djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,891 Commits 30 Branches 34 Tags 22 MiB
4101a55001
Commit Graph

929 Commits

Author SHA1 Message Date
Matt Moyer
fdbc30365d Use the correct field when encoding groups into the certificate. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-08-03 17:31:18 -05:00
Andrew Keesler
597408a977
Allow override of discovery URL via ConfigMap 
Signed-off-by: Andrew Keesler <akeesler@vmware.com>

- Seems like the next step is to allow override of the CA bundle; I didn't
  do that here for simplicity of the commit, but seems like it is the right
  thing to do in the future.
 2020-08-03 10:17:11 -04:00
Ryan Richard
cf56c67329 Move LoginDiscoveryConfig to the crds.placeholder.suzerain-io.github.io group 
- Also includes bumping the api and client-go dependencies to the newer
  version which also moved LoginDiscoveryConfig to the
  crds.placeholder.suzerain-io.github.io group in the generated code
 2020-07-31 17:22:12 -07:00
Ryan Richard
9fe82ec5f1 Merge remote-tracking branch 'upstream/main' into discovery_doc 2020-07-31 16:38:40 -07:00
Ryan Richard
2aa80e3576 More WIP for the publisher controller 2020-07-31 14:35:20 -07:00
Andrew Keesler
52546fad90 WIP: start on publisher controller integration 2020-07-31 12:08:07 -04:00
aram price
bd594e19ff Update -api and -client-go dependencies 
- pulls in chage to make ExpirationTimestamp mandatory on
  LoginRequestCredential
 2020-07-30 20:05:32 -07:00
Ryan Richard
2e05e032ee Merge remote-tracking branch 'upstream/main' into discovery_doc 2020-07-30 17:28:35 -07:00
Ryan Richard
733f80b7ae Apply filters to PublisherController 
- Ask the controller package to only call the Sync() method for
  the specific objects in which this controller is interested
 2020-07-30 17:16:09 -07:00
Matt Moyer
02c17d875e Update the LoginRequest server to return an expiration timestamp. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-30 16:43:20 -05:00
Ryan Richard
5aebb76146 Make the PublisherController use informers 
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-07-30 14:34:13 -07:00
Andrew Keesler
ee865fe97f
logindiscovery: add package documentation. 
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-07-30 11:18:49 -04:00
Andrew Keesler
9a859875a7
logindiscovery: add tests for conditional update and error cases 
- Also add some log lines for better observability of behavior.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-07-30 10:39:15 -04:00
Ryan Richard
e0cac97084 More tests for the PublisherController 
- Also, don't repeat `spec.Parallel()` because, according to the docs
  for the spec package, "options are inherited by subgroups and subspecs"
- Two tests are left pending to be filled in on the next commit
 2020-07-29 18:18:42 -07:00
Andrew Keesler
a5f7de429d First commit of PublisherController 
- Also upgrade go-client and api dependencies, and add controller-go as a dependency

Signed-off-by: Ryan Richard <richardry@vmware.com>
 2020-07-29 17:22:25 -07:00
Andrew Keesler
409462e989 Remove the controller pkg because it was moved to another repo 
Signed-off-by: Ryan Richard <richardry@vmware.com>
 2020-07-29 13:53:40 -07:00
Ryan Richard
27cd82065b Add placeholder-name CLI 
- main and unit tests for main
- client package to be done in a future commit

Signed-off-by: Aram Price <pricear@vmware.com>
 2020-07-28 15:15:59 -05:00
Ryan Richard
9e44bc28d9 Change the name of the placeholder-name CLI to placeholder-name-server 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-28 15:15:59 -05:00
Andrew Keesler
0acb8c8d3c
internal-ize apiserver and registry packages 
These shouldn't need to be imported outside this project.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-07-28 11:29:05 -04:00
Matt Moyer
74a328de41 Fix linter error in certauthority. 
The error was:
```
internal/certauthority/certauthority.go:68:15: err113: do not define dynamic errors, use wrapped static errors instead: "fmt.Errorf(\"expected CA to be a single certificate, found %d certificates\", certCount)" (goerr113)
		return nil, fmt.Errorf("expected CA to be a single certificate, found %d certificates", certCount)
		            ^
exit status 1
```

I'm not sure if I love this err113 linter.
 2020-07-27 12:33:33 -07:00
Matt Moyer
6dfae48b65 Add generated mock for loginrequest.CertIssuer interface. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-27 12:33:33 -07:00
Matt Moyer
69f766d41d Extend certauthority to support loading an existing CA. 
I think we may still split this apart into multiple packages, but for now it works pretty well in both use cases.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-27 12:33:33 -07:00
Monis Khan
d4eeb74641
Add initial controller boilerplate and example controller 
Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-22 22:27:55 -04:00
Monis Khan
b638bd7eeb
Describe why/how we recover type meta using scheme 
Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-19 01:28:25 -04:00
Monis Khan
d71a620a18
Restore GVK info that apimachinery decoder unsets 
Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-18 01:05:11 -04:00
Ryan Richard
260a271859 Add RBAC for autoregistration 
- Also fix mistakes in the deployment.yaml
- Also hardcode the ownerRef kind and version because otherwise we get an error

Signed-off-by: Monis Khan <mok@vmware.com>
 2020-07-17 14:42:02 -07:00
Matt Moyer
a3bce5f42e Add autoregistration package to manage APIService. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-17 10:53:13 -05:00
Matt Moyer
a01970602a Add a package for loading Downward API metadata. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
 2020-07-16 14:25:23 -05:00
Matt Moyer
2596ddfa25 Add initial CA code. 
Signed-off-by: Matt Moyer <moyerm@vmware.com>
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
 2020-07-13 16:23:54 -05:00