* Disabled default modsecurity_rules_file if modsecurity-snippet is specifed
The default modsecurity_rules_file overwrites the ModSecurity-snippet if it is specified with custom config settings like "SecRuleEngine On". This will not let Modsecurity be in blocking mode even if "SecRuleEngine On" is specified in the ModSecurity-snippet configuration
* Remove unnecessary comments
Only have the default Modsecurity conf settings in case Modsecurity configuration snippet is not present and remove unnecessary comments
* Fixed modsecurity default file only if Modsecurity snippet present
Fixed if condition Modsecurity snippet present have modsecurity default config file
* Added e2e test to disabling modsecurity conf
Added e2e in case modsecurity-snippet enabled to disable settings in default modsecurity.conf
* Validate writing to a different location
Validate also modsecurity to write to a different location instead of the default directory
* Fixed the formatting
* Fixed if empty ModsecuritySnippet
* Fixed ModsecuritySnippet condition
* Fixed the condition also in ingress controller template
* Removed the default config condition in ingress controller template
* Fixed the default config condition in ingress controller template
* Fixed pull-ingress-nginx-test
* Revert "Fixed the default config condition in ingress controller template"
This reverts commit 9d38eca40f.
* Revert template_test
* Adjusted the formating %v
* use '-O2' instead of '-Og'
'-O2' produce production optimized binary while '-Og' is used mostly
for debugging
* use '-mtune=generic' instead of '-mtune=native'
'-mtune=native' produce optimal code for builder host system, but it
can be sub-optimal for execution host system
- Revise to be more in line with the style guide for Kubernetes official docs
- Avoid recommending that readers use `k8s.io` namespaced controller names
for their own custom controller configuration.
Co-authored-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: James Strong <strong.james.e@gmail.com>
Small changes, mostly:
- formatting (especially in lists, since mkdocs doesn't seem
to support nested lists)
- use the same level of warning when it makes sense
(intead of "danger", "failure", etc)
- improve wording in a few places
- re-order a few operations
- move a few sentences that were out of place
* allow set annotations for admission Jobs
Signed-off-by: Alex Co <tuanclq@gmail.com>
* Bump chart version & update CHANGELOG
Signed-off-by: Alex Co <tuanclq@gmail.com>
* Bump chart version again
Signed-off-by: Alex Co <tuanclq@gmail.com>
* Add example
Signed-off-by: Alex Co <tuanclq@gmail.com>
* Fix names in documentation
This fixes the documentation to reflect the name change from
`nginx-ingress` to `ingress-nginx`.
Signed-off-by: Reinhard Nägele <unguiculus@gmail.com>
* Revert accidental changelog update
Signed-off-by: Reinhard Nägele <unguiculus@gmail.com>
* Add labels to RBAC resources
* Add labels to all resources
* Fix labels indentaton in patch jobs
* Add controller and default backend labels to pods
Signed-off-by: Muhammad Hamza Zaib <hamzazaib3202@gmail.com>
* Bump chart version and update changelog
Signed-off-by: Muhammad Hamza Zaib <hamzazaib3202@gmail.com>
the BASE_IMAGE `k8s.gcr.io/ingress-nginx/nginx:v20210915-g498892514@sha256:8c1e48123e64e3f2b90ed32a53babd9b5f5431dad26beecdcb8fc185ded3b6dd` was alreday patched
