hscloud

cheshire

hscloud

forked from hswaw/hscloud

Fork 0

Commit Graph

Author	SHA1	Message	Date
q3k	5d2c8fcda0	cluster/admitomatic: finish up ingress admission logic This gives us nearly everything required to run the admission controller. In addition to checking for allowed domains, we also do some nginx-inress-controller security checks. Change-Id: Ib187de6d2c06c58bd8c320503d4f850df2ec8abd	2021-01-31 12:18:16 +01:00
q3k	649565324b	cluster/admitomatic: implement basic dns/ns filtering This is the beginning of a validating admission controller which we will use to permit end-users access to manage Ingresses. This first pass implements an ingressFilter, which is the main structure through which allowed namespace/dns combinations will be allowed. The interface is currently via a test, but in the future this will likely be configured via a command line, or via a serialized protobuf config. Change-Id: I22dbed633ea8d8e1fa02c2a1598f37f02ea1b309	2021-01-30 19:19:35 +01:00

Author

SHA1

Message

Date

q3k

5d2c8fcda0

cluster/admitomatic: finish up ingress admission logic

This gives us nearly everything required to run the admission
controller. In addition to checking for allowed domains, we also do some
nginx-inress-controller security checks.

Change-Id: Ib187de6d2c06c58bd8c320503d4f850df2ec8abd

2021-01-31 12:18:16 +01:00

q3k

649565324b

cluster/admitomatic: implement basic dns/ns filtering

This is the beginning of a validating admission controller which we will
use to permit end-users access to manage Ingresses.

This first pass implements an ingressFilter, which is the main structure
through which allowed namespace/dns combinations will be allowed. The
interface is currently via a test, but in the future this will likely be
configured via a command line, or via a serialized protobuf config.

Change-Id: I22dbed633ea8d8e1fa02c2a1598f37f02ea1b309

2021-01-30 19:19:35 +01:00

2 Commits (9e3ca9c84108453dd958b365eaf56a797832a6bb)