-autoscaler-add-scale-down-delay-after-add
...
Add scaleDownDelayAfterAdd to clusterAutoscaler spec
2021-03-25 05:57:29 -07:00
25955ceb6b
Add scaleDownDelayAfterAdd to clusterAutoscaler spec
2021-03-25 11:23:48 +01:00
b1d106e375
Validate that kube-apiserver has the necessary authz modes set
2021-03-24 10:42:06 +01:00
c75e084158
Re-add integration tests for jwks
...
We removed them from #10756 , but they can be re-added.
2021-03-20 22:55:11 -04:00
15e4028c81
Merge pull request #10722 from olemarkus/apiserver-nodes
...
Apiserver nodes
2021-03-20 16:43:42 -07:00
20bd724f5e
Add support for scaling out the control plane with dedicated apiserver nodes
...
Ensure apiserver role can only be used on AWS (because of firewalling)
Apply api-server label to CP as well
Consolidate node not ready validation message
Guard apiserver nodes with a feature flag
Rename Apiserver role to APIServer
Add an integration test for apiserver nodes
Rename Apiserver role to APIServer
Enumerate all roles in rolling update docs
Apply suggestions from code review
Co-authored-by: Steven E. Harris <seh@panix.com>
2021-03-20 20:57:00 +01:00
6e3199bf86
Ensure a publicdatastore exists for jwks and that it can only be s3
2021-03-20 07:18:39 +01:00
7c900b7fae
Generate and upload keys.json + discovery.json to public store
...
Generate and upload keys.json + discovery.json to public store
Don't enable anonymous auth on publicjwks
Remove tests that won't work using FS VFS anymore
2021-03-19 20:03:26 +01:00
55f8c70779
Add channels entries for image architecture
2021-03-15 20:36:37 +02:00
059c7ef33a
Create an environment file for kops-configuration systemd process
2021-03-13 22:20:49 +05:30
ad7c793050
Merge pull request #10913 from seh/scope-os-update-policy-to-instance-group-too
...
Honor OS update policy at InstanceGroup level too
2021-03-12 22:03:03 -08:00
d1f17c6c1b
Merge pull request #11027 from hakman/fix_docker_insecure_registries
...
Fix rendering of multiple Docker insecure registries
2021-03-12 08:10:18 -08:00
79a0720143
Fix rendering of multiple Docker insecure registries
2021-03-12 16:30:15 +02:00
8e2e60ae44
Allow cilium 1.10
2021-03-12 14:17:28 +01:00
44061601da
Test default StorageClass management choice
2021-03-09 11:08:33 -05:00
0c0767c0c9
Remove support for launch configurations
2021-03-09 09:04:15 +02:00
fea7589d97
Merge pull request #10574 from bharath-123/feat/protokube-systemd
...
Run protokube as a systemd service
2021-03-07 22:03:44 -08:00
5a72ef0f94
Remove protokube image references
2021-03-06 00:33:12 +05:30
70e95fccf5
Copyedit the InstanceGroup-related documentation
2021-03-05 08:53:08 -05:00
e39c985ee7
Honor OS update policy at InstanceGroup level too
...
As with the Cluster-level "spec.updatePolicy" field, add a similar
field at the InstanceGroup level, allowing overriding of the
cluster-level choice in each InstanceGroup.
Introduce a new value for the field ("automatic") as equivalent to the
default value applied when the field is absent. Honoring this new
value allows disabling automatic updates at the cluster level, but
then enabling them again for particular InstanceGroups. Without such a
positive affirmation, it's not possible to override a cluster-level
"external" policy at the InstanceGroup level, as there's no way to
specify positively that you want to recover the default
value. Instead, expressing the explicit "automatic" value is clear and
unambiguous.
2021-03-05 08:53:07 -05:00
8fa6be1b03
Add etcd-manager discoveryPollInterval option
2021-03-04 09:35:05 +02:00
83e1424280
Merge pull request #10957 from adrianmoisey/add_kubelet_arg_enable_cadvisor_json_endpoints
...
Add support for enable-cadvisor-json-endpoints with Kubelet
2021-03-02 23:47:19 -08:00
9e18928fb3
Add support for enable-cadvisor-json-endpoints with Kubelet
...
Kubernetes 1.18 disables this by default.
For backwards compatibility with monitoring tools, it would be nice to
be able to re-enable this.
https://github.com/kubernetes/kubernetes/issues/68522
2021-03-03 09:06:06 +02:00
bfd3d8a96b
Add new CPUCredits field to instance group spec
2021-03-01 23:01:20 -06:00
9d8dec60d6
Allow multi-CNI setups to set usesSecondaryIP ( #10828 )
...
* validation.go: remove checks on CNI
* move CNI block check to allow option with others CNI
2021-03-01 01:26:40 -08:00
577df0addf
Add support for defining a transit gateway for a default route
...
I opted to just use a *string for the TGW ID in the route task rather than a full TGW task because kops will never be creating TGWs itself, they will always be defined by ID.
2021-02-28 12:38:29 -06:00
a043925cb6
Merge pull request #10910 from olemarkus/fix-cloudlabel-validation
...
Further improve cloudLabel validation
2021-02-27 12:48:39 -08:00
1b42286cfe
Merge pull request #10832 from rifelpet/aws-sdk
...
Add Tagging to Instance Profiles and OIDC Providers
2021-02-24 05:40:50 -08:00
cf8bdcea4d
Further improve cloudLabel validation
...
We were too strict on some labels that blocked common use cases such as CAS. At the same time we allowed IG-level cloudLabels that could result in broken clusters
2021-02-23 13:33:49 +01:00
a424958e83
Merge pull request #10872 from timothyclarke/feature/NLB-EIP
...
Adding Elastic IP Allocations to NLB API
2021-02-22 23:48:03 -08:00
616d446658
add usage of subnet and routetable shared resources in azure
2021-02-22 15:28:55 -05:00
4e8c655899
Merge pull request #10897 from olemarkus/remove-1-14-support
...
Enforce 1.14 deprecation
2021-02-22 06:01:43 -08:00
4d4bcba315
Enforce 1.14 deprecation
2021-02-21 17:59:39 +01:00
dee13cecca
Improve machine type and image validation
2021-02-19 18:28:57 +02:00
d59faa329e
Revert "Simplifying conditional per code review comments"
...
This reverts commit 1a3c675212
2021-02-19 11:19:36 +00:00
1a3c675212
Simplifying conditional per code review comments
2021-02-19 10:46:39 +00:00
e2bf86a0d3
Add unit tests
2021-02-19 01:20:23 +05:30
92be20f2d5
Add validation for ami arch to instance type arch
2021-02-19 01:20:06 +05:30
1577b0a54b
Adding Elastic IP Allocations to NLB API
2021-02-18 12:27:28 +00:00
8486650c33
Add support for cluster autoscaler 1.20.x
...
Update upup/models/cloudup/resources/addons/cluster-autoscaler.addons.k8s.io/k8s-1.15.yaml.template
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
2021-02-17 14:05:09 +01:00
b285794f02
Update CloudLabels field description
2021-02-15 17:03:17 -06:00
cd10383fa0
Merge pull request #10741 from codablock/nlb-subnets
...
Allow to control which subnets and IPs get used for the API loadbalancer
2021-02-14 14:23:06 -08:00
4a7b970011
Validate CloudConfiguration values
2021-02-11 10:49:44 -05:00
f63a5d3911
Define "ManageStorageClasses" cloud config field
2021-02-11 10:48:32 -05:00
e106e5f752
Apply suggestions from code review
...
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
2021-02-11 10:15:26 +01:00
56330188d0
Add AWS LoadBalancerController
2021-02-11 08:47:03 +01:00
cc4aca62f4
Fix unnecessary copying of list
2021-02-10 17:56:59 +01:00
4ae47cc546
Use proper errors for subnet validation
2021-02-10 15:27:11 +01:00
2c0f9809eb
Move validation of ClusterSubnetSpec into pkg/apis/kops/validation
2021-02-10 09:36:39 +01:00
41d7d2dbe4
Merge pull request #10707 from slu2011/master
...
Use the kubeApiServerConfig clientCAFile field
2021-02-09 03:58:46 -08:00
4507be8e13
Merge pull request #10469 from justinsb/boot_nodes_from_kops_controller
...
Boot nodes without state store access
2021-02-08 11:28:19 -08:00
0aa9cf1921
Merge pull request #10695 from olemarkus/cilium-1-9
...
Add support for cilium 1.9
2021-02-07 01:07:11 -08:00
a6dce2e820
Add support for cilium 1.9
...
Apply suggestions from code review
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
2021-02-07 08:00:54 +01:00
6facd1b8ab
Allow to explicitely choose subnets and private IPs for the API loadbalancer
2021-02-05 17:53:20 +01:00
d39f196292
pkg/apis/kops/validation/validation: Fix ineffectual assignment to optionTaken
...
Signed-off-by: Li Zhijian <lizhijian@cn.fujitsu.com>
2021-02-05 16:39:28 +08:00
a0350a0dfa
Use the kubeApiServerConfig clientCAFile field
2021-02-01 15:26:09 -08:00
1db7b72843
Use serving cert for metrics-server
2021-01-30 09:01:36 +01:00
7aeb8c2af3
Add back support for kubenet style networking with containerd
2021-01-24 21:16:45 +02:00
35d6ac5e21
enableRemoteNodeIdentity actually defaults to true
2021-01-22 10:52:22 +01:00
d889d61ddb
Set default IMDS v2 to "required" for instances in AWS
2021-01-21 11:35:41 +02:00
04e61e4965
Merge pull request #10616 from ottosulin/azhints
...
Add network and router availability zone hints to OpenStack
2021-01-20 08:56:00 -08:00
c66a079e3e
Add network and router availability zone hints to OpenStack
...
This pull request makes it possible to add availability zone hints to routers and networks if the hints are supported.
2021-01-20 13:34:08 +02:00
51cc462793
Add support for container-log-max-size/files with kubelet
2021-01-20 05:49:26 +02:00
381875b96e
Apply suggestions from code review
...
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
2021-01-17 18:43:12 +01:00
ad36f99dfd
Validate cluster cloud labels
2021-01-17 08:56:08 +01:00
a051af8dc0
Merge pull request #10564 from bjhaid/master
...
Make cluster proportional autoscaler image configurable.
2021-01-15 11:03:52 -08:00
f299566822
Make cluster proportional autoscaler image configurable.
...
Similar to how we can configure coreDNS image we will like to configure
cluster Proportional autoscaler so we can use our internal docker
registry rather than gcr.io.
2021-01-12 13:30:42 -06:00
f5ae5f8808
AWS CSI driver
2021-01-12 07:09:10 +01:00
695be2666c
Merge pull request #10281 from dntosas/cluster-autoscaler-improvements
...
[addons/CA] Add support for specifying resources and metrics
2021-01-11 12:16:26 -08:00
56fe4bab24
[addons/CA] Add support for specifying resources and metrics
...
- Resources
We enable users to set their desired capacity for cluster-autoscaler addon.
There are edge cases, especially in big clusters, where autoscaler needs
to reconcile a large number of objects thus may need increased memory or
increased cpu to avoid saturation.
- Metrics
Cluster autoscaler provides valuable insights for monitoring capacity
allocation and scheduling aspects of a cluster. In this commit, we
add proper annotation on deployment to enable Prometheus scrape metrics.
We also bump patch version of container images.
Signed-off-by: dntosas <ntosas@gmail.com>
2021-01-11 20:53:08 +02:00
4d2eca199f
Remove node-authorization
2021-01-11 18:59:45 +01:00
803c7bcd4e
pdates GCE channels to use ubuntu over COS
2021-01-10 21:20:25 -08:00
4ac9d5c17b
Boot nodes without state store access
...
kops-controller can now serve the instance group & cluster config to
nodes, as part of the bootstrap process.
This enables nodes to boot without access to the state
store (i.e. without S3 / GCS / etc permissions)
Feature-flagged behind the KopsControllerStateStore feature-flag.
2021-01-09 13:08:48 -05:00
2677254392
Merge pull request #10461 from olemarkus/allow-modify-etcd-volume
...
Make it possible to change the etcd volume type and iops
2021-01-06 02:47:52 -08:00
0676e38473
Make it possible to modify ebs volumes
2021-01-06 11:01:24 +01:00
a7bb949936
Add possibility to set volume throughput for gp3 volumes
2021-01-05 13:18:32 +02:00
6d5549e730
Merge pull request #10453 from msidwell/gp3-etcd
...
Add gp3 Volume Type to etcd
2021-01-04 11:29:57 -08:00
ebf05facc2
add gp3 volume default params
...
add io2 case and correct IOPS minimum value check
add gp3 case
add io2 and gp3 parameter ratio validation logic
add volumeThroughput parameter for disks that support it
add volumeThroughput components throughout ebs structs
add volumeThroughput to versioned api
updated api machinery and crds
apimachinery update
2021-01-04 17:08:11 +00:00
1c96e826d9
Remove copyright YEAR from generated Go files
2021-01-03 12:48:50 +00:00
66039f150e
Add containerd option for registry mirrors
2020-12-28 19:32:06 +02:00
c02e5a20ea
Remove support for Kubenet with containerd
2020-12-27 18:21:16 +02:00
b5afd1d6c4
Merge pull request #10473 from hakman/custom-container-runtime-package
...
Add config options for container runtime package URL and Hash
2020-12-23 04:48:28 -08:00
ff6a782303
Add config options for container runtime package URL and Hash
2020-12-23 13:29:22 +02:00
4266a3ed62
Merge pull request #10486 from DOboznyi/feature-6356/add-event-qps-flag
...
Added event-qps and event-burst flags to kubelet
2020-12-22 03:12:27 -08:00
334ff1d482
Added event-qps to kubelet flags
...
Change default value for event-qps to 0
Added event-burst parametr
Signed-off-by: Dmytro Oboznyi <dobozniy@gmail.com>
2020-12-22 10:31:15 +02:00
a61caea8d2
Add Azure support
...
This commit contains all changes required to support Azure
(https://github.com/kubernetes/kops/issues/3957 ).
2020-12-21 08:27:54 -08:00
472faf82d2
Drop support for containerd 1.2
2020-12-21 10:08:24 +02:00
97d0e4d4c6
Avoid recursive type definitions in schema
...
The CRD generation produces an invalid CRD in this case.
2020-12-20 18:02:52 -05:00
830fef7959
addons(cluster-autoscaler): Add newPodScaleUpDelay in clusterAutoscaler spec
2020-12-19 14:30:18 +05:30
f0f45b71fd
Allow use of Calico's VXLAN networking backend
...
Introduce a new "encapsulationMode" field in Calico's portion of the
Cluster specification to allow switching between the the IP-in-IP and
VXLAN encapsulation protocols. For now, we accept the values "ipip"
and "vxlan," and forgo a possible "none" value that would disable
encapsulation altogether (at least for the default Calico IP pool).
Augment the default-populating procedure for Calico to take this field
into account when deciding both which networking backend to use and
whether to use IP-in-IP or VXLAN encapsulation for the default IP
pool. Note that these values supplied for the "CALICO_IPV4POOL_IPIP"
and "CALICO_IPV4POOL_VXLAN" environment variables in the "calico-node"
DaemonSet pod spec only matter for creating the "default" IPPool pool
object when no such objects already exist.
Generalize the documentation for the "crossSubnet" field to cover
environments more broad than just AWS, as Calico can employ this
selective encapsulation in any environment in which it can detect
boundaries between subnets.
2020-12-18 10:55:11 -05:00
ab9d30a015
Order by name fields in CalicoNetworkingSpec
2020-12-11 18:23:49 +02:00
372fde0949
Allow override of registry and tag for Calico images
2020-12-11 16:22:09 +02:00
bee16c052d
Merge pull request #10324 from bharath-123/feature/aws-imdv2
...
Add support for AWS IMDS v2
2020-12-07 22:55:11 -08:00
265bf4d106
Add option for setting the volume encryption key in AWS
2020-12-08 07:08:09 +02:00
7f6e125733
Add support for aws ec2 instance metadata v2
...
A new field is add to the InstanceGroup spec with 2 sub fields,
HTTPPutResponseHopLimit and HTTPTokens. These fields enable the user
to disable IMDv1 for instances within an instance group.
By default, both IMDv1 and IMDv2 are enabled in instances in an instance group.
2020-12-07 02:57:02 +05:30
e68a4648b9
Merge pull request #10374 from hakman/eip-egress
...
Add option to reuse existing Elastic IPs for NAT gateways
2020-12-06 04:55:25 -08:00
e11d934268
Add option to reuse existing Elastic IPs for NAT gateways
2020-12-06 09:37:17 +02:00
7140d96e92
Merge pull request #10318 from olemarkus/cert-manager-addon
...
Add minimal cert-manager addon
2020-12-04 22:57:25 -08:00
1ae09e86a5
Add minimal cert-manager addon
2020-12-04 21:52:07 +01:00
Ryan Dyer