kubernetes/kops - kops - Gitea: Git with a cup of tea

Commit Graph

Author	SHA1	Message	Date
AkiraFukushima	e5cf940d53	Add managed-by label to addon pods	2022-02-20 18:33:51 +09:00
Ole Markus With	666cf710a2	Push partition into the policy struct	2022-01-20 17:49:36 +01:00
Ole Markus With	0a082fed12	Require tag on create for external AWS CCM	2022-01-20 15:32:46 +01:00
Ole Markus With	00f8808ab1	Log the specific yaml segment that fails. Also remove redundant full manifest logging	2021-12-20 15:04:52 +01:00
Ole Markus With	0cfea49250	Do not expose the policy actions sets out of package	2021-12-13 09:14:20 +01:00
Ole Markus With	794cb72112	Karpenter addon Constrain the instance types to what is supported by the AMI Add taints and label to karpenter provisioner Add instance types to karpenter provisioner	2021-12-12 19:33:41 +01:00
John Gardiner Myers	c5e1dea184	Remove code for no-longer-supported k8s version	2021-12-11 16:30:51 -08:00
Ciprian Hacman	ea7df00719	Run hack/update-gofmt.sh	2021-12-01 22:39:50 +02:00
Peter Rifel	c734f5c08d	Update IAMBuilder to include the current partition in ARNs	2021-10-29 23:07:31 -05:00
Ole Markus With	b3982e1033	Apply suggestions from code review Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>	2021-08-27 06:45:50 +02:00
Ole Markus With	0152c23c1e	Remove externaldns feature flag	2021-08-27 06:30:01 +02:00
Ole Markus With	0439bb0d76	Remove UseServiceAccountIAM feature flag and rename feature to UseServiceAccountExternalPermissions	2021-08-07 21:20:03 +02:00
Ole Markus With	ce86d851aa	IRSA support for CCM Update pkg/model/components/addonmanifests/awscloudcontroller/iam.go Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>	2021-08-07 10:27:36 +02:00
Ole Markus With	2042912a5b	Remap IRSA for DaemonSets too	2021-08-07 07:41:47 +02:00
Ole Markus With	28bd45a8fa	Add irsa support for nth	2021-07-19 15:12:35 +02:00
Ole Markus With	f0390eda29	Dedicated function for ccm permissons Update pkg/model/iam/iam_builder.go Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>	2021-07-16 19:39:57 +02:00
Ole Markus With	aad2912710	Add sets for the remaining addons	2021-07-01 10:37:57 +02:00
Ole Markus With	df5b58b1b3	Add sets for the typical default role perms	2021-07-01 10:28:01 +02:00
Ole Markus With	37271998e1	Use sets for aws lbc permissions	2021-07-01 10:19:40 +02:00
Ole Markus With	19833e6b73	Use sets for ebscsidriver permissions	2021-07-01 09:02:04 +02:00
Ole Markus With	d8bf4dcae1	NewPolicy function for instantiating policy struct	2021-07-01 08:39:43 +02:00
Ciprian Hacman	2f3bad686a	Remove version from addons	2021-06-25 19:25:01 +03:00
Ole Markus With	b37bc7578e	Reduce master policy size for lb controller	2021-06-19 10:12:22 +02:00
Ole Markus With	33a7de60a7	Enable IRSA for EBS CSI Driver	2021-06-18 08:05:59 +02:00
Ole Markus With	7b850555eb	Don't add volume multiple times to a pod	2021-06-18 07:31:33 +02:00
Ole Markus With	6e8e027aff	Enable IRSA for Cluster Autoscaler	2021-06-16 18:03:11 +02:00
Ole Markus With	5d4f6e6dee	Don't add IRSA env vars if feature flag is not enabled	2021-05-06 11:18:07 +02:00
Ole Markus With	dbd23473ef	Add irsa support for awslbcontroller This commit also introduces support for adding token projection volumes for well-known SAs. Slightly less complicated than explicitly parsing the objects for a manifest	2021-04-04 21:24:07 +02:00
Ole Markus With	bca857326f	Add standard labels to all resources	2021-02-28 07:43:58 +01:00
Justin SB	a61ecf4c58	Refactor to use interface for iam Subjects Hat-tip to johngmyers for the idea!	2020-09-09 09:57:07 -04:00
Justin SB	8498ac9dbb	Create PublicJWKS feature flag This should be much easier to start and to get under testing; it only works with a load balancer, it sets the apiserver into anonymous-auth allowed, it grants the anonymous auth user permission to read our jwks tokens. But it shouldn't need a second bucket or anything of that nature. Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>	2020-09-09 09:57:06 -04:00

31 Commits