mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-02-06 04:51:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 5bbfc35d27 Merge pull request #175 from mattmoyer/split-config-apis Matt Moyer 2020-10-30 19:42:03 -05:00
  • f76b9857da Don't use custom labels when selecting an agent pod Ryan Richard 2020-10-30 17:41:17 -07:00
  • 9e1922f1ed Split the config CRDs into two API groups. Matt Moyer 2020-10-30 15:09:14 -05:00
  • 01f4fdb5c3 Remove namespace from a ClusterRoleBinding, which are not namespaced Ryan Richard 2020-10-30 16:10:04 -07:00
  • a5379c08e2 Whitespace-only change in two files Andrew Keesler 2020-10-30 15:18:40 -07:00
  • ad95bb44b0 Merge pull request #174 from mattmoyer/rename-webhook-idp Matt Moyer 2020-10-30 15:50:39 -05:00
  • 4b7592feaf Skip a part of an integration test which is not so easy with real Ingress Ryan Richard 2020-10-30 13:19:23 -07:00
  • 34da8c7877 Rename existing references to "IDP" and "Identity Provider". Matt Moyer 2020-10-30 14:02:21 -05:00
  • f3a83882a4 Rename the IdentityProvider field to Authenticator in TokenCredentialRequest. Matt Moyer 2020-10-30 12:41:21 -05:00
  • 0f25657a35 Rename WebhookIdentityProvider to WebhookAuthenticator. Matt Moyer 2020-10-30 11:39:26 -05:00
  • e69183aa8a Rename idp.concierge.pinniped.dev to authentication.concierge.pinniped.dev. Matt Moyer 2020-10-30 11:03:25 -05:00
  • 81390bba89 Rename idp.pinniped.dev to idp.concierge.pinniped.dev. Matt Moyer 2020-10-30 10:51:56 -05:00
  • 59431a3d3d Merge pull request #173 from mattmoyer/parallel-codegen Matt Moyer 2020-10-30 13:45:21 -05:00
  • 9760c03617 Do codegen across all version in parallel. Matt Moyer 2020-10-30 11:12:53 -05:00
  • 8b8ffc21c4 Merge pull request #172 from mattmoyer/rename-login-api Matt Moyer 2020-10-30 10:23:45 -05:00
  • f0320dfbd8 Rename login API to login.concierge.pinniped.dev. Matt Moyer 2020-10-30 09:34:43 -05:00
  • 3277e778ea Add a comment to an integration test Ryan Richard 2020-10-29 15:42:22 -07:00
  • 9c13b7144e Merge pull request #170 from vmware-tanzu/oidc_https_endpoints Ryan Richard 2020-10-28 17:15:11 -07:00
  • 059b6e885f Allow ytt templating of the loadBalancerIP for the supervisor Ryan Richard 2020-10-28 16:45:23 -07:00
  • 4af508981a Make default TLS secret name from app name in supervisor_discovery_test.go Ryan Richard 2020-10-28 16:11:19 -07:00
  • a007fc3bd3 Form paths correctly when the path arg is empty in supervisor_discovery_test.go Ryan Richard 2020-10-28 15:22:53 -07:00
  • c52874250a Fix a mistake in supervisor_discovery_test.go Ryan Richard 2020-10-28 14:25:01 -07:00
  • 01dddd3cae Add some docs for configuring supervisor TLS Ryan Richard 2020-10-28 13:42:02 -07:00
  • bd04570e51 supervisor_discovery_test.go tests hostnames are treated as case-insensitive Andrew Keesler 2020-10-28 13:09:20 -07:00
  • 8ff64d4c1a Require https scheme for OIDCProviderConfig Issuer field Ryan Richard 2020-10-28 12:49:41 -07:00
  • 2542a8e175 Stash and restore any pre-existing default TLS cert in supervisor_discovery_test.go Andrew Keesler 2020-10-28 12:32:21 -07:00
  • 29e0ce5662 Configure name of the supervisor default TLS cert secret via ConfigMap Ryan Richard 2020-10-28 11:56:50 -07:00
  • 978ecda758 Test SNI & default certs being used at the same time in integration test Ryan Richard 2020-10-28 08:58:50 -07:00
  • 170d3a3993 Forgot to commit some test fixtures in a prior commit Ryan Richard 2020-10-27 17:00:00 -07:00
  • 2777c4e9f3 Update prepare-for-integration-tests.sh to use ./hack/kind-{up,down}.sh Ryan Richard 2020-10-27 16:56:53 -07:00
  • 38802c2184 Add a way to set a default supervisor TLS cert for when SNI won't work Ryan Richard 2020-10-27 16:33:08 -07:00
  • 7bce16737b Get rid of WIP workflow Andrew Keesler 2020-10-27 18:39:19 -04:00
  • 96c4661a25 Fix unit-tests workflow YAML. Andrew Keesler 2020-10-27 18:26:11 -04:00
  • 45189e3e2b No way this windows-unit-tests workflow works. Andrew Keesler 2020-10-27 18:20:12 -04:00
  • d5dd65cfe8 So...does this macos-unit-tests workflow work? Andrew Keesler 2020-10-27 18:00:54 -04:00
  • 1f1b6c884e Add integration test: supervisor TLS termination and SNI virtual hosting Ryan Richard 2020-10-27 14:57:25 -07:00
  • eeb110761e Rename secretName to SNICertificateSecretName in OIDCProviderConfig Ryan Richard 2020-10-26 17:25:45 -07:00
  • 8b7c30cfbd Supervisor listens for HTTPS on port 443 with configurable TLS certs Ryan Richard 2020-10-26 17:03:26 -07:00
  • 7880f7ea41 Merge pull request #171 from danjahner/main Matt Moyer 2020-10-26 17:20:36 -05:00
  • 13ccb07fe4 Rename logo file Dan Jahner 2020-10-26 15:06:04 -07:00
  • 6c092deba5 Merge pull request #169 from mattmoyer/promote-login-command Matt Moyer 2020-10-23 19:48:44 -05:00
  • 25a91019c2 Add spec.secretName to OPC and handle case-insensitive hostnames Ryan Richard 2020-10-23 16:25:44 -07:00
  • 7615667b9b Update TestCLILoginOIDC to use new non-alpha login command. Matt Moyer 2020-10-23 14:31:15 -05:00
  • 0948457521 Promote the pinniped login command out of alpha. Matt Moyer 2020-10-23 14:26:51 -05:00
  • 110c72a5d4 dynamiccertauthority: fix cert expiration test failure Andrew Keesler 2020-10-23 15:34:25 -04:00
  • f928ef4752 Also mention using a service mesh is an option for supervisor ingress Andrew Keesler 2020-10-23 10:23:17 -07:00
  • eafdef7b11 Add docs for creating an Ingress for the Supervisor Ryan Richard 2020-10-22 16:57:41 -07:00
  • 4c844ba334 Merge pull request #168 from mattmoyer/cli-session-refresh Matt Moyer 2020-10-22 18:13:42 -05:00
  • 07001e5ee3 Extend TestCLILoginOIDC to test refresh flow. Matt Moyer 2020-10-22 17:35:06 -05:00
  • 3508a28369 Implement refresh flow in ./internal/oidcclient package. Matt Moyer 2020-10-22 16:12:02 -05:00
  • 397ec61e57 Specify the supervisor NodePort Service's port and nodePort separately Ryan Richard 2020-10-22 15:37:35 -07:00
  • 8ae04605ca Add comments for magic 31234 port Ryan Richard 2020-10-22 17:53:40 -04:00
  • 8772a00824 Merge pull request #167 from mattmoyer/fix-accidental-timeout-regression Matt Moyer 2020-10-22 12:24:49 -05:00
  • ce598eb58e Fix a timeout in TestCLILoginOIDC that was accidentally shortened in 0adbb5234e. Matt Moyer 2020-10-22 11:49:04 -05:00
  • 4b24e9c625 Merge pull request #166 from mattmoyer/add-cli-test-debug-output Matt Moyer 2020-10-22 11:17:18 -05:00
  • fe3b44b134 Add some verbose logging to TestCLILoginOIDC. Matt Moyer 2020-10-22 10:30:51 -05:00
  • 122f7cffdb Make the supervisor healthz endpoint public Ryan Richard 2020-10-21 15:24:48 -07:00
  • 5dbc03efe9 Merge pull request #165 from mattmoyer/cli-session-cache Matt Moyer 2020-10-21 16:30:03 -05:00
  • 0adbb5234e Extend TestCLILoginOIDC to test ID token caching behavior. Matt Moyer 2020-10-21 15:02:42 -05:00
  • e919ef6582 Add a file-based session cache. Matt Moyer 2020-10-21 12:54:26 -05:00
  • fa5f653de6 Implement readinessProbe and livenessProbe for supervisor Andrew Keesler 2020-10-21 11:51:31 -07:00
  • e8113e3770 Add basic caching framework to ./internal/oidclient package. Matt Moyer 2020-10-21 13:05:19 -05:00
  • 7f6a82aa91 Refactor and rename ./internal/oidcclient/login to ./internal/oidcclient. Matt Moyer 2020-10-21 13:04:46 -05:00
  • 4ef41f969d Add a util helper for marking a CLI flag as hidden. Matt Moyer 2020-10-19 10:48:10 -05:00
  • 3e39800005 Merge pull request #164 from vmware-tanzu/virtual-hosts Andrew Keesler 2020-10-21 09:16:59 -04:00
  • 52ebd77527 Add optional PINNIPED_TEST_SUPERVISOR_HTTPS_CA_BUNDLE for integration tests Ryan Richard 2020-10-20 16:46:33 -07:00
  • ec21fc8595 Also delete the final OIDCProviderConfig made by an integration test Ryan Richard 2020-10-20 15:59:25 -07:00
  • 276dff5772 Introduce PINNIPED_TEST_SUPERVISOR_HTTPS_ADDRESS Ryan Richard 2020-10-20 15:57:10 -07:00
  • 90235418b9 Add a test for when issuer hostname and supervisor public address differ Ryan Richard 2020-10-20 15:22:03 -07:00
  • 9ba93d66c3 test/integration: prefactoring for testing virtual hosts Ryan Richard 2020-10-20 17:00:36 -04:00
  • aff85acf37 Merge pull request #163 from vmware-tanzu/discovery_jwks Ryan Richard 2020-10-19 13:00:49 -07:00
  • 4da64f38b5 Integration test for per-issuer OIDC JWKS endpoints Ryan Richard 2020-10-19 12:21:18 -07:00
  • d9d76726c2 Implement per-issuer OIDC JWKS endpoint Ryan Richard 2020-10-16 17:51:40 -07:00
  • 08659a6583 Merge pull request #158 from vmware-tanzu/label_every_resource Ryan Richard 2020-10-15 14:02:29 -07:00
  • e2630be00a Update feature proposal template to work for users and contributors Andrew Keesler 2020-10-15 17:01:24 -04:00
  • 8fe031e73d Do not copy pkg directory in Dockerfile Andrew Keesler 2020-10-15 13:31:16 -07:00
  • 617c5608ca Supervisor controllers apply custom labels to JWKS secrets Andrew Keesler 2020-10-15 12:40:56 -07:00
  • dda3c21a8e Add missing parenthesis to bug report template Andrew Keesler 2020-10-15 14:07:43 -04:00
  • f8e461dfc3 Merge branch 'main' into label_every_resource Ryan Richard 2020-10-15 10:19:03 -07:00
  • 94f20e57b1 Concierge controllers add labels to all created resources Ryan Richard 2020-10-15 10:14:23 -07:00
  • 943286bbc6 Merge pull request #157 from ankeesler/generate-jwk-key Andrew Keesler 2020-10-15 11:55:22 -04:00
  • e05213f9dd supervisor-generate-key: use EC keys intead of RSA Andrew Keesler 2020-10-15 11:33:08 -04:00
  • 5a0dab768f test/integration: remove unused function (see 31225ac7a) Andrew Keesler 2020-10-15 09:26:15 -04:00
  • fbcce700dc Fix whitespace/spelling nits in JWKS controller Andrew Keesler 2020-10-15 09:22:17 -04:00
  • a5abe9ca3e hack/lib/tilt: fix deployment change leftover from c030551a Andrew Keesler 2020-10-15 09:20:09 -04:00
  • 1b99983441 apis: fix indentation in Go type Andrew Keesler 2020-10-15 09:19:00 -04:00
  • 31225ac7ae test/integration: reuse CreateTestOIDCProvider helper Andrew Keesler 2020-10-15 09:09:49 -04:00
  • f21122a309 Merge remote-tracking branch 'upstream/main' into generate-jwk-key Andrew Keesler 2020-10-15 07:51:15 -04:00
  • aef25163e2 Get rid of an extra dependency from c030551 Andrew Keesler 2020-10-15 07:50:53 -04:00
  • 87c7e9a556 hack/prepare-for-integration-tests.sh: default COLORTERM for when not set Andrew Keesler 2020-10-14 19:58:43 -04:00
  • c05bdb58ac Merge branch 'main' into label_every_resource Ryan Richard 2020-10-14 16:24:51 -07:00
  • 84a0084703 Tilefile watches for changes in ytt templates Ryan Richard 2020-10-14 16:21:40 -07:00
  • 1301018655 Support installing concierge and supervisor into existing namespace Ryan Richard 2020-10-14 15:05:42 -07:00
  • 76e89b523b Merge remote-tracking branch 'upstream/main' into generate-jwk-key Andrew Keesler 2020-10-14 17:40:17 -04:00
  • c030551af0 supervisor-generate-key: unit and integration tests Andrew Keesler 2020-10-14 16:41:16 -04:00
  • cd970616da Merge pull request #149 from mattmoyer/oidc-cli-part-2 Matt Moyer 2020-10-14 13:40:12 -05:00
  • 68d20298f2 Fix chromedriver usage inside our test container. Matt Moyer 2020-10-14 12:33:52 -05:00
  • 19a1d569c9 Restructure this test to avoid data races. Matt Moyer 2020-10-14 12:28:08 -05:00
  • a197a26335 Change community meeting time Ryan Richard 2020-10-14 09:54:09 -07:00
  • 6aed025c79 supervisor-generate-key: initial spike Andrew Keesler 2020-10-14 09:47:34 -04:00