DevFW-CICD/ingress-nginx-helm
12
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7852 commits 4 branches 217 tags 166 MiB
Commit graph

911 commits

Author SHA1 Message Date
Long Wu Yuan
6d9a39eda7
changes for release v1.2.0 (#8491) 2022-04-21 19:36:13 -07:00
Long Wu Yuan
2e1a4790bb
changed nginx base img tag to img built with alpine3.14.6 (#8479) 2022-04-15 21:37:10 -07:00
Chris Shino
f9372aa495
added new auth-tls-match-cn annotation (#8434) 
* added new auth-tls-match-cn annotation

* added few more tests
 2022-04-15 12:59:10 -07:00
Ricardo Katz
81c2afd975
update base images and protobuf gomod (#8478) 2022-04-15 12:53:12 -07:00
sskserk
d4b9b486e6
Upstream keepalive time (#8319) 
* nginx 1.19.10 keepalive_time parameter

* nginx v1.19.10 base image

* keepalive_time documentation

* base image

* restore base image

* e2e test

* replace default value in test
 2022-04-15 04:09:10 -07:00
Ricardo Katz
89ed571d2a
Implement object deep inspector (#8456) 2022-04-11 07:06:07 -07:00
Ricardo Katz
5737f16663
Update dependencies (#8455) 
* Update more dependencies

* Fix e2e test for new ProbeHandler
 2022-04-10 08:58:05 -07:00
Ricardo Katz
3def835a6a
Jail/chroot nginx process inside controller container (#8337) 
* Initial work on chrooting nginx process

* More improvements in chroot

* Fix charts and some file locations

* Fix symlink on non chrooted container

* fix psp test

* Add e2e tests to chroot image

* Fix logger

* Add internal logger in controller

* Fix overlay for chrooted tests

* Fix tests

* fix boilerplates

* Fix unittest to point to the right pid

* Fix PR review
 2022-04-08 21:48:04 -07:00
Gabor Lekeny
83ce21b4dd
Add keepalive support for auth requests (#8219) 
* Add keepalive support for auth requests

* Fix typo

* Address PR comments

* Log warning when auth-url contains variable in its host:port
* Generate upstream name without replacing dots to underscores in server name
* Add comment in the nginx template when the keepalive upstream block is referenced

* Workaround for auth_request module ignores keepalive in upstream block

* The `auth_request` module does not support HTTP keepalives in upstream block:
  https://trac.nginx.org/nginx/ticket/1579
* As a workaround we use ngx.location.capture but unfortunately it does not
  support HTTP/2 so `use-http2` configuration parameter is needed.

* Handle PR comments

* Address PR comments

* Handle invalid values for int parameters

* Handle PR comments

* Fix e2e test
 2022-04-08 20:22:04 -07:00
LongWuYuan
b9f50e691d base img update for e2e-test-runner & opentelemetry 2022-04-01 17:07:08 +05:30
Aditya Kamath
f1cb2b73ca
update nginx base image to new alpine 3.14.4 build - try 2 (#8409) 
* update nginx base image to new alpine 3.14.4 build

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update test image

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Update nginx base image

Signed-off-by: Aditya Kamath <theunrealgeek@gmail.com>

Co-authored-by: James Strong <strong.james.e@gmail.com>
 2022-03-31 13:43:04 -07:00
Ana Claudia Riekstin
ba7f295538
Fix 50% split between canary and mainline tests (#8315) 
* fix 50% canary test

* fix past tense

* after code review

* revert go.sum and go.mod

* run gofmt
 2022-03-16 06:25:49 -07:00
Maksim Nabokikh
1e2ce80846
fix: deny locations with invalid auth-url annotation (#8256) 
* fix: deny locations with invalid auth-url annotation

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* Delete duplicate test

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-03-01 02:13:51 -08:00
Elvin Efendi
04035cc1c2
Do not validate ingresses with unknown ingress class in admission webhook endpoint. (#8221) 2022-02-06 12:28:51 -08:00
Damien Mathieu
dcd552ceb5
use functional options to reduce number of methods creating an EchoDeployment (#8199) 2022-02-02 05:12:22 -08:00
Jintao Zhang
53ac0ddd42
Using Go install for misspell (#8191) 
* chore: using go install misspell

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: fix typo

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-01-26 18:52:50 -08:00
Ricardo Katz
a17181e43e
Update go in runner and release v1.1.1 (#8120) 
* Update go in runner and release v1.1.1

* Update build/run-in-docker.sh

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
 2022-01-09 20:37:11 -08:00
Ricardo Katz
38c73233f3
Remove deprecated libraries, update other libs, add ci v1.23 (#8118) 2022-01-09 16:29:12 -08:00
Tobias Salzmann
ce9deaa332
Add stream-snippet as a ConfigMap and Annotation option (#8029) 
* stream snippet

* gofmt -s
 2021-12-23 11:46:30 -08:00
Moh Basher
fea7fed6da
Disable default modsecurity_rules_file if modsecurity-snippet is specified (#8021) 
* Disabled default modsecurity_rules_file if modsecurity-snippet is specifed

The default modsecurity_rules_file overwrites the ModSecurity-snippet if it is specified with custom config settings like "SecRuleEngine On". This will not let Modsecurity be in blocking mode even if "SecRuleEngine On" is specified in the ModSecurity-snippet configuration

* Remove unnecessary comments

Only have the default Modsecurity conf settings in case Modsecurity configuration snippet is not present and remove unnecessary comments

* Fixed modsecurity default file only if Modsecurity snippet present

Fixed if condition  Modsecurity snippet present have modsecurity default config file

* Added e2e test to disabling modsecurity conf

Added e2e in case modsecurity-snippet enabled to disable settings in default modsecurity.conf

* Validate writing to a different location

Validate also modsecurity to write to a different location instead of the default directory

* Fixed the formatting

* Fixed if empty ModsecuritySnippet

* Fixed ModsecuritySnippet condition

* Fixed the condition also in ingress controller template

* Removed the default config condition  in ingress controller template

* Fixed the default config condition in ingress controller template

* Fixed pull-ingress-nginx-test

* Revert "Fixed the default config condition in ingress controller template"

This reverts commit 9d38eca40f.

* Revert template_test

* Adjusted the formating %v
 2021-12-23 03:34:38 -08:00
Yecheng Fu
5cff197bc5
add canary-weight-total annotation (#6338) 2021-12-07 08:40:00 -08:00
Kamil Hristov
042e426b01
Improve admission e2e-tests (#7953) 
Check if the message equals an expected value for checks without errors.
 2021-11-28 18:33:22 -08:00
James Strong
d4a6ade65f
update default block list,docs, tests (#7942) 
* update default block list,docs, tests

* fix config for admin test

* gofmt

* remove the err return
 2021-11-23 09:06:17 -08:00
Ricardo Katz
b08d4278ad
Try to improve test speed (#7922) 2021-11-15 14:34:48 -08:00
zryfish
7203a0b8bd
support watch namespaces matched namespace selector (#7472) 
skip caching namespaces at cluster scope if only watching single namespace

add --watch-namespace-selector in user guide

add e2e test
 2021-11-12 11:46:28 -08:00
Ricardo Katz
67e13bf692
Add option to sanitize annotation inputs (#7874) 
* Add option to sanitize annotation inputs

* Fix e2e tests after string sanitization

* Add proxy_pass and serviceaccount as denied values
 2021-11-12 11:40:30 -08:00
Christopher Larivière
100057d0c5
fix missing \- in regex expression for CORS wildcard domain (#7904) 2021-11-11 10:26:08 -08:00
Christopher Larivière
65b8eeddec
Support cors-allow-origin with multiple origins (#7614) 
* Add Initial support for multiple cors origins in nginx

- bump cluster version for `make dev-env`
- add buildOriginRegex function in nginx.tmpl
- add e2e 4 e2e tests for cors.go
- refers to feature request #5496

* add tests + use search to identify '*' origin

* add tests + use search to identify '*' origin

Signed-off-by: Christopher Larivière <lariviere.c@gmail.com>

* fix "should enable cors test" looking at improper values

* Modify tests and add some logic for origin validation

- add origin validation in cors ingress annotations
- add extra tests to validate regex
- properly escape regex using "QuoteMeta"
- fix some copy/paste errors

* add TrimSpace and length validation before adding a new origin

* modify documentation for cors and remove dangling comment

* add support for optional port mapping on origin

* support single-level wildcard subdomains + tests

* Remove automatic `*` fonctionality from incorrect origins

- use []string instead of basic string to avoid reparsing in template.go
- fix typo in docs
- modify template to properly enable only if the whole block is enabled
- modify cors parsing
- test properly by validating that the value returned is the proper
  origin
- update unit tests and annotation tests

* Re-add `*` when no cors origins are supplied + fix tests

- fix e2e tests to allow for `*`
- re-add `*` to cors parsing if trimmed cors-allow-origin is empty
(supplied but empty) and if it wasn't supplied at all.

* remove unecessary logic for building cors origin + remove comments

- add some edge cases in e2e tests
- rework logic for building cors origin

there was no need for logic in template.go for buildCorsOriginRegex
if there is a `*` it ill be short-circuited by first if.

if it's a wildcard domain or any domain (without a wildcard), it MUST
match the main/cors.go regex format.

if there's a star in a wildcard domain, it must be replaced with
`[A-Za-z0-9]+`

* add missing check in e2e tests
 2021-11-02 12:31:42 -07:00
Rahil Patel
c8ab4dc307
add brotli-min-length configuration option (#7854) 
* add `brotli-min-length` configuration option

* add e2e tests for brotli

* include check for expected content type

* fix header and format
 2021-11-02 04:52:59 -07:00
Matthew Silverman
7d5452d00b
configmap: option to not trust incoming tracing spans (#7045) 
* validate the sender of tracing spans

* add location-specific setting
 2021-10-24 14:36:21 -07:00
Ricardo Katz
97e39e79e2
Add e2e test for non ingressclass enabled ingress (#7785) 2021-10-10 16:18:37 -07:00
Claudiu Belu
c0f61039e4
Updates E2E test images registry (#7704) 
We're moving away from google.com gcp projects. These images are now on community-owned infra.
 2021-09-27 09:42:18 -03:00
Ricardo Katz
6885ab2281
Update base nginx image to the corrected version (#7705) 2021-09-26 16:24:23 -07:00
Ricardo Katz
4fc57dcc49
Change enable-snippet to allow-snippet-annotation (#7670) 
Signed-off-by: Ricardo Pchevuzinske Katz <rkatz@vmware.com>
 2021-09-20 16:52:23 -07:00
Ricardo Katz
5e6ab651ec
Add option to force enabling snippet directives (#7665) 
Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
 2021-09-19 12:40:08 -07:00
Jintao Zhang
53fab99a86
Update e2e-test-runner image (#7648) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2021-09-16 10:01:46 -07:00
Jintao Zhang
d9f96bbbba
Update NGINX base image to v1.19 (#7643) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2021-09-16 05:07:46 -07:00
Renato Britto Araujo
0dbaadf608
Add e2e tests for secure cookie annotations (#7575) (#7619) 
Co-authored-by: Agoretti <andremotta96@gmail.com>

Co-authored-by: Agoretti <andremotta96@gmail.com>
 2021-09-12 13:10:07 -07:00
Ricardo Katz
cda59ccc9c
Add new flag to watch ingressclass by name instead of spec (#7609) 2021-09-10 10:14:01 -07:00
Renan Gonçalves
48601bcd0e
Allow the usage of Services as Upstream on a global level (#7469) 
It is possible to change this behavior on an ingress level, which works
well when you only have a few of them. When running several dozen
ingress and with a high change rate of running pods it makes it easier
to define this configuration on a global level.

This change is completely backwards compatible, only adding the
possibility of defining a new key in the configmap.
 2021-09-07 12:47:15 -07:00
Maxim
af5f40a0eb
Trigger syncIngress on Service addition/deletion #7346 (#7374) 
Normally Ingress sinchronization for Services is triggered when
corresponding Service's Endpoints are added, deleted or modified.
Services of type ExternalName, however, do not have any endpoints
and hence do not trigger Ingress synchronization as only Update
events are being watched. This commit makes sure that Update and
Delete Service events also enqueue a syncIngress task.
 2021-09-07 10:47:16 -07:00
Elvin Efendi
33061b8cdf
put modsecurity e2e tests into their own packages (#7560) 2021-09-07 10:35:22 -07:00
Ray
cf9ae96d72
Additional AuthTLS assertions and doc change to demonstrate auth-tls-secret enables the other AuthTLS annotations (#7202) 
* Fix indentation of nested list in AuthTLS annotations

Also, put `<annotation>`: <description text>` on a single line in
Markdown markup, which will match what gets rendered eventually.

On the other hand, for the line on auth-tls-secret (This annotation
expects the Secret name in the form "namespace/secretName"), its
Markdown markup suggests that the author wanted the line to start on its
own line, but currently this gets rendered on the same line. It's nice
for this to be on its own line, since it's kind of a "note" about the
annotation syntax. Format/indent the markup appropriately so that it
shows up on its line.

* Fix indentation of nested list in CORS annotations

Also, put `<annotation>`: <description text>` on a single line in
Markdown markup, which will match what gets rendered eventually.

On the other hand, for lines noting the allowed characters (This is a
multi-valued field...), its Markdown markup suggests that the author
wanted the line to start on its own line, but currently this gets
rendered on the same line. It's nice for this to be on its own line,
since it's kind of a "note" about the annotation syntax. Format/indent
the markup appropriately so that it shows up on its line.

* Replace f.HTTPTestClientWithTLSConfig() in AuthTLS E2E, the odd one out for requests without client certs

* Demonstrate and document that auth-tls-secret enables the other AuthTLS annotations like verify client, depth

* Split E2E for auth-tls-error-page and *-pass-certificate-to-upstream
 2021-09-07 10:35:16 -07:00
KuberDriver
da29c7712a
Update e2e test runner image (#7596) 
* Update to the base nginx image

* Revert "Update to the base nginx image"

This reverts commit ad43c1d060.

* Update test runner image

* correcting the sha and version of e2e test runner images
 2021-09-06 16:21:16 -07:00
KuberDriver
90c065d508
Update to the base nginx image (#7597) 
* Update to the base nginx image

* update template.go

* update template_test.go
 2021-09-05 04:50:28 -07:00
Marcos Nery
638a93835a
Improving e2e tests for non-service backends #7544 (#7545) 
* Adding test cases for backend with nil service

Signed-off-by: Marcos <marcosnery.comp@gmail.com>
Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>

* Add e2e test for backend nil service and add nil safeguard (#7344)

Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>

* changing portuguese names to english in order to maintain the pattern

* updating boilerplate header

* adding second test case to also test valid path

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

* Updating boilerplate

* fixing boilerplate

Signed-off-by: MarcosN <marcosnery.comp@gmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>

* Improving template test for cases where a nil backend service is included

Signed-off-by: MarcosN <marcosnery.comp@gmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>

Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>
 2021-08-25 17:45:23 -07:00
wasker
3fb312ee2c
End-to-end tests for canary affinity (#7529) 2021-08-24 05:05:14 -07:00
Swift
c43ea4d6e1
Update ingress to go 1.17 (#7521) 
* bump go.mod to 1.17

* bump github ci workflow to go 1.17

* bump e2e-test-runner version

* fix go mod error

* fix go fmt error

* fix boilerplate verification
 2021-08-23 14:25:25 -07:00
Ricardo Katz
90c79689c4
Release v1 (#7470) 
* Drop v1beta1 from ingress nginx (#7156)

* Drop v1beta1 from ingress nginx

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix intorstr logic in controller

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* fixing admission

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* more intorstr fixing

* correct template rendering

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix e2e tests for v1 api

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix gofmt errors

* This is finally working...almost there...

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Re-add removed validation of AdmissionReview

* Prepare for v1.0.0-alpha.1 release

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Update changelog and matrix table for v1.0.0-alpha.1 (#7274)

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* add docs for syslog feature (#7219)

* Fix link to e2e-tests.md in developer-guide (#7201)

* Use ENV expansion for namespace in args (#7146)

Update the DaemonSet namespace references to use the `POD_NAMESPACE` environment variable in the same way that the Deployment does.

* chart: using Helm builtin capabilities check (#7190)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* Update proper default value for HTTP2MaxConcurrentStreams in Docs (#6944)

It should be 128 as documented in https://github.com/kubernetes/ingress-nginx/blob/master/internal/ingress/controller/config/config.go#L780

* Fix MaxWorkerOpenFiles calculation on high cores nodes (#7107)

* Fix MaxWorkerOpenFiles calculation on high cores nodes

* Add e2e test for rlimit_nofile

* Fix doc for max-worker-open-files

* ingress/tcp: add additional error logging on failed (#7208)

* Add file containing stable release (#7313)

* Handle named (non-numeric) ports correctly (#7311)

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* Updated v1beta1 to v1 as its deprecated (#7308)

* remove mercurial from build (#7031)

* Retry to download maxmind DB if it fails (#7242)

* Retry to download maxmind DB if it fails.

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Add retries count arg, move retry logic into DownloadGeoLite2DB function

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Reorder parameters in DownloadGeoLite2DB

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Remove hardcoded value

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Release v1.0.0-alpha.1

* Add changelog for v1.0.0-alpha.2

* controller: ignore non-service backends (#7332)

* controller: ignore non-service backends

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* update per feedback

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* fix: allow scope/tcp/udp configmap namespace to altered (#7161)

* Lower webhook timeout for digital ocean (#7319)

* Lower webhook timeout for digital ocean

* Set Digital Ocean value controller.admissionWebhooks.timeoutSeconds to 29

* update OWNERS and aliases files (#7365) (#7366)

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* Downgrade Lua modules for s390x (#7355)

Downgrade Lua modules to last known working version.

* Fix IngressClass logic for newer releases (#7341)

* Fix IngressClass logic for newer releases

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Change e2e tests for the new IngressClass presence

* Fix chart and admission tests

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix helm chart test

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix reviews

* Remove ingressclass code from admission

* update tag to v1.0.0-beta.1

* update readme and changelog for v1.0.0-beta.1

* Release v1.0.0-beta.1 - helm and manifests (#7422)

* Change the order of annotation just to trigger a new helm release (#7425)

* [cherry-pick] Add dev-v1 branch into helm releaser (#7428)

* Add dev-v1 branch into helm releaser (#7424)

* chore: add link for artifacthub.io/prerelease annotations

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

* k8s job ci pipeline for dev-v1 br v1.22.0 (#7453)

* k8s job ci pipeline for dev-v1 br v1.22.0

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* k8s job ci pipeline for dev-v1 br v1.21.2

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* remove v1.21.1 version

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* Add controller.watchIngressWithoutClass config option (#7459)

Signed-off-by: Akshit Grover <akshit.grover2016@gmail.com>

* Release new helm chart with certgen fixed (#7478)

* Update go version, modules and remove ioutil

* Release new helm chart with certgen fixed

* changed appversion, chartversion, TAG, image (#7490)

* Fix CI conflict

* Fix CI conflict

* Fix build.sh from rebase process

* Fix controller_test post rebase

Co-authored-by: Tianhao Guo <rggth09@gmail.com>
Co-authored-by: Ray <61553+rctay@users.noreply.github.com>
Co-authored-by: Bill Cassidy <cassid4@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Co-authored-by: Sathish Ramani <rsathishx87@gmail.com>
Co-authored-by: Mansur Marvanov <nanorobocop@gmail.com>
Co-authored-by: Matt1360 <568198+Matt1360@users.noreply.github.com>
Co-authored-by: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Co-authored-by: Kundan Kumar <kundan.kumar@india.nec.com>
Co-authored-by: Tom Hayward <thayward@infoblox.com>
Co-authored-by: Sergey Shakuto <sshakuto@infoblox.com>
Co-authored-by: Tore <tore.lonoy@gmail.com>
Co-authored-by: Bouke Versteegh <info@boukeversteegh.nl>
Co-authored-by: Shahid <shahid@us.ibm.com>
Co-authored-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Long Wu Yuan <longwuyuan@gmail.com>
Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
Co-authored-by: Neha Lohia <nehapithadiya444@gmail.com>
Co-authored-by: Akshit Grover <akshit.grover2016@gmail.com>
 2021-08-21 13:42:00 -07:00
Ricardo Katz
807fd69209
Fix default backend annotation test (#7486) 2021-08-12 14:03:50 -07:00
yashikabadaya
b510b0e930
Improved disableaccesslog tests (#7463) 
1. Added check to validate if nginx ingress controller is reachable after disabling access log.
2. Added disable-stream-access-log test
 2021-08-12 11:07:50 -07:00
Noah Ispas
7842d732b0
update e2e test images to newest promoted one (#7485) 2021-08-12 10:35:48 -07:00
Tom Hayward
9a9ad47857 Fix forwarding of auth-response-headers to gRPC backends (#7331) 
* add e2e test for auth-response-headers annotation

* add e2e test for grpc with auth-response-headers

* fix forwarding of auth header to GRPC backends

* add test case for proxySetHeader(nil)
 2021-08-10 11:24:39 -07:00
Tom Hayward
c9d5b21a65 fix: discover mounted geoip db files (#7228) 
* fix: discover mounted geoip db files

* add test

* fix runtime reload of config.MaxmindEditionFiles

* add e2e test

* log missing geoip2 db
 2021-08-10 11:24:39 -07:00
Noah Ispas (iamNoah1)
665ec92a2d update to newest image 2021-08-10 16:18:17 +02:00
Ricardo Katz
d226d831bd Update go version, modules and remove ioutil 2021-08-06 14:15:21 -03:00
Bhumij Gupta
eb5c38d636
Add http request test to annotaion ssl cipher test (#7431) 
Signed-off-by: Bhumij Gupta <bhumijgupta@gmail.com>
 2021-08-05 05:05:22 -07:00
Soumya Ghosh Dastidar
5315ab24ff
added checks to verify backend works with the given configs (#7415) 
Signed-off-by: Soumya Ghosh Dastidar <gdsoumya@gmail.com>
 2021-08-02 12:18:20 -07:00
Dmitry Kuleshov
a327a809d9
auto backend protocol for HTTP/HTTPS (#6985) 
* add auto backend protocol for HTTP/HTTPS

* e2e test for AUTO_HTTP backend protocol

* unit  test for AUTO_HTTP backend protocol

Co-authored-by: Luca Del Monte <luca.delmonte5@gmail.com>
 2021-07-29 12:49:19 -07:00
Kyle Michel
12a2a6d0e0
Fix definition order of modsecurity directives for controller to match PR 5315 (#6940) (#7323) 
* Fix definition order of modsecurity directives for controller to match PR 5315

* Add a test
 2021-07-06 19:24:43 -07:00
Kirill Trofimenkov
a064337621
Rewrite clean-nginx-conf.sh in Go to speed up admission webhook (#7076) (#7322) 
* Rewrite clean-nginx-conf.sh to speed up admission webhook

* Less diff with original clean-nginx-conf.sh

* Add error handling, add documentation, add unit test

* indent code

* Don't ignore Getwd() error
 2021-07-06 10:50:19 -07:00
Ricardo Katz
f5c80783bf
[Cherry Pick] - Add configuration to disable external name service feature (#7314) (#7321) 
* Add configuration to disable external name service feature (#7314)

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix CI files
 2021-07-05 21:50:18 -07:00
Ricardo Katz
39ace3176b
Fix nilpointer in admission and remove failing test (#7255) 
* Fix nilpointer in admission when it was unable to validate default backend ingress

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Remove temporarily the slow shutdown tests

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
 2021-06-21 12:32:51 -07:00
James Strong
7201e37633
Prepare to release v0.47.0 (#7209) 
* Update base image for e2e tests

* updating base image in script as well

* prep release for new nginx image
 2021-06-06 08:32:38 -07:00
James Strong
96a87c79b8
Update the base nginx image for the 1.20.1 update (#7189) 
* Update the base nginx image for the 1.20.1 update

* update the tests with the new nginx base image
 2021-06-01 14:53:51 -07:00
Ricardo Katz
11d4ddca8e
Revert "feat: multiple-cors-allow-origin support (#7134)" (#7168) 
This reverts commit 8a55801cc0.
 2021-05-27 05:38:24 -07:00
Alex Zhang
8a55801cc0
feat: multiple-cors-allow-origin support (#7134) 2021-05-23 09:13:39 -07:00
Matt Miller
b3dfee6ada
Allow preservation of trailing slashes on TLS redirects via annotation. (#7144) 
* allow retaining a trailing slash in a TLS redirect via annotation.

Signed-off-by: mamiller <mamiller@rosettastone.com>

* requested changes

* gofmt
 2021-05-23 08:51:38 -07:00
Matthew Silverman
9b00a4912f set x-forwarded-scheme like x-forwarded-proto 2021-05-13 09:26:27 -04:00
Mahnoor Mehboob
2503b23b09 Alter e2e test for disable_catch_all.go 2021-04-22 12:01:41 -04:00
Matthew Silverman
08250deedc updating test-runner/echo in code, docs fixup 2021-03-29 12:29:48 -04:00
Matthew Silverman
a865241e7d updating nginx base image across repo 2021-03-26 14:30:50 -04:00
Matthew Silverman
71c8ef119d add support for the jaeger propagation format 
adding default, testing w3c traceparent is propagated
 2021-03-26 12:33:24 -04:00
Matthew Silverman
a6442fbadb remove test, getaddrinfo fails for tcp in test 2021-02-19 15:04:33 -05:00
Matthew Silverman
28280de175 jaeger-endpoint configmap attribute 2021-02-18 17:29:35 -05:00
Manuel Alejandro de Brito Fontes
3f82b9a54a Change chart-testing image 2021-02-04 10:54:55 -03:00
Manuel Alejandro de Brito Fontes
668507597a Fix ginkgo build 2021-02-02 11:33:37 -03:00
Manuel Alejandro de Brito Fontes
6941800339 Update kind and kindest images 2021-01-28 12:03:40 -03:00
Björn Carlsson
54b13bd216 Add flag to allow setting a shutdown grace period 2021-01-27 14:09:04 +01:00
Elvin Efendi
52d6c9112a e2e test for requiring memcached setting to configure global rate limit 2021-01-05 10:59:26 -05:00
Elvin Efendi
e0dece48f7 Add Global Rate Limiting support 2021-01-04 17:47:07 -05:00
Manuel Alejandro de Brito Fontes
438a0a9959
Update test runner image 2021-01-04 19:37:44 -03:00
Manuel Alejandro de Brito Fontes
72dc53a82f
Update nginx image 2021-01-04 17:27:17 -03:00
Manuel Alejandro de Brito Fontes
2f08e87dcf
Update test container images 2021-01-03 16:22:58 -03:00
Manuel Alejandro de Brito Fontes
47c0cb7188 Update nginx base image 2021-01-03 15:59:36 -03:00
Kubernetes Prow Robot
17dbdcce7a
Merge pull request #6684 from aledbf/test 
Update ingress-nginx test image
 2020-12-27 18:58:27 -08:00
Manuel Alejandro de Brito Fontes
6dbd06cec0
Update ingress-nginx test image 2020-12-27 23:53:14 -03:00
Kubernetes Prow Robot
8c258f1972
Merge pull request #6683 from aledbf/lint 
Remove dead code
 2020-12-27 18:36:27 -08:00
Manuel Alejandro de Brito Fontes
3cf01394b8
Update nginx image 2020-12-27 22:29:21 -03:00
Manuel Alejandro de Brito Fontes
d9af197e62
Remove dead code 2020-12-27 22:26:51 -03:00
Manuel Alejandro de Brito Fontes
f1124aaf04 Update test images 2020-12-16 17:35:12 -03:00
Manuel Alejandro de Brito Fontes
7de30e45d1 Update test images and go to 1.15.6 2020-12-16 15:56:45 -03:00
Josh Soref
a8728f3d2c Spelling 2020-12-15 16:10:48 -05:00
Kubernetes Prow Robot
fe65e9d22f
Merge pull request #6620 from nic-6443/sticky-session-fix 
Fix sticky session not set for host in server-alias annotation (#6448)
 2020-12-15 03:47:48 -08:00
qianyong
44aaa2e367 Fix sticky session not set for host in server-alias annotation (#6448) 2020-12-15 11:01:19 +08:00
qianyong
f9ffa93588 Allow FQDN for ExternalName Service 2020-12-14 20:32:08 +08:00
Manuel Alejandro de Brito Fontes
6052e9dc23 Update helm chart-testing image 2020-12-05 16:09:34 -03:00
Manuel Alejandro de Brito Fontes
77234fcde0 Fix nginx ingress variables for definitions with Backend 2020-12-05 14:40:22 -03:00
Manuel Alejandro de Brito Fontes
5df2951948 Fix nginx ingress variables for definitions without hosts 2020-12-04 20:30:55 -03:00
Manuel Alejandro de Brito Fontes
e23a6b6aa7 Update kindest image 2020-12-02 11:11:28 -03:00
Kubernetes Prow Robot
e3a3ea8826
Merge pull request #6294 from ianbuss/auth-error-redirect-param 
Allow customisation of redirect URL parameter in external auth redirects
 2020-11-23 01:27:37 -08:00
Manuel Alejandro de Brito Fontes
8a218687e3 Enable external auth e2e tests 2020-11-12 22:33:31 -03:00
Manuel Alejandro de Brito Fontes
3f153add00 Refactor handling of path Prefix and Exact 2020-11-10 07:21:34 -03:00
Manuel Alejandro de Brito Fontes
a6b6f03b53 Add support for k8s ingress pathtype Prefix 2020-11-02 09:56:49 -05:00
Manuel Alejandro de Brito Fontes
789021e4f6 Avoid ingress class creation if k8s < 1.18 2020-10-29 19:34:05 -03:00
Manuel Alejandro de Brito Fontes
7f991eef84 Update sqlite cfssl database 2020-10-29 19:34:05 -03:00
Manuel Alejandro de Brito Fontes
3eb440d5ac Update test images 2020-10-29 19:34:05 -03:00
Manuel Alejandro de Brito Fontes
92de5212d8 Update nginx image in project images 2020-10-29 11:08:52 -03:00
Manuel Alejandro de Brito Fontes
a85e53f4cb Remove k8s.io/kubernetes dependency 2020-10-26 13:04:00 -03:00
Manuel Alejandro de Brito Fontes
cdd6437380 Refactor Exact path matthing 2020-10-26 10:51:03 -03:00
Manuel Alejandro de Brito Fontes
703c2d6f8e Enable validation of ingress definitions from extensions package 2020-10-26 10:50:44 -03:00
Kewei Ma
c8294eaf4e Allow Helm Chart to customize admission webhook's annotations, timeoutSeconds, namespaceSelector, objectSelector and cert files locations 2020-10-08 14:37:15 -05:00
Kubernetes Prow Robot
524c3a50ea
Merge pull request #6037 from aledbf/redirect 
Do not append a trailing slash on redirects
 2020-10-08 11:51:06 -07:00
Ian Buss
41cf628bdf Add a configurable URL redirect parameter for error URLs 2020-10-08 12:53:46 +01:00
Manuel Alejandro de Brito Fontes
85ea446dda Update test runner image 2020-09-30 17:29:32 -03:00
Manuel Alejandro de Brito Fontes
104fdab2f6 Refactor TLS e2e tests 2020-09-30 14:42:15 -03:00
Manuel Alejandro de Brito Fontes
c4f78ef11d Improve e2e speed execution time 2020-09-30 14:42:15 -03:00
Manuel Alejandro de Brito Fontes
4cda9787b8
Cleanup proxy protocol e2e test 2020-09-29 22:39:30 -03:00
Manuel Alejandro de Brito Fontes
2af627f0fe Fix e2e test error 2020-09-29 10:10:40 -03:00
Kubernetes Prow Robot
8d45bb39a4
Merge pull request #5348 from Antiarchitect/stream-log-annotations 
Ability to separately disable access log in http and stream contexts
 2020-09-28 11:02:53 -07:00
Manuel Alejandro de Brito Fontes
493dd6726d
Replace request_uri 2020-09-27 20:26:39 -03:00
Manuel Alejandro de Brito Fontes
108637bb1c Migrate to structured logging (klog) 2020-09-27 18:59:57 -03:00
Manuel Alejandro de Brito Fontes
a767b1d906 Cleanup 2020-09-27 17:16:09 -03:00
Manuel Alejandro de Brito Fontes
29ea30a4e8 Add events for NGINX reloads 2020-09-27 17:16:09 -03:00
Kubernetes Prow Robot
6fd891f3df
Merge pull request #6217 from touchifyapp/@feature/cors-expose-headers 
Add annotation to configure CORS Access-Control-Expose-Headers
 2020-09-26 16:52:48 -07:00
Manuel Alejandro de Brito Fontes
7722fa38aa Add admission controller e2e test 2020-09-26 16:06:58 -03:00
Maxime LUCE
b7b85175f6 Add annotation to configure CORS Access-Control-Expose-Headers 2020-09-23 17:41:52 +02:00
Manuel Alejandro de Brito Fontes
87aa96b468 Change server-tokens default value to false 2020-09-17 09:52:07 -03:00
Elvin Efendi
8e83d4e84a delete redundant NGINX config about X-Forwarded-Proto 2020-09-15 13:22:26 -04:00
Manuel Alejandro de Brito Fontes
4dd206b31a Update kind and kindest/node images 2020-09-15 11:23:23 -03:00
Manuel Alejandro de Brito Fontes
d1abba4c8a Update test runner image 2020-09-08 16:20:03 -03:00
Manuel Alejandro de Brito Fontes
ccb1eb4925 Add e2e tests to verify opentracing libraries 2020-09-08 16:20:03 -03:00
Manuel Alejandro de Brito Fontes
8abe794178 Use net.JoinHostPort to avoid IPV6 issues 2020-09-02 22:58:51 -04:00
Manuel Alejandro de Brito Fontes
7e03c13c0c Update e2e image 2020-09-02 16:39:48 -04:00
agile6v
609e1b5775 feat: support to define trusted addresses for proxy protocol in stream block 2020-08-28 14:37:16 +08:00
Manuel Alejandro de Brito Fontes
8102fff242 Switch images to k8s.gcr.io after Vanity Domain Flip 2020-08-26 22:07:22 -04:00
Manuel Alejandro de Brito Fontes
39db937da5 Adjust e2e timeouts 2020-08-22 20:52:12 -04:00
Manuel Alejandro de Brito Fontes
7fe5eccbc6 Rollback to Poll instead of PollImmediate 2020-08-20 20:50:51 -04:00
Manuel Alejandro de Brito Fontes
3d163e585a Fix flaky e2e test 2020-08-20 08:14:19 -04:00
Manuel Alejandro de Brito Fontes
4ad97afdb3 Add GinkgoRecover in goroutines 2020-08-19 23:15:02 -04:00
Manuel Alejandro de Brito Fontes
b5f644f605 Increase wait times in e2e tests 2020-08-19 23:15:02 -04:00
Manuel Alejandro de Brito Fontes
9424852a7b Update nginx image 2020-08-12 13:58:31 -04:00
Manuel Alejandro de Brito Fontes
a1b86c8639 Update e2e-test-runner image 2020-08-12 13:58:31 -04:00
Manuel Alejandro de Brito Fontes
351248fabb Fix wait times in e2e tests 2020-08-09 09:19:37 -04:00
Manuel Alejandro de Brito Fontes
cb86c5698c Migrate to klog v2 2020-08-08 21:01:03 -04:00
Ryan Wilson-Perkin
017a24f6da
Fixed typo "permanen" 
Noticed the use of the name "permanen-redirect" instead of "permanent-redirect" in some annotations for this test
 2020-08-04 14:14:55 -04:00
Manuel Alejandro de Brito Fontes
3b31b9a0a8 Cleanup e2e tests 2020-07-31 07:31:09 -04:00
Manuel Alejandro de Brito Fontes
ff1718e57f Disable enable-access-log-for-default-backend e2e test 2020-07-31 07:31:09 -04:00
Manuel Alejandro de Brito Fontes
a383117e1e Refactor shutdown e2e tests 2020-07-29 13:03:29 -04:00
Manuel Alejandro de Brito Fontes
6b4894ce3e Fix default backend flaking e2e test for default 2020-07-27 09:31:06 -04:00
Bernard Van De Walle
f3537204d2 Adding Zipkin collector to the E2E opentracing test as it is required to load at least one tracer to enable opentracing 
Work on PR comments
Add tests for template builder

Signed-off-by: Bernard Van De Walle <bernard.vandewalle@getcruise.com>
 2020-07-23 15:25:50 -07:00
Bernard Van De Walle
2baca9e32a Merge branch 'add-opentracing-operation-name-settings' of https://github.com/JorritSalverda/ingress-nginx into add-opentracing-operation-name-settings 2020-07-23 11:42:44 -07:00
Manuel Alejandro de Brito Fontes
a4ec5c8a88 Validate endpoints are ready in e2e tests 2020-07-21 09:53:03 -04:00
Manuel Alejandro de Brito Fontes
268f7c5c4b Fix error in grpcbin deployment and enable e2e test 2020-07-21 09:39:56 -04:00
Kubernetes Prow Robot
e825af86e1
Merge pull request #5887 from dschwar/force-use-forwarded-for 
Add force-enable-realip-module
 2020-07-17 07:17:02 -07:00
David Schwartz
d52141c2b9 Add enable-real-ip 2020-07-15 15:25:29 -04:00
Manuel Alejandro de Brito Fontes
d76ff21d94 Update e2e-test-runner image 2020-07-15 14:21:03 -04:00
Manuel Alejandro de Brito Fontes
dc3876666b Revert "use-regex annotation should be applied to only one Location" 
This reverts commit a8a8b5f6e9.
 2020-07-15 11:20:47 -04:00
Manuel Alejandro de Brito Fontes
5e615efa91 Fix missing variable in run-chart-test script 2020-07-10 08:57:40 -04:00
Manuel Alejandro de Brito Fontes
6c73d66ae6 Update helm chart for v0.34.0 2020-07-10 08:57:40 -04:00
Manuel Alejandro de Brito Fontes
86534b5124 Prepare switch to gcr.io 2020-07-09 07:42:39 -04:00
Manuel Alejandro de Brito Fontes
a8a8b5f6e9 use-regex annotation should be applied to only one Location 2020-07-06 19:29:39 -04:00
Manuel Alejandro de Brito Fontes
ec4fb05cad Fix proxy ssl e2e test 2020-07-06 18:41:42 -04:00
Kubernetes Prow Robot
585569b638
Merge pull request #5712 from laozc/sni 
Add proxy-ssl-server-name to pass server name on SNI
 2020-07-04 15:34:48 -07:00
Manuel Alejandro de Brito Fontes
e9a92070d9 Update chart-testing image 2020-07-04 00:24:55 -04:00
Manuel Alejandro de Brito Fontes
8836cfe04a Filter github actions to be executed 2020-07-04 00:24:55 -04:00
Zhongcheng Lao
c0629e92c2
Add proxy-ssl-server-name to enable passing SNI 2020-07-03 14:14:32 +08:00
Kubernetes Prow Robot
baa2b2cd33
Merge pull request #5709 from agile6v/master 
fix: remove duplicated X-Forwarded-Proto header.
 2020-07-02 17:50:47 -07:00
Manuel Alejandro de Brito Fontes
5f81b84288 Temporarily disable e2e Prow jobs 2020-07-02 20:12:05 -04:00
Manuel Alejandro de Brito Fontes
b392fed580 Test pull requests using github actions 2020-07-02 20:12:05 -04:00
Manuel Alejandro de Brito Fontes
ff60aa9e2b Switch to promoted e2e images in gcr 2020-06-30 19:43:21 -04:00
Manuel Alejandro de Brito Fontes
0e19740ee2 Update e2e configuration 2020-06-30 00:30:14 -04:00
Manuel Alejandro de Brito Fontes
95bec54d5d Update kind node image version 2020-06-29 18:30:31 -04:00
Manuel Alejandro de Brito Fontes
10dcf0db15 Remove unused variables and verbose e2e logs 2020-06-29 18:11:01 -04:00
Manuel Alejandro de Brito Fontes
40738fc6f8 Adjust default e2e timeout 2020-06-27 11:36:17 -04:00
Manuel Alejandro de Brito Fontes
51691d4776 Adjust e2e nodes 2020-06-27 11:36:17 -04:00
Manuel Alejandro de Brito Fontes
1539a24c7b Start using e2e test images from gcr.io 2020-06-27 11:36:17 -04:00
Manuel Alejandro de Brito Fontes
e977c8e056 Improve execution of prow jobs 2020-06-26 15:51:11 -04:00
agile6v
e8aaa15ce8 Remove duplicated X-Forwarded-Proto header. 2020-06-25 11:11:00 +08:00
Manuel Alejandro de Brito Fontes
53fbaaf6bc Update httpexpect package name 2020-06-24 16:15:04 -04:00
Manuel Alejandro de Brito Fontes
93bf818214 Remove vendor directory and enable go modules 2020-06-24 13:27:15 -04:00
Manuel Alejandro de Brito Fontes
fc5c448697 Allow to use a custom arch to run e2e tests 2020-06-18 23:22:31 -04:00
Manuel Alejandro de Brito Fontes
c0035d29c3 Fix e2e externalName test 2020-06-16 12:24:10 -04:00
Manuel Alejandro de Brito Fontes
3d3efaab29 Fix proxy_protocol duplication in listen definition 2020-06-09 15:00:59 -04:00
Jeff Hui
7767230e6a fix undefined variable $auth_cookie error when location is denied 
(add) isLocationAllowed check before setting the cookie
 2020-06-08 13:59:52 -04:00
agile6v
fc1c043437 Add http-access-log-path and stream-access-log-path options in configMap 2020-06-05 01:27:26 +08:00
Manuel Alejandro de Brito Fontes
2b17980e3c Remove copy of binaries and deprecated e2e task 2020-06-02 17:22:58 -04:00
Manuel Alejandro de Brito Fontes
ea8e711d2c Refactor build of docker images 2020-06-02 12:16:39 -04:00
Manuel Alejandro de Brito Fontes
810acfafbe Enable coredumps for e2e tests 2020-06-01 19:33:44 -04:00
Manuel Alejandro de Brito Fontes
5f03b07245 Update e2e image 2020-05-31 15:38:02 -04:00
Manuel Alejandro de Brito Fontes
7bd62f5c0a Fix makefile task names 2020-05-31 12:57:02 -04:00
Manuel Alejandro de Brito Fontes
d250b97b43 Build multi-arch images by default 2020-05-31 12:35:19 -04:00
Kubernetes Prow Robot
ee02d897d5
Merge pull request #5534 from agile6v/master 
Add annotation ssl-prefer-server-ciphers.
 2020-05-29 08:35:16 -07:00
Manuel Alejandro de Brito Fontes
78935500eb Update nginx image and go to 1.14.3 2020-05-26 16:47:25 -04:00
agile6v
0e79ad8e4f Update unit & e2e tests. 2020-05-21 02:19:13 +08:00
Manuel Alejandro de Brito Fontes
b18ea267a8 Wait before any request to the ingress controller pod 2020-05-14 10:47:51 -04:00
Andrey Voronkov
96d86995e1 Disable Access Log tests. Draft. 
Signed-off-by: Andrey Voronkov <voronkovaa@gmail.com>
 2020-05-13 22:22:41 +03:00
Manuel Alejandro de Brito Fontes
46cca5ad40 Fix error setting $service_name NGINX variable 2020-05-13 10:01:41 -04:00
Mark Janssen
639a8c7871 Enable TLSv1.3 by default 
Fix for 049b25e566 which mistakenly only
updated documentation.
 2020-05-08 12:40:11 +02:00
Christopher M. Luciano
5c65cf498e
build: remove unnecessary tag line in e2e 
The comment on this block states that this line should be removed
after the multi-arch image action is merged in the Makefile.

Signed-off-by: Christopher M. Luciano <cmluciano@us.ibm.com>
 2020-05-07 14:51:00 -04:00
Manuel Alejandro de Brito Fontes
080b917f91 Update kind 2020-05-01 12:32:30 -04:00
Manuel Alejandro de Brito Fontes
e4dcaf0b67 Only load docker images in kind worker nodes 2020-04-30 18:12:40 -04:00
Manuel Alejandro de Brito Fontes
a8c7ec6cfb Changes on services must trigger a sync event 2020-04-29 13:37:39 -04:00
Manuel Alejandro de Brito Fontes
a95d850384 Add support for PathTypeExact 2020-04-23 11:12:37 -04:00
Manuel Alejandro de Brito Fontes
efbb3f9fc8 Add support for IngressClass and ingress.class annotation 2020-04-22 09:15:32 -04:00
Manuel Alejandro de Brito Fontes
d4e0657991 Update nginx image to fix openssl CVE 2020-04-21 22:35:21 -04:00
Manuel Alejandro de Brito Fontes
e9bd1d8b1f Add new cfssl image and update e2e tests to use it 2020-04-17 16:41:50 -04:00
Manuel Alejandro de Brito Fontes
d18fa90cfd Add e2e test for OCSP and new configmap setting 2020-04-17 12:53:47 -04:00
Manuel Alejandro de Brito Fontes
2b2acae28f Add e2e tests for helm chart 2020-04-15 21:25:40 -04:00
Manuel Alejandro de Brito Fontes
e87ddedc73 Update e2e image 2020-04-14 14:15:40 -04:00
Elvin Efendi
129df3892c adjust e2e test 2020-04-14 10:27:38 -04:00
Manuel Alejandro de Brito Fontes
c0db19b0ec Enable configuration of plugins using configmap 2020-04-13 11:38:42 -04:00
Artem Miroshnychenko
39c01c6f96 fix e2e rests related to the removed string 2020-04-09 00:24:53 +03:00
Manuel Alejandro de Brito Fontes
f20b9befd0 Update e2e dev image to v1.18.0 2020-04-04 16:27:26 -03:00
Manuel Alejandro de Brito Fontes
5390ce4879 Fix definition order of modsecurity directives 2020-04-03 10:53:20 -03:00
Balazs Szekeres
1e899cacfc Added auth-tls-verify-client testcase 2020-04-01 14:47:38 +02:00
Manuel Alejandro de Brito Fontes
1216ed03f7 Fix condition in server-alias annotation 2020-04-01 08:37:14 -03:00
Kubernetes Prow Robot
461aa93d13
Merge pull request #5296 from SzekeresB/dev/proxy-ssl 
Added proxy-ssl-location-only test.
 2020-03-30 05:07:55 -07:00
Balazs Szekeres
d362475334 Added proxy-ssl-location-only test. 2020-03-30 10:30:22 +02:00
Manuel Alejandro de Brito Fontes
a46126a034 Update client-go methods to support context and and new create and delete options 2020-03-27 19:52:51 -03:00
Manuel Alejandro de Brito Fontes
9af24fdf5b
Update go and e2e image (#5289) 2020-03-24 11:42:31 -03:00
Manuel Alejandro de Brito Fontes
d8ecfb7324
Wait for update in tcp e2e test (#5284) 2020-03-23 18:09:21 -03:00
Manuel Alejandro de Brito Fontes
760f40e45c
Add retries for dns in tcp e2e test (#5283) 2020-03-23 17:05:15 -03:00
Bhavin Gandhi
380ef3a92c Fix the ability to disable ModSecurity at location level 
- Adds 'modsecurity off;' to the nginx config if the
  'enable-modsecurity' annotation is set to false.
- Update tests and e2e tests accordingly

Signed-off-by: Bhavin Gandhi <bhavin7392@gmail.com>
 2020-03-22 23:51:02 +05:30
Manuel Alejandro de Brito Fontes
d72ff0f8af
Ensure DeleteDeployment waits until there are no pods running (#5269) 2020-03-20 13:02:15 -03:00
Manuel Alejandro de Brito Fontes
07b70f68bd
Redirect for app-root should preserve current scheme (#5266) 2020-03-19 15:49:18 -03:00
Manuel Alejandro de Brito Fontes
7627757081
Cleanup of chart labels (#5258) 2020-03-18 08:35:29 -03:00
Manuel Alejandro de Brito Fontes
130af33510
Use rbac scope feature in e2e tests (#5250) 2020-03-14 18:52:56 -03:00
Balazs Szekeres
fd66e6337b Refacored proxy ssl TC-s 2020-03-10 09:50:55 +01:00
Kubernetes Prow Robot
0c9db55265
Merge pull request #5217 from SzekeresB/dev/affinity 
Added affinity-mode tc and refactored affinity.go
 2020-03-07 15:05:34 -08:00
Manuel Alejandro de Brito Fontes
1374c1e242
Update NGINX image (#5221) 2020-03-07 17:42:56 -03:00
Balazs Szekeres
7789843bd7 Added affinity-mode tc and refactored affinity.go 2020-03-06 12:43:34 +01:00
Kubernetes Prow Robot
103eb067f2
Merge pull request #5201 from SzekeresB/dev/proxy-config 
Added TC for proxy connect, read, and send timeout
 2020-03-02 15:41:37 -08:00
Balazs Szekeres
a182ca799b Refactored client body buffer size TC-s. 2020-03-02 13:06:21 +01:00
Balazs Szekeres
12fe318fdb Added test case for proxy connect, read, and send timeout from setting them via Nginx configmap. 2020-03-02 09:36:52 +01:00
Balazs Szekeres
6757224996 Refactored test/e2e/annotations/proxy.go 2020-02-27 16:03:28 +01:00
Manuel Alejandro de Brito Fontes
652a8e62b7
Update e2e image (#5174) 2020-02-26 16:52:31 -03:00
Manuel Alejandro de Brito Fontes
f48774e6db
Cleanup e2e directory (#5169) 2020-02-25 14:22:30 -03:00
Manuel Alejandro de Brito Fontes
e3e16941e5
Use local chart directory for dev-env and e2e tests (#5165) 2020-02-25 09:35:44 -03:00
Kubernetes Prow Robot
35264d6e8f
Merge pull request #5114 from whalecold/match 
Feat: add header-pattern annotation.
 2020-02-24 17:07:36 -08:00
Kubernetes Prow Robot
ceb721d6eb
Merge pull request #5160 from szombi/e2e-build-fix 
Fix e2e test run.sh
 2020-02-24 11:57:43 -08:00
Sandor Szombat
5c3ffa8cf0 Fix e2e test run.sh 2020-02-24 19:37:11 +01:00
Balazs Szekeres
2b77529c74 Added limit-rate annotation test 2020-02-24 13:31:02 +01:00
Manuel Alejandro de Brito Fontes
8e7def937a
Update nginx and e2e images (#5153) 2020-02-21 19:32:31 -03:00
Kubernetes Prow Robot
380840f27e
Merge pull request #5145 from szombi/e2e-hsts-fix 
Refactor the HSTS related test file and add config check to the HSTS tests
 2020-02-21 07:08:35 -08:00
Kubernetes Prow Robot
ad4221f8bb
Merge pull request #4963 from HowJMay/fix_typo 
fix: Fix typo
 2020-02-21 05:58:32 -08:00
Sandor Szombat
1906832bc5 Rework the hsts related test file 2020-02-21 14:25:18 +01:00
Lisheng Zheng
0b33650bb8 Feat: canary supports using specific match strategy to match header value. 2020-02-21 10:02:20 +08:00
Kubernetes Prow Robot
7d52174b51
Merge pull request #5125 from SzekeresB/dev/limit-connection-tc 
Added tc for limit-connection annotation
 2020-02-20 15:07:57 -08:00
Balazs Szekeres
0986ea8f18 Added configmap test ssl-ciphers. 2020-02-20 20:43:43 +01:00