github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
13,898 Commits 1 Branch 31 Tags
2d0fa393b51f7acd984d0ff831854a6acfadf55e
Commit Graph

58 Commits

Author SHA1 Message Date
Jordan Liggitt
ecebac9395 Add option to require API tokens to exist in admission 2015-06-30 16:12:45 -04:00
derekwaynecarr
d0441a9fba Prevent deletion of default namespace 2015-06-23 14:38:50 -04:00
derekwaynecarr
f6fb72ec51 Admission control attributes has access to resource name 2015-06-23 13:54:55 -04:00
Jeff Lowdermilk
0c7fbacfb1 Merge pull request #10052 from derekwaynecarr/admission_subresources 
Admission control exposes subresource
 2015-06-22 13:11:58 -07:00
Jordan Liggitt
68a8a25494 Rename pod.spec.serviceAccount -> pod.spec.serviceAccountName for v1 2015-06-18 22:38:00 -04:00
derekwaynecarr
795e444ba3 ResourceQuota should ignore subresources 2015-06-18 16:03:40 -04:00
derekwaynecarr
9a747cde38 LimitRanger should ignore subresources 2015-06-18 15:43:48 -04:00
derekwaynecarr
fce7adf3e7 Admission control exposes subresource 2015-06-18 15:00:46 -04:00
derekwaynecarr
14d2128238 Fix namespace controller on delete to not care if item not found 2015-06-03 22:59:07 -04:00
Rohit Jnagal
ef3d03e6f1 Merge pull request #8875 from derekwaynecarr/limit_range_not_use_requests 
Do not set container requests in limit ranger for Kube 1.0
 2015-05-29 13:26:00 -07:00
derekwaynecarr
3e8b1d5e01 Update all salt providers to force explicit namespace creation; update e2e 2015-05-28 13:45:49 -04:00
derekwaynecarr
05f099211f Do not set container.requests for v1 2015-05-27 14:27:01 -04:00
deads2k
590bd048a5 add pull secrets to service accounts 2015-05-22 14:05:19 -04:00
Cesar Wong
e95d9c416d Admission control to prevent exec on privileged pods 2015-05-21 13:56:51 -04:00
Cesar Wong
68ad63b5e2 Add operation checking to admission control handlers 
Adds a new method to the handler interface that returns true only if the
admission control handler handles that operation.
 2015-05-21 13:51:43 -04:00
Paul Weil
aaeb1dad93 expose user info to admission controllers 2015-05-13 21:31:51 -04:00
Jordan Liggitt
7e14a80f63 ServiceAccount admission plugin 2015-05-11 17:18:06 -04:00
Zach Loafman
875e83a741 Revert "Revert "Security context - types, kubelet, admission"" 2015-05-05 16:02:13 -07:00
Zach Loafman
f48904fd5e Revert "Security context - types, kubelet, admission" 2015-05-05 15:20:39 -07:00
Paul Weil
982bf19c20 security context initial implementation - squash 2015-05-05 13:46:13 -04:00
Daniel Smith
4a6ab7fd36 Merge pull request #7597 from eparis/copyright 
Use generic copyright holder name in license boilerplate
 2015-05-01 17:01:39 -07:00
Eric Paris
6b3a6e6b98 Make copyright ownership statement generic 
Instead of saying "Google Inc." (which is not always correct) say "The
Kubernetes Authors", which is generic.
 2015-05-01 17:49:56 -04:00
derekwaynecarr
6d08cc30ed Retry incrementing quota if there is a conflict 2015-05-01 15:23:21 -04:00
derekwaynecarr
ac97e9fb67 normalize to lower resource names 2015-04-23 17:39:45 -04:00
Vish Kannan
ee06097c07 Merge pull request #7003 from derekwaynecarr/enforce_unbounded 
Reject unbounded cpu and memory pods if quota is restricting it
 2015-04-22 11:19:52 -07:00
derekwaynecarr
06eb45fb75 ResourceQuota add object count support for secret and volume claims 2015-04-21 09:49:40 -04:00
derekwaynecarr
75482cabb4 Reject unbounded cpu and memory pods if quota is restricting it 2015-04-17 17:02:47 -04:00
derekwaynecarr
81dcd8c836 Improve error message when name is omitted but generateName is available 2015-04-16 13:06:19 -04:00
derekwaynecarr
a50e53257d Fix nil pointer that can happen if no container resources are supplied 2015-04-14 16:12:24 -04:00
Clayton Coleman
51db3bd654 Create a new testclient package that can be backed by disk files 
Standardize how our fakes are used so that a test case can use a
simpler mechanism for providing large, complex data sets, as well
as represent queries over time.
 2015-04-07 14:56:15 -04:00
derekwaynecarr
c2b670513c Introduce concept of a default limit 2015-04-01 16:31:25 -04:00
derekwaynecarr
9bd7f05ffc Remove ResourceDefaults plugin 2015-03-31 10:05:28 -04:00
derekwaynecarr
267ef26b0f Do not block admission if namespace already exists 2015-03-26 15:59:09 -04:00
Clayton Coleman
b1ab14315b Clients should not check conditions, UpdateStatus() is inconsistent 
Corrects some of the cargo culting that has crept into the API.
 2015-03-25 16:25:04 -04:00
derekwaynecarr
29c491ef2e Namespace.Spec.Finalizer support 2015-03-24 10:36:06 -04:00
derekwaynecarr
8aa807bc33 NamespaceLifecycle admission control plugin 2015-03-20 13:23:49 -04:00
Salvatore Dario Minonne
31ddefc347 Finalize fields.Selector 2015-03-17 22:55:43 +01:00
derekwaynecarr
799e3fa9cc Eliminate ResourceQuotaUsage in favor of ResourceQuota status 2015-03-13 16:52:09 -04:00
derekwaynecarr
468bf1da75 Enable common set of admission controllers across salt providers 2015-03-11 11:06:00 -04:00
derekwaynecarr
2ed8eed004 Make admission control plug-ins work from indexes 2015-03-06 09:36:57 -05:00
Daniel Smith
554b1c847c add occasional polling to reflector 2015-02-27 16:59:14 -08:00
derekwaynecarr
c0ce15c588 Make list watch take a ListFunc and WatchFunc, provide default funcs from client 2015-02-15 22:26:05 -05:00
derekwaynecarr
0bd0e12bbc Add support for Namespace as Kind 
Add example for using namespaces
 2015-02-10 09:50:50 -05:00
Vishnu Kannan
d0524d4778 Rename ResourceRequirementSpec to ResourceRequirements. 2015-02-09 23:19:38 +00:00
derekwaynecarr
409abdc745 Improve test casing on resource defaults sample plugin 2015-02-06 13:50:09 -05:00
deads2k
889c4cc755 update admission control to properly indicate resource 2015-02-04 13:36:01 -05:00
Vishnu Kannan
5e36f63f8b Adding ResourceRequirementSpec to v1beta1, v1beta2, and v1beta3 APIs. The old resource 
quantities 'CPU' and 'Memory' will be preserved until support for v1beta1 and v1beta2 APIs are
dropped.
Improved resource validation in the process.
 2015-02-01 02:19:55 +00:00
derekwaynecarr
9674f08504 Added unit tests for incrementing usage 2015-01-28 15:03:19 -05:00
derekwaynecarr
4887d71c51 Implement resource quota admission plugin 2015-01-28 15:03:19 -05:00
derekwaynecarr
b19a8a61a8 Simplify min/max evaluation, make limitType a type 2015-01-27 16:54:50 -05:00