mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-01-07 14:05:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
709 Commits 23 Branches 50 Tags
5a0e7fd358c28181e5d57ec6c5d8b602473bb975
Commit Graph

30 Commits

Author SHA1 Message Date
Ryan Richard
5a0e7fd358 Upgrade golang patch release to 1.15.3 and debian 10.5-slim -> 10.6-slim 2020-11-02 16:17:15 -08:00
Andrew Keesler
fcea48c8f9 Run as non-root 
I tried to follow a principle of encapsulation here - we can still default to
peeps making connections to 80/443 on a Service object, but internally we will
use 8080/8443.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-11-02 12:51:15 -05:00
Andrew Keesler
8fe031e73d Do not copy pkg directory in Dockerfile 
Signed-off-by: Ryan Richard <richardry@vmware.com>
 2020-10-15 13:31:16 -07:00
Ryan Richard
5b3dd5fc7d Rename pinniped-server -> pinniped-concierge 
Do we like this? We don't know yet.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-10-06 14:59:03 -04:00
Ryan Richard
76bd462cf8 Implement very rough skeleton of the start of a supervisor server 
- This is just stab at a starting place because it felt easier to
  put something down on paper than to keep staring at a blank page
 2020-10-05 17:28:19 -07:00
dependabot[bot]
29305777bb Bump golang from 1.15.1 to 1.15.2 
Bumps golang from 1.15.1 to 1.15.2.

Signed-off-by: dependabot[bot] <support@github.com>
 2020-09-16 14:59:35 +00:00
Andrew Keesler
e7b389ae6c Update copyright to reference Pinniped contributors 
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-09-16 10:05:51 -04:00
Ryan Richard
b7bdb7f3b1 Rename test-webhook to local-user-authenticator 
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-09-10 15:20:02 -07:00
Ryan Richard
2565f67824 Create a deployment for test-webhook 
- For now, build the test-webhook binary in the same container image as
  the pinniped-server binary, to make it easier to distribute
- Also fix lots of bugs from the first draft of the test-webhook's
  `/authenticate` implementation from the previous commit
- Add a detailed README for the new deploy-test-webhook directory
 2020-09-09 19:06:39 -07:00
dependabot[bot]
a2e8b2aa0c Bump golang from 1.15.0 to 1.15.1 
Bumps golang from 1.15.0 to 1.15.1.

Signed-off-by: dependabot[bot] <support@github.com>
 2020-09-02 06:03:19 +00:00
Matt Moyer
7848332d47 Remove .netrc trick from Dockerfile. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-28 13:07:47 -05:00
Matt Moyer
8f93fbb87b Make ./pkg/client into an internal package using the native k8s client. 
This should simplify our build/test setup quite a bit, since it means we have only a single module (at the top level) with all hand-written code. I'll leave `module.sh` alone for now but we may be able to simplify that a bit more.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-27 11:48:18 -05:00
Matt Moyer
8b36f2e8ae Convert code to use the new generated packages. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-24 14:42:27 -05:00
Ryan Richard
3929fa672e Rename project 2020-08-20 10:54:15 -07:00
Matt Moyer
ae0b97d807 Revert "Pin images to exact hashes (Dependabot can handle this, it seems)." 2020-08-14 10:52:29 -05:00
Matt Moyer
0d034cd18e Pin images to exact hashes (Dependabot can handle this, it seems). 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-14 10:04:43 -05:00
Matt Moyer
c02b6fee8f Switch to Debian base images. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-13 13:35:42 -05:00
dependabot[bot]
d2f6eebc66 Bump golang from 1.14.7-alpine to 1.15.0-alpine 
Bumps golang from 1.14.7-alpine to 1.15.0-alpine.

Signed-off-by: dependabot[bot] <support@github.com>
 2020-08-12 05:50:33 +00:00
Ryan Richard
626fc6aa8d Merge branch 'main' into cert_controllers 2020-08-10 19:01:36 -07:00
dependabot[bot]
b3df59ca13 Bump golang from 1.14.6-alpine to 1.14.7-alpine 
Bumps golang from 1.14.6-alpine to 1.14.7-alpine.

Signed-off-by: dependabot[bot] <support@github.com>
 2020-08-10 16:46:08 +00:00
Matt Moyer
5394008d6f Temporarily downgrade our Docker base image to trigger dependabot. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-10 11:44:47 -05:00
Ryan Richard
86c3f89b2e First draft of moving API server TLS cert generation to controllers 
- Refactors the existing cert generation code into controllers
  which read and write a Secret containing the certs
- Does not add any new functionality yet, e.g. no new handling
  for cert expiration, and no leader election to allow for
  multiple servers running simultaneously
- This commit also doesn't add new tests for the cert generation
  code, but it should be more unit testable now as controllers
 2020-08-09 10:04:05 -07:00
Matt Moyer
c5d5914866 Split up into multiple modules. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-06 20:09:15 -05:00
Ryan Richard
dd278b46a8 Build with CGO_ENABLED=0 in Dockerfile 
- Not strictly necessary at the moment because both our build layer
  and our run layer are based on alpine, but static linking our binary
  will help us later when we want to base our run image on something
  closer to scratch
 2020-08-05 17:43:24 -07:00
Matt Moyer
04cacabc16 Convert pkg/client to depend only on stdlib. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-30 13:49:45 -05:00
Ryan Richard
9e44bc28d9 Change the name of the placeholder-name CLI to placeholder-name-server 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-28 15:15:59 -05:00
Mo Khan
5fdc20886d Initial aggregated API server (#15) 
Add initial aggregated API server (squashed from a bunch of commits).

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
Signed-off-by: Aram Price <pricear@vmware.com>
Signed-off-by: Ryan Richard <richardry@vmware.com>
 2020-07-23 10:05:21 -05:00
Monis Khan
549da37805 Encode git version info into binary and user agent 
Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-20 00:32:11 -04:00
Monis Khan
611859f04a Update dockerfile to use netrc 
Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-17 13:26:30 -07:00
Ryan Richard
84dcbf4f5f Add Dockerfile 2020-07-06 16:54:04 -07:00