DevFW-CICD/ingress-nginx-helm
12
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1798 commits 4 branches 217 tags 166 MiB
Commit graph

192 commits

Author SHA1 Message Date
Chen Peng
fa2c422a68 fix the same udp port and tcp port, update nginx.conf error 2017-08-07 11:22:06 +08:00
Manuel de Brito Fontes
69e766e042 Remove unnecessary periodic sync 2017-08-05 16:29:58 -04:00
Manuel de Brito Fontes
a091d3ede7 Remove lua and use fastcgi to render errors 2017-08-05 16:29:58 -04:00
Manuel Alejandro de Brito Fontes
1045e432c7 Merge pull request #1043 from antoineco/ep-targetref 
Return reference to object providing Endpoint
 2017-08-02 19:56:22 -04:00
Manuel de Brito Fontes
98a95282f9 Add field FileSHA in BasicDigest struct 2017-07-31 22:08:09 -04:00
Antoine Cotten
6035e55ec3
Return reference to object providing Endpoint 2017-07-29 15:27:56 +02:00
Manuel de Brito Fontes
fe1b913f21 Add function to allow custom values in Ingress status 2017-07-28 20:26:35 -04:00
Manuel de Brito Fontes
facf8f0f6f Alternative syncSecret approach #1030 2017-07-27 22:17:22 -04:00
Joao Morais
4453a06caa Change missing secret name log level to V(3) 2017-07-27 13:57:34 -03:00
Minhan Xia
ee3054dd52 adapt gce controller to godep updates 2017-07-25 17:09:27 -07:00
Manuel de Brito Fontes
7f2b68b7df Update generic controller 2017-07-20 10:43:09 -07:00
Manuel Alejandro de Brito Fontes
fbb96f4c83 Merge pull request #981 from chrismoos/service_upstream 
Add annotation to allow use of service ClusterIP for NGINX upstream.
 2017-07-19 12:20:30 -04:00
Manuel Alejandro de Brito Fontes
e59ac13eba Merge pull request #991 from aledbf/ssl-refactoring 
Remove secret sync loop
 2017-07-19 12:19:36 -04:00
Chris Moos
666bcca495 Add annotation to allow use of service ClusterIP for NGINX upstream. 2017-07-19 16:02:04 +02:00
Manuel de Brito Fontes
5a1f845593 Remove secret sync loop 2017-07-18 22:54:32 -04:00
Manuel de Brito Fontes
bd621359ac Check errors generating pem files 2017-07-18 16:26:28 -04:00
Joao Morais
8c3bb17f56 Add sort-backends command line option 2017-07-16 11:00:02 -03:00
Manuel de Brito Fontes
14a02d128c Simplify handling of ssl certificates 2017-07-12 15:29:03 -04:00
Manuel de Brito Fontes
6a4679b028 Add support for proxy protocol in TCP services 2017-07-02 17:09:09 -04:00
Gorka Lerchundi Osa
5503e8d0e9 nginx/proxy: allow specifying next upstream behaviour 2017-06-27 23:30:43 +02:00
Manuel de Brito Fontes
67e0e0b920 Fix nginx sticky sessions 2017-06-25 21:30:30 -04:00
Manuel de Brito Fontes
3b903c5913 Always reload after a change in the configuration 2017-06-25 18:12:07 -04:00
Manuel de Brito Fontes
83d03a19a6 Add feature to allow sticky sessions per location 2017-06-22 14:12:57 -04:00
Manuel de Brito Fontes
05a976f9e5 Add flag to skip the update of Ingress status on shutdown 2017-06-20 09:47:18 -04:00
Manuel de Brito Fontes
92eeb7828b Implement Equaler 2017-06-15 00:17:54 -04:00
Manuel de Brito Fontes
75a4a61254 WIP: Avoid reloads implementing Equals in structs 2017-06-14 23:58:31 -04:00
Manuel de Brito Fontes
45c77a951d Code linting 2017-06-14 19:49:35 -04:00
Manuel de Brito Fontes
aa8c66ec01 Remove dead code 2017-06-14 19:42:13 -04:00
Manuel Alejandro de Brito Fontes
bd1429ddac Merge pull request #855 from aledbf/lint 
Lint code
 2017-06-13 11:31:32 -04:00
Giancarlo Rubio
b4c8a66b1f Don't expose certificate metrics for default server 
The default server has a self signed certificate so it's not important to monitor
 2017-06-13 16:01:05 +02:00
Manuel de Brito Fontes
aacb7a5abb Lint 2017-06-13 09:07:14 -04:00
Giancarlo Rubio
d9cf043552 Instrument nginx to expose metric "ssl certficate expiration time " 
Add a console warning message 10 days before the certificate expire
 2017-06-13 13:44:00 +02:00
Justin Santa Barbara
cacc7bc21e Match ServicePort to Endpoints by Name 
We can never match on the EndpointPort.Port; that is the container port.
 2017-06-12 23:02:28 -04:00
Manuel de Brito Fontes
dca6de883c Simplify controller interface 2017-06-11 15:56:30 -04:00
Joao Morais
6b54ae58ac Create or delete ingress based on class annotation 2017-06-07 13:16:34 -03:00
Manuel Alejandro de Brito Fontes
3f0307a96e Merge pull request #792 from aledbf/refactor-has-synced 
Avoid checking if the controllers are synced
 2017-05-29 20:38:30 -04:00
Manuel Alejandro de Brito Fontes
5f71bde601 Merge pull request #753 from jcmoraisjr/jm-secret-tracker 
Move secretTracker updating to GetAuthCertificate()
 2017-05-29 17:01:40 -04:00
Manuel de Brito Fontes
5472555186 Avoid checking if the controllers are synced 2017-05-29 12:22:30 -04:00
Joao Morais
37f8c8bb40 Add ConfigureFlags() on controller interface 2017-05-24 21:03:52 -03:00
Manuel de Brito Fontes
797560ab8c Change recorder event scheme 2017-05-24 14:02:51 -04:00
Joao Morais
c4d8011fa4 Move secretTracker updating to GetAuthCertificate() 2017-05-23 14:20:31 -03:00
Manuel de Brito Fontes
d98a052972 Remove service annotation for namedPorts 2017-05-22 22:55:39 -04:00
Manuel Alejandro de Brito Fontes
3dc7717a68 Merge pull request #716 from jcmoraisjr/jm-secure-ca 
Add secure-verify-ca-secret annotation
 2017-05-17 07:41:13 -04:00
zouyee
bb72a03bc2 nodeController sync 2017-05-15 14:34:08 +08:00
Joao Morais
8b5a6e7661 Add secure-verify-ca-secret annotation 2017-05-14 19:14:27 -03:00
Manuel de Brito Fontes
a537d2d0fa Remove secrets from ingress after a Delete event 2017-05-11 22:19:16 -03:00
Manuel de Brito Fontes
5c9c5a301a Avoid periodic check for secret changes 2017-05-10 21:54:30 -03:00
Frieder Paape
3694788ed5 Adding support for externalIP Services 2017-05-09 16:23:40 +02:00
Manuel de Brito Fontes
5d9728b16e Convert CN SSL Certificate to lowercase before comparison 2017-05-01 20:01:05 -03:00
Manuel de Brito Fontes
87b484eb47 Allow more frequent reload events 2017-04-27 14:29:31 -03:00
Manuel de Brito Fontes
8fc09d521f Add debug information about ingress class 2017-04-26 23:43:52 -03:00
Manuel de Brito Fontes
786d977a90 Fix lint errors 2017-04-20 16:48:14 -03:00
Manuel Alejandro de Brito Fontes
b18f8e86ad Merge pull request #629 from aledbf/externalname-feature 
Add support for services of type ExternalName
 2017-04-20 16:44:03 -03:00
Manuel de Brito Fontes
c71fe9f73f Add support for services of type ExternalName 2017-04-19 23:30:51 -03:00
Manuel de Brito Fontes
de14e2f4f1 Refactor ssl-passthroug using go to handle TLS hello 2017-04-19 01:39:14 -03:00
Manuel Alejandro de Brito Fontes
0f9f082959 Merge pull request #599 from aledbf/force-isolation 
Add flag to force namespace isolation
 2017-04-15 11:42:46 -03:00
caiyixiang
25a5b92e94 add a judgment 2017-04-13 16:38:07 +08:00
Manuel de Brito Fontes
77c9f4e5fc Add flag to force namespace isolation 2017-04-12 22:50:54 -03:00
chentao1596
f5baeb2f4a add unit test cases for core/pkg/ingress/controller/backend_ssl 2017-04-11 15:27:22 +08:00
chentao1596
2ec3bb810e remove reduntants alias 2017-04-11 11:13:09 +08:00
Manuel de Brito Fontes
f28142ae8e Replace secret workqueue 2017-04-09 13:52:10 -03:00
Joao Morais
239166b4b7 Revert merge annotations to the implicit root context 2017-04-06 22:18:51 -03:00
Joao Morais
4558ef6a52 Fix intermittent misconfiguration of backend.secure and sticky 2017-04-05 22:21:34 -03:00
Manuel Alejandro de Brito Fontes
ed6987e716 Merge pull request #540 from jcmoraisjr/jm-ssl-passthrough 
Add Backends.SSLPassthrough attribute
 2017-04-05 17:53:29 -03:00
Nick Sardo
12a0373d2e Merge pull request #539 from aledbf/migrate-client-go 
Migrate to client-go
 2017-04-05 13:50:21 -07:00
Manuel de Brito Fontes
e0561ddeb9 Update nginx and generic controller 2017-04-04 11:51:50 -03:00
Giancarlo Rubio
c21f7ce666 OverrideFlags was called before parsing arguments (arguments was always empty) 
correct args order for newStatsCollector
 2017-04-04 13:15:06 +02:00
Andreas Kohn
049790918c
Fix a couple of 'does not contains' typos 2017-04-03 12:22:08 +02:00
Joao Morais
b59d49a4a7 Add Backends.SSLPassthrough attribute 2017-04-01 23:32:22 -03:00
Joao Morais
8552351af0 Add annotations to location of default backend (root context) 2017-03-30 22:30:39 -03:00
Andreas Kohn
33715a9c8e Fix a typo in an error message 2017-03-30 13:00:31 +02:00
chentao1596
767591fa18 remove unused constants 2017-03-27 10:11:40 +08:00
chentao1596
6ab3a21971 add unit test cases for core/pkg/ingress/controller/annotations 2017-03-27 10:06:07 +08:00
Joao Morais
567041ea0d Improve TLS secret configuration 2017-03-26 09:28:59 -03:00
Joao Morais
f945624e9c Proper enqueue a secret on the secret queue 2017-03-25 21:10:20 -03:00
chentao1596
740f7caeb8 add unit test case for named_port 2017-03-24 14:18:17 +08:00
chentao1596
9f5ed978b9 use interface instead of implementation 2017-03-24 10:20:44 +08:00
Manuel de Brito Fontes
18492c1384 Add information about SSL certificates in the default log level. 2017-03-16 16:02:15 -03:00
Manuel de Brito Fontes
d82544fe80 Avoid upstreams with multiple servers with the same port 2017-03-16 08:20:52 -03:00
Giancarlo Rubio
3570d44370 remove configmap validations . rollback #441, fix #443 2017-03-15 12:39:39 +01:00
Manuel Alejandro de Brito Fontes
2f01845964 Merge pull request #441 from gianrubio/skip-validation 
skip validation when configmap is empty
 2017-03-14 11:25:23 -03:00
Giancarlo Rubio
1e1e4dca94 skip validation on empty configmap 2017-03-14 14:45:47 +01:00
Andreas Kohn
dbeead3615
Fix typo in error message 2017-03-14 13:51:29 +01:00
Andreas Kohn
6e017269db
Fix grammar in error messages 2017-03-14 13:51:23 +01:00
Manuel Alejandro de Brito Fontes
03c43b611c Merge pull request #432 from gianrubio/validate-configmap 
Validations
 2017-03-14 09:22:02 -03:00
Giancarlo Rubio
c6195c44f3 Validate if configmap exist and is in the namespace/name format 
Verifiy if watch-namespace option exist
 2017-03-14 09:45:01 +01:00
Manuel de Brito Fontes
1cc0a95966 Manually sync secrets from certificate authentication annotations 2017-03-10 12:34:13 -03:00
Manuel de Brito Fontes
ad24784700 Only update Ingress status for the configured class 2017-03-09 22:04:03 -03:00
Ricardo Pchevuzinske Katz
51235a38e8 Removes wrong secret enqueing and improve the Fake Cert generation 2017-03-06 16:29:33 -03:00
Ricardo Pchevuzinske Katz
6c1b45a663 Generates a Self signed certificate for default vhost if the secret doesn't exists 
Generates a Self signed certificate for default vhost if the secret doesn't exists

	modified:   core/pkg/ingress/controller/backend_ssl.go
	modified:   core/pkg/ingress/controller/controller.go
	modified:   core/pkg/net/ssl/ssl.go
 2017-03-06 09:21:08 -03:00
Manuel Alejandro de Brito Fontes
6cd21f7dea Merge pull request #362 from gianrubio/fix-ingress-class 
Fix ingress class
 2017-03-03 09:49:59 -03:00
caiyixiang
248f6ade75 add judgment 2017-03-03 08:39:18 +08:00
Giancarlo Rubio
2ddba72baa Fix ingress class 2017-03-02 16:50:31 +01:00
Manuel Alejandro de Brito Fontes
fb8e2d7373 Merge pull request #351 from danielqsj/master 
Enable custom election id for status sync.
 2017-02-27 09:19:15 -03:00
shijunqian
2d526b213c Enable custom election id for status sync. 2017-02-27 15:35:04 +08:00
Ricardo Pchevuzinske Katz
a342c0bce3 Adds correct support for TLS Muthual autentication and depth verification 
modified:   controllers/nginx/configuration.md
	modified:   controllers/nginx/rootfs/etc/nginx/template/nginx.tmpl
	modified:   core/pkg/ingress/annotations/authtls/main.go
	modified:   core/pkg/ingress/controller/backend_ssl.go
	modified:   core/pkg/ingress/controller/controller.go
	modified:   core/pkg/ingress/controller/util_test.go
	modified:   core/pkg/ingress/resolver/main.go
	modified:   core/pkg/ingress/types.go
	modified:   core/pkg/net/ssl/ssl.go
	modified:   examples/PREREQUISITES.md
	new file:   examples/auth/client-certs/nginx/README.md
	new file:   examples/auth/client-certs/nginx/nginx-tls-auth.yaml
 2017-02-24 22:49:01 -03:00
Manuel de Brito Fontes
84324af140 Refactoring of TCP and UDP services 2017-02-24 20:14:43 -03:00
Manuel Alejandro de Brito Fontes
33ab550290 Merge pull request #332 from aledbf/snippets 
Add annotation to customize nginx configuration
 2017-02-24 18:39:45 -03:00
Manuel de Brito Fontes
c6dd2db550 Fix node lister when --watch-namespace is used 2017-02-24 14:18:10 -03:00
Manuel de Brito Fontes
a20c287614 Add annotation to customize nginx location configuration 2017-02-23 16:48:59 -03:00