-
Notifications
You must be signed in to change notification settings - Fork 38.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mv TokenRequest and TokenRequestProjection to GA #93258
Conversation
Hi @zshihang. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/assign @soltysh |
/cc @mikedanese |
This PR may require API review. If so, when the changes are ready, complete the pre-review checklist and request an API review. Status of requested reviews is tracked in the API Review project. |
/label api-review |
@kubernetes/sig-auth-pr-reviews |
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: liggitt, neolit123, zshihang The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@zshihang go ahead and open a WIP docs PR agains the https://github.com/kubernetes/website/tree/dev-1.20 branch to update https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection with the |
regarding the kubeadm, the only diff is the default value for issuer and necessary changes to pass unit test. |
/hold cancel based on #93258 (comment) and #93258 (comment) |
Lgtm. Thanks for the updates. |
Q: Is this related to an enhancement? |
hi, yes this is for: could you please add the
also could you please add some sort of a mention about kubeadm in the release-note:
|
@neolit123 added. thanks. |
Hi all, I don't see any open (or closed) issue 1205 nor is this enhancement tracked for 1.20 in the spreadsheet: http://bit.ly/k8s-1-20-enhancements Can someone please explain what the tracking issue for this is? As this was not tracked and there was no underlying tracking issue an exception will need to be filed. See: https://github.com/kubernetes/sig-release/blob/master/releases/release_phases.md#exceptions Thanks, |
Apologies for the disconnect. The KEP is at https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1205-bound-service-account-tokens and was updated with v1.20 plans prior to enhancements freeze in kubernetes/enhancements#1912 The KEP number came from the original PR that converted a pre-KEP design to KEP format (kubernetes/enhancements#1205) |
Hi @liggitt There is no tracking issue (which is required for all enhancements), and the enhancement is not being tracked by the release team for 1.20. The KEP is also misnumbered as the naming should be - as per the templates found here: https://github.com/kubernetes/enhancements/tree/master/keps/NNNN-kep-template The requirement to have a 1.20 milestoned issue was also mentioned in my email on October 5 sent to k-dev: https://groups.google.com/g/kubernetes-dev/c/1KF6mmO1WsQ/m/IFWMkeKVCwAJ Please open an exception request ASAP. Thanks, |
Understood. The template/process has changed since this KEP was created, and work to sweep existing designs/KEPs that predated those changes has been inconsistent. This highlights a gap in the release process that relies on keeping multiple disconnected information sources (kep.yaml files, enhancements issues, tracking spreadsheet, etc) in sync manually. Opened kubernetes/enhancements#2126 as a tracking issue and started the thread for the exception at https://groups.google.com/g/kubernetes-sig-release/c/VLiE7Lsy6Es |
What type of PR is this?
/kind api-change
What this PR does / why we need it:
move
TokenRequest
andTokenRequestProjection
features to GA in v1.20Special notes for your reviewer:
Does this PR introduce a user-facing change?:
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: