DevFW-CICD/ingress-nginx-helm
12
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7802 commits 4 branches 217 tags 166 MiB
Commit graph

476 commits

Author SHA1 Message Date
Marco Ebert
8b9abd207b
Release controller v1.12.0-beta.0/v1.11.3/v1.10.5 & chart v4.12.0-beta.0/v4.11.3/v4.10.5. (#12166) 2024-10-15 10:48:22 +01:00
Marco Ebert
75c77e5dc3
Metrics: Disable by default. (#12095) 2024-10-07 20:34:22 +01:00
Marco Ebert
657393e7b3
Chart: Bump Kube Webhook CertGen. (#12119) 2024-10-06 08:50:03 +01:00
Myst
f3bfa56c61
Chart: Add controller.metrics.service.enabled. (#12056) 2024-10-01 06:21:49 +01:00
Marco Ebert
45fc8860cf
Chart: Add global.image.registry. (#12028) 2024-09-30 09:26:04 +01:00
Marco Ebert
3f6e6aef78
Images: Remove OpenTelemetry. (#12024) 2024-09-29 17:31:04 +02:00
Marco Ebert
f369ffb073
Chart: Improve CI. (#12003) 2024-09-28 14:40:02 +01:00
Marco Ebert
24a9f972ff
Chart: Extend image tests. (#12025) 2024-09-28 13:03:35 +02:00
Trond
7b8d293d9b
Chart: Add controller.progressDeadlineSeconds. (#12017) 2024-09-27 11:14:01 +01:00
chengjoey
17209eb3a9
Chart: Implement unhealthyPodEvictionPolicy. (#11992) 2024-09-20 14:34:38 +02:00
Marco Ebert
43a7d8d5fe
Chart: Add defaultBackend.maxUnavailable. (#11995) 2024-09-20 14:25:03 +02:00
Marco Ebert
b2bc9618d3
Chart: Test controller.minAvailable & controller.maxUnavailable. (#12000) 2024-09-20 14:19:54 +02:00
Marco Ebert
435d5365b4
Chart: Align default backend PodDisruptionBudget. (#11993) 2024-09-20 14:04:48 +02:00
Marco Ebert
027603927b
Chart: Remove Pod Security Policy. (#11971) 2024-09-15 17:03:24 +02:00
Marco Ebert
61f56cb490
Chart: Improve default backend service account. (#11972) 2024-09-15 15:49:14 +01:00
Nathan Baulch
4f23049374
Fix minor typos (#11935) 2024-09-06 15:59:43 +01:00
Ramiro Algozino
a647bc1b7a
Chart: Implement controller.admissionWebhooks.service.servicePort. (#11931) 2024-09-04 22:11:01 +01:00
Adrian Berger
3cde7770dd
Chart: Add controller.metrics.prometheusRule.annotations. (#11849) 2024-08-27 00:35:17 +01:00
Marco Ebert
5d457c7daa
Chart: Add tests for PrometheusRule & ServiceMonitor. (#11883) 2024-08-27 00:04:17 +02:00
Marco Ebert
f6595f554a
Chart: Use generic values for ConfigMap test. (#11877) 2024-08-26 22:30:48 +02:00
Marco Ebert
e9f6c8e8f2
Security: Follow-up on recent changes. (#11874) 2024-08-26 21:09:16 +01:00
Seonghyeon Cho
8b20427d02
Update maxmind post link about geolite2 license changes (#11861) 
Signed-off-by: Seonghyeon Cho <seonghyeoncho96@gmail.com>
 2024-08-25 21:12:02 +01:00
Ricardo Katz
21cd966d1c
Remove global-rate-limit feature (#11851) 2024-08-25 21:03:29 +01:00
Ricardo Katz
7b4e4e2fa1
Enable security features by default (#11819) 2024-08-23 04:45:51 +01:00
Marco Ebert
d70b849d25
Release controller v1.11.2/v1.10.4 & chart v4.11.2/v4.10.4. (#11816) 2024-08-16 09:25:07 +02:00
Marco Ebert
593f05ed57
Chart: Bump Kube Webhook CertGen & OpenTelemetry. (#11809) 2024-08-15 13:33:14 +02:00
Marco Ebert
e972a35e98
Chart: Remove isControllerTagValid. (#11710) 2024-08-01 00:28:12 -07:00
Gerald Pape
36df47fcc4
Chart: Explicitly set runAsGroup. (#11679) 
* Chart: Explicitly set `runAsGroup`.

Set a default value for the runAsGroup in container securityContexts of
the controller and default backend.

Also set the runAsGroup for opentelemetry and webhook Job container
securityContexts.

Signed-off-by: Gerald Pape <gerald@giantswarm.io>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Signed-off-by: Gerald Pape <gerald@giantswarm.io>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
 2024-07-29 06:27:15 -07:00
Marco Ebert
56dbba3288
Release controller v1.11.1/v1.10.3 & chart v4.11.1/v4.10.3. (#11654) 2024-07-18 23:31:10 +02:00
Marco Ebert
cb2cdde10e
Repository: Add changelogs from release-v1.10. (#11587) 2024-07-09 00:32:49 -07:00
James Strong
b6fa279c0c Release Notes 1.11.0 and chart 4.11.0 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-07-08 14:28:53 -04:00
Marco Ebert
e084ad0a5e
Chores: Align security contacts & chart maintainers to actual owners. (#11465) 2024-06-17 05:25:38 -07:00
TheRealNoob
af9e5246ad
Chart: Make pod affinity templatable. (#11453) 
* [helm] template pod affinity

* update README

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* revert Chart.yaml version bump

* add unittests

* add docs defaultBackend.affinity

* add README section to values

* fix README syntax

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/values.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* update formatting of unittests + add README examples

* fix affinity labels on default-backend

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* remove double quotes on string

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
 2024-06-14 02:13:44 -07:00
Marco Ebert
90ef45852c
Chart: Fix IngressClass annotations. (#11416) 2024-06-03 03:12:58 -07:00
Reddysekhar Gaduputi
0c17748c44
Chart: Make admission webhook patch job RBAC configurable. (#11376) 
* Add an option to skip rbac resources creation in helm chart for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add an option to skip rbac resources creation in helm chart update README (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add an option to skip serviceAccount resources creation in helm chart for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add helm chart tests for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Chart make admission webhook patch job RBAC configurable (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
 2024-06-03 02:17:23 -07:00
k8s-infra-cherrypick-robot
82c4d78a2f
Merge pull request #11277 from strongjz/chart-1.10.1 (#11415) 
release chart 4.10.1

Co-authored-by: James Strong <strong.james.e@gmail.com>
 2024-06-03 00:34:38 -07:00
Marco Ebert
987039c014
Chart: Remove controller.enableWorkerSerialReloads. (#11400) 2024-06-03 00:32:19 -07:00
Carlos Parada
95efaf3e39
Accept user defined annotations in IngressClass (#11362) 2024-05-22 06:08:30 -07:00
Rafael da Fonseca
4e11074323
Allow configuring nginx worker reload behaviour, to prevent multiple concurrent worker reloads which can lead to high resource usage and OOMKill (#10884) 
* feat: allow configuring nginx worker reload behaviour, to prevent multiple concurrent worker reloads

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* appease linter, remove unnecessary log line

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Flip to using a positive behaviour flag instead of negative

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Update helm-docs

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Avoid calling GetBackendConfiguration() twice, use clearer name for helm chart option

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Fix helm-docs ordering

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

---------

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>
 2024-05-14 14:45:25 -07:00
NierYYDS
95554dccd2
fix: update kube version requirement to 1.21 (#11275) 
The controller depends on the v1 version of EndpointSlice, but the discovery.k8s.io/v1 API was first introduced in Kubernetes version 1.21.
 2024-04-18 10:06:32 -07:00
Marco Ebert
531b007b60
Chart: Add unit tests for default backend & topology spread constraints. (#11218) 
Also remove trailing whitespaces.
 2024-04-05 14:19:58 -07:00
Jozef Halgas
158ba45b0b
sort default backend hpa metrics (#11215) 2024-04-05 12:10:36 -07:00
Long Wu Yuan
5e0792ecb5
updated certgen image shatag (#11214) 2024-04-05 08:16:55 -07:00
Matheus Fidelis
e9509e27aa
feature(default_backend): topologySpreadConstraints on default backend (#11197) 
feature(default_backend): topologySpread support

feature(default_backend): topologySpread support

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): nit

feature(default_backend): nit

feature(default_backend): nit
 2024-04-05 04:54:48 -07:00
TheRealNoob
ad274ab2c6
Chart: Make controller.config templatable. (#11181) 
* [helm] pass controller.config through tpl

* add unittest

* update README.md

* Update charts/ingress-nginx/README.md

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/controller-configmap_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/values.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
 2024-04-04 12:50:05 -07:00
Marco Ebert
bf3fa53167
Owners: Promote Gacko to ingress-nginx-maintainers & ingress-nginx-reviewers. (#11165) 
* Owners: Sort `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.

* Owners: Update URL in aliases.

* Images: Remove owners as it's identical to global owners.

* Images: Remove global owners from `kube-webhook-certgen` owners.

* Owners: Remove members from aliases covered by other aliases.

ingress-nginx-helm-maintainers:
- cpanato: Covered by ingress-nginx-maintainers
- strongjz: Covered by ingress-nginx-maintainers

ingress-nginx-helm-reviewers:
- cpanato: Covered by ingress-nginx-reviewers
- strongjz: Covered by ingress-nginx-reviewers

ingress-nginx-docs-maintainers:
- tao12345666333: Covered by ingress-nginx-maintainers

* Owners: Promote myself to `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.
 2024-04-04 08:01:10 -07:00
Karol Kieglerski
b233a96faa
Fix-semver (#11193) 2024-04-04 06:08:00 -07:00
Carlos Tadeu Panato Junior
c0767ccc61
refactor helm ci tests part I (#11178) 
* refactor helm ci tests part I

Signed-off-by: cpanato <ctadeu@gmail.com>

* update indentation

Signed-off-by: cpanato <ctadeu@gmail.com>

* fix path

Signed-off-by: cpanato <ctadeu@gmail.com>

* more updates

Signed-off-by: cpanato <ctadeu@gmail.com>

* add helm-lint job

Signed-off-by: cpanato <ctadeu@gmail.com>

---------

Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-03-31 13:21:33 -07:00
Matheus Fidelis
7c8af4928b
Controller: Make Leader Election TTL configurable. (#11142) 
* feature(leader_ttl): feature to customize ttl to leader be re-elected

* fix(review): docs
 2024-03-28 06:36:23 -07:00
Marco Ebert
56a0968675
Chart: Add IngressClass aliases. (#11109) 2024-03-17 14:27:27 -07:00