djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • 10c4cb4493 Merge branch 'initial_ldap' into ldap-get-kubeconfig Ryan Richard 2021-04-28 14:28:32 -0700
  • 36819989a3 Remove DryRunAuthenticationUsername from LDAPIdentityProviderSpec Ryan Richard 2021-04-28 14:26:57 -0700
  • bed2d2dd62 Incorporated PR feedback Margo Crawford 2021-04-28 13:34:36 -0700
  • 4bd83add35 Add Supervisor upstream IDP discovery on the server-side Ryan Richard 2021-04-28 13:14:21 -0700
  • 90b2854032 Avoid using global logger in login.go Margo Crawford 2021-04-28 09:34:42 -0700
  • 5c62a9d0bd More adjustments based on PR feedback Ryan Richard 2021-04-27 16:54:26 -0700
  • 96fda6ed13 Added documentation for how to configure the Supervisor with GitLab Margo Crawford 2021-04-27 16:18:30 -0700
  • 263a33cc85 Some updates based on PR review Ryan Richard 2021-04-27 12:43:09 -0700
  • b3b108500a Merge branch 'main' into initial_ldap Ryan Richard 2021-04-27 10:12:43 -0700
  • 67a568811a Make prepare-for-integration-tests.sh work on linux too Ryan Richard 2021-04-27 10:10:02 -0700
  • 620a4d55b7
         Merge pull request #584 from mattmoyer/fix-broken-readme-link Matt Moyer 2021-04-26 13:23:35 -0700
  • a52872cd03
         Fix a broken docs link in our README. Matt Moyer 2021-04-26 08:17:36 -0600
  • 0dfb3e95c5
         Merge pull request #569 from mattmoyer/use-deployment-for-kube-cert-agent Matt Moyer 2021-04-26 09:25:37 -0700
  • e532a88647
         Add a new "legacy pod cleaner" controller. Matt Moyer 2021-04-20 14:56:43 -0500
  • 54a8297cc4
         Add generated mocks for kubecertagent. Matt Moyer 2021-04-16 18:20:21 -0500
  • 2843c4f8cb
         Refactor kube-cert-agent controllers to use a Deployment. Matt Moyer 2021-04-20 14:55:28 -0500
  • 9b818dbf10 Remove another 10s sleep related to JWTAuthenticator initialization Ryan Richard 2021-04-22 16:59:42 -0700
  • 6a350aa4e1 Fix some LDAP CA bundle handling Ryan Richard 2021-04-22 16:58:48 -0700
  • cc51c72c12
         Merge pull request #576 from ankeesler/prepare-webhook-script Matt Moyer 2021-04-22 14:07:38 -0700
  • ff3f5e2444
         Merge pull request #582 from vmware-tanzu/prerelease-v0.4.2 v0.4.2 Matt Moyer 2021-04-22 13:08:31 -0700
  • 0ab9927115
         Merge branch 'main' into prepare-webhook-script Matt Moyer 2021-04-22 13:05:55 -0700
  • 204c8e8dbc
         Merge pull request #578 from mattmoyer/remove-unneeded-test-sleep Matt Moyer 2021-04-22 12:59:40 -0700
  • 5290aac66f
         Adjust "/bin/killall sleep" in new test to be less flaky in CI. Matt Moyer 2021-04-22 14:51:55 -0500
  • 4927f1c1ad
         Merge pull request #581 from vmware-tanzu/prerelease-v0.4.2 Matt Moyer 2021-04-22 10:01:07 -0700
  • e85bcca45f
         Revert changes to generated 1.20 go.mod. Matt Moyer 2021-04-22 11:47:47 -0500
  • c1b1082c55
         Fix some minor linter style warnings. Matt Moyer 2021-04-22 11:47:05 -0500
  • 425e53a26b
         Merge pull request #580 from vmware-tanzu/prerelease-v0.4.2 Matt Moyer 2021-04-22 09:11:08 -0700
  • 638d9235a2
         Remove unneeded OIDC-related sleeps in tests. Matt Moyer 2021-04-22 10:25:44 -0500
  • 23cd53faeb
         In kube-cert-agent deleter controller, clean up pods that are stuck in terminal states. Matt Moyer 2021-04-21 17:00:20 -0500
  • 24c8bdef44
         Add a test to verify that the kube-cert-agent recovers when a pod becomes unhealthy. Matt Moyer 2021-04-21 15:32:50 -0500
  • 81a4c84f46
         Merge pull request #579 from ankeesler/log-level Andrew Keesler 2021-04-21 17:37:41 -0400
  • 9f509d3f13
         internal/kubeclient: match plog level with klog level Andrew Keesler 2021-04-21 08:58:20 -0400
  • 5f3eab2538 Fix expected number of log lines in TestCLILoginOIDC Margo Crawford 2021-04-21 13:05:32 -0700
  • c45d48d027 Change test log expectations Margo Crawford 2021-04-21 10:58:48 -0700
  • 09560fd8dc Log lines about using cached credential Margo Crawford 2021-04-19 10:46:22 -0700
  • 264778113d lookupEnv in oidclogin same as for static Margo Crawford 2021-04-16 14:38:05 -0700
  • b5889f37ff WIP on new plog Margo Crawford 2021-04-16 10:46:59 -0700
  • 45e4695444 Unset pinniped debug environment variable at end of integration test Margo Crawford 2021-04-08 10:14:29 -0700
  • 6a21499ed3 Add check for number of log lines. Margo Crawford 2021-04-07 15:54:48 -0700
  • 211d4fd0b6 Add more logging, integration test checks that debug flag works. Margo Crawford 2021-04-07 15:30:29 -0700
  • 8ffd9fdc4e Started debug logging. Margo Crawford 2021-04-06 15:13:27 -0700
  • 4375c01afb
         Upgrade Debian base image from 10.7 to 10.9 and Go from 1.15.6 to 1.15.11. Matt Moyer 2021-04-21 10:50:07 -0500
  • 91bf179b39
         Upgrade Kubernetes library dependencies from v1.20.1 to v1.20.6. Matt Moyer 2021-04-21 10:20:32 -0500
  • ddc632b99c Show the error_description when it is included in authorization response Ryan Richard 2021-04-19 18:08:52 -0700
  • c176d15aa7 Add Supervisor upstream LDAP login to the Pinniped CLI Ryan Richard 2021-04-19 17:59:46 -0700
  • d76ac56df2
         Merge pull request #573 from enj/enj/f/nested_impersonation Mo Khan 2021-04-19 17:46:10 -0400
  • d86b24ca2f
         hack: add prepare-webhook-on-kind.sh Andrew Keesler 2021-04-19 16:10:20 -0400
  • 73716f1b91
         Ignore client-side throttling in kubectl stderr Monis Khan 2021-04-19 06:23:09 -0400
  • 521adffb17
         impersonation proxy: add nested impersonation support Monis Khan 2021-04-09 17:52:53 -0400
  • c79930f419 Merge branch 'main' into initial_ldap Ryan Richard 2021-04-16 18:33:02 -0700
  • 70d607d87e prepare-supervisor-on-kind.sh was accidentally double base64 encoding Ryan Richard 2021-04-16 18:32:30 -0700
  • 4c2a0b4872 Add new command-line flags to the login oidc command Ryan Richard 2021-04-16 18:30:31 -0700
  • e9d5743845 Add authentication dry run validation to LDAPIdentityProvider Ryan Richard 2021-04-16 14:04:05 -0700
  • 83085aa3d6 Retest the server connection when the bind Secret has changed Ryan Richard 2021-04-15 17:45:15 -0700
  • 8e438e22e9 Only test the server connection when the spec has changed Ryan Richard 2021-04-15 16:46:27 -0700
  • b9ce84fd68 Test the LDAP config by connecting to the server in the controller Ryan Richard 2021-04-15 14:44:43 -0700
  • 9dfa1f5ee5
         Update ROADMAP.md Matt Moyer 2021-04-15 13:43:01 -0500
  • da7216c1ef Merge branch 'main' into initial_ldap Ryan Richard 2021-04-15 10:27:59 -0700
  • f63ded99bc Add a flag for skipping chromedriver version check to hack script Ryan Richard 2021-04-15 10:27:00 -0700
  • e6e6497022 Introduce upstreamldap.New to prevent changes to the underlying config Ryan Richard 2021-04-15 10:25:35 -0700
  • 5c28d36c9b Redact some params of URLs in logs to avoid printing sensitive info Ryan Richard 2021-04-15 07:59:38 -0700
  • e7b7b597ff
         Merge pull request #570 from vmware-tanzu/add-ok-amba-to-adopters Andrew Keesler 2021-04-15 09:22:16 -0400
  • e5da119000
         Merge branch 'main' into add-ok-amba-to-adopters Andrew Keesler 2021-04-15 08:56:02 -0400
  • 12a3636351 base64 once instead of thrice Ryan Richard 2021-04-14 20:39:01 -0700
  • 939b6b12cc ldap_client_test.go: refactor to use the LDAP server on the K8s cluster Ryan Richard 2021-04-14 17:49:40 -0700
  • 8d75825635 Merge branch 'main' into initial_ldap Ryan Richard 2021-04-14 17:47:26 -0700
  • 923938ab26 Avoid multi-line integration test env vars Ryan Richard 2021-04-14 17:26:12 -0700
  • 352d4dc5b1
         Add OK a.m.b.a. to adopters.md file Nanci Lancaster 2021-04-14 18:38:11 -0500
  • e0fe184c89 Relax cpu limit on ldap server a little to make it start faster Ryan Richard 2021-04-14 08:35:04 -0700
  • a6e1a949d2 ldap_client_test.go: mark as integration test so units skip it Ryan Richard 2021-04-14 08:12:15 -0700
  • 47b66ceaa7 Passing integration test for LDAP login! 🚀 Ryan Richard 2021-04-13 18:11:16 -0700
  • 6bba529b10 RBAC rules for ldapidentityproviders to grant permissions to controller Ryan Richard 2021-04-13 17:26:53 -0700
  • 14ff5ee4ff ldap_upstream_watcher.go: decode and validate CertificateAuthorityData Ryan Richard 2021-04-13 17:16:57 -0700
  • 51263a0f07 Return unauthenticated instead of error for bad username or password Ryan Richard 2021-04-13 16:22:13 -0700
  • fec3d92f26 Add integration test for upstreamldap.Provider Ryan Richard 2021-04-13 15:23:14 -0700
  • 7b8c86b38e Handle error cases during LDAP user search and bind Ryan Richard 2021-04-13 08:38:04 -0700
  • f0c4305e53 Started implementation of LDAP user search and bind Ryan Richard 2021-04-12 17:50:25 -0700
  • e24d5891dd ldap_upstream_watcher_test.go: add another unit test Ryan Richard 2021-04-12 14:12:51 -0700
  • 25c1f0d523 Add Conditions to LDAPIdentityProvider's Status and start to fill them Ryan Richard 2021-04-12 13:53:21 -0700
  • 05571abb74 Add a little more logic to ldap_upstream_watcher.go Ryan Richard 2021-04-12 11:23:08 -0700
  • 05daa9eff5 More LDAP WIP: started controller and LDAP server connection code Ryan Richard 2021-04-09 18:49:43 -0700
  • 77e02ce259
         Update README.md Mo Khan 2021-04-09 17:53:36 -0400
  • dab7b57da0
         Merge pull request #556 from microwavables/add-search-function-to-docs Matt Moyer 2021-04-09 12:42:27 -0700
  • 12d35583c5
         Merge pull request #566 from mattmoyer/upgrade-kubernetes-1.21 Matt Moyer 2021-04-09 11:27:09 -0700
  • 599c537d24
         Remove metav1.ExportOptions from scheme tests. Matt Moyer 2021-04-09 11:11:06 -0500
  • 38f3ea3f2f
         Upgrade to client-go and apimachinery from Kubernetes 1.21. Matt Moyer 2021-04-09 10:40:23 -0500
  • e450a348c5
         Merge pull request #565 from mattmoyer/cleanup-test-file Matt Moyer 2021-04-09 09:59:56 -0700
  • 11d820be06
         Remove proxy-kubeconfig.yaml. Matt Moyer 2021-04-09 09:55:27 -0500
  • 63816aa3ba
         Disable Content-Security-Policy for now. Matt Moyer 2021-04-09 10:57:54 -0500
  • e5314164c5
         added search functionality to docs on Pinniped.dev Nanci Lancaster 2021-04-06 12:20:17 -0500
  • 7781a2e17a Some renames in pkg upstreamwatcher to make room for a second controller Ryan Richard 2021-04-09 08:43:09 -0700
  • 4ab704b7de
         ldap: add initial stub upstream LDAP connection package Andrew Keesler 2021-04-09 11:38:53 -0400
  • f6ded84f07 Implement upstream LDAP support in auth_handler.go Ryan Richard 2021-04-08 17:28:01 -0700
  • abf606ab72
         Merge pull request #563 from mattmoyer/cli-caching-enhancements Matt Moyer 2021-04-08 16:48:48 -0700
  • b59a4f3fec
         Use a temporary directory for credential cache in CLI tests. Matt Moyer 2021-04-08 18:14:21 -0500
  • 3b461572ea
         Add cluster info to cache key for cluster-specific credential cache. Matt Moyer 2021-04-08 17:00:14 -0500
  • 271c006b6c
         Add --credential-cache flag to "pinniped get kubeconfig" and tweak usage messages. Matt Moyer 2021-04-08 16:00:21 -0500
  • 043cefcd9f
         Merge pull request #562 from mattmoyer/add-cluster-credential-caching Matt Moyer 2021-04-08 12:59:23 -0700
  • 2296faaeef
         Add CLI caching of cluster-specific credentials. Matt Moyer 2021-04-08 10:48:45 -0500
  • fec24d307e
         Fix missing normalization in pkg/oidcclient/filesession. Matt Moyer 2021-04-06 11:18:51 -0500