b4415a05d0
I don't _think_ we need this picture anymore
...
See f25b4a3
2021-01-05 08:36:26 -05:00
7817d15657
Remove image width constraint on architecture diagram
2021-01-04 17:08:47 -08:00
f25b4a3e12
De-duped architecture diagram references
2021-01-04 16:47:34 -08:00
8422659ee5
Fixed typos and issues with the demo code
...
- Also cleaned up some wording
2021-01-04 16:23:24 -08:00
ef828cf2e1
Add rough draft of supervisor demo
...
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2021-01-04 15:31:53 -05:00
546b8b5d25
Merge pull request #305 from vmware-tanzu/quiet-secrets-controllers
...
Sync Secret-watching controller less often by adjusting their filters to be more specific
2020-12-18 18:21:51 -08:00
a7f383f610
Merge branch 'main' into quiet-secrets-controllers
2020-12-18 18:20:54 -08:00
116c8dd6c5
SupervisorSecretsController Syncs less often by adjusting its filters
...
- Only watches Secrets of type
"secrets.pinniped.dev/supervisor-csrf-signing-key"
Signed-off-by: Aram Price <pricear@vmware.com>
2020-12-18 15:57:12 -08:00
1b5e8c3439
Upstream Watcher Controller Syncs less often by adjusting its filters
...
- Only watches Secrets of type "secrets.pinniped.dev/oidc-client"
Signed-off-by: Ryan Richard <richardry@vmware.com>
2020-12-18 15:41:18 -08:00
80031deab7
Merge pull request #297 from vmware-tanzu/supervisor-docs
...
Update docs for Supervisor
2020-12-18 15:36:00 -08:00
a005b8dce1
Merge branch 'main' into supervisor-docs
2020-12-18 15:34:34 -08:00
cc5af1a810
Fix lint error
...
Signed-off-by: Ryan Richard <richardry@vmware.com>
2020-12-18 15:28:56 -08:00
23be766c8b
Move const to file-of-use and replce dup string
...
Signed-off-by: aram price <pricear@vmware.com>
2020-12-18 15:14:51 -08:00
2f518b8b7c
TLSCertObserverController Syncs less often by adjusting its filters
...
- Only watches Secrets of type "kubernetes.io/tls"
Signed-off-by: Aram Price <pricear@vmware.com>
2020-12-18 15:10:48 -08:00
6cae776e48
Change image reference on README,
...
Also clarified some wording between authenticators and identity providers
2020-12-18 15:09:50 -08:00
cff2dc1379
Reorder functions
2020-12-18 15:08:55 -08:00
fc250f98d0
Adjust func grouping
2020-12-18 14:58:39 -08:00
8177db3601
Merge pull request #306 from mattmoyer/website-updates
...
Fix a website typo and add an "Installing Pinniped" docs page.
2020-12-18 16:55:14 -06:00
b3e428c9de
Several more controllers Sync less often by adjusting their filters
...
- JWKSWriterController
- JWKSObserverController
- FederationDomainSecretsController for HMAC keys
- FederationDomainSecretsController for state signature key
- FederationDomainSecretsController for state encryption key
Signed-off-by: Ryan Richard <richardry@vmware.com>
2020-12-18 14:55:05 -08:00
afc39cd2f7
Tweak image descriptions
2020-12-18 14:54:30 -08:00
7c9f40b6d9
Merge branch 'main' of github.com:vmware-tanzu/pinniped into supervisor-docs
2020-12-18 14:49:44 -08:00
8313ffcf7f
Add "Installing Pinniped" docs page.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-18 16:44:20 -06:00
0b12b30cb1
Updated diagrams and architecture text
...
Signed-off-by: Margo Crawford <margaretc@vmware.com>
2020-12-18 14:13:29 -08:00
c27d02a929
Fix a typo on the Project Scope page.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-18 13:48:12 -06:00
4dbd8c9cae
Update Concierge-only demo for v0.3.0 release
...
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2020-12-18 13:06:09 -05:00
1056cef384
Sync garbage collector controller less often by adjusting its filters
...
- Only sync on add/update of secrets in the same namespace which
have the "storage.pinniped.dev/garbage-collect-after" annotation, and
also during a full resync of the informer whenever secrets in the
same namespace with that annotation exist.
- Ignore deleted secrets to avoid having this controller trigger itself
unnecessarily when it deletes a secret. This controller is never
interested in deleted secrets, since its only job is to delete
existing secrets.
- No change to the self-imposed rate limit logic. That still applies
because secrets with this annotation will be created and updated
regularly while the system is running (not just during rare system
configuration steps).
2020-12-18 09:36:28 -08:00
40d93ff33b
site/content/docs/architecture.md: another coat of paint with Supervisor updates
...
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2020-12-18 09:39:36 -05:00
1af06bbcc9
De-dup markdown docs by deleting them in site/ tree
...
I'm not sure if these docs are used anywhere in our website, but I don't think
that they are. I'm assuming someone or something will yell if these should not
be deleted. These docs also live at the root of the repo, and the duplicate
versions are already drifting out of sync from one another.
Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2020-12-18 08:11:14 -05:00
6c210b67d4
Merge pull request #301 from vmware-tanzu/typed-secrets
...
Put a Type on all of the Secrets that we create in the supervisor
2020-12-17 17:42:20 -08:00
3a4405659e
Merge branch 'main' into typed-secrets
2020-12-17 17:42:04 -08:00
187bd9060c
All FederationDomain Secrets have distinct Types
...
Signed-off-by: Ryan Richard <richardry@vmware.com>
2020-12-17 17:07:38 -08:00
2e191084b0
Miscellaneous wording changes
2020-12-17 16:42:45 -08:00
7a98900b28
Merge pull request #302 from mattmoyer/switch-registry-references
...
Move our main image references to the VMware Harbor registry.
2020-12-17 18:23:12 -06:00
28e23e14b5
Demo landing page
2020-12-17 16:08:51 -08:00
5f2807e693
Updates to the architecture page.
2020-12-17 15:55:05 -08:00
e0b94f4780
Move our main image references to the VMware Harbor registry.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 17:51:09 -06:00
587cced768
Add extra type info where SecretType is used
2020-12-17 15:43:20 -08:00
50964c6677
Supervisor CSRF Secret has unique Type
...
Signed-off-by: aram price <pricear@vmware.com>
2020-12-17 15:30:26 -08:00
81eb0735d1
Merge pull request #299 from mattmoyer/update-go-dependencies
...
Update dependencies before v0.3.0 release.
2020-12-17 17:28:40 -06:00
c7931bc6d5
Remove our main module dependency on golangci-lint.
...
We will still pin this in CI via an image dependency.
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 17:01:32 -06:00
b27e3e1a89
Put a Type on the Secrets that we create for FederationDomain JWKS
...
Signed-off-by: Aram Price <pricear@vmware.com>
2020-12-17 14:48:49 -08:00
8db9331fed
Update ExpectedAuthorizeCodeSessionJSONFromFuzzing.
...
We stared at this very carefully and we don't think there are any structural changes. Maybe something small happened to get the RNG off by one?
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 16:31:08 -06:00
3e15e184ef
Update test assertions related to spf13/cobra.
...
It now correctly prints errors to stderr (https://github.com/spf13/cobra/pull/894 ).
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 16:31:08 -06:00
6a457466df
Update generated k8s code for 1.19.5.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 16:31:08 -06:00
3a81fbd1b4
Update fosite error usage.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 16:31:08 -06:00
421c17c421
Update all modules.
...
Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-17 16:31:08 -06:00
780d236d89
Merge pull request #300 from vmware-tanzu/even-more-opc-renames
...
Even more "op" and "opc" local variable renames
2020-12-17 13:51:54 -08:00
55483b726b
More "op" and "opc" local variable renames
...
Signed-off-by: Ryan Richard <richardry@vmware.com>
2020-12-17 13:49:53 -08:00
157d041b6a
README.md: first draft of Supervisor additions
...
Signed-off-by: Margo Crawford <margaretc@vmware.com>
2020-12-17 15:36:33 -05:00
32602f579b
Merge pull request #298 from vmware-tanzu/more-opc-rename
...
Rename all "op" and "opc" usages
2020-12-17 12:31:52 -08:00
Andrew Keesler