DevFW-CICD/ingress-nginx-helm
12
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
6044 commits 4 branches 217 tags 166 MiB
Commit graph

6044 commits

This branch
This branch
All branches
Author SHA1 Message Date
Vincent LE GOFF
f2e743f561
feat: add session-cookie-secure annotation (#7399) 2021-09-01 15:23:40 -07:00
Dechao Qiu
8a1a5e93c7
Fix YAML indentation issue (#7556) 
`http-snippet:|` does not work for kubernetes 1.21.4, it requires extra space: ``http-snippet: |`
 2021-08-31 07:45:38 -07:00
Elvin Efendi
8951b7e22a
Revert "Update base nginx" (#7558) 
* Revert "Update base nginx (#7552)"

This reverts commit c6bc9870f1.

* keep alpine bump
 2021-08-28 07:38:52 -07:00
Elvin Efendi
c6bc9870f1
Update base nginx (#7552) 
* upgrade alpine

* use nginx 1.19.9 and corresponding patches from openresty

* include openresty CVE-2021-23017 patch too
 2021-08-27 07:20:05 -07:00
Maksim Nabokikh
4c4013904a
Add a flag to specify address to bind the healthz server (#7541) 
* Add a flag to specify address to bind the healthz server

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* Add healthz host to the helm chart

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* Apply suggestions from code review

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
 2021-08-26 05:13:23 -07:00
Pål Kristensen
66c2a716da
Document the keep-alive 0 effect on http/2 requests (#7503) 2021-08-25 17:53:23 -07:00
Tsachi Nimni
37fbcc0bd9
Update docs for new ingress api in cluster version >=1.19 (#7264) 
* Update docs to support Ingress in cluster version 1.19 or greater

* Update docs

* Update basic-usage.md

* Update basic-usage.md
 2021-08-25 17:51:23 -07:00
Marcos Nery
638a93835a
Improving e2e tests for non-service backends #7544 (#7545) 
* Adding test cases for backend with nil service

Signed-off-by: Marcos <marcosnery.comp@gmail.com>
Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>

* Add e2e test for backend nil service and add nil safeguard (#7344)

Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>

* changing portuguese names to english in order to maintain the pattern

* updating boilerplate header

* adding second test case to also test valid path

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

* Updating boilerplate

* fixing boilerplate

Signed-off-by: MarcosN <marcosnery.comp@gmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>

* Improving template test for cases where a nil backend service is included

Signed-off-by: MarcosN <marcosnery.comp@gmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>

Co-authored-by: Renato Araujo <renatobritto@protonmail.com>
Co-authored-by: André Goretti <andremotta96@gmail.com>
Co-authored-by: Kalebe Lopes <calbkalebe@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
Co-authored-by: Gabriel Albino <enggabrielalbino@gmail.com>
 2021-08-25 17:45:23 -07:00
Long Wu Yuan
f5fe7615ac
improve docs for release - added step to edit README for support matrix (#7537) 2021-08-24 19:00:40 -07:00
Neha Lohia
b5679e620b
add known issues in changelog.md for release v1.0.0 (#7536) 
* release v1.0.0

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* add the known issues no in changelog.md for release v1.0.0

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>
 2021-08-24 09:31:14 -07:00
Neha Lohia
f207702c30
release v1.0.0 (#7535) 
Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>
 2021-08-24 08:31:14 -07:00
Ricardo Katz
041eb167c7
update tag to v1.0.0 
update tag to v1.0.0
 2021-08-24 09:19:03 -03:00
Neha Lohia
f3af7e6bf5
update tag to v1.0.0 2021-08-24 17:47:11 +05:30
wasker
3fb312ee2c
End-to-end tests for canary affinity (#7529) 2021-08-24 05:05:14 -07:00
Sandip Bhattacharya
f84006d62f
docs: Clarify default-backend behavior (#7489) 
Clarify default-backend behaviour for services with multiple ports.

Also minor fixes for typos and language consistency.
 2021-08-24 04:59:13 -07:00
Long Wu Yuan
1510c06045
docs for migration to apiVersion networking.k8s.io/v1 (#7524) 2021-08-24 04:57:13 -07:00
wenhuwang
6593cb244b
fix ingress-nginx panic when the certificate format is wrong. (#7443) 
* fix ingress-nginx panic when the certificate format is wrong.

Signed-off-by: wang_wenhu <976400757@qq.com>

* Add unit test.

Signed-off-by: wang_wenhu <976400757@qq.com>

* Update controller_test.go
 2021-08-23 18:58:14 -07:00
Swift
c43ea4d6e1
Update ingress to go 1.17 (#7521) 
* bump go.mod to 1.17

* bump github ci workflow to go 1.17

* bump e2e-test-runner version

* fix go mod error

* fix go fmt error

* fix boilerplate verification
 2021-08-23 14:25:25 -07:00
Emily L Shepherd
623436ef65
Add appProtocol field to all ServicePorts (#7493) 
Minor update to the helm chart to set the [appProtocol][1] field on all
http / https ports defined in the various services created by the helm
chart:

- http and https for controller-service
- http and https for controller-service-internal
- https for controler-service-webhook
- http for default-backend-service

These are only added in kubernetes >= 1.20, which is when this feature
became stable.

[1]: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
 2021-08-23 10:08:01 -07:00
Long Wu Yuan
f8372dbce9
improve RELEASE.md (#7525) 2021-08-23 08:38:00 -07:00
amirschw
605c243d7a
[Helm] Make HPA behavior configurable (#7203) 
Signed-off-by: amirschw <24677563+amirschw@users.noreply.github.com>
 2021-08-22 12:05:59 -07:00
Ricardo Katz
5e5faa24d2
Update runner go version (#7526) 2021-08-22 11:39:59 -07:00
Ricardo Katz
90c79689c4
Release v1 (#7470) 
* Drop v1beta1 from ingress nginx (#7156)

* Drop v1beta1 from ingress nginx

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix intorstr logic in controller

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* fixing admission

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* more intorstr fixing

* correct template rendering

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix e2e tests for v1 api

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix gofmt errors

* This is finally working...almost there...

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Re-add removed validation of AdmissionReview

* Prepare for v1.0.0-alpha.1 release

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Update changelog and matrix table for v1.0.0-alpha.1 (#7274)

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* add docs for syslog feature (#7219)

* Fix link to e2e-tests.md in developer-guide (#7201)

* Use ENV expansion for namespace in args (#7146)

Update the DaemonSet namespace references to use the `POD_NAMESPACE` environment variable in the same way that the Deployment does.

* chart: using Helm builtin capabilities check (#7190)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* Update proper default value for HTTP2MaxConcurrentStreams in Docs (#6944)

It should be 128 as documented in https://github.com/kubernetes/ingress-nginx/blob/master/internal/ingress/controller/config/config.go#L780

* Fix MaxWorkerOpenFiles calculation on high cores nodes (#7107)

* Fix MaxWorkerOpenFiles calculation on high cores nodes

* Add e2e test for rlimit_nofile

* Fix doc for max-worker-open-files

* ingress/tcp: add additional error logging on failed (#7208)

* Add file containing stable release (#7313)

* Handle named (non-numeric) ports correctly (#7311)

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* Updated v1beta1 to v1 as its deprecated (#7308)

* remove mercurial from build (#7031)

* Retry to download maxmind DB if it fails (#7242)

* Retry to download maxmind DB if it fails.

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Add retries count arg, move retry logic into DownloadGeoLite2DB function

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Reorder parameters in DownloadGeoLite2DB

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Remove hardcoded value

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Release v1.0.0-alpha.1

* Add changelog for v1.0.0-alpha.2

* controller: ignore non-service backends (#7332)

* controller: ignore non-service backends

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* update per feedback

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* fix: allow scope/tcp/udp configmap namespace to altered (#7161)

* Lower webhook timeout for digital ocean (#7319)

* Lower webhook timeout for digital ocean

* Set Digital Ocean value controller.admissionWebhooks.timeoutSeconds to 29

* update OWNERS and aliases files (#7365) (#7366)

Signed-off-by: Carlos Panato <ctadeu@gmail.com>

* Downgrade Lua modules for s390x (#7355)

Downgrade Lua modules to last known working version.

* Fix IngressClass logic for newer releases (#7341)

* Fix IngressClass logic for newer releases

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Change e2e tests for the new IngressClass presence

* Fix chart and admission tests

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix helm chart test

Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>

* Fix reviews

* Remove ingressclass code from admission

* update tag to v1.0.0-beta.1

* update readme and changelog for v1.0.0-beta.1

* Release v1.0.0-beta.1 - helm and manifests (#7422)

* Change the order of annotation just to trigger a new helm release (#7425)

* [cherry-pick] Add dev-v1 branch into helm releaser (#7428)

* Add dev-v1 branch into helm releaser (#7424)

* chore: add link for artifacthub.io/prerelease annotations

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

* k8s job ci pipeline for dev-v1 br v1.22.0 (#7453)

* k8s job ci pipeline for dev-v1 br v1.22.0

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* k8s job ci pipeline for dev-v1 br v1.21.2

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* remove v1.21.1 version

Signed-off-by: Neha Lohia <nehapithadiya444@gmail.com>

* Add controller.watchIngressWithoutClass config option (#7459)

Signed-off-by: Akshit Grover <akshit.grover2016@gmail.com>

* Release new helm chart with certgen fixed (#7478)

* Update go version, modules and remove ioutil

* Release new helm chart with certgen fixed

* changed appversion, chartversion, TAG, image (#7490)

* Fix CI conflict

* Fix CI conflict

* Fix build.sh from rebase process

* Fix controller_test post rebase

Co-authored-by: Tianhao Guo <rggth09@gmail.com>
Co-authored-by: Ray <61553+rctay@users.noreply.github.com>
Co-authored-by: Bill Cassidy <cassid4@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Co-authored-by: Sathish Ramani <rsathishx87@gmail.com>
Co-authored-by: Mansur Marvanov <nanorobocop@gmail.com>
Co-authored-by: Matt1360 <568198+Matt1360@users.noreply.github.com>
Co-authored-by: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Co-authored-by: Kundan Kumar <kundan.kumar@india.nec.com>
Co-authored-by: Tom Hayward <thayward@infoblox.com>
Co-authored-by: Sergey Shakuto <sshakuto@infoblox.com>
Co-authored-by: Tore <tore.lonoy@gmail.com>
Co-authored-by: Bouke Versteegh <info@boukeversteegh.nl>
Co-authored-by: Shahid <shahid@us.ibm.com>
Co-authored-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Long Wu Yuan <longwuyuan@gmail.com>
Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
Co-authored-by: Neha Lohia <nehapithadiya444@gmail.com>
Co-authored-by: Akshit Grover <akshit.grover2016@gmail.com>
 2021-08-21 13:42:00 -07:00
Jintao Zhang
f3c50698d9
Prepare for v0.49.0 release (#7509) 
* Changelog for v0.49

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* helm: bump version to v0.49.0

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* docs: bumper version to v0.49.0

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* explicitly call out details for Changelogs

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2021-08-21 09:49:59 -07:00
Long Wu Yuan
05a3d144de
tag for release v0.49.0 (#7505) 2021-08-18 12:18:17 -07:00
Ricardo Katz
807fd69209
Fix default backend annotation test (#7486) 2021-08-12 14:03:50 -07:00
Ricardo Katz
e9f0ad3485
Merge pull request #7479 from equinix-ms/main 
Make custom-default-backend upstream name more unique.
 2021-08-12 17:09:55 -03:00
Jonas Kello
2fe8270302
Add linux node selector as default (#7481) 2021-08-12 12:39:51 -07:00
Matthew Silverman
b591adac48
allow kb granularity for lua shared dicts (#6750) 
Update internal/ingress/controller/template/configmap.go

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
 2021-08-12 11:13:50 -07:00
yashikabadaya
b510b0e930
Improved disableaccesslog tests (#7463) 
1. Added check to validate if nginx ingress controller is reachable after disabling access log.
2. Added disable-stream-access-log test
 2021-08-12 11:07:50 -07:00
Noah Ispas
7842d732b0
update e2e test images to newest promoted one (#7485) 2021-08-12 10:35:48 -07:00
Robin Elfrink
8ee98e9422 Make custom-default-backend upstream name more unique. 
Signed-off-by: Robin Elfrink <robin.elfrink@eu.equinix.com>
 2021-08-11 09:06:16 +02:00
Ricardo Katz
402f21bcb7
Merge pull request #7477 from rikatz/trigger-whgen 
Trigger webhook image generation
 2021-08-10 18:08:07 -03:00
Ricardo Katz
576525dd72 Trigger webhook image generation 2021-08-10 18:06:41 -03:00
Ricardo Katz
492c7b0d94
Migrate the webhook-certgen program to inside ingress repo (#7475) 2021-08-10 13:22:40 -07:00
Tom Hayward
9a9ad47857 Fix forwarding of auth-response-headers to gRPC backends (#7331) 
* add e2e test for auth-response-headers annotation

* add e2e test for grpc with auth-response-headers

* fix forwarding of auth header to GRPC backends

* add test case for proxySetHeader(nil)
 2021-08-10 11:24:39 -07:00
Tom Hayward
c9d5b21a65 fix: discover mounted geoip db files (#7228) 
* fix: discover mounted geoip db files

* add test

* fix runtime reload of config.MaxmindEditionFiles

* add e2e test

* log missing geoip2 db
 2021-08-10 11:24:39 -07:00
Sergey Shakuto
45995525e7 Retry to download maxmind DB if it fails (#7242) 
* Retry to download maxmind DB if it fails.

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Add retries count arg, move retry logic into DownloadGeoLite2DB function

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Reorder parameters in DownloadGeoLite2DB

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>

* Remove hardcoded value

Signed-off-by: Sergey Shakuto <sshakuto@infoblox.com>
 2021-08-10 11:24:39 -07:00
Ricardo Katz
820a21a743
Merge pull request #7473 from iamNoah1/main 
update to newest image
 2021-08-10 11:20:49 -03:00
Noah Ispas (iamNoah1)
665ec92a2d update to newest image 2021-08-10 16:18:17 +02:00
kayrus
e53a11e839
Add hostname value to override pod's hostname (#7386) 2021-08-09 06:45:31 -07:00
Eugene Apollonsky
af745bd97d
use listen to ensure the port is free (#6990) (#7467) 
Co-authored-by: boxjan <i@boxjan.li>
 2021-08-09 05:31:31 -07:00
Noah Ispas
98288bc3ca
Update versions of components for base image (#7411) 
* update versions and checksums

* change requests from PR
 2021-08-09 04:55:30 -07:00
Sergey Lanzman
8b2db80433
Update configmap.md (#7462) 2021-08-08 05:19:30 -07:00
Ricardo Katz
2d90ba14f5
Change all master reference to main (#7369) 2021-08-06 17:07:29 -07:00
Ian Roberts
e5e33051b9
Allow overriding of the default response format (#7245) 
Rather than hard-coding the default response format as HTML, allow the default to be overridden by an environment variable.  For example, given a REST API endpoint that defaults to responding in JSON, you may wish to configure the error messages to be JSON by default as well.
 2021-08-06 13:27:29 -07:00
Ricardo Katz
9c22ba93b2
Merge pull request #7454 from rikatz/update-mods 
Update go version, modules and remove ioutil
 2021-08-06 17:13:33 -03:00
tobiasgiese
9efea320b9
Fix cap for NET_BIND_SERVICE (#7449) 
Signed-off-by: Tobias Giese <tobias.giese@daimler.com>
 2021-08-06 12:45:30 -07:00
Benedikt
c51a509ad8
correct ingress-controller naming (#7450) 2021-08-06 12:41:30 -07:00
Long Wu Yuan
5c98c93f0f
added K8s v1.22 tip for kind cluster,bug-report (#7437) 2021-08-06 12:39:30 -07:00