github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
121,390 Commits 1 Branch 31 Tags 1,019 MiB
fcd6c19c24
Commit Graph

18 Commits

Author SHA1 Message Date
Patrick Ohly
4a380609a9 serviceaccount: fix incorrect usage of %w in Errorf 
Found by govet in combination with new klog where printf-style checking is
enabled.
 2023-11-01 09:32:23 +01:00
tinatingyu
5925dc0775 LegacyServiceAccountTokenCleanUp beta 2023-10-27 03:52:06 +00:00
Kubernetes Prow Robot
88aa34c124
Merge pull request #119643 from carlory/fix-119638 
Fix Non Constant-Time Comparison of Service Account Token Secrets
 2023-08-15 19:43:32 -07:00
carlory
14251738d2 NCC-E003660-PCK: Non Constant-Time Comparison of Service Account Token Secrets 2023-07-28 14:06:23 +08:00
Yuan Chen
c4739313b7 Track manually created secret-based tokens 
Add audit annotation and metrics to track secret-based tokens

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/legacy.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/legacy.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Fix a bug
 2023-07-25 10:07:39 -07:00
Shihang Zhang
182cd425d3 graduate LegacyServiceAccountTokenTracking to GA 2023-05-19 10:33:34 -07:00
Shihang Zhang
e878bc17e6
Update pkg/serviceaccount/legacy.go 
Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
 2022-12-16 12:54:52 -08:00
Shihang Zhang
0852a49020 graduate LegacyServiceAccountTokenTracking to beta 2022-12-16 10:34:17 -08:00
Shihang Zhang
569cd70a52 track legacy service account tokens 2022-10-24 09:37:53 -07:00
cici37
95acec5a3b Move client_builder to k8s.io/controller-manager 2020-10-19 14:48:22 -07:00
Davanum Srinivas
442a69c3bd
switch over k/k to use klog v2 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-16 07:54:27 -04:00
Jiajie Yang
ae0e52d28c Monitoring safe rollout of time-bound service account token. 2020-04-22 11:59:16 -07:00
chenyaqi01
66be69bb0e replace bytes.Compare() with bytes.Equal() 2019-09-27 10:08:49 +08:00
Davanum Srinivas
954996e231
Move from glog to klog 
- Move from the old github.com/golang/glog to k8s.io/klog
- klog as explicit InitFlags() so we add them as necessary
- we update the other repositories that we vendor that made a similar
change from glog to klog
  * github.com/kubernetes/repo-infra
  * k8s.io/gengo/
  * k8s.io/kube-openapi/
  * github.com/google/cadvisor
- Entirely remove all references to glog
- Fix some tests by explicit InitFlags in their init() methods

Change-Id: I92db545ff36fcec83afe98f550c9e630098b3135
 2018-11-10 07:50:31 -05:00
Mike Danese
e5227216c0 rebase authenticators onto new interface. 2018-10-22 10:16:59 -07:00
Mike Danese
43eaeb8c6c svcacct: pass pod information in user.Info.Extra() when available 
Fixes https://github.com/kubernetes/kubernetes/issues/59670
 2018-08-31 11:54:50 -07:00
Mike Danese
2862fb333a svcacct: make token authenticator fully generic 
so it can be used for both new and legacy svcacct tokens. Also move the
legacy validator into legacy.go.
 2018-02-20 12:30:42 -08:00
Mike Danese
7d74c35963 svcacct: move claim generation out of TokenGenerator 2018-02-06 13:19:54 -08:00