kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,027 Commits 69 Branches 73 Tags 934 MiB
Commit Graph

247 Commits

Author SHA1 Message Date
Robert Ross ced57785df Fix code fencing for DNS validation example 2016-10-10 19:39:14 -04:00
devin-donnelly 99e12c694a Merge pull request #1303 from MikeSpreitzer/updoc1 
Clarified remark about authorizers determining groups
 2016-10-10 15:39:58 -07:00
Mike Spreitzer 12f5e30309 Removed confusing remark about authorizers determining groups 
The old text said that the authorizer is expected to determine group
memberships when the authenticator does not.  This not true.  It is
allowed, but not expected --- and none of the standard authorizers do
it.  I tried composing a brief correct statement about this, but the
reviews were mainly aghast that internal details of some non-standard
authorizers were being injected into the discussion of authentictors.
I decided that the better part of valor is simply to delete the whole
topic from here.  Besides, it is a conclusion that any reader would
normally draw --- since there is no statement forbidding it (nor
indeed any indication that there might be a reason to forbid it), any
reader would naturally conclude that an authorizer is free to derive
additional intermediate information of any sort and in any way it
likes.
 2016-10-09 15:28:31 -04:00
Mike Spreitzer 30a8b4724f Clarified the apiGroup identified by empty string 
Noted this where the relevance of api group is introduced, and
corrected the reference to what the empty string means ("core" api
group, which is the terminology used in the page that introduces api
group, rather than the old text "default").
 2016-10-06 21:31:46 -07:00
devin-donnelly 35e25311b5 Merge pull request #1144 from adieu/format 
Some small style tweaks to make pandoc working
 2016-10-05 15:44:26 -07:00
devin-donnelly 49c83f4d12 Merge pull request #1251 from philips/add-details-from-dns-docs 
admin: dns: merge from the build dir
 2016-10-05 15:06:29 -07:00
devin-donnelly 6d5580590a Merge pull request #1332 from InQuicker/client-cert-groups 
Explain how to define group memberships with client cert authentication.
 2016-10-05 14:24:53 -07:00
devin-donnelly 15ada05bb7 Merge pull request #1333 from InQuicker/rbac-subresource 
Document subresources in RBAC.
 2016-10-05 14:19:58 -07:00
Jordan Liggitt 19e61ec1d6
Describe anonymous access, system:authenticated group 2016-10-05 13:11:37 -04:00
Mike Spreitzer 49c0ed7680 Merge branch 'master' into updoc3 2016-09-30 23:05:47 -04:00
Tim St. Clair 5eff46b035
Fix links to AppArmor policy references 2016-09-30 11:13:07 -07:00
Brandon Philips 8aa10a6fda admin: dns: merge from the build dir 
Try and clean this mess up where the build dir has user facing docs and move them here.

Ref: https://github.com/kubernetes/kubernetes/pull/32931
 2016-09-28 15:40:53 -07:00
Jimmy Cuadra 19e65e224a Document subresources in RBAC. 2016-09-27 21:30:08 -07:00
Jimmy Cuadra 777e234970 Explain how to define group memberships with client cert authentication. 2016-09-27 17:43:34 -07:00
Mike Spreitzer fa44441f68 Noted HTTP syntax restriction on bearer tokens 
Noted that every bearer token, in any of the four authentication
strategies that use bearer tokens, appears in an HTTP header
value without additional quotation/encoding (beyond that supported
by HTTP).  Included a fully concrete example.  Wrote this down once,
where the issue first arises, and referenced it from the other relevant
strategies.

This constraint was elicited in #sig-auth discussion
on Sep 21, and not previously stated explicitly and in a way that
clearly applied to all four kinds of bearer token --- leaving the
reader to wonder if some other encoding is expected.
 2016-09-27 16:13:10 -04:00
adieu c42b866ad2 Minor style tweaks. 2016-09-27 17:12:02 +08:00
adieu 838352ff6e Change files in dos format to unix format. Removing ^M. 2016-09-27 17:12:02 +08:00
devin-donnelly ff54de9ae0 Merge pull request #1125 from erictune/rbacgroupref 
How to refer to rervice account groups in RBAC
 2016-09-26 13:25:14 -07:00
devin-donnelly 53f0dbbe8a Merge pull request #1259 from chmouel/patch-1 
minor spelling update
 2016-09-26 13:16:05 -07:00
devin-donnelly 971f6a44e7 Merge pull request #549 from mwhooker/patch-1 
mark node phase as deprecated
 2016-09-26 10:35:35 -07:00
devin-donnelly 98eaa04dc6 Merge pull request #1070 from justinsb/network_plugin_mtu 
Document `network-plugin-mtu` option
 2016-09-26 10:35:16 -07:00
devin-donnelly 778c119835 Merge pull request #1265 from lukemarsden/master 
[WIP] kubeadm and add-on docs
 2016-09-26 10:31:43 -07:00
Eric Tune 3750c217ec How to refer to rervice account groups in RBAC 2016-09-26 10:21:27 -07:00
Luke Marsden 10884384de kubeadm and add-ons docs 2016-09-26 14:12:02 +01:00
David Oppenheimer 4a85d6255e Clarify minAvailable approval semantics 2016-09-25 21:30:13 -07:00
Devin Donnelly f4457ae677 Merge remote-tracking branch 'origin' into release-1.4 2016-09-23 16:57:30 -07:00
devin-donnelly 795df8d03e Merge pull request #1276 from madhusudancs/fed-new-deployment 
Update the federation admin guide to use the new, simplified deployment mechanism.
 2016-09-23 09:55:01 -07:00
Luke Marsden 22a8dbb58e Squashed commits for kubeadm and addons docs. 2016-09-23 14:26:26 +01:00
Madhusudan.C.S 78dccc0366 Address more review comments. 2016-09-22 11:05:18 -07:00
Chmouel Boudjnah d322b78c53 minor spelling update 
using mispellings https://pypi.python.org/pypi/misspellings
 2016-09-22 11:48:21 +02:00
Madhusudan.C.S af2976b665 Address review comments. 2016-09-22 01:53:56 -07:00
devin-donnelly f2465eec29 Merge pull request #1158 from pallavagarwal07/patch-1 
Fix link to kubectl from docs/user-guide/kubectl/kubectl_version.md
 2016-09-21 16:28:25 -07:00
devin-donnelly f5e6c1d47b Merge pull request #1196 from derekwaynecarr/disk-eviction 
Add documentation for disk based eviction
 2016-09-21 15:08:09 -07:00
derekwaynecarr e26aa12e23 Add documentation for disk based eviction 2016-09-21 16:38:35 -04:00
Madhusudan.C.S 80f4dc45fe Update the federation admin guide to use the new, simplified deployment mechanism. 2016-09-20 22:45:55 -07:00
devin-donnelly 3720dcf50d Merge pull request #1246 from calebamiles/release-1.4 
Adds documentation for TLS bootstrapping
 2016-09-20 13:26:38 -07:00
devin-donnelly 67fb7451ef Merge pull request #1244 from mml/disruption 
Add disruption admin guide.
 2016-09-20 13:24:08 -07:00
caleb miles d000e77921 Updates docs for TLS bootstrapping. 
...now with less passive voice
 2016-09-20 09:23:23 -07:00
caleb miles 1cebef8da4 Adds documentation for TLS bootstrapping 
Documents workflow for using experimental kublet TLS bootstrapping enabled by https://github.com/kubernetes/features/issues/43
 2016-09-20 09:23:23 -07:00
devin-donnelly eacdf9f230 Merge pull request #1213 from markturansky/branch_docs_add 
Added pvc quota to docs
 2016-09-19 14:57:22 -07:00
Matt Liggett 1117f1a5a6 Add disruption admin guide. 2016-09-19 13:23:40 -07:00
devin-donnelly 56de4ad1e5 Merge pull request #1170 from piosz/rescheduler 
Added Rescheduler documentation
 2016-09-16 11:08:33 -07:00
markturansky dd8133f716 added pvc quota to docs 2016-09-16 11:39:03 -04:00
Piotr Szczesniak ebd9318f37 Added Rescheduler documentation 2016-09-16 17:02:23 +02:00
Kazuki Suda ef8229f2c6 Fix broken link in the authorization page 2016-09-16 16:23:14 +09:00
Devin Donnelly e0cde221b4 Merge remote-tracking branch 'origin' into release-1.4 2016-09-15 14:40:22 -07:00
devin-donnelly b423faa548 Merge pull request #1188 from ecordell/imagepolicy-webhook-docs 
Add ImagePolicyWebhook docs
 2016-09-15 14:34:25 -07:00
devin-donnelly e61d5ec4d4 Merge pull request #1216 from Random-Liu/add-node-conformance-test-doc 
Add document for node conformance test.
 2016-09-15 13:32:55 -07:00
Lantao Liu d56e805a68 Add document for node conformance test. 2016-09-15 11:06:39 -07:00
deads2k 251a6a55f8 describe subjectaccessreview 2016-09-15 13:01:08 -04:00