mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-02-06 21:11:47 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 274e6281a8 Whoops, missed these fixes in test/library/env.go. Matt Moyer 2021-03-04 15:21:17 -06:00
  • 7146cb3880 Remove old debug-make-impersonation-token command. Matt Moyer 2021-03-04 15:02:42 -06:00
  • 9dfbe60253 Do the kubeconfig proxy environment injection, but actually render back out the YAML. Matt Moyer 2021-03-04 14:41:20 -06:00
  • 1734280a19 Merge branch 'main' of github.com:vmware-tanzu/pinniped into impersonation-proxy Matt Moyer 2021-03-04 12:38:00 -06:00
  • 9a0f75980d Set a special proxy environment just for the "pinniped login oidc" command in the E2E test. Matt Moyer 2021-03-04 12:35:29 -06:00
  • ddd1d29e5d Fix "pinniped get kubeconfig" strategy detection to pick the _first_ working strategy. Matt Moyer 2021-03-04 12:24:57 -06:00
  • 03f09c6870 Allow TestE2EFullIntegration to run on clusters where only the impersonation proxy works (again). Matt Moyer 2021-03-03 16:49:33 -06:00
  • f99c186c55 Merge pull request #475 from vmware-tanzu/dependabot/go_modules/k8s.io/klog/v2-2.6.0 Matt Moyer 2021-03-04 10:04:08 -06:00
  • 14b8def320 Bump k8s.io/klog/v2 from 2.5.0 to 2.6.0 dependabot[bot] 2021-03-04 06:10:36 +00:00
  • 5697adc36a Revert "Allow TestE2EFullIntegration to run on clusters where only the impersonation proxy works." Ryan Richard 2021-03-03 17:24:10 -08:00
  • 9c1c760f56 Always clean up the ConfigMap at the end of the impersonator int test Ryan Richard 2021-03-03 16:23:07 -08:00
  • 48f2ae9eb4 Fix a typo in concierge_impersonation_proxy_test.go Ryan Richard 2021-03-03 15:17:45 -08:00
  • 7c9aff3278 Allow TestE2EFullIntegration to run on clusters where only the impersonation proxy works. Matt Moyer 2021-03-03 16:49:33 -06:00
  • 58607c7e81 Update TestCredentialIssuer int test to ignore ImpersonationProxy type Ryan Richard 2021-03-03 14:19:24 -08:00
  • 1b3103c9b5 Remove a nolint comment to satisfy the version of the linter used in CI Ryan Richard 2021-03-03 13:37:03 -08:00
  • 666c0b0e18 Use CredentialIssuer for URL/CA discovery in impersonator int test Ryan Richard 2021-03-03 12:53:23 -08:00
  • f0fc84c922 Add new allowed values to field validations on CredentialIssuer Ryan Richard 2021-03-03 12:30:21 -08:00
  • 7b7901af36 Add -timeout 0 when describing how to run integration tests Ryan Richard 2021-03-03 12:08:40 -08:00
  • 57453773ea CONTRIBUTING.md: remove mention of Tilt, since it isn't working well Ryan Richard 2021-03-03 12:06:44 -08:00
  • f4fcb9bde6 Sort CredentialIssuer strategies in preferred order. Matt Moyer 2021-03-03 14:03:27 -06:00
  • 0799a538dc change FromString to Parse so TargetPort parses correctly Margo Crawford 2021-03-03 11:11:58 -08:00
  • 4f700d4811 Merge pull request #473 from enj/enj/r/oidc_discovery_json Mo Khan 2021-03-03 14:12:33 -05:00
  • d7edc41c24 oidc discovery: encode metadata once and reuse Monis Khan 2021-03-03 13:37:43 -05:00
  • 333a3ab4c2 impersonator_config_test.go: Add another unit test Ryan Richard 2021-03-03 09:37:08 -08:00
  • 730092f39c impersonator_config.go: refactor to clean up cert name handling Ryan Richard 2021-03-03 09:22:35 -08:00
  • d3599c541b Fill in the frontend field of CredentialIssuer status for impersonator Ryan Richard 2021-03-02 16:51:35 -08:00
  • 454f35ccd6 Edit a comment on a type and run codegen Ryan Richard 2021-03-02 16:00:49 -08:00
  • 27daf0a2fe Increase timeout for creating load balancer in impersonation proxy test Margo Crawford 2021-03-02 15:49:01 -08:00
  • 8bf03257f4 Add new impersonation-related constants to api types and run codegen Ryan Richard 2021-03-02 15:27:54 -08:00
  • 1ad2c38509 Impersonation controller updates CredentialIssuer on every call to Sync Ryan Richard 2021-03-02 14:48:58 -08:00
  • 84cc42b2ca Remove tls field from the impersonator config Ryan Richard 2021-03-02 12:23:32 -08:00
  • 4c68050706 Allow all headers besides impersonation-* through impersonation proxy Margo Crawford 2021-03-02 14:56:54 -08:00
  • aa826a1579 Merge pull request #472 from mattmoyer/deflake-getpinnipedcategory-test Matt Moyer 2021-03-02 16:42:23 -06:00
  • 60f92d5fe2 Merge branch 'main' of github.com:vmware-tanzu/pinniped into impersonation-proxy Matt Moyer 2021-03-02 16:06:19 -06:00
  • df27c2e1fc Use randomly generated API groups in TestKubeClientOwnerRef. Matt Moyer 2021-03-02 15:41:21 -06:00
  • 45f57939af Make TestGetPinnipedCategory more resilient. Matt Moyer 2021-03-02 14:17:27 -06:00
  • 30f5f66090 Merge pull request #471 from vmware-tanzu/change-credentialissuer-strategies-api Matt Moyer 2021-03-02 15:39:41 -06:00
  • 2a29303e3f Fix label handling in kubecertagent controllers. Matt Moyer 2021-03-02 13:59:46 -06:00
  • 643c60fd7a Drop NewKubeConfigInfoPublisherController, start populating strategy frontend from kubecertagent execer controller. Matt Moyer 2021-03-02 12:55:24 -06:00
  • 7174f857d8 Add generated code. Matt Moyer 2021-03-01 16:17:04 -06:00
  • 0be2c0d40f Add CredentialIssuer "status.strategies[].frontend" field. Matt Moyer 2021-03-01 14:26:43 -06:00
  • a75c2194bc Read the names of the impersonation-related resources from the config Ryan Richard 2021-03-02 09:31:24 -08:00
  • 41140766f0 Add integration test which demonstrates double impersonation Ryan Richard 2021-03-01 17:53:26 -08:00
  • 045c427317 Merge branch 'main' into impersonation-proxy Ryan Richard 2021-03-01 17:03:56 -08:00
  • ac404af48f Add .DS_Store files to .gitignore Ryan Richard 2021-03-01 17:03:05 -08:00
  • a2ecd05240 Impersonator config controller writes CA cert & key to different Secret Ryan Richard 2021-03-01 17:02:08 -08:00
  • a778a5ef81 Merge pull request #469 from mattmoyer/split-out-credentialissuer-status-helpers Matt Moyer 2021-03-01 18:14:16 -06:00
  • c94ee7188c Factor out issuerconfig.UpdateStrategy helper. Matt Moyer 2021-03-01 15:41:55 -06:00
  • 7ef6a02d0a Merge pull request #466 from mattmoyer/bump-dependencies Matt Moyer 2021-03-01 14:16:58 -06:00
  • c832cab8d0 Update internal/oidc/token_exchange.go for latest Fosite version. Matt Moyer 2021-03-01 13:08:41 -06:00
  • 234465789b Regenerate gomock mocks with v1.5.0. Matt Moyer 2021-03-01 10:08:57 -06:00
  • da6d69d807 Bump github.com/golang/mock from 1.4.4 to 1.5.0 dependabot[bot] 2021-02-25 15:39:55 +00:00
  • 04ef7c5456 Bump github.com/ory/fosite from 0.36.0 to 0.38.0 dependabot[bot] 2021-02-25 15:39:48 +00:00
  • f05c3092b5 Bump github.com/go-openapi/spec from 0.19.9 to 0.20.3 dependabot[bot] 2021-02-25 15:39:25 +00:00
  • 2637dc00da Bump golang from 1.15.8 to 1.16.0 dependabot[bot] 2021-02-17 05:54:07 +00:00
  • e8365d2c57 Merge pull request #467 from mattmoyer/fix-docs-title Matt Moyer 2021-03-01 11:35:56 -06:00
  • dd151b3f50 Fix missing titles on website docs. Matt Moyer 2021-03-01 11:31:27 -06:00
  • f1eeae8c71 Parse out ports from impersonation proxy endpoint config Ryan Richard 2021-02-26 15:01:38 -08:00
  • 41e4a74b57 impersonator_config_test.go: more small refactoring of test helpers Ryan Richard 2021-02-26 13:53:30 -08:00
  • fa49beb623 Change length of TLS certs and CA. Margo Crawford 2021-02-26 12:05:17 -08:00
  • 9bd206cedb impersonator_config_test.go: small refactor of test helpers Margo Crawford 2021-02-26 11:27:19 -08:00
  • 5b01e4be2d impersonator_config.go: handle more error cases Ryan Richard 2021-02-26 10:58:56 -08:00
  • bbbb40994d Prefer hostnames over IPs when making certs to match load balancer ingress Ryan Richard 2021-02-25 17:03:34 -08:00
  • f709da5569 Updated test assertions for new logger version Margo Crawford 2021-02-25 15:18:36 -08:00
  • ccb17843c1 Fix some lint errors that resulted from merging main Margo Crawford 2021-02-25 15:06:24 -08:00
  • f8111db5ff Merge branch 'main' into impersonation-proxy Ryan Richard 2021-02-25 14:50:40 -08:00
  • 3fcde8088c concierge_impersonation_proxy_test.go: Make it work on more clusters Ryan Richard 2021-02-25 14:40:02 -08:00
  • f937ae2c07 Add --concierge-credential-issuer flag to "pinniped get kubeconfig" command. Matt Moyer 2021-02-25 14:16:40 -06:00
  • 1c7c22352f Switch "get kubeconfig" flags to use --concierge-mode flag instead of boolean flag. Matt Moyer 2021-02-25 11:31:11 -06:00
  • 0cae72b391 Get hostname from load balancer ingress to use for impersonator certs Ryan Richard 2021-02-25 11:40:14 -08:00
  • 9a8c80f20a Impersonator checks cert addresses when endpoint config is a hostname Margo Crawford 2021-02-25 10:27:19 -08:00
  • a42e3708aa Merge pull request #453 from mattmoyer/bump-dependencies Matt Moyer 2021-02-25 09:33:53 -06:00
  • c8fc8a0b65 Reformat some log-based test assertions. Matt Moyer 2021-02-25 08:11:37 -06:00
  • 8fc68a4b21 WIP improved cert management in impersonator config Margo Crawford 2021-02-24 17:08:58 -08:00
  • 975d493b8a Fix some small lint errors Margo Crawford 2021-02-24 16:09:15 -08:00
  • aee7a7a72b More WIP managing TLS secrets from the impersonation config controller Ryan Richard 2021-02-24 16:03:17 -08:00
  • a31c24e5a0 Bump a bunch of minor dependencies. Matt Moyer 2021-02-24 22:37:31 +00:00
  • 943b0ff6ec Switch login flags to use --concierge-mode flag instead of boolean flag. Matt Moyer 2021-02-24 17:07:07 -06:00
  • d42c533fbb WIP managing TLS secrets from the impersonation config controller Ryan Richard 2021-02-24 10:56:24 -08:00
  • 4dbde4cf7f Fix TestImpersonationProxy on Kubernetes 1.20 with RootCAConfigMap. Matt Moyer 2021-02-24 12:08:41 -06:00
  • 7be8927d5e Add generated code for new CredentialIssuer API fields. Matt Moyer 2021-02-24 10:47:06 -06:00
  • 96d7743eab Add CredentialIssuer API fields for impersonation proxy. Matt Moyer 2021-02-24 10:45:25 -06:00
  • 2254f76b30 Fix a broken link, a typo, and tweak menu text. Matt Moyer 2021-02-24 09:23:21 -06:00
  • 852c1b7a27 Fix some copy-paste errors on install-supervisor.md. Matt Moyer 2021-02-23 16:01:40 -06:00
  • 522210adb6 Merge pull request #447 from mattmoyer/website-security-headers Matt Moyer 2021-02-23 14:39:31 -06:00
  • a4089fcc72 Add security headers to the website. Matt Moyer 2021-02-23 14:26:58 -06:00
  • 60034b39a3 Fix wording on website hero text. Matt Moyer 2021-02-23 12:17:26 -08:00
  • 2f7c80a5e0 Merge pull request #446 from mattmoyer/more-website-tweaks Matt Moyer 2021-02-23 14:13:27 -06:00
  • 827e6e0dc0 More website tweaks. Matt Moyer 2021-02-23 13:55:42 -06:00
  • dac1c9939e concierge_impersonation_proxy_test.go: Test all the verbs Margo Crawford 2021-02-23 10:38:02 -08:00
  • a6d74ea876 Merge pull request #443 from mattmoyer/reorg-docs Matt Moyer 2021-02-23 11:12:32 -06:00
  • 7a1d92a8d4 Restructure docs into new layout. Matt Moyer 2021-02-22 17:52:23 -06:00
  • f2db76a0d5 Fix typo in multiple-pinnipeds post. Matt Moyer 2021-02-22 09:36:29 -06:00
  • 3721632de2 Move scope doc out of website to SCOPE.md. Matt Moyer 2021-02-18 10:10:35 -06:00
  • 4de949fe18 Rework docs sidebar to have some nesting. Matt Moyer 2021-02-17 17:02:57 -06:00
  • 069b3fba37 Merge remote-tracking branch 'upstream/main' into impersonation-proxy Andrew Keesler 2021-02-23 12:10:52 -05:00
  • e74dd47b1d Merge pull request #439 from enj/enj/f/whoami_api Mo Khan 2021-02-23 10:40:38 -05:00
  • 6a9f57f83d TestWhoAmI: support older clusters (CSR and impersonation) Monis Khan 2021-02-22 23:30:02 -05:00
  • 80ff5c1f17 Fix bug which prevented watches from working through impersonator Ryan Richard 2021-02-22 17:23:11 -08:00
  • aa22047a0f Generated Monis Khan 2021-02-19 13:55:01 -05:00