mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-02-07 05:21:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 4804c837d4 Insignificant change in ldap_upstream_watcher_test.go Ryan Richard 2021-05-12 13:37:01 -07:00
  • f0652c1ce1 Replace all usages of strPtr() with pointer.StringPtr() Ryan Richard 2021-05-12 13:20:00 -07:00
  • 044443f315 Rename X-Pinniped-Idp-* headers to Pinniped-* Ryan Richard 2021-05-12 13:06:08 -07:00
  • 9ca72fcd30 login.go: Respect overallTimeout for LDAP login-related http requests Ryan Richard 2021-05-12 12:57:10 -07:00
  • 3008d1a85c Log slow LDAP authentication attempts for debugging purposes Ryan Richard 2021-05-12 11:59:48 -07:00
  • 6c2a775c9b Use proxy for pinniped get kubeconfig in hack/prepare-supervisor-on-kind.sh Ryan Richard 2021-05-12 11:34:16 -07:00
  • 41d3e3b6ec Fix lint error in e2e_test.go Ryan Richard 2021-05-12 11:24:00 -07:00
  • 20b86ac0a9 Merge pull request #589 from vmware-tanzu/ldap-get-kubeconfig Ryan Richard 2021-05-12 10:10:49 -07:00
  • df0e715bb7 Add integration test that waits for access token expiry Margo Crawford 2021-05-12 09:05:13 -07:00
  • 6723ed9fd8 Add end-to-end integration test for CLI-based LDAP login Ryan Richard 2021-05-11 13:55:46 -07:00
  • f98aa96ed3 Merge branch 'initial_ldap' into ldap-get-kubeconfig Ryan Richard 2021-05-11 11:10:25 -07:00
  • 675bbb2aba Merge branch 'main' into initial_ldap Ryan Richard 2021-05-11 11:09:37 -07:00
  • e25eb05450 Move Supervisor IDP discovery to its own new endpoint Ryan Richard 2021-05-11 10:31:33 -07:00
  • dbde150c38 Update CLI docs for v0.8.0 release Pinny 2021-05-10 22:01:16 +00:00
  • c0fcd27594 Fix typo in test/integration/e2e_test.go Ryan Richard 2021-05-10 12:51:56 -07:00
  • 1ddc85495f Merge pull request #610 from enj/enj/t/eks_extra_nested_impersonation v0.8.0 Mo Khan 2021-05-10 13:49:24 -04:00
  • 716659b74a impersonation proxy test: handle admin users with mixed case extra keys Monis Khan 2021-05-10 13:22:51 -04:00
  • 696c2b9133 Merge pull request #609 from enj/enj/t/eks_uid_nested_impersonation Mo Khan 2021-05-10 10:35:26 -04:00
  • 0770682bf9 impersonation proxy test: handle admin users with UID such as on EKS Mo Khan 2021-05-10 00:50:59 -04:00
  • 88ff3164a2 Merge pull request #608 from enj/enj/i/discovery_keep_oidc_err Mo Khan 2021-05-10 09:18:13 -04:00
  • 56d316e8d3 upstreamwatcher: do not truncate explicit oidc errors Mo Khan 2021-05-10 00:22:34 -04:00
  • 9fc7f43245 Merge pull request #607 from mattmoyer/fix-eks-nested-impersonation-tests Matt Moyer 2021-05-07 16:46:40 -05:00
  • 47f5e822d0 Fix TestImpersonationProxy on EKS. Matt Moyer 2021-05-07 16:22:08 -05:00
  • cc99d9aeb4 Merge pull request #606 from enj/enj/i/log_discovery_err Mo Khan 2021-05-07 16:56:52 -04:00
  • 7ece196893 upstreamwatcher: preserve oidc discovery error Mo Khan 2021-05-07 15:59:04 -04:00
  • a08a28d67b Merge pull request #603 from vmware-tanzu/dependabot/docker/golang-1.16.4 Matt Moyer 2021-05-07 06:58:13 -05:00
  • 2634c9f04a Bump golang from 1.16.3 to 1.16.4 dependabot[bot] 2021-05-07 05:49:58 +00:00
  • 29a1ca5168 Merge pull request #602 from vmware-tanzu/access-token-lifetime Margo Crawford 2021-05-06 14:39:52 -07:00
  • 5240f5e84a Change access token storage lifetime to be the same as the refresh token's Margo Crawford 2021-05-06 11:53:41 -07:00
  • a8bccc5432 Merge pull request #599 from mattmoyer/docs-tweak-configure-supervisor-with-gitlab Matt Moyer 2021-05-04 17:32:14 -05:00
  • f167a075dd Clean up this language in configure-supervisor-with-gitlab.md a bit more. Matt Moyer 2021-05-04 15:47:18 -05:00
  • 8136c787a7 More adjustments to configure-supervisor-with-gitlab.md. Matt Moyer 2021-05-04 15:33:33 -05:00
  • 3e13b5f39d Do some minor copyediting on "configure-supervisor-with-gitlab.md". Matt Moyer 2021-05-04 14:13:20 -05:00
  • 1a2940c278 Merge pull request #560 from vmware-tanzu/client-debug-logging Margo Crawford 2021-05-04 13:46:47 -07:00
  • 4bb0fdeddd Merge pull request #598 from enj/enj/i/gc_tz Mo Khan 2021-05-04 15:08:06 -04:00
  • 4ce77c4837 supervisor gc: use singleton queue Monis Khan 2021-05-04 12:38:47 -04:00
  • 1586171876 Merge pull request #595 from mattmoyer/fix-psp-related-regression Matt Moyer 2021-05-04 11:04:16 -05:00
  • 165bef7809 Split out kube-cert-agent service account and bindings. Matt Moyer 2021-05-03 16:31:48 -05:00
  • b80cbb8cc5 Run kube-cert-agent pod as Concierge ServiceAccount. Matt Moyer 2021-05-03 16:20:13 -05:00
  • 71e38d232e login.go discards logs by default Ryan Richard 2021-05-03 09:13:18 -07:00
  • 778c194cc4 Autodetection with multiple idps in discovery document Margo Crawford 2021-04-30 17:14:28 -07:00
  • a8754b5658 Refactor: extract helper func from runGetKubeconfig() Margo Crawford 2021-04-30 15:00:54 -07:00
  • 1c66ffd5ff WIP: add supervisor upstream flags to pinniped get kubeconfig Ryan Richard 2021-04-30 14:28:03 -07:00
  • ab94b97f4a Change login.go to use logr.logger Margo Crawford 2021-04-30 12:10:04 -07:00
  • d6a172214d Merge pull request #587 from vmware-tanzu/supervisor-gitlab-docs Margo Crawford 2021-04-30 11:01:22 -07:00
  • 638fa7ba27 Merge pull request #592 from enj/enj/t/valueless_ctx_2 Mo Khan 2021-04-30 11:07:32 -04:00
  • b5ffab6330 valuelesscontext: make unit tests more clear Monis Khan 2021-04-30 10:33:11 -04:00
  • 8556a638a2 Merge pull request #591 from enj/enj/t/valueless_ctx Mo Khan 2021-04-30 10:10:48 -04:00
  • 44c7f8daf0 valuelesscontext: add some unit tests Monis Khan 2021-04-30 09:45:34 -04:00
  • 1efa4da80c Merge pull request #590 from enj/enj/f/sa_authn_impersonation_proxy Mo Khan 2021-04-29 17:53:27 -04:00
  • 62785674c3 impersonator: add support for service account token authentication Monis Khan 2021-04-20 11:19:58 -04:00
  • 9e4f601a3f Merge pull request #588 from enj/enj/i/webhookcachefiller_ca Mo Khan 2021-04-29 07:47:06 -04:00
  • bb7e7fe81e webhookcachefiller: be stricter about CA bundle validation Monis Khan 2021-04-28 13:49:42 -04:00
  • 10c4cb4493 Merge branch 'initial_ldap' into ldap-get-kubeconfig Ryan Richard 2021-04-28 14:28:32 -07:00
  • 36819989a3 Remove DryRunAuthenticationUsername from LDAPIdentityProviderSpec Ryan Richard 2021-04-28 14:26:57 -07:00
  • bed2d2dd62 Incorporated PR feedback Margo Crawford 2021-04-28 13:34:36 -07:00
  • 4bd83add35 Add Supervisor upstream IDP discovery on the server-side Ryan Richard 2021-04-28 13:14:21 -07:00
  • 90b2854032 Avoid using global logger in login.go Margo Crawford 2021-04-28 09:34:42 -07:00
  • 5c62a9d0bd More adjustments based on PR feedback Ryan Richard 2021-04-27 16:54:26 -07:00
  • 96fda6ed13 Added documentation for how to configure the Supervisor with GitLab Margo Crawford 2021-04-27 16:18:30 -07:00
  • 263a33cc85 Some updates based on PR review Ryan Richard 2021-04-27 12:43:09 -07:00
  • b3b108500a Merge branch 'main' into initial_ldap Ryan Richard 2021-04-27 10:12:43 -07:00
  • 67a568811a Make prepare-for-integration-tests.sh work on linux too Ryan Richard 2021-04-27 10:10:02 -07:00
  • 620a4d55b7 Merge pull request #584 from mattmoyer/fix-broken-readme-link Matt Moyer 2021-04-26 13:23:35 -07:00
  • a52872cd03 Fix a broken docs link in our README. Matt Moyer 2021-04-26 08:17:36 -06:00
  • 0dfb3e95c5 Merge pull request #569 from mattmoyer/use-deployment-for-kube-cert-agent Matt Moyer 2021-04-26 09:25:37 -07:00
  • e532a88647 Add a new "legacy pod cleaner" controller. Matt Moyer 2021-04-20 14:56:43 -05:00
  • 54a8297cc4 Add generated mocks for kubecertagent. Matt Moyer 2021-04-16 18:20:21 -05:00
  • 2843c4f8cb Refactor kube-cert-agent controllers to use a Deployment. Matt Moyer 2021-04-20 14:55:28 -05:00
  • 9b818dbf10 Remove another 10s sleep related to JWTAuthenticator initialization Ryan Richard 2021-04-22 16:59:42 -07:00
  • 6a350aa4e1 Fix some LDAP CA bundle handling Ryan Richard 2021-04-22 16:58:48 -07:00
  • cc51c72c12 Merge pull request #576 from ankeesler/prepare-webhook-script Matt Moyer 2021-04-22 14:07:38 -07:00
  • ff3f5e2444 Merge pull request #582 from vmware-tanzu/prerelease-v0.4.2 v0.4.2 Matt Moyer 2021-04-22 13:08:31 -07:00
  • 0ab9927115 Merge branch 'main' into prepare-webhook-script Matt Moyer 2021-04-22 13:05:55 -07:00
  • 204c8e8dbc Merge pull request #578 from mattmoyer/remove-unneeded-test-sleep Matt Moyer 2021-04-22 12:59:40 -07:00
  • 5290aac66f Adjust "/bin/killall sleep" in new test to be less flaky in CI. Matt Moyer 2021-04-22 14:51:55 -05:00
  • 4927f1c1ad Merge pull request #581 from vmware-tanzu/prerelease-v0.4.2 Matt Moyer 2021-04-22 10:01:07 -07:00
  • e85bcca45f Revert changes to generated 1.20 go.mod. Matt Moyer 2021-04-22 11:47:47 -05:00
  • c1b1082c55 Fix some minor linter style warnings. Matt Moyer 2021-04-22 11:47:05 -05:00
  • 425e53a26b Merge pull request #580 from vmware-tanzu/prerelease-v0.4.2 Matt Moyer 2021-04-22 09:11:08 -07:00
  • 638d9235a2 Remove unneeded OIDC-related sleeps in tests. Matt Moyer 2021-04-22 10:25:44 -05:00
  • 23cd53faeb In kube-cert-agent deleter controller, clean up pods that are stuck in terminal states. Matt Moyer 2021-04-21 17:00:20 -05:00
  • 24c8bdef44 Add a test to verify that the kube-cert-agent recovers when a pod becomes unhealthy. Matt Moyer 2021-04-21 15:32:50 -05:00
  • 81a4c84f46 Merge pull request #579 from ankeesler/log-level Andrew Keesler 2021-04-21 17:37:41 -04:00
  • 9f509d3f13 internal/kubeclient: match plog level with klog level Andrew Keesler 2021-04-21 08:58:20 -04:00
  • 5f3eab2538 Fix expected number of log lines in TestCLILoginOIDC Margo Crawford 2021-04-21 13:05:32 -07:00
  • c45d48d027 Change test log expectations Margo Crawford 2021-04-21 10:58:48 -07:00
  • 09560fd8dc Log lines about using cached credential Margo Crawford 2021-04-19 10:46:22 -07:00
  • 264778113d lookupEnv in oidclogin same as for static Margo Crawford 2021-04-16 14:38:05 -07:00
  • b5889f37ff WIP on new plog Margo Crawford 2021-04-16 10:46:59 -07:00
  • 45e4695444 Unset pinniped debug environment variable at end of integration test Margo Crawford 2021-04-08 10:14:29 -07:00
  • 6a21499ed3 Add check for number of log lines. Margo Crawford 2021-04-07 15:54:48 -07:00
  • 211d4fd0b6 Add more logging, integration test checks that debug flag works. Margo Crawford 2021-04-07 15:30:29 -07:00
  • 8ffd9fdc4e Started debug logging. Margo Crawford 2021-04-06 15:13:27 -07:00
  • 4375c01afb Upgrade Debian base image from 10.7 to 10.9 and Go from 1.15.6 to 1.15.11. Matt Moyer 2021-04-21 10:50:07 -05:00
  • 91bf179b39 Upgrade Kubernetes library dependencies from v1.20.1 to v1.20.6. Matt Moyer 2021-04-21 10:20:32 -05:00
  • ddc632b99c Show the error_description when it is included in authorization response Ryan Richard 2021-04-19 18:08:52 -07:00
  • c176d15aa7 Add Supervisor upstream LDAP login to the Pinniped CLI Ryan Richard 2021-04-19 17:59:46 -07:00
  • d76ac56df2 Merge pull request #573 from enj/enj/f/nested_impersonation Mo Khan 2021-04-19 17:46:10 -04:00
  • d86b24ca2f hack: add prepare-webhook-on-kind.sh Andrew Keesler 2021-04-19 16:10:20 -04:00