kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,524 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

322 Commits

Author SHA1 Message Date
zengchen1024 769a9e9dbb update gazelle 2017-11-22 14:29:14 +08:00
zengchen1024 0949d597b7 build volume task 2017-11-20 11:52:19 +08:00
Fabricio Toresan d4eef657d6 Changing the prefix of the ResourceTag condition to match the one specified in the ASG documentation 2017-11-18 09:17:07 -02:00
Kashif Saadat f0c3ed8965 Include encryptionConfig setting within userdata for masters. 2017-11-16 15:58:59 +00:00
Kubernetes Submit Queue 17487a4853
Merge pull request #3820 from zengchen1024/add_openstack_cloud 
Automatic merge from submit-queue.

add openstack cloud provider

Add an Openstack cloud provider. It does not implement all the interfaces of fi.Cloud, hence, can not create a cluster, but it can pass the work flow of creating cluster for the command like "kops create cluster --cloud openstack --zones nova -v 15 --target direct --yes myoscluster4.k8s.local"
Which issue this PR fixes: #3819
 2017-11-13 22:19:23 -08:00
zengchen1024 f9c98c3b4c add openstack cloud provider 2017-11-13 16:59:24 +08:00
Justin Santa Barbara 86d18808fe Update bazel build files 2017-11-12 22:37:47 -05:00
Kubernetes Submit Queue ec5496520d
Merge pull request #3795 from KashifSaadat/iam-kube-router 
Automatic merge from submit-queue.

Add Node IAM permissions to access kube-router key in S3.

Fixes #3792 

An additional S3 IAM permission is added to the nodes policy when `Networking.Kuberouter` is specified.
 2017-11-09 22:41:59 -08:00
Rodrigo Menezes ef24cec62b Fixing naming convention and adding running API machinery. 2017-11-09 14:30:48 -08:00
Kashif Saadat 029d0c0393 Add Node IAM permissions to access kube-router key in S3. 2017-11-09 09:57:02 +00:00
Rodrigo Menezes 3cfa67c3e6 Merge remote-tracking branch 'upstream/master' into extra_user-data 2017-11-08 22:20:54 -08:00
Kashif Saadat 43f193e6ea Bugfix for bootstrapscript repeatedly generating different content when HookSpecs have ExecContainerAction defined. 2017-11-07 18:17:26 +00:00
Rodrigo Menezes 1fe56a1603 Move user-data to IG spec 2017-11-06 23:25:37 -08:00
Justin Santa Barbara 7066368f5c
Merge pull request #2063 from pdh/additional-sans 
Allows additional Subject Alternate Names
 2017-11-06 22:51:52 -05:00
chrislovecnm d71f53d4b5 fixing panic with iam unit tests 2017-11-06 13:36:45 -07:00
Justin Santa Barbara 132b428d64
Merge pull request #3776 from chrislovecnm/bazel-work 
gazelle updates with new bazel version
 2017-11-06 14:08:57 -05:00
Caleb Gilmour d2b8741455 Add additional Describe permissions required for Romana CNI 2017-11-06 09:31:09 +00:00
chrislovecnm 609e268a1d gazelle updates with new bazel version 2017-11-05 17:41:53 -07:00
chrislovecnm 9647b1d349 deprecated API values that are no longer used with kube-dns 2017-11-04 22:15:48 -06:00
Rodrigo Menezes 565afae2c6 Merge remote-tracking branch 'upstream/master' into extra_user-data 2017-11-04 17:06:43 -07:00
chrislovecnm 1e418c3e13 more goimport updates 2017-11-04 10:03:02 -06:00
Kubernetes Submit Queue f3affcb0d3
Merge pull request #3730 from iterion/add-ipip-to-kuberouter 
Automatic merge from submit-queue.

Add node-to-master IPIP to kuberouter

Like Calico and Romana, Kube Router needs IPIP traffic from nodes to masters to be allowed. This adds that firewall rule for all clusters set up with Kube Router.

See:
https://github.com/cloudnativelabs/kube-router/issues/208
 2017-11-03 08:40:20 -07:00
pdh fc6f33db24 Allows additional Subject Alternate Names 2017-11-02 10:26:03 -07:00
chrislovecnm 8d1ee1fa16 updating files for goimports 2017-11-01 12:51:43 -06:00
Kubernetes Submit Queue 08c34b6eb4
Merge pull request #3184 from justinsb/test_does_not_change_tags 
Automatic merge from submit-queue.

Fix shared subnet/vpc tags
 2017-11-01 08:23:29 -07:00
Justin Santa Barbara fa419d9510 Add comment on purpose of kops keypair 
Otherwise it's tricky to track down where it is used.
 2017-10-30 23:49:19 -04:00
Rodrigo Menezes 58faa71d89 Merge remote-tracking branch 'origin/master' into extra_user-data 2017-10-30 20:44:00 -07:00
Kashif Saadat 1dea528a0e Update IAM roles documentation based on recent changes. 2017-10-30 16:41:55 +00:00
Adam Sunderland fd8fe5ea18 Add node-to-master IPIP to kuberouter 2017-10-30 09:51:21 -05:00
Justin Santa Barbara d1ee8026ac GCE: Tasks for object & bucket level permissions 
We also switch to setting a bucket-level ACL permission, as this
requires less permissions.
 2017-10-29 18:08:08 -04:00
Kubernetes Submit Queue 4162ae1e3b
Merge pull request #3712 from justinsb/storage_acls_minimal 
Automatic merge from submit-queue.

GCE: Set up permissions for cross-project configurations
 2017-10-28 07:15:19 -07:00
Justin Santa Barbara 15dedf8e79 Updates from running gazelle 2017-10-28 03:27:18 -04:00
Justin Santa Barbara dbbe3f373b GCE: Set up permissions for cross-project configurations 
This ensures that the cluster can read the kops state store files, even
if the GCS bucket is in a different project.

We automatically set up an IAM access policy that grants access.
 2017-10-28 03:24:18 -04:00
chrislovecnm 4711d1596e update to imports that apimachinery is doing now automatically 2017-10-27 14:28:48 -06:00
Kubernetes Submit Queue a4d6895472 Merge pull request #3707 from andrewsykim/droplet 
Automatic merge from submit-queue.

Implement DigitalOcean Droplet FI Task

Implements cloudup fi tasks for DigitalOcean droplets. It makes a few assumptions to reduce the size of this PR, those will be addressed in future PRs. 

Also does some cleanup in the DigitalOcean `dns` package.
 2017-10-27 08:30:57 -07:00
andrewsykim 45bf2cb3a7 Implement DigitalOcean Droplet FI Task 2017-10-27 09:48:42 -04:00
Manatsawin Hanmongkolchai a708919bf4 Generate scheduler policy by dynamic cluster addons 2017-10-27 08:56:07 +07:00
Kubernetes Submit Queue 68c90369ba Merge pull request #3661 from chrislovecnm/etcd-container 
Automatic merge from submit-queue.

etcd using asset builder

Updating etcd to use asset builder
 2017-10-26 18:29:31 -07:00
chrislovecnm 4de78b0055 setting up etcd to use asset builder for its container 2017-10-26 17:25:50 -06:00
chrislovecnm dc338c4829 Refactoring phases to work in sequence properly 2017-10-26 13:17:34 -06:00
Rodrigo Menezes d803480485 Merge remote-tracking branch 'upstream/master' into extra_user-data 2017-10-24 12:52:19 -07:00
Kubernetes Submit Queue 8df13bd468 Merge pull request #3679 from justinsb/support_api_aggregation 
Automatic merge from submit-queue.

Initial aggregation work

Create the keypairs, which are supposed to be signed by a different CA.
    
Set the `--requestheader-...` flags on apiserver.
    
Fix #3152
Fix #2691
 2017-10-24 12:08:27 -07:00
Kashif Saadat 5bfb22ac92 Make the IAM ECR Permissions optional, can be specified within the Cluster Spec. 2017-10-24 09:20:17 +01:00
Justin Santa Barbara a7f82a6380 Fix shared subnet/vpc tags 
* Stop setting the Name tag on a shared subnet/vpc

* Stop setting the legacy KubernetesCluster tag on a shared subnet/vpc
that is new enough (>=1.6); we rely on the shared tags instead

* Set tags on shared subnets; i.e. we _do_ set the shared tag on a
shared subnet; that is important for ELBs

* Set tags on shared VPCs; i.e. we _do_ set the shared tag on a shared
VPC; that is not used but consistent with subnets.

* Add tests for shared subnet
 2017-10-23 11:30:25 -04:00
Kashif Saadat 28c4b7aca9 Add IAM Permissions so nodes can access AWS ECR 2017-10-23 10:11:27 +01:00
Justin Santa Barbara 15d50aff48 Update tests; add to bazel 2017-10-23 00:42:56 -04:00
Eric Hole 742278be01 First pass 2017-10-22 11:47:35 -07:00
Justin Santa Barbara a879521ba3 Initial aggregation support 
Create the keypairs, which are supposed to be signed by a different CA.

Set the `--requestheader-...` flags on apiserver.

Fix #3152
Fix #2691
 2017-10-22 14:41:38 -04:00
Kubernetes Submit Queue 3315d29bdb Merge pull request #3630 from wlan0/api 
Automatic merge from submit-queue.

Add Cloud Controller Manager addon

This adds the CCM addon for the Kubernetes cluster. 

This is a follow-up PR to https://github.com/kubernetes/kops/pull/3408. 

cc @chrislovecnm @andrewsykim
 2017-10-20 19:07:50 -07:00
wlan0 d3143ec3cc add Cloud Controller Manager addon 2017-10-19 12:33:44 -07:00