New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[wip] Merge upstream into downstream v0.14.0 #62
[wip] Merge upstream into downstream v0.14.0 #62
Conversation
*: cut v0.13.0 release
We are not affected by the CVE directly or indirectly. CVE scanners push people to create issues against our repository. Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
bump: emicklei/go-restful due to CVE-2022-1996
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
main.go: add warn logs when insecure opts in use
We are not affected by the CVE, but security scanners push people to create issues on our repository. Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
bump: golang.org/x/crypto due to CVE-2022-27191
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Cache ttl comment
pkg/authz: rename Equal to Matches
pkg/proxy: rm unused args
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
main.go: warning for --tls-reload-interval
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
*: cut v0.13.1 release
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Allow path as filter
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
feat: Add healthz path
bump: golang.org/x/text due to CVE-2022-32149
add client cert auth for upstream connections
use cobra and upstream command machinery to run kube-rbac-proxy
Using a port as a namespace for endpoints specific to the proxy is a bit more practical than using a path/subpath for each specific endpoint/endpoints as this introduced approach is less prone to upstream endpoint changes.
use a different port for proxy-specific endpoints
Bump golang version to 1.19.4
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Version bump for v0.14
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
Signed-off-by: Krzysztof Ostrowski <kostrows@redhat.com>
*: cut v0.14.0 release
@ibihim: PR needs rebase. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@ibihim: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: ibihim The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
No description provided.