mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-05-18 05:42:01 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • d6d66faae3 jwtcachefiller now tests for exact log lines and prints when it chooses to not update the status Joshua Casey 2024-07-30 22:07:17 -05:00
  • 15c84fcc94 extract helper func in jwtcachefiller and webhookcachefiller Ryan Richard 2024-07-30 16:41:50 -07:00
  • 1438f06c12 webhookcachefiller adds more detail when it chooses to update or not update status conditions Joshua Casey 2024-07-30 16:33:40 -05:00
  • ca5bb2170c webhookcontroller should use a logger that is built for each webhook authenticator Joshua Casey 2024-07-30 16:15:01 -05:00
  • 05a2fd97f8 webhookcontroller now only logs the webhook authenticator name instead of an object Joshua Casey 2024-07-30 15:30:32 -05:00
  • dedd51df91 Test Refactor: webhookauthenticator_test checks exact log line equality Joshua Casey 2024-07-30 15:22:44 -05:00
  • 290676e4d1 improve info/debug log messages for jwtcachefiller & webhookcachefiller Ryan Richard 2024-07-29 14:46:18 -07:00
  • 8725ab4caa do not make any assumption about OIDC issuer 404 page body in test Ryan Richard 2024-07-29 11:35:45 -07:00
  • 3891f90f43 skip external CA bundle tests when CA bundle is empty Ryan Richard 2024-07-29 11:15:51 -07:00
  • 9f17ba5ae4 change wording of TLS config loaded success messages Ryan Richard 2024-07-29 09:13:39 -07:00
  • 81d42cb3b9 add unit tests for validatedsettings cache storing ca bundle hash Ashish Amarnath 2024-07-26 15:52:50 -07:00
  • dfef9f470f fix bug in webhookcachefiller caused when status update returns error Ryan Richard 2024-07-26 15:06:37 -07:00
  • f5da417450 fix bug in jwtcachefiller caused when status update returns error Ryan Richard 2024-07-26 13:14:23 -07:00
  • a888083c50 Introduce type alias CABundleHash for the hash of a CA bundle ([32]byte) Joshua Casey 2024-07-26 12:38:44 -05:00
  • 99cfc4fbce Remove tlsconfigutil.CABundle.IsEqual and ensure that tlsconfigutil.NewCABundle handles nil/empty input Joshua Casey 2024-07-26 11:38:42 -05:00
  • fcceeed9fa Refactor tlsconfigutil.CABundle 'getters' to not have 'get' in the name Joshua Casey 2024-07-26 11:11:03 -05:00
  • 4cf0e46c38 tlsconfigutil.CABundle should generate its own certPool Joshua Casey 2024-07-26 10:46:53 -05:00
  • 34eff2a2f9 Refactor tlsconfigutil.buildCABundle to make it more clear where the bundle is coming from Joshua Casey 2024-07-26 10:27:10 -05:00
  • e82cb2c7ba Refactor tlsconfigutil.getCertPool to return a CABundle and change its name to buildCABundle Joshua Casey 2024-07-26 10:03:43 -05:00
  • 0711093ccd Add tests for tlsconfigutil.CABundle and all callers should use the constructor Joshua Casey 2024-07-26 09:59:32 -05:00
  • 15d0006841 Pull tlsconfigutil.CABundle into a separate file Joshua Casey 2024-07-26 09:15:47 -05:00
  • 282b949c24 update jwtcachefiller to use new tlsconfigutil.CABundle type Ashish Amarnath 2024-07-25 19:53:27 -07:00
  • 005dbf3aa8 refactor tlsconfigutil to return a caBundle type Ashish Amarnath 2024-07-25 19:20:57 -07:00
  • a1dcba4731 add unit tests for validatedsettings cache storing ca bundle hash Ashish Amarnath 2024-07-25 14:10:38 -07:00
  • 2a62beeb5f store ca bundle hash in validated settings cache Ashish Amarnath 2024-07-25 13:06:52 -07:00
  • 242fa8afb2 When reading CA bundle from a secret/configmap, return more specific err Joshua Casey 2024-07-25 14:19:17 -05:00
  • e3ed722252 Minor refactor Joshua Casey 2024-07-25 13:40:21 -05:00
  • 9a16dc28b7 Fix another integration test Joshua Casey 2024-07-25 12:45:52 -05:00
  • de86809b69 Fix some integration tests Joshua Casey 2024-07-25 10:05:59 -05:00
  • 9420bfde5b webhookcachefiller controller loops over all webhookauthenticators Joshua Casey 2024-07-24 22:16:48 -05:00
  • adb460b644 refactor integration test to use proper test table Ryan Richard 2024-07-24 16:57:23 -07:00
  • 06b47a5792 jwtcachefiller controller loops over all jwtauthenticators Ryan Richard 2024-07-24 16:31:01 -07:00
  • ca2dd2d476 refactor InferSupervisorIssuerURL() func; remove a TODO Ryan Richard 2024-07-24 10:27:39 -07:00
  • 60f82d2a55 Fix integration test typo Joshua Casey 2024-07-24 12:06:05 -05:00
  • 414ff503ef extract some common condition reason string constants Ryan Richard 2024-07-24 10:00:55 -07:00
  • 4ec5766ea9 Modify Concierge/Superivsor TLS spec integration tests to allow for older K8s versions Joshua Casey 2024-07-24 10:25:00 -05:00
  • b7c26c43ca Add LDAPIdentityProvider and ActiveDirectoryIdentityProvider to the Supervisor TLS config static validation integration tests Joshua Casey 2024-07-23 17:22:21 -05:00
  • 4b2ed52f44 Add GitHubIdentityProvider to the Supervisor TLS config static validation integration tests Joshua Casey 2024-07-23 17:11:37 -05:00
  • f381c92f0b Use templates to reduce duplication in concierge_tls_spec_test.go Ryan Richard 2024-07-23 14:25:44 -07:00
  • 3a303cc8fb Supervisor TLS Spec validation integration tests should use helper method Joshua Casey 2024-07-23 15:41:46 -05:00
  • 09724cfa71 Add unit test: when discovery is already cached for OIDCIdentityProvider Ryan Richard 2024-07-23 13:40:13 -07:00
  • d74c2a6e3f Supervisor TLS spec integration tests should use an OIDC issuer url from the test environment Joshua Casey 2024-07-23 15:12:26 -05:00
  • 0f9352db3b Integration tests should use a helper func to infer Supervisor's downstream issuer URL Joshua Casey 2024-07-23 14:43:38 -05:00
  • afec420ce6 Add JWTAuthenticators to the static validation checks for concierge TLS spec Joshua Casey 2024-07-23 14:32:21 -05:00
  • d5e3ad9da0 Concierge external TLS static integration tests use the real URL of the deployed local-user-authenticator Joshua Casey 2024-07-23 13:55:10 -05:00
  • 0f103ed2a4 Add unit tests for external CA bundle in oidc_upstream_watcher_test.go Ryan Richard 2024-07-23 11:51:32 -07:00
  • d62d6a1f27 Refactor github_controller_watcher to simplify the tls Dial Joshua Casey 2024-07-23 13:40:12 -05:00
  • a4ad5d68a9 Fix *_tls_spec_test.go for old versions of Kubernetes Ryan Richard 2024-07-23 10:10:04 -07:00
  • 30c0fd479e Fix e2e_test.go Ryan Richard 2024-07-23 09:51:11 -07:00
  • 756966c55b add "Status" printer column to JWTAuthenticator and WebhookAuthenticator Ryan Richard 2024-07-23 08:41:31 -07:00
  • 288e092d2e GitHub IDP watcher should not dial an address that has already been validated Joshua Casey 2024-07-22 23:47:45 -05:00
  • 72745cd8fe run codegen to update copyrights Ryan Richard 2024-07-22 15:41:46 -07:00
  • 8060e82745 include external CA bundles in the cache key in oidc_upstream_watcher.go Ryan Richard 2024-07-22 14:59:16 -07:00
  • 373713f7e0 webhook controller redoes validations when external CA bundle changes Ryan Richard 2024-07-22 12:28:50 -07:00
  • 66401b42d8 Add GitHubIDP tests for a CA bundle in a Secret or a ConfigMap Joshua Casey 2024-07-22 14:44:37 -05:00
  • 2d5943b21a Move conditions reason Success to conditions_util Joshua Casey 2024-07-22 10:53:03 -05:00
  • 920b519ebf error when CA bundle from Secret or ConfigMap is empty Ryan Richard 2024-07-19 16:18:52 -07:00
  • bf1c02d328 jwtauthenticator controller redoes validations when external CA bundle changes Joshua Casey 2024-07-18 11:19:32 -05:00
  • 6e9023e090 add code review todos and light refactoring Joshua Casey 2024-07-18 09:32:48 -05:00
  • 1b7a26d932 test secret and configmap filtering in concierge authenticator controllers Ashish Amarnath 2024-07-10 00:53:06 -07:00
  • cb4b63f8b3 integration tests for concierge authenticators Ashish Amarnath 2024-07-10 00:15:16 -07:00
  • 8eb15a924f integration tests for supervisor oidc, ldap, activedirectory IDP Ashish Amarnath 2024-07-09 14:24:39 -07:00
  • 6a610a9d51 add namespace to jwt authenticator controller Ashish Amarnath 2024-07-09 14:20:52 -07:00
  • 821a893f70 integration tests for supervisor oidc, ldap, activedirectory IDP Ashish Amarnath 2024-07-08 23:54:06 -07:00
  • afcd80de37 more integration tests pass Ashish Amarnath 2024-07-03 00:58:59 -07:00
  • edc327ba33 update supervisor RBAC to allow get, list, and watch on configmaps Ashish Amarnath 2024-07-02 23:21:29 -07:00
  • 90e8cc86c2 integration tests pass Ashish Amarnath 2024-07-02 23:11:47 -07:00
  • 9ab7c39d56 jwt cache filler Ashish Amarnath 2024-07-02 00:11:30 -07:00
  • 207bac9452 webhook cache filler Ashish Amarnath 2024-07-01 23:34:59 -07:00
  • 199562fd05 get all supervisor unit tests to pass Ashish Amarnath 2024-06-28 14:57:03 -07:00
  • 3a969a83b7 update supervisor controllers Ashish Amarnath 2024-06-27 15:38:40 -07:00
  • aab1ee9edc unify TLS Spec between supervisor and concierge Ashish Amarnath 2024-06-26 13:14:42 -07:00
  • 080c75efe6 refactor tls spec validation into its own package Ashish Amarnath 2024-06-26 00:23:15 -07:00
  • 7e6dadb508 add CRD validation integration tests Ashish Amarnath 2024-06-24 11:03:40 -07:00
  • 19c3f2cb04 run hack/update.sh Ashish Amarnath 2024-06-21 13:39:20 -07:00
  • 842f14af4c update go templates for TLSSpec for concierge and supervisor Ashish Amarnath 2024-06-19 14:29:43 -07:00
  • 05c258026a Merge branch 'main' into doc_typo Joshua Casey 2024-08-05 13:31:05 -05:00
  • 1bb38911dc Merge pull request #2030 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-08-05 13:23:30 -05:00
  • ec943fffdc Bump golang.org/x/mod from 0.19.0 to 0.20.0 in /hack/update-go-mod Joshua Casey 2024-08-05 12:08:46 -05:00
  • ae1d182b30 Bump dependencies Pinny 2024-08-05 13:01:14 +00:00
  • 82c056b955 Merge branch 'main' into doc_typo Joshua Casey 2024-08-02 16:05:03 -05:00
  • 7acc2aa383 Merge pull request #2026 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-08-02 16:04:46 -05:00
  • 4e6a39ed11 fix WS1 doc typo Ryan Richard 2024-08-02 09:12:08 -07:00
  • d587c6b10e Bump dependencies Pinny 2024-08-02 13:02:39 +00:00
  • 51c5a05ea7 Merge pull request #2024 from vmware-tanzu/hack_improvements Ryan Richard 2024-08-01 12:50:13 -07:00
  • f0cac8c5d3 small improvements to some hack scripts Ryan Richard 2024-08-01 10:00:27 -07:00
  • 76f3430c68 Merge pull request #2023 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-07-31 08:57:24 -05:00
  • 0e4f7082b0 Bump dependencies Pinny 2024-07-31 13:02:19 +00:00
  • 66f005f275 Merge pull request #2022 from ashish-amarnath/host-name-case-insensitve Ashish Amarnath 2024-07-30 10:31:48 -07:00
  • bc10d500b7 Merge branch 'main' into host-name-case-insensitve Joshua Casey 2024-07-30 09:27:45 -05:00
  • 7c7f0fdae3 make host name parsing case-insensitive Ashish Amarnath 2024-07-29 14:05:07 -07:00
  • 4fa901c017 Merge pull request #2021 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-07-29 09:52:44 -05:00
  • fd11c37825 Bump dependencies Pinny 2024-07-29 13:02:10 +00:00
  • f1b82dbf1f Merge pull request #2020 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-07-26 15:39:47 -05:00
  • 8891455e10 Bump dependencies Pinny 2024-07-26 13:03:12 +00:00
  • 5540f25932 Merge pull request #2019 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-07-24 09:45:57 -05:00
  • ee9bbbe50b Bump dependencies Pinny 2024-07-24 13:02:40 +00:00
  • e013c90993 Merge pull request #2018 from vmware-tanzu/pinny/bump-deps Joshua Casey 2024-07-22 10:54:22 -05:00
  • fa85be4b94 Bump dependencies Pinny 2024-07-22 13:02:35 +00:00
  • 276cba08ee Merge pull request #2015 from vmware-tanzu/pinny/bump-deps Ryan Richard 2024-07-19 06:54:49 -07:00