DevFW-CICD/ingress-nginx-helm
16
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4686 commits 4 branches 217 tags 166 MiB
Commit graph

4686 commits

This branch
This branch
All branches
Author SHA1 Message Date
Thomas Jackson
1ad73f2cb8 More helpful DNS failure message 
Previously if dns.lua failed to resolve a name you'd see the following in your logs:
```
2019/10/12 23:39:34 [error] 41#41: *6474 [lua] dns.lua:121: dns_lookup(): failed to query the DNS server:
server returned error code: 3: name error
server returned error code: 3: name error, context: ngx.timer
```

Unfortunately this doesn't tell you what name is failing (so you have to start guessing). To alleviate the pain this simply adds the host name we are attempting to resolve to the log line so users don't have to guess.
 2019-10-14 08:14:35 -07:00
Kubernetes Prow Robot
9a3ecf0c5c Merge pull request #4671 from jacksontj/issue_4670 
Discontinue use of a single DNS query to validate an endpoint name
 2019-10-13 13:56:36 -07:00
Thomas Jackson
de927de958 Don't use DNS resolution to "validate FQDN" 
As the controller stands today this "validation" is done once per config load, which means if the DNS query fails for any reason the endpoint will remain dead until both (1) a change happens to the ingress and (2) the DNS resolution works. If the user configured the name we should just pass it through, this way the lua dns can attempt to re-query it at its leisure.
 2019-10-13 13:16:47 -07:00
Kubernetes Prow Robot
6e108b695f Merge pull request #4645 from wawa0210/zx-scheduler 
Bind ingress controller to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes
 2019-10-12 18:44:35 -07:00
xiaozhang
615f06fadd Bind ingress controller to linux nodes to avoid Windows scheduling on kubernetes cluster includes linux nodes and windows nodes 2019-10-13 08:59:11 +08:00
Kubernetes Prow Robot
c9b6e00807 Merge pull request #4650 from DaveAurionix/master 
Expose GeoIP2 Organization as variable $geoip2_org
 2019-10-12 15:34:36 -07:00
Kubernetes Prow Robot
1505c55d03 Merge pull request #4658 from turchanov/fix-stream_log_format 
Need to quote expansion of `$cfg.LogFormatStream` in `log_stream` access log
 2019-10-12 15:10:36 -07:00
Kubernetes Prow Robot
32d32f4491 Merge pull request #4669 from frioux/simplifyBufferPool 
Simplify initialization function of bytes.Buffer
 2019-10-12 10:46:37 -07:00
Arthur Axel 'fREW' Schmidt
69ea1e1f73 Simplify initialization function of bytes.Buffer 2019-10-12 08:36:54 -07:00
Bryan Hanner
8501175b80 warn when ConfigMap is missing or unparsable instead of erroring 2019-10-11 17:15:38 -07:00
Sergei Turchanov
b86074dc6e Need to quote expansion of $cfg.LogFormatStream in log_stream access log 
format in nginx.tmpl otherwise individual variables are just glued together
without separating spaces so that you would get these in access logs:

[10/Oct/2019:05:03:30 +0000]TCP200000.003
[10/Oct/2019:05:03:30 +0000]TCP200000.000
[10/Oct/2019:05:05:04 +0000]TCP200000.000

which supposed to be someting like these:
[10/Oct/2019:05:03:30 +0000] TCP 200 0 0 0.003
[10/Oct/2019:05:03:30 +0000] TCP 200 0 0 0.000
[10/Oct/2019:05:05:04 +0000] TCP 200 0 0 0.000
 2019-10-10 17:27:15 +10:00
Dave Thompson
cf2fcb970f Expose GeoIP2 Organization as variable $geoip2_org 2019-10-09 09:47:48 +01:00
Kubernetes Prow Robot
6cd6faf9d9 Merge pull request #4603 from membphis/code-style 
optimize: local cache global variable and reduce string object creation.
 2019-10-08 07:51:15 -07:00
Kubernetes Prow Robot
1467d8405b Merge pull request #4623 from beautytiger/dev-191001-clean 
remove duplicated line in docs
 2019-10-01 05:03:34 -07:00
Guangming Wang
eb46c796e2 remove duplicated line in docs 
Signed-off-by: Guangming Wang <guangming.wang@daocloud.io>
 2019-10-01 10:08:45 +08:00
Kubernetes Prow Robot
2a03c86f21 Merge pull request #4087 from MRoci/master 
Define Modsecurity Snippet via ConfigMap
 2019-09-30 15:19:32 -07:00
Kubernetes Prow Robot
0b964edfa2 Merge pull request #4620 from aspacca/ISSUE-4244-e2e-test 
ISSUE-4244 e2e test
 2019-09-30 14:57:31 -07:00
Manuel Alejandro de Brito Fontes
6ccbaf505d Terraform release (#4613) 
* Add script to build the ingress controller image using terraform

* Update terraform to 0.12.9
 2019-09-30 18:33:46 -03:00
Andrea Spacca
69ede6145a ISSUE-4244 e2e test 2019-09-29 23:28:44 +02:00
Manuel Alejandro de Brito Fontes
928058b903 Release 0.26.1 (#4618) 2019-09-29 18:26:23 -03:00
Andrea Spacca
6d542fcb35 ISSUE-4244 comply with --health-check-path (#4619) 2019-09-29 14:37:57 -03:00
Manuel Alejandro de Brito Fontes
93491a6a4b Fix ports collision when hostNetwork=true (#4617) 2019-09-28 17:30:57 -03:00
MRoci
cfdd309928 test modsecurity-snippet 2019-09-28 09:54:10 +02:00
MRoci
bc1ca6d5f3 add modsecurity-snippet key 2019-09-28 09:54:07 +02:00
Kubernetes Prow Robot
ef138d5241 Merge pull request #4607 from aledbf/0.26 
Release 0.26.0
 2019-09-27 10:57:37 -07:00
Manuel Alejandro de Brito Fontes
fb70533d61 Release 0.26.0 2019-09-27 10:23:12 -03:00
Manuel Alejandro de Brito Fontes
86517da35f Fix custom default backend switch to default (#4611) 2019-09-27 10:21:28 -03:00
Kubernetes Prow Robot
cfc37b41c9 Merge pull request #4606 from aledbf/fix-dirs 
Mount temporal directory volume for ingress controller
 2019-09-25 09:38:03 -07:00
Manuel Alejandro de Brito Fontes
77d6cf89c6 Mount temporal directory volume for ingress controller 2019-09-25 13:03:17 -03:00
Kubernetes Prow Robot
abcd17a738 Merge pull request #4604 from aledbf/2353 
Change default for proxy-add-original-uri-header
 2019-09-25 07:28:00 -07:00
Manuel Alejandro de Brito Fontes
4f7ff962a2 Change default for proxy-add-original-uri-header 2019-09-25 10:57:31 -03:00
Yuansheng
59fd50b025 optimize: local cache global variable and reduce string object creation. 
and some code style.
 2019-09-25 09:43:11 -04:00
Kubernetes Prow Robot
d2d4e80a49 Merge pull request #4588 from multi-io/patch-1 
tls user guide --default-ssl-certificate clarification
 2019-09-25 06:14:00 -07:00
Kubernetes Prow Robot
d7932c445a Merge pull request #4602 from ElvinEfendi/fix-clear-cert 
fix bug with new and running configuration comparison
 2019-09-25 05:44:00 -07:00
Elvin Efendi
87bd17cbab adjust tests to the new no-reload on cert update world 2019-09-25 06:59:47 -04:00
Elvin Efendi
04f12326d7 fix bug with new and running configuration comparison 2019-09-25 06:33:59 -04:00
Kubernetes Prow Robot
228e937aa2 Merge pull request #4601 from ElvinEfendi/hsts-refactoring 
Hsts refactoring
 2019-09-24 19:50:00 -07:00
Kubernetes Prow Robot
42e6bf0f95 Merge pull request #4600 from aledbf/update-image 
Update nginx image
 2019-09-24 18:33:59 -07:00
Elvin Efendi
e894de02a6 improve certificate configuration detection per request 2019-09-24 21:17:22 -04:00
Elvin Efendi
662aac5f8d handle hsts header injection in lua 2019-09-24 21:17:22 -04:00
Manuel Alejandro de Brito Fontes
f9eefa2891 Update nginx image 2019-09-24 21:19:48 -03:00
Kubernetes Prow Robot
b394ff6e42 Merge pull request #4595 from aledbf/nginx-update 
Rollback change of ModSecurity setting SecAuditLog
 2019-09-24 17:05:59 -07:00
Kubernetes Prow Robot
d89c9e0a09 Merge pull request #4598 from ElvinEfendi/simplify-conf 
delete redundant config
 2019-09-24 16:39:59 -07:00
Elvin Efendi
df8c846291 make a note for clarity 2019-09-24 19:16:36 -04:00
Elvin Efendi
3a3a110bb9 delete redundant config 2019-09-24 18:51:35 -04:00
Kubernetes Prow Robot
50c13308f8 Merge pull request #4597 from Shopify/improve-tls-hsts-test 
more meaningful assertion for tls hsts test
 2019-09-24 13:55:58 -07:00
Kubernetes Prow Robot
5b562aae45 Merge pull request #4596 from Shopify/fix-auth-proxy-header-order 
sort auth proxy headers from configmap
 2019-09-24 13:29:26 -07:00
Kubernetes Prow Robot
97ae9a9617 Merge pull request #4592 from ElvinEfendi/force-ssl-redirect-refactoring 
refactor force ssl redirect logic
 2019-09-24 13:03:29 -07:00
Elvin Efendi
a1fc40018a more meaningful assertion for tls hsts test 2019-09-24 15:39:20 -04:00
Elvin Efendi
8ac6cf9b51 sort auth proxy headers from configmap 2019-09-24 15:19:49 -04:00