Commit Graph

130 Commits

Author SHA1 Message Date
chrislovecnm 30acda868a updating to bazel 0.0.7 and adding verify scripts 2017-11-04 20:59:01 -06:00
Kubernetes Submit Queue b02c3a269c
Merge pull request #3726 from justinsb/storage_acls
Automatic merge from submit-queue.

GCS: Use ACLs for GCE permissions

This needs less permissions, but also allows for more granular control over
access to files than whole-bucket permissions that IAM gives us.
2017-10-29 20:18:51 -07:00
Justin Santa Barbara b2bcba4a6d GCE: Use object-level permissions for files in GCS
This lets us configure cross-project permissions while ourselves needing
minimal permissions, but also gives us a nice hook for future lockdown
of object-level permissions.
2017-10-29 19:17:00 -04:00
Justin Santa Barbara 1f0601126c Refactor gce resources into pkg/resources/gce
Should be a no-op refactor
2017-10-29 18:37:23 -04:00
Justin Santa Barbara 66e74fac6a Rename pkg/resources/utils -> pkg/resources/ops
That seems to be what utils really is.
2017-10-29 16:32:48 -04:00
Justin Santa Barbara a18363f059 Refactor toolbox dump & dump structured instances
This will enable log collection even if nodes don't register.

AWS: Dumps ids & addresses
GCE: Dumps names - addresses to follow
Others: Not yet!
2017-10-28 14:46:28 -04:00
Kubernetes Submit Queue a4d6895472 Merge pull request #3707 from andrewsykim/droplet
Automatic merge from submit-queue.

Implement DigitalOcean Droplet FI Task

Implements cloudup fi tasks for DigitalOcean droplets. It makes a few assumptions to reduce the size of this PR, those will be addressed in future PRs. 

Also does some cleanup in the DigitalOcean `dns` package.
2017-10-27 08:30:57 -07:00
andrewsykim 45bf2cb3a7 Implement DigitalOcean Droplet FI Task 2017-10-27 09:48:42 -04:00
Justin Santa Barbara ed2dab1af5 kops-server: ig short-name
Also cleanup the shared REST subclass
2017-10-23 00:55:55 -04:00
Justin Santa Barbara 56ecd4ac14 Add missing hack/make-gendocs.sh script 2017-10-09 01:29:54 -04:00
Justin Santa Barbara 38ea16a4ae GCE: Fix subnets vs zones formatting of instance groups 2017-10-03 13:42:14 -04:00
Justin Santa Barbara 544990842a More fixes for 1.8 API changes 2017-10-01 23:02:32 -04:00
Justin Santa Barbara 2205e26257 Updates for new apimachinery 2017-10-01 13:53:26 -04:00
Kubernetes Submit Queue 0905e71741 Merge pull request #3411 from justinsb/mirror_stores
Automatic merge from submit-queue.

Mirror keystore & secretstore
2017-09-30 23:08:33 -07:00
Justin Santa Barbara 7fd1196708 Add Zones field to InstanceGroup
The Zones field can specify zones where they are not specified on a
Subnet, for example on GCE where we have regional subnets.
2017-09-30 19:44:35 -04:00
Kubernetes Submit Queue eb110f5b6c Merge pull request #3478 from chrislovecnm/using-same-disk-size-gce
Automatic merge from submit-queue.

using same disk sizes for gce

Using the same disk size for gce and aws.  We need to override the disk sizes in the e2e tests, but that is another PR.

Closes: https://github.com/kubernetes/kops/issues/3294
2017-09-30 16:01:38 -07:00
chrislovecnm c4c63b2b0c using same disk sizes for gce 2017-09-29 16:07:38 -06:00
chrislovecnm a431eb3e43 refactoring to use cloud based GetGroups 2017-09-29 12:29:07 -06:00
Justin Santa Barbara 559d885480 Mirror keystore & secretstore
This allows us to have our API objects in kops-server, but our
configuration on S3 or GCS.
2017-09-24 00:09:02 -04:00
Justin Santa Barbara e730e043ab Add function to get etcd status
This will allow us to permit changing the etcd configuration only if
etcd has not yet been configured.
2017-09-22 23:27:26 -04:00
Kubernetes Submit Queue 9ebe302939 Merge pull request #3291 from justinsb/baremetal_1
Automatic merge from submit-queue

Skeleton bare-metal provider
2017-09-14 15:55:59 -07:00
Rohith aaf6143a98 Toolbox Templating
Extending the current implementation of toolbox template to include multiple files and snippets. Note, i've removed the requirements for defaults as I think people should be forced to specifically pass them.

- fixing the vetting iseues to the method YamlToJson -> YAMLToJSON
- adding a safety check to ensure templates don't reference an unknown value
- extending the unit test to ensure the above works on main and snippets
- include the ability to specify multiple configuration files, useful for common.yaml and prod.yaml etc

Requested Changes - Toolbox Templating

Added the requested changes

- moved the templater into it's own package rather than using base util
- moved to using the sprig library for additional template function
- @note: i couldn't find a native way in sprig to do snippets, also the i've overloaded the indent as it appears to do the indent on all lines rather than on the newline, meaning i'd have to shift my first line back by the indent to get it to work, which seems ugly
2017-09-08 20:30:21 +01:00
Kubernetes Submit Queue 05cf84dc3d Merge pull request #3299 from justinsb/extract_userdata
Automatic merge from submit-queue

Extract UserData from CloudFormation output during testing
2017-09-06 10:05:39 -07:00
andrewsykim d9fa618de6 refactor resource tracker to be usable across packages 2017-09-02 17:37:21 -04:00
Justin Santa Barbara 8e68be7932 Skeleton bare-metal provider
Just creating the provider, it isn't wired in yet.
2017-08-30 21:10:46 -04:00
Justin Santa Barbara e793562ee6 Extract UserData from CloudFormation output during testing
This gives us some sanity, so we can peek inside the base64 blob
2017-08-29 09:47:11 -04:00
Justin Santa Barbara a16c8b1500 Refactor PKI classes into their own package
This will support generation of keys on the node.
2017-08-27 08:14:55 -04:00
andrewsykim 525fde3609 implement digitalocean volumes task 2017-08-21 09:50:36 -04:00
chrislovecnm ee17e6567c starting work on file assets builder 2017-08-18 13:04:12 -06:00
Mike Splain 4331c12f73 Update image
To make it more copy and paste friendly
2017-08-16 09:59:40 -04:00
Mike Splain f6018df43e Fix quote typo 2017-08-16 09:36:42 -04:00
andrewsykim 1f0d0bbc75 initial cloud interface for DigitalOcean 2017-08-11 19:33:17 -04:00
Kubernetes Submit Queue ac887ce290 Merge pull request #3016 from justinsb/upload_taskify_2
Automatic merge from submit-queue

Copy docker images when they are redirected
2017-07-21 12:10:47 -07:00
Justin Santa Barbara 76743e64de Copy docker images when they are redirected 2017-07-20 23:40:46 -04:00
Phillip Wittrock 6a020bcd59 Check in generated openapi for the kops apiserver.
- Note the openapi will not be regenerated on each change.  This needs to done in a follow up.
2017-07-19 18:42:09 -07:00
Justin Santa Barbara d21d81dc5b Initial experimental kops-apiserver 2017-07-17 00:51:20 -04:00
Justin Santa Barbara 7a870f65b9 Example of how to do bash in our CLI help
* Use the pretty.LongDesc function (which doesn't pipe it through
markdown -> ascii)
* Use pretty.Bash helper to avoid problems with backticks in
go-backtick-quoted-strings
* Make sure indentation is consistent
2017-07-15 22:09:48 -04:00
andrewsykim a866f70e1e digitalocean support -- dns provider 2017-07-14 09:00:15 -04:00
Justin Santa Barbara 1965a4be49 Updates to fix unit tests 2017-07-08 18:46:01 -04:00
Justin Santa Barbara e945322cab Support generated clientset as alternative to vfs clientset
We modelled our VFS clientset (for API objects backed by a VFS path)
after the "real" clientsets, so now it is relatively easy to add a
second implementation that will be backed by a real clientset.

The snafu here is that we weren't really using namespaces previously.
Namespaces do seem to be the primary RBAC scoping mechanism though, so
we start using them with the real clientset.

The namespace is currently inferred from the cluster name.  We map dots
to dashes, because of namespace limitations, which could yield
collisions, but we'll deal with this by simply preventing users from
creating conflicting cluster names - i.e. you simply won't be able to
create a.b.example.com and a-b.example.com
2017-06-20 22:29:37 -04:00
Justin Santa Barbara 9d40b0e6ca Support internal (gossip) names for AWS also 2017-06-19 14:16:35 -04:00
Chris Love 0c1fd6b272 Merge pull request #2617 from WillemMali/move-verify-gendocs-to-makefile
Move verify-gendocs into Makefile and tighten Makefile safety
2017-06-14 09:45:27 -06:00
Willem Mali 60ad299075 moved verify-gendocs into Makefile and tightened Makefile safety (enabled noclobber, errexit and errunset) 2017-06-12 22:25:14 +02:00
andrewsykim e8c99ee72e removes cluster delete code in upup/pkg/kutil duplicated in pkg/resources and puts instancegroup and rollingupdate code into its own packges 2017-06-10 15:21:06 -04:00
Willem Mali cc7fdf91f4 Implemented a Git hook for the CI tests and related installer in the Makefile.
Funnily enough, while trying to commit the hook code it rejected my commit because the hook was missing the standardized script header.
2017-05-14 18:25:38 +02:00
chrislovecnm 7487b0d756 updating docs, adding verify-gendocs and more build tweaks 2017-05-04 18:58:10 -06:00
Justin Santa Barbara eddd73549c Use LB IP address for private dns 2017-04-25 01:32:27 -04:00
Justin Santa Barbara c8b18be9dd Gossip backed DNS 2017-04-25 01:32:21 -04:00
Miao Luo aed9f154ad Fix minor errors due to rebase. 2017-04-21 11:03:13 -07:00
Miao Luo de72c50a0d Change the default image name for vsphere provider and other minor fix. 2017-04-20 23:38:33 -07:00