github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
122,541 Commits 1 Branch 31 Tags
b421bde1de40530b51b4b88c736bb007ed9afb17
Commit Graph

49698 Commits

Author SHA1 Message Date
Eric Tune
1668c6f107 Authorization based on namespace, kind, readonly. 
Also, pass Authorizer into master.Config.
 2014-11-03 17:45:15 -08:00
Eric Tune
3045035512 Get user from request and put in authz attribs. 
Added integration tests for user-based auth.
 2014-11-03 16:38:56 -08:00
Dawn Chen
6c2212b37a Merge pull request #2142 from erictune/fix_crash 
Require a KubeletClient in master.New()
 2014-11-03 16:21:00 -08:00
Eric Tune
795bc7f976 Require a KubeletClient in master.New(). 
Without this, tests which create a master
will panic with a nil pointer when the periodic
podCache update runs.

Deleted unused FakePodInfoGetter.
Added FakeKubeletClient.
Passed to master.New.
Required a KubeletClient in master.New.
 2014-11-03 16:09:41 -08:00
Dawn Chen
c4aa4d28a6 Merge pull request #2120 from brendandburns/uuid 
Add some blocking so that we don't generate identical UUIDs for API objects.
 2014-11-03 15:32:56 -08:00
Justin SB
9a053a4b59 Initial ipv6 / iptables work 2014-11-03 15:23:04 -08:00
Daniel Smith
7c2b7b55e7 Merge pull request #2059 from smarterclayton/rest_mapping 
Define a mapping between REST resource name and kind/apiVersion
 2014-11-03 15:08:21 -08:00
Clayton Coleman
191c1b975c Define a mapping between REST resource name and kind/apiVersion 
Allows clients to abstractly map user input to generic resource
paths as per docs/api-conventions.md
 2014-11-03 17:09:06 -05:00
Brendan Burns
f556f2f82f Add some validation for externalized service ports. 2014-11-03 13:36:34 -08:00
Brendan Burns
a624630112 Add some blocking so that we don't generate identical UUIDs for API objects. 2014-11-03 13:27:59 -08:00
Dawn Chen
078bc364b4 Merge pull request #2135 from brendandburns/cleanup 
Change a spammy log to V(3)
 2014-11-03 12:53:27 -08:00
Dawn Chen
6cc5b7d848 Merge pull request #2125 from brendandburns/flake 
Deflake the TestCreate test, by adding an explicit wait.
 2014-11-03 08:53:29 -08:00
Dawn Chen
e99eac0e78 Merge pull request #2128 from brendandburns/kubelet 
Add support for a 'log' command to kubectl.
 2014-11-03 08:50:36 -08:00
Dawn Chen
81785d8cde Merge pull request #2124 from brendandburns/fix 
Make endpoints return 400 instead of 500
 2014-11-03 08:38:34 -08:00
Brendan Burns
4ae3e99177 Change a spammy log to V(3) 2014-11-03 08:38:02 -08:00
Brendan Burns
6de9d9bfe1 Merge pull request #2130 from claire921/refactor_healthz_test 
Fix healthz test error handling
 2014-11-03 08:24:37 -08:00
markturansky
2260b241dc Removed 'Metadata' from all types 2014-11-03 08:47:22 -05:00
Claire Li
eafd142dfa Fix healthz test error handling 2014-11-02 22:26:45 -08:00
Brendan Burns
32a04e48fd Make endpoints return 400 instead of 500 2014-11-02 20:08:06 -08:00
Brendan Burns
b0c5d3b022 Add support for a 'log' command to kubectl. 2014-11-02 19:54:19 -08:00
Brendan Burns
f02fe2da1b Deflake the TestCreate test, by adding an explicit wait. 2014-11-02 12:38:31 -08:00
Clayton Coleman
10de0d1933 Merge pull request #2108 from brendandburns/fix 
Fix a missing lock in the fake etcd client.
 2014-11-01 11:36:21 -04:00
Brendan Burns
cf4fd8753f Fix a missing lock in the fake etcd client. 2014-10-31 21:36:03 -07:00
Eric Tune
55c2d6bbbb Add basic Authorization. 
Added basic interface for authorizer implementations.
Added default "authorize everything" and "authorize nothing
implementations.
Added authorization check immediately after authentication check.
Added an integration test of authorization at the HTTP level of
abstraction.
 2014-10-31 12:04:33 -07:00
Brendan Burns
893291d81d Merge pull request #1997 from ddysher/split-master 
Separate minion controller from master.
 2014-10-31 11:23:58 -07:00
Brendan Burns
69ca97a41c Fix a flaky test by draining the worker pool after syncing. 2014-10-31 09:52:01 -07:00
Brendan Burns
69ad5c9bff Merge pull request #2077 from dchen1107/cleanup 
PodUpdate only has the delta changes, not full snapshot of all desired
 2014-10-30 21:46:26 -07:00
Brendan Burns
563311071d Merge pull request #2090 from ddysher/stop-httptest-server 
Stop httptest server.
 2014-10-30 21:44:53 -07:00
Brendan Burns
c6df93d76e Merge pull request #2082 from lavalamp/fix 
Fix self linking of objects returned in lists.
 2014-10-30 21:43:31 -07:00
Deyuan Deng
acf9d23b32 Stop httptest server. 2014-10-30 21:37:08 -04:00
Deyuan Deng
019b7fc74c Separate minion controller from master. 2014-10-30 20:24:15 -04:00
Clayton Coleman
41f0929384 Merge pull request #2044 from erictune/fix_mux 
Allocate mux in master.New()
 2014-10-30 20:15:57 -04:00
Daniel Smith
790a88c6ea Merge pull request #1964 from dchen1107/cadvisor 
Add /boundPods to Kubelet
 2014-10-30 16:46:44 -07:00
Dawn Chen
a1e79048a6 Add /podSpecs to Kubelet 2014-10-30 16:38:08 -07:00
Daniel Smith
b28234fac6 Fix self linking of objects returned in lists. 2014-10-30 15:04:11 -07:00
Daniel Smith
64574dcc44 Merge pull request #2074 from derekwaynecarr/ns_watch 
Fix watch by namespace
 2014-10-30 12:56:50 -07:00
Dawn Chen
445ec719c9 PodUpdate only has the delta changes, not full snapshot of all desired 
BoundPods on a node. PR #1865 has a wrong assumption, with which any
PodUpdate operation will cause rest of running containers without updates
are killed as an unexpected ones.

Fix #2028
 2014-10-30 11:22:59 -07:00
Clayton Coleman
8a2d778248 Merge pull request #2066 from lavalamp/eventing2 
Event fixes
 2014-10-30 14:19:19 -04:00
derekwaynecarr
dda19071e3 Fix watch by namespace 2014-10-30 12:56:50 -04:00
derekwaynecarr
5a7aced7b0 Kubectl namespace support 
Add unit test for load namespace info
Different message on display of namespace versus setting namespace
 2014-10-30 11:05:30 -04:00
Daniel Smith
a7cc25f7ff Add namespaces to event creation path. 2014-10-29 18:03:14 -07:00
Clayton Coleman
2c10dd85c3 Merge pull request #2047 from smarterclayton/make_request_testable 
Make client.Request/RESTClient more testable and fakeable
 2014-10-29 19:33:36 -04:00
Daniel Smith
ab9346d107 Use ID instead of Name in v1beta1 & 2 2014-10-29 15:13:44 -07:00
Eric Tune
9713b58caa Allocate mux in master.New() 
Callsites no longer allocate a mux.
Master now exposes method to install handlers
which use the master's auth code.  Not used
but forks (openshift) are expected to use these
methods.  These methods will later be a point
for additional plug-in functionality.
Integration tests now use the master-provided
handler which has auth, rather than using the mux,
which didn't.  Fix TestWhoAmI now that /_whoami
sits behind auth.
 2014-10-29 14:31:07 -07:00
Daniel Smith
070c6c0440 Fix missing portalNets in tests once and for all by adding a default. 2014-10-29 12:27:35 -07:00
Daniel Smith
858b557bbb Undemocratically remove unused election code. 
@brendandburns: leaving this as a separate commit so you can get it back easily when you're ready to do something with it.
 2014-10-29 11:38:45 -07:00
Daniel Smith
a036ebc1be Switch models. No master election. 2014-10-29 11:38:45 -07:00
Daniel Smith
7146ec9d49 Implement kubernetes & kubernetes-ro services 2014-10-29 11:29:28 -07:00
Daniel Smith
3045311398 Fix subtle bug when proxy constructs outgoing URL. 2014-10-29 11:29:28 -07:00
Daniel Smith
7209ca1543 Make redirect handle namespaces just like proxy (which is weird and needs to be fixed but at least this will be consistent). 2014-10-29 11:29:28 -07:00