mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-05-19 14:21:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 3e50b4e129 Add -sS to the curl command in concierge_impersonation_proxy_test.go Ryan Richard 2021-03-19 13:23:28 -07:00
  • d856221f56 Edit some comments in concierge_impersonation_proxy_test.go Ryan Richard 2021-03-19 09:36:05 -07:00
  • f519f0cb09 impersonator: disallow clients from setting the X-Forwarded-For header Monis Khan 2021-03-19 15:35:06 -04:00
  • c03fe2d1fe Use http2 for all non-upgrade requests Monis Khan 2021-03-19 13:39:55 -04:00
  • 2749044625 test/integration: unparallelize impersonation kubectl test Andrew Keesler 2021-03-19 13:31:28 -04:00
  • f73c70d8f9 test/integration: use Ryan's 20x rule to harden simple access tests Andrew Keesler 2021-03-19 13:18:10 -04:00
  • ebd5e45fa6 test/integration: wait for convergence at end of impersonation test Andrew Keesler 2021-03-19 12:54:37 -04:00
  • 6154883855 test/integration: add temporary debug 'kubectl attach' logging Andrew Keesler 2021-03-19 10:42:11 -04:00
  • ebe01a5aef test/integration: catch early 'kubectl attach' return Andrew Keesler 2021-03-19 09:59:24 -04:00
  • 28d00ce67b Merge remote-tracking branch 'upstream/main' into impersonation-proxy Andrew Keesler 2021-03-18 20:13:49 -04:00
  • 50e4531215 Merge pull request #505 from enj/enj/i/jwt-go_cve Mo Khan 2021-03-18 19:34:19 -04:00
  • 1a9922d050 test/integration: poll more quickly in f2a48aee Andrew Keesler 2021-03-18 17:53:14 -04:00
  • f2a48aee2b test/integration: increase timeout to a minute to see if it helps Andrew Keesler 2021-03-18 17:48:00 -04:00
  • d162cb9adf Move to github.com/form3tech-oss/jwt-go Monis Khan 2021-03-18 16:54:55 -04:00
  • 14a28bec24 test/integration: fix second assertion from dae62929 Andrew Keesler 2021-03-18 16:34:30 -04:00
  • dae62929e0 test/integration: error assertions pass w/ and w/o middleware Andrew Keesler 2021-03-18 15:33:47 -04:00
  • c22ac17dfe internal/concierge/impersonator: use http/2.0 as much as we can Andrew Keesler 2021-03-18 15:32:33 -04:00
  • 08c446a3e1 Use openssl to generate the test user password instead of /dev/urandom Ryan Richard 2021-03-18 11:20:33 -07:00
  • bd8c243636 concierge_impersonation_proxy_test.go: small refactor Ryan Richard 2021-03-18 10:44:37 -07:00
  • e4bf6e068f Add a comment to impersonator.go Ryan Richard 2021-03-18 10:00:06 -07:00
  • 120e46b5f7 test/integration: fix race condition Monis Khan 2021-03-18 11:24:02 -04:00
  • 257d69045d Reuse internal/concierge/scheme Andrew Keesler 2021-03-18 10:40:59 -04:00
  • 05a188d4cd Merge remote-tracking branch 'upstream/main' into impersonation-proxy Andrew Keesler 2021-03-18 10:36:28 -04:00
  • 205c22ddbe impersonator config: catch panics when running impersonator Monis Khan 2021-03-18 10:28:16 -04:00
  • aa79bc7609 internal/concierge/impersonator: ensure log statement is printed Andrew Keesler 2021-03-18 10:14:11 -04:00
  • a36914f5ca Merge pull request #476 from ankeesler/whoami-cli Andrew Keesler 2021-03-18 09:46:48 -04:00
  • cc8f0b623c test/integration: add pinniped whoami tests Andrew Keesler 2021-03-04 14:46:18 -05:00
  • de6837226e cmd/pinniped: add whoami command Andrew Keesler 2021-03-04 13:34:59 -05:00
  • 3a32833306 Merge pull request #503 from mattmoyer/rework-restart-assertions-helper Matt Moyer 2021-03-17 14:38:39 -07:00
  • 74df6d138b Memoize library.IntegrationEnv so it's only constructed once per test. Matt Moyer 2021-03-17 12:47:38 -05:00
  • 0dd2b358fb Extend assertNoRestartsDuringTest to dump logs from containers that restarted. Matt Moyer 2021-03-17 11:46:55 -05:00
  • 6520c5a3a1 Extend library.DumpLogs() to dump logs from the previous container, if one exists. Matt Moyer 2021-03-17 11:24:59 -05:00
  • 5a43a5d53a Remove library.AssertNoRestartsDuringTest and make that assertion implicit in library.IntegrationEnv. Matt Moyer 2021-03-17 11:08:01 -05:00
  • 897340860b Small refactor to impersonation proxy integration test Margo Crawford 2021-03-16 16:57:28 -07:00
  • 4d2035ab2a Merge branch 'main' of github.com:vmware-tanzu/pinniped into impersonation-proxy Matt Moyer 2021-03-16 18:19:40 -05:00
  • d85135c12e Merge pull request #501 from mattmoyer/deflake-get-category-test Matt Moyer 2021-03-16 16:18:22 -07:00
  • 30a392b900 Improve the reliability of TestGetPinnipedCategory. Matt Moyer 2021-03-16 17:22:28 -05:00
  • 4ab3c64b70 Merge pull request #500 from mattmoyer/deflake-cert-rotation-test Mo Khan 2021-03-16 17:03:07 -04:00
  • 2515b2d710 Make TestAPIServingCertificateAutoCreationAndRotation more reliable. Matt Moyer 2021-03-16 14:59:59 -05:00
  • 10a1e29e15 Merge branch 'main' of github.com:vmware-tanzu/pinniped into impersonation-proxy Matt Moyer 2021-03-16 14:35:07 -05:00
  • 2319606cd2 Fix some nits from the previous commit that I accidentally merged before fixing. Matt Moyer 2021-03-16 13:54:29 -05:00
  • 10168ab2e7 Merge pull request #499 from vmware-tanzu/add-anon-auth-capability Matt Moyer 2021-03-16 12:21:47 -07:00
  • c5b784465b Describe "anonymousAuthenticationSupported" test cluster capability and add more managed cluster types. Matt Moyer 2021-03-16 13:54:29 -05:00
  • 236dbdb2c4 impersonator: test UID impersonation and header canonicalization Monis Khan 2021-03-16 12:59:07 -04:00
  • 6887d0aca2 Repeat the method and url in the log line for the userinfo username Ryan Richard 2021-03-15 17:10:55 -07:00
  • 64e0dbb481 Sleep for 1 minute 10 seconds instead of a minute in timeout test Margo Crawford 2021-03-15 16:31:54 -07:00
  • e47543233c Merge branch 'main' into impersonation-proxy Ryan Richard 2021-03-15 16:28:25 -07:00
  • 2460568be3 Add some debug logging Ryan Richard 2021-03-15 16:11:45 -07:00
  • 1b31489347 Add prepare-impersonator-on-kind.sh for manually starting impersonator Ryan Richard 2021-03-15 16:08:42 -07:00
  • ab6452ace7 Remove linting from pre-commit because it is slow and messes up GoLand Ryan Richard 2021-03-15 16:25:45 -07:00
  • c46aa1c29d Merge pull request #490 from vmware-tanzu/dependabot/docker/golang-1.16.2 Matt Moyer 2021-03-15 15:08:03 -07:00
  • 939ea30030 Make all tests but disable test parallelized Margo Crawford 2021-03-15 14:34:09 -07:00
  • efd973fa17 Test waiting for a minute and keeping connection open Andrew Keesler 2021-03-15 12:28:53 -07:00
  • 4f671f5dca dynamiccert: unit test with DynamicServingCertificateController Monis Khan 2021-03-15 16:59:51 -04:00
  • a5384a6e38 Merge branch 'main' into impersonation-proxy Ryan Richard 2021-03-15 13:06:36 -07:00
  • e64f2fe7fb Bump golang from 1.16.1 to 1.16.2 dependabot[bot] 2021-03-15 19:55:44 +00:00
  • 035362f4d3 Merge pull request #494 from vmware-tanzu/dependabot/go_modules/k8s.io/klog/v2-2.8.0 Matt Moyer 2021-03-15 12:54:46 -07:00
  • 8065a8d2e6 TestKubeCertAgent waits for CredentialIssuer strategy to be successful Ryan Richard 2021-03-15 11:42:57 -07:00
  • e22ad6171a Fix a race detector warning by re-declaring err in a t.Cleanup() Ryan Richard 2021-03-15 09:37:19 -07:00
  • c2b0acf241 Bump k8s.io/klog/v2 from 2.6.0 to 2.8.0 dependabot[bot] 2021-03-15 17:36:36 +00:00
  • 00694c9cb6 dynamiccert: split into serving cert and CA providers Monis Khan 2021-03-15 12:24:07 -04:00
  • dc96f398da Merge pull request #497 from mattmoyer/ignore-local-user-authenticator-coverage Matt Moyer 2021-03-15 08:46:28 -07:00
  • 755a87cdbb Ignore test coverage for local-user-authenticator. Matt Moyer 2021-03-15 10:43:17 -05:00
  • c538a4e8e8 Merge pull request #495 from mattmoyer/add-golangci-lint-to-pre-commit-hooks Matt Moyer 2021-03-15 08:23:09 -07:00
  • 41949d8e07 Add golangci-lint to .pre-commit-config.yaml. Matt Moyer 2021-03-15 10:16:49 -05:00
  • 4c162be8bf impersonator: add comment about long running func Monis Khan 2021-03-15 09:43:06 -04:00
  • b530cef3b1 impersonator: encode proper API status on failure Monis Khan 2021-03-13 20:25:23 -05:00
  • c82f568b2c certauthority.go: Refactor issuing client versus server certs Ryan Richard 2021-03-12 16:09:16 -08:00
  • 5e4746e96b impersonator: match kube API server long running func Monis Khan 2021-03-12 16:36:37 -05:00
  • 077aa8a42e Fix a copy-paste typo in the ImpersonationProxyInfo JSON field name. Matt Moyer 2021-03-12 13:23:24 -06:00
  • d509e7012e Add eventually loop to port-forward test Margo Crawford 2021-03-12 10:44:11 -08:00
  • 8c0bafd5be impersonator: prep work for future SA token support Monis Khan 2021-03-12 10:33:30 -05:00
  • 12b13b1ea5 impersonator: wire in genericapiserver.Config Monis Khan 2021-03-12 09:56:34 -05:00
  • 5b1dc0abdf test/integration: add some more debugging to kubectl impersonation test Andrew Keesler 2021-03-12 10:45:36 -05:00
  • 253e0f8e9a test/integration: TestImpersonationProxy/websocket_client passes on my machine now Andrew Keesler 2021-03-12 09:54:59 -05:00
  • 87f2899047 impersonator_test.go: small refactor of previous commit Ryan Richard 2021-03-11 17:24:52 -08:00
  • 6ddf4c04e6 impersonator_test.go: Test failed and anonymous auth Ryan Richard 2021-03-11 17:11:38 -08:00
  • 1d68841c78 impersonator_test.go: Test one more thing and small refactors Ryan Richard 2021-03-11 16:44:08 -08:00
  • f77c92560f Rewrite impersonator_test.go, add missing argument to IssuePEM() Ryan Richard 2021-03-11 16:27:16 -08:00
  • c12a23725d Fix lint errors from a previous commit Ryan Richard 2021-03-11 16:21:40 -08:00
  • d5beba354b Merge pull request #487 from vmware-tanzu/dependabot/docker/golang-1.16.1 Matt Moyer 2021-03-11 16:12:07 -08:00
  • 71712b2d00 Add test for http2 Andrew Keesler 2021-03-11 15:49:24 -08:00
  • ad3f04a982 Bump golang from 1.16.0 to 1.16.1 dependabot[bot] 2021-03-11 22:25:17 +00:00
  • a52455504f Capitalize "Concierge" in these error messages as well, for consistency. Matt Moyer 2021-03-11 16:18:15 -06:00
  • 4f154100ff Remove "--concierge-mode" flag from "pinniped login [...]" commands. Matt Moyer 2021-03-11 16:14:56 -06:00
  • d2d9b1e49e Stop outputting "--concierge-mode" from "pinniped get kubeconfig". Matt Moyer 2021-03-11 16:13:29 -06:00
  • c9ce067a0e Captialize "API" in this error message. Matt Moyer 2021-03-11 16:11:46 -06:00
  • 1af25552a0 Update ROADMAP.md Pablo Schuhmacher 2021-03-11 13:58:34 -08:00
  • a64786a728 Fix TestCLIGetKubeconfigStaticToken for new CLI log output. Matt Moyer 2021-03-11 15:47:39 -06:00
  • 2d28d1da19 Implement all optional methods in dynamic certs provider Monis Khan 2021-03-11 16:20:25 -05:00
  • 78fdc59d2d Merge branch 'main' of github.com:vmware-tanzu/pinniped into impersonation-proxy Matt Moyer 2021-03-11 14:56:11 -06:00
  • 29d7f406f7 Test double impersonation as the cluster admin Ryan Richard 2021-03-11 12:52:39 -08:00
  • 3449b896d6 Merge pull request #488 from mattmoyer/add-retries-for-supervisor-discovery-tests Matt Moyer 2021-03-11 12:22:22 -08:00
  • 22ca2da1ff test/integration: add "kubectl attach" test to TestImpersonationProxy Margo Crawford 2021-03-11 15:10:16 -05:00
  • e98c6dfdd8 Add retries to TestSupervisorTLSTerminationWithSNI and TestSupervisorOIDCDiscovery. Matt Moyer 2021-03-11 13:18:15 -06:00
  • fcd8c585c3 test/integration: update "kubectl port-forward" test to use non-privileged port Andrew Keesler 2021-03-11 13:04:36 -05:00
  • a918e9fb97 concierge_impersonation_proxy_test.go: Fix lint error in previous commit Ryan Richard 2021-03-11 10:04:24 -08:00
  • 34accc3dee Test using a service account token to auth to the impersonator Ryan Richard 2021-03-11 10:01:17 -08:00
  • 61d64fc4c6 Use ioutil.ReadFile instead of os.ReadFile Ryan Richard 2021-03-11 08:58:54 -08:00
  • b793b9a17e test/integration: add 'kubectl logs' test to TestImpersonationProxy Andrew Keesler 2021-03-11 10:42:12 -05:00