ContainerImage.Pinniped/internal
Ryan Richard f410d2bd00 Add revocation of upstream access tokens to garbage collector
Also refactor the code that decides which types of revocation failures
are worth retrying. Be more selective by only retrying those types of
errors that are likely to be worth retrying.
2021-12-08 14:29:25 -08:00
..
apiserviceref Use API service as owner ref for cluster scoped resources 2021-02-10 21:52:08 -05:00
authenticators Addressing code review changes 2021-11-05 14:22:43 -07:00
certauthority certauthority: tolerate larger clock skew between API server and pinniped 2021-09-21 09:32:24 -04:00
clusterhost Introduce clusterhost package to determine whether a cluster has control plane nodes 2021-02-09 11:16:01 -08:00
concierge Merge branch 'main' into customize_ports 2021-11-18 09:31:18 -08:00
config Add impersonationProxyServerPort to the Concierge's static ConfigMap 2021-11-17 13:27:59 -08:00
constable Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
controller Add revocation of upstream access tokens to garbage collector 2021-12-08 14:29:25 -08:00
controllerinit kubecertagent: fix flakey tests 2021-09-16 14:48:04 -04:00
controllerlib test/integration: run parallel tests concurrently with serial tests 2021-08-26 12:59:52 -04:00
controllermanager Add impersonationProxyServerPort to the Concierge's static ConfigMap 2021-11-17 13:27:59 -08:00
crud WIP towards revoking upstream refresh tokens during GC 2021-10-22 14:32:26 -07:00
crypto/ptls Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
deploymentref Use API service as owner ref for cluster scoped resources 2021-02-10 21:52:08 -05:00
downward internal/downward: add support for (optional) pod name 2020-12-11 11:49:27 -05:00
dynamiccert Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
endpointaddr Add endpointaddr pkg for parsing host+port inputs. 2021-05-25 16:17:26 -05:00
execcredcache Add CLI caching of cluster-specific credentials. 2021-04-08 14:12:34 -05:00
fositestorage Add struct field for storing upstream access token in downstream session 2021-12-06 14:43:39 -08:00
fositestoragei More adjustments based on PR feedback 2021-04-27 16:54:26 -07:00
groupsuffix Remove unparam linter 2021-08-19 10:20:24 -07:00
here Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
httputil Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
issuer dynamiccert: split into serving cert and CA providers 2021-03-15 12:24:07 -04:00
kubeclient Attempt to fix a unit test that always failed on my laptop 2021-11-23 15:47:19 -08:00
leaderelection Ensure concierge and supervisor gracefully exit 2021-08-30 20:29:52 -04:00
localuserauthenticator Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
mocks Support revocation of access tokens in UpstreamOIDCIdentityProviderI 2021-12-03 13:44:24 -08:00
net/phttp phttp: add generic support for RFC 2616 14.46 warnings headers 2021-11-30 15:11:59 -05:00
oidc Add revocation of upstream access tokens to garbage collector 2021-12-08 14:29:25 -08:00
ownerref internal/groupsuffix: mutate TokenCredentialRequest's Authenticator 2021-02-10 15:53:44 -05:00
plog Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
psession Add struct field for storing upstream access token in downstream session 2021-12-06 14:43:39 -08:00
registry token credential request: fix trace log kind 2021-09-20 15:34:05 -04:00
secret All controller unit tests should not cancel context until test is over 2021-03-04 17:26:01 -08:00
supervisor/server phttp: add generic support for RFC 2616 14.46 warnings headers 2021-11-30 15:11:59 -05:00
testutil Support revocation of access tokens in UpstreamOIDCIdentityProviderI 2021-12-03 13:44:24 -08:00
upstreamldap Force the use of secure TLS config 2021-11-17 16:55:35 -05:00
upstreamoidc Add revocation of upstream access tokens to garbage collector 2021-12-08 14:29:25 -08:00
valuelesscontext valuelesscontext: make unit tests more clear 2021-04-30 10:43:29 -04:00