DevFW-CICD/ingress-nginx-helm

Author	SHA1	Message	Date
Ricardo Katz	cf8e374290	Auto-generate annotation docs (#11820 )	2024-08-18 16:13:18 -07:00
Christian Groschupp	1f4ee0e235	feat: add annotation to allow to add custom response headers (#9742 ) * add custom headers Signed-off-by: Christian Groschupp <christian@groschupp.org> * add tests Signed-off-by: Christian Groschupp <christian@groschupp.org> * add docs * update copyright * change comments * add e2e test customheaders * add custom headers validation * remove escapeLiteralDollar filter * validate value in custom headers * add regex for header value * fix annotation test * Revert "remove escapeLiteralDollar filter" This reverts commit ab48392b60dee4ce146a4c17e046849f9633c7fb. * add annotationConfig * fix test * fix golangci-lint findings * fix: add missung exp module --------- Signed-off-by: Christian Groschupp <christian@groschupp.org>	2024-04-09 03:25:22 -07:00
chriss-de	ad406b64d8	Add override for proxy_intercept_errors when using Custom HTTP Errors (#9497 ) * added proxy-intercept-errors config option * fixed error when comparing locations * fixed missing location config from annotation added e2e test * reversed logic for proxy-intercept-errors to disable-proxy-intercept-errors * reversed logic to disable-proxy-intercept-errors * reversed logic * default has to be false * put comment in same line as return * run gofmt * fixing wrong Boilerplate header * updated code to new IngressAnnotation interface * fixes to satisfy PR comments * synced with upstream; fixed typo * gofumpt disableproxyintercepterrors.go * gofumpt	2023-11-17 05:43:54 +01:00
Ricardo Katz	30820a5acc	Deprecate opentracing (#10615 )	2023-11-05 01:58:35 +01:00
Ricardo Katz	8b53cabe03	Bump curl and Go version (#10503 ) * Bump curl and Go version * Add NGINX BAse image scanning * Try again	2023-10-11 16:16:11 +02:00
Chen Chen	b3060bfbd0	Fix golangci-lint errors (#10196 ) * Fix golangci-lint errors Signed-off-by: z1cheng <imchench@gmail.com> * Fix dupl errors Signed-off-by: z1cheng <imchench@gmail.com> * Fix comments Signed-off-by: z1cheng <imchench@gmail.com> * Fix errcheck lint errors Signed-off-by: z1cheng <imchench@gmail.com> * Fix assert in e2e test Signed-off-by: z1cheng <imchench@gmail.com> * Not interrupt the waitForPodsReady Signed-off-by: z1cheng <imchench@gmail.com> * Replace string with constant Signed-off-by: z1cheng <imchench@gmail.com> * Fix comments Signed-off-by: z1cheng <imchench@gmail.com> * Revert write file permision Signed-off-by: z1cheng <imchench@gmail.com> --------- Signed-off-by: z1cheng <imchench@gmail.com>	2023-08-31 00:36:48 -07:00
Ricardo Katz	c5f348ea2e	Implement annotation validation (#9673 ) * Add validation to all annotations * Add annotation validation for fcgi * Fix reviews and fcgi e2e * Add flag to disable cross namespace validation * Add risk, flag for validation, tests * Add missing formating * Enable validation by default on tests * Test validation flag * remove ajp from list * Finalize validation changes * Add validations to CI * Update helm docs * Fix code review * Use a better name for annotation risk	2023-07-21 20:32:07 -07:00
Jintao Zhang	cccba35005	Revert "Remove fastcgi feature" (#10081 ) * Revert "Remove fastcgi feature (#9864)" This reverts commit `90ed0ccdbe`. * revert fastcgi* annotations warning Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com> --------- Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>	2023-06-13 12:55:59 -07:00
Ricardo Katz	90ed0ccdbe	Remove fastcgi feature (#9864 )	2023-06-11 13:33:47 -07:00
Ricardo Katz	297036e169	Deprecate and remove influxdb feature (#9861 )	2023-04-16 17:26:43 -07:00
Ricardo Katz	6778c3ec44	Remove deprecated annotation secure-upstream (#9862 )	2023-04-16 17:22:43 -07:00
Ehsan Saei	c8cb9167d3	feat: OpenTelemetry module integration (#9062 ) * OpenTelemetry module integration * e2e test * e2e test fix * default OpentelemetryConfig * e2e values * mount otel module for otel test only * propagate IS_CHROOT * propagate IS_CHROOT e2e test * code doc * comments * golint * opentelemetry doc * zipkin * zipkin * typo * update e2e test OpenTelemetry value * use opentelemetry value * revert merge conflict * fix * format * review comments * clean	2023-03-22 11:58:22 -07:00
Phil Nichol	8ed3a27e25	Adding ipdenylist annotation (#8795 ) * feat: Add support for IP Deny List * fixed gomod * Update package * go mod tidy * Revert "go mod tidy" This reverts commit `e6a837e1e7`. * update ginko version * Updates e2e tests * fix test typo	2023-01-08 14:43:28 -08:00
Tobias Salzmann	ce9deaa332	Add stream-snippet as a ConfigMap and Annotation option (#8029 ) * stream snippet * gofmt -s	2021-12-23 11:46:30 -08:00
Ricardo Katz	90c79689c4	Release v1 (#7470 ) * Drop v1beta1 from ingress nginx (#7156) * Drop v1beta1 from ingress nginx Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Fix intorstr logic in controller Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * fixing admission Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * more intorstr fixing * correct template rendering Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Fix e2e tests for v1 api Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Fix gofmt errors * This is finally working...almost there... Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Re-add removed validation of AdmissionReview * Prepare for v1.0.0-alpha.1 release Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Update changelog and matrix table for v1.0.0-alpha.1 (#7274) Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * add docs for syslog feature (#7219) * Fix link to e2e-tests.md in developer-guide (#7201) * Use ENV expansion for namespace in args (#7146) Update the DaemonSet namespace references to use the `POD_NAMESPACE` environment variable in the same way that the Deployment does. * chart: using Helm builtin capabilities check (#7190) Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com> * Update proper default value for HTTP2MaxConcurrentStreams in Docs (#6944) It should be 128 as documented in https://github.com/kubernetes/ingress-nginx/blob/master/internal/ingress/controller/config/config.go#L780 * Fix MaxWorkerOpenFiles calculation on high cores nodes (#7107) * Fix MaxWorkerOpenFiles calculation on high cores nodes * Add e2e test for rlimit_nofile * Fix doc for max-worker-open-files * ingress/tcp: add additional error logging on failed (#7208) * Add file containing stable release (#7313) * Handle named (non-numeric) ports correctly (#7311) Signed-off-by: Carlos Panato <ctadeu@gmail.com> * Updated v1beta1 to v1 as its deprecated (#7308) * remove mercurial from build (#7031) * Retry to download maxmind DB if it fails (#7242) * Retry to download maxmind DB if it fails. Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com> * Add retries count arg, move retry logic into DownloadGeoLite2DB function Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com> * Reorder parameters in DownloadGeoLite2DB Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com> * Remove hardcoded value Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com> * Release v1.0.0-alpha.1 * Add changelog for v1.0.0-alpha.2 * controller: ignore non-service backends (#7332) * controller: ignore non-service backends Signed-off-by: Carlos Panato <ctadeu@gmail.com> * update per feedback Signed-off-by: Carlos Panato <ctadeu@gmail.com> * fix: allow scope/tcp/udp configmap namespace to altered (#7161) * Lower webhook timeout for digital ocean (#7319) * Lower webhook timeout for digital ocean * Set Digital Ocean value controller.admissionWebhooks.timeoutSeconds to 29 * update OWNERS and aliases files (#7365) (#7366) Signed-off-by: Carlos Panato <ctadeu@gmail.com> * Downgrade Lua modules for s390x (#7355) Downgrade Lua modules to last known working version. * Fix IngressClass logic for newer releases (#7341) * Fix IngressClass logic for newer releases Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Change e2e tests for the new IngressClass presence * Fix chart and admission tests Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Fix helm chart test Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com> * Fix reviews * Remove ingressclass code from admission * update tag to v1.0.0-beta.1 * update readme and changelog for v1.0.0-beta.1 * Release v1.0.0-beta.1 - helm and manifests (#7422) * Change the order of annotation just to trigger a new helm release (#7425) * [cherry-pick] Add dev-v1 branch into helm releaser (#7428) * Add dev-v1 branch into helm releaser (#7424) * chore: add link for artifacthub.io/prerelease annotations Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com> Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com> * k8s job ci pipeline for dev-v1 br v1.22.0 (#7453) * k8s job ci pipeline for dev-v1 br v1.22.0 Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com> * k8s job ci pipeline for dev-v1 br v1.21.2 Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com> * remove v1.21.1 version Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com> * Add controller.watchIngressWithoutClass config option (#7459) Signed-off-by: Akshit Grover <akshit.grover2016@gmail.com> * Release new helm chart with certgen fixed (#7478) * Update go version, modules and remove ioutil * Release new helm chart with certgen fixed * changed appversion, chartversion, TAG, image (#7490) * Fix CI conflict * Fix CI conflict * Fix build.sh from rebase process * Fix controller_test post rebase Co-authored-by: Tianhao Guo <rggth09@gmail.com> Co-authored-by: Ray <61553+rctay@users.noreply.github.com> Co-authored-by: Bill Cassidy <cassid4@gmail.com> Co-authored-by: Jintao Zhang <tao12345666333@163.com> Co-authored-by: Sathish Ramani <rsathishx87@gmail.com> Co-authored-by: Mansur Marvanov <nanorobocop@gmail.com> Co-authored-by: Matt1360 <568198+Matt1360@users.noreply.github.com> Co-authored-by: Carlos Tadeu Panato Junior <ctadeu@gmail.com> Co-authored-by: Kundan Kumar <kundan.kumar@india.nec.com> Co-authored-by: Tom Hayward <thayward@infoblox.com> Co-authored-by: Sergey Shakuto <sshakuto@infoblox.com> Co-authored-by: Tore <tore.lonoy@gmail.com> Co-authored-by: Bouke Versteegh <info@boukeversteegh.nl> Co-authored-by: Shahid <shahid@us.ibm.com> Co-authored-by: James Strong <strong.james.e@gmail.com> Co-authored-by: Long Wu Yuan <longwuyuan@gmail.com> Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com> Co-authored-by: Neha Lohia <nehapithadiya444@gmail.com> Co-authored-by: Akshit Grover <akshit.grover2016@gmail.com>	2021-08-21 13:42:00 -07:00
Elvin Efendi	e0dece48f7	Add Global Rate Limiting support	2021-01-04 17:47:07 -05:00
Manuel Alejandro de Brito Fontes	4d65097afa	Improve log messages	2020-10-26 17:14:36 -03:00
Manuel Alejandro de Brito Fontes	108637bb1c	Migrate to structured logging (klog)	2020-09-27 18:59:57 -03:00
Manuel Alejandro de Brito Fontes	cb86c5698c	Migrate to klog v2	2020-08-08 21:01:03 -04:00
agile6v	41d82005ec	Add annotation ssl-prefer-server-ciphers.	2020-05-11 16:31:08 +08:00
Kubernetes Prow Robot	a85d5ed93a	Merge pull request #4779 from aledbf/update-image Remove lua-resty-waf feature	2019-11-27 11:45:05 -08:00
Will Thames	0ae463a5f3	Provide annotation to control opentracing By default you might want opentracing off, but on for a particular ingress. Similarly, you might want opentracing globally on, but disabled for a specific endpoint. To achieve this, `opentracing_propagate_context` cannot be set when combined with `opentracing off` A new annotation, `enable-opentracing` allows more fine grained control of opentracing for specific ingresses.	2019-11-27 11:07:26 +10:00
Manuel Alejandro de Brito Fontes	61d902db14	Remove Lua resty waf feature	2019-11-26 10:37:43 -03:00
Manuel Alejandro de Brito Fontes	8def5ef7ca	Add support for multiple alias and remove duplication of SSL certificates (#4472 )	2019-08-26 10:58:44 -04:00
Gabor Lekeny	65b9e2c574	Merge branch 'master' of https://github.com/kubernetes/ingress-nginx into proxyssl	2019-08-16 06:21:53 +02:00
Kubernetes Prow Robot	adef152db8	Merge pull request #4379 from diazjf/mirror Allow Requests to be Mirrored to different backends	2019-08-13 17:52:24 -07:00
Fernando Diaz	386486e969	Allow Requests to be Mirrored to different backends Add a feature which allows traffic to be mirrored to additional backends. This is useful for testing how requests will behave on different "test" backends. See https://nginx.org/en/docs/http/ngx_http_mirror_module.html	2019-08-01 11:53:58 -05:00
Charle Demers	72271e9313	FastCGI backend support (#2982 ) Co-authored-by: Pierrick Charron <pierrick@adoy.net>	2019-07-31 10:39:21 -04:00
Gabor Lekeny	def13fc06c	Add proxy_ssl_* directives Add support for backends which require client certificate (eg. NiFi) authentication. The `proxy-ssl-secret` k8s annotation references a secret which is used to authenticate to the backend server. All other directives fine tune the backend communication. The following annotations are supported: * proxy-ssl-secret * proxy-ssl-ciphers * proxy-ssl-protocol * proxy-ssl-verify * proxy-ssl-verify-depth	2019-07-18 03:21:52 +02:00
Manuel Alejandro de Brito Fontes	84102eec2b	Migrate to new networking.k8s.io/v1beta1 package	2019-06-13 11:32:39 -04:00
Elvin Efendi	c4ced9d694	fix source file mods	2019-06-06 10:47:08 -04:00
okryvoshapka-connyun	8cc9afe8ee	Added Global External Authentication settings to configmap parameters incl. addons	2019-05-03 12:08:16 +02:00
Alex Kursell	188295550c	Simplify x-forwarded-prefix annotation	2019-03-29 16:25:25 -04:00
Alex Kursell	53538acbaf	Change Denied to *string	2019-02-22 11:48:13 -05:00
Alex Kursell	6b6e7f5464	go fmt	2019-02-22 10:19:40 -05:00
Alex Kursell	521be9b258	Remove interface type from annotations.Ingress struct	2019-02-22 10:14:09 -05:00
Anthony Ho	ec04852526	Create custom annotation for satisfy "value"	2019-02-19 15:58:35 -05:00
Diego Woitasen	60b983503b	Consistent hashing to a subset of nodes. It works like consistent hash, but instead of mapping to a single node, we map to a subset of nodes.	2019-01-03 01:32:52 -03:00
Anish Ramasekar	382049a0bf	Adds support for HTTP2 Push Preload annotation update test for backendprotocols Adds support for HTTP2 Push Preload annotation Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br> Adds support for HTTP2 Push Preload annotation Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br> Adds support for HTTP2 Push Preload annotation Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br> Adds support for HTTP2 Push Preload annotation Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br> Adds support for HTTP2 Push Preload annotation Adds support for HTTP2 Push Preload annotation	2018-12-24 17:13:25 -02:00
Manuel Alejandro de Brito Fontes	2fa55eabf6	Replace glog with klog	2018-12-05 13:27:55 -03:00
Fernando Diaz	5195600841	Allows ModSecurity to be configured per location The following annotations will be added: - enable-modsecurity - enable-owasp-core-rules - modsecurity-transaction-id Fixes #3167	2018-11-06 22:24:31 -06:00
k8s-ci-robot	17cad51e47	Merge pull request #3341 from Shopify/canary_upstream Add canary annotation and alternative backends for traffic shaping	2018-11-06 12:22:16 -08:00
Conor Landry	412cd70d3a	implement canary annotation and alternative backends Adds the ability to create alternative backends. Alternative backends enable traffic shaping by sharing a single location but routing to different backends depending on the TrafficShapingPolicy defined by AlternativeBackends. When the list of upstreams and servers are retrieved, we then call mergeAlternativeBackends which iterates through the paths of every ingress and checks if the backend supporting the path is a AlternativeBackend. If so, we then iterate through the map of servers and find the real backend that the AlternativeBackend should fall under. Once found, the AlternativeBackend is embedded in the list of VirtualBackends for the real backend. If no matching real backend for a AlternativeBackend is found, then the AlternativeBackend is deleted as it cannot be backed by any server.	2018-11-06 13:13:14 -05:00
jasongwartz	0ebf0354cb	Adds CustomHTTPErrors ingress annotation and test Adds per-server/location error-catch functionality to nginx template Adds documentation Reduces template duplication with helper function for CUSTOM_ERRORS data Updates documentation Adds e2e test for customerrors Removes AllCustomHTTPErrors, replaces with template function with deduplication and adds e2e test of deduplication Fixes copy-paste error in test, adds additional test cases Reverts noop change in controller.go (unused now)	2018-11-06 16:47:52 +01:00
Elvin Efendi	78f12c25c5	delete upstream healthcheck annotation	2018-10-09 09:14:13 -04:00
Manuel Alejandro de Brito Fontes	859b298d42	Remove annotations grpc-backend and secure-backend already deprecated	2018-10-08 12:26:06 -03:00
Manuel de Brito Fontes	7af93e03c7	Add annotation backend-protocol	2018-08-07 08:59:38 -04:00
Manuel de Brito Fontes	63b38e1c21	Remove VTS from the ingress controller	2018-06-14 11:11:29 -04:00
Manuel de Brito Fontes	2023e56115	Fix default-backend annotation	2018-05-26 19:09:24 -04:00
Lorenzo Fontana	93be8db612	Annotations for the InfluxDB Module Signed-off-by: Lorenzo Fontana <lo@linux.com>	2018-05-19 09:22:46 +02:00

1 2

62 commits