Kevin Leimkuhler c9c41e2e8a Remove gRPC tap server listener from controller (#3276) ... ### Summary As an initial attempt to secure the connection from clients to the gRPC tap server on the tap Pod, the tap `addr` only listened on localhost. As @adleong pointed out #3257, this was not actually secure because the inbound proxy would establish a connection to localhost anyways. This change removes the gRPC tap server listener and changes `TapByResource` requests to interface with the server object directly. From this, we know that all `TapByResourceRequests` have gone through the tap APIServer and thus authorized by RBAC. ### Details [NewAPIServer](ef90e0184f/controller/tap/apiserver.go (L25-L26)) now takes a [GRPCTapServer](f6362dfa80/controller/tap/server.go (L33-L34)) instead of a `pb.TapClient` so that `TapByResource` requests can interact directly with the [TapByResource](f6362dfa80/controller/tap/server.go (L49-L50)) method. `GRPCTapServer.TapByResource` now makes a private [grpcTapServer](ef90e0184f/controller/tap/handlers.go (L373-L374)) that satisfies the [tap.TapServer](https://godoc.org/github.com/linkerd/linkerd2/controller/gen/controller/tap#TapServer) interface. Because this interface is satisfied, we can interact with the tap server methods without spawning an additional listener. Signed-off-by: Kevin Leimkuhler <kleimkuhler@icloud.com>		2019-08-16 16:38:50 -04:00
..
apiserver.go	Remove gRPC tap server listener from controller (#3276)	2019-08-16 16:38:50 -04:00
apiserver_test.go	Remove gRPC tap server listener from controller (#3276)	2019-08-16 16:38:50 -04:00
client.go	Enable lint check for comments (#2023)	2019-01-02 14:03:59 -08:00
handlers.go	Remove gRPC tap server listener from controller (#3276)	2019-08-16 16:38:50 -04:00
handlers_test.go	Update tap authz error with doc URL (#3196)	2019-08-06 08:56:41 -07:00
server.go	Remove gRPC tap server listener from controller (#3276)	2019-08-16 16:38:50 -04:00
server_test.go	Remove gRPC tap server listener from controller (#3276)	2019-08-16 16:38:50 -04:00