kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
11,992 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

158 Commits

Author SHA1 Message Date
Ciprian Hacman 0c6f1c733c Use all kops mirrors to determine artifacts hashes 2020-09-18 09:44:37 +03:00
Justin SB 8498ac9dbb Create PublicJWKS feature flag 
This should be much easier to start and to get under testing; it only
works with a load balancer, it sets the apiserver into anonymous-auth
allowed, it grants the anonymous auth user permission to read our jwks
tokens.  But it shouldn't need a second bucket or anything of that
nature.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-09-09 09:57:06 -04:00
Justin SB 0cda0f5068 Support authentication helper for kubectl 
We create a simple exec plugin command which can create and renew
short-lived admin credentials on the fly, essentially leveraging the
security of the underlying cloud credentials.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-30 15:16:20 -04:00
Justin Santa Barbara f32fcc35fa Addons: Support arbitrary additional objects 
We will be managing cluster addons using CRDs, and so we want to be
able to apply arbitrary objects as part of cluster bringup.

Start by allowing (behind a feature-flag) for arbitrary objects to be
specified.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-28 09:03:41 -04:00
Ole Markus With 29682700c7 Don't use nova for glance mocks 
Fetching images through nova is deprecated and removed in newer versions
of the compute API. Mocks now reflect this behavior.
 2020-08-21 10:18:52 +02:00
Ciprian Hacman e68ee80a93 Move and rename the "distros" package 2020-08-17 07:25:43 +03:00
John Gardiner Myers 00c60ddff6 Add server code to kops-controller 2020-08-15 09:46:30 -07:00
Ciprian Hacman ec8bb515c9 Update packages 2020-08-12 18:35:26 +03:00
Kubernetes Prow Robot ea2d0da1cc
Merge pull request #8577 from justinsb/dump 
Capture logs from a kops cluster
 2020-08-09 17:18:19 -07:00
Peter Rifel 23dc8383da
Add an initial structure for openstack cloudmock 
More info in the docs changes. This adds stubbed http handlers for every resource type used by Kops.
 2020-08-05 23:13:34 -05:00
John Gardiner Myers 9596ed8f37 Reimplement fitask generator using gengo 2020-07-28 11:48:08 -07:00
John Gardiner Myers b23f0ebb26 Remove dead code 2020-07-28 11:48:08 -07:00
Peter Rifel 1faeb36d37
Address feedback and test failures 2020-07-22 22:19:00 -05:00
John Gardiner Myers 541f7b5b37 Remove kube-discovery 2020-06-23 21:34:12 -07:00
John Gardiner Myers e96c61edf9 Remove bundler as baremetal support was removed 2020-06-16 08:26:19 -07:00
John Gardiner Myers 0d74344a43 Remove the baremetal cloud provider 2020-06-14 10:38:29 -07:00
Peter Rifel 01b0fc544c
Remove hack/machine_types script 2020-06-09 10:12:58 -05:00
Kubernetes Prow Robot 9e4bf1699a
Merge pull request #9216 from hakman/prepare-multi-arch 
Prepare Kops for multi-architecture support
 2020-06-04 21:35:43 -07:00
Ole Markus With b62f6aa894 Move networking in nodeup to dedicated subpackage 2020-06-04 17:32:41 +02:00
Ciprian Hacman 654a0d2d8a Detect supported architecture during node setup 2020-06-03 17:23:59 +03:00
Ole Markus With 89fba09caa Remove vsphere vendor stuff and related build files 2020-05-30 13:34:39 +02:00
John Gardiner Myers 8a6d29cd40 Remove support for reading legacy-format keypairs 2020-05-20 13:28:13 -07:00
John Gardiner Myers e0c32a3fae Remove dead code 2020-05-09 22:39:19 -07:00
Justin SB 75fd939a62
kube-apiserver: healthcheck via sidecar container 
kube-apiserver doesn't expose the healthcheck via a dedicated
endpoint, instead relying on anonyomous-access being enabled.  That
has previously forced us to enable the unauthenticated endpoint on
127.0.0.1:8080.

Instead we now run a small sidecar container, which
proxies /healthz and /readyz requests (only) adding appropriate
authentication using a client certificate.

This will also enable better load balancer checks in future, as these
have previously been hampered by the custom CA certificate.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-07 08:06:52 -04:00
John Gardiner Myers 935d757a7c Use KOPS_RSA_PRIVATE_KEY_SIZE for more keys 2020-04-26 20:17:02 -07:00
John Gardiner Myers 6844eef4ca Switch to the k/k implementation of drain.Helper 2020-04-05 10:22:49 -07:00
John Gardiner Myers b645dac752 Remove support for v1alpha1 and before 2020-03-24 19:49:15 -07:00
Justin SB 0cb35638f2
Stop logging to /var/log/kops-controller.log 
Writing to a hostPath from a non-root container requires file
ownership changes, which is difficult to roll out today.  See
discussion in #8454

We were primarily using the logfile for e2e diagnostics, so we're
going to look into collecting the information via other means instead.

We also haven't yet shipped this logfile in a released version (though
we have shipped it in beta releases)
 2020-02-04 06:41:25 -05:00
Roberto Rodriguez Alcala b9945594fd Updates based on feedback 2020-01-23 20:31:18 -08:00
Justin SB cf5c53c87d
Add tests for manifest normalization 
(The tests are split out for easier cherry-picking, should we choose to)
 2020-01-11 22:41:18 -05:00
Justin Santa Barbara fc21f4255f Replace kubernetes mount code with utils 
This will remove one of the main dependencies on the
kubernetes/kubernetes repo.
 2020-01-04 17:34:31 -05:00
Srikanth 0cc3bc0e37 Update packages 2019-11-24 12:56:46 +05:30
Srikanth 9d0b63b482 Fix build issue with verify-packages 2019-10-29 11:48:25 +05:30
Justin SB b6862103bb
Change default port for memberlist from 3997 
We had a port collision on 3997; change the default memberlist ports
to avoid the collision (we haven't shipped a release with this in it).

Also create a go file so that we can use constants to keep track of
our port numbers, rather than magic values.
 2019-10-14 07:26:27 -04:00
Justin SB d3bad10aa9
Move kops-controller to use a yaml configuration file 
This is more in keeping with componentconfig, and lets us add more
options easily in future.
 2019-10-13 07:27:52 -07:00
Kubernetes Prow Robot ff1d94c7cb
Merge pull request #7692 from zetaab/kops_ctrl_openstack 
Kops controller support for OpenStack
 2019-10-11 09:13:41 -07:00
Thomas Jackson 6b53d4a199 Update hack packages 2019-10-10 13:09:22 -07:00
Jesse Haka ed8dbc41d0 kops controller support for openstack 2019-09-28 10:06:39 +03:00
Justin SB cdaa7a3a48
Fix boilerplate: headers & packages 2019-09-25 12:48:14 -04:00
Justin SB 3fbc906cbc
Create env-var helper function 
Refactor to start to centralize the env-var configuration for system
components, also start to add test coverage so we can be sure we
haven't broken things!
 2019-09-02 10:26:09 -07:00
Justin SB 810c65eb46
Copy well-known users from apiserver 
This should eliminate the dependency on k8s.io/apiserver
 2019-08-31 08:50:09 -07:00
Justin SB 08c6f0c807
Update packages 2019-08-25 16:00:41 -04:00
Austin Moore 67d9f5f190
Move getProxyEnvVars into a util package 2019-06-05 15:59:19 -04:00
LilyFaFa 12d54b6a1f support gossip for AliCloud 2019-03-15 15:26:12 +08:00
Gennady Trafimenkov b8b7840c0f Update list of packages 2019-03-03 16:16:08 +03:00
Rohith 098b4486f5 - fixing up the spelling mistake and the package update 2019-02-04 11:59:43 +00:00
Derek Lemon -T (delemon - AEROTEK INC at Cisco) 6022679e6b Openstack package updates 2019-01-19 14:07:10 -07:00
Derek Lemon -T (delemon - AEROTEK INC at Cisco) 103268710c update packages 2019-01-15 16:29:02 -07:00
Ilya Dmitrichenko 17a2c47495
Separate subnet utils into a standalone package 2018-10-26 12:01:47 +01:00
Liran Polak 6509e32b1b fix: boilerplate headers and packages list 2018-10-14 11:37:31 +03:00