M. Mert Yildiran
5089e9ccb8
Add EXCLUDED_NAMESPACES to ConfigMap ( #1571 )
...
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
2024-08-02 08:25:32 -07:00
M. Mert Yildiran
af2086a54d
✨ Add --grep flag to logs command
2024-05-23 01:20:55 +03:00
Serhii Ponomarenko
18d051af28
🔥 Remove old Descope auth ( #1490 )
...
* 🔥 Remove Descope-related config updates
* 🔥 Remove Descope-related helm values
* 🔥 Remove Descope-related k8s configs
* 🔥 Remove Descope-related fields from `tapConfig`
---------
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
2024-01-31 14:49:55 -08:00
Serhii Ponomarenko
a8dd332ff8
✨ SAML integration prototype ( #1475 )
...
* 🔨 Add `AUTH_TYPE` field to `ConfigMap`
* 🔨 Add `AUTH_SAML_IDP_METADATA_URL` field to `ConfigMap`
* 🔨 Add `AUTH_SAML_X509_CRT` field to `Secret`
* 🔨 Add `AUTH_SAML_X509_KEY` field to `Secret`
* 🔨 Mount SAML X.509 key pair into `hub`
* 🔨 Add `REACT_APP_AUTH_TYPE` environment variable to `front`
* 🔧 Add Nginx path rewrite for `/saml`
* 🔧 Raise request size to accept big SAML responses
* 🔨 Add `REACT_APP_AUTH_TYPE` environment default value
* 📝 Update `README.md`
* 📝 Update `README.md`
* 🔨 Add `AUTH_TYPE` config map key
* 🔨 Add `AUTH_SAML_IDP_METADATA_URL` config map key
* ☸ Set `CONFIG_AUTH_TYPE` from `TapConfig`
* ☸ Set `CONFIG_AUTH_SAML_IDP_METADATA_URL` from `TapConfig`
* ✨ Create `SamlConfig` in `TapConfig.AuthConfig`
* 🔨 Use updated `tap.auth.saml.idpMetadataUrl` tap config field
* 📝 Update `README.md`
* 🔨 Add `tap.insgress.enabled/host` to `ConfigMap`
* 🔨 Add `tap.proxy.front.port` to `ConfigMap`
* 🔨 Add `REACT_APP_AUTH_SAML_IDP_METADATA_URL` env to `front`
* 🔧 Supply `auth.saml` fields to `helm-chart/values.yaml`
* 🐛 Fix indentation for X.509 secrets
* 📝 Provide SAML setup docs
* 📝 Update SAML setup docs
* 📝 Update SAML setup docs
* Added callback URL indication
* 💥 Disable standard `Descope` auth
---------
Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
2024-01-23 10:47:29 -08:00
M. Mert Yildiran
696fed8345
🔊 Log the pod name in SPDYExecutor
2023-11-18 03:02:44 +03:00
M. Mert Yildiran
c03de2222d
✨ Add kube:// prefixed URI support ( #1454 )
...
* ✨ Add `kube://` prefixed URI support
* 🐛 Fix the `a container name must be specified for pod <POD_NAME>, choose one of: [sniffer tracer]` error
* 🐛 Fix all of the issues in `kube://` prefixed URI support
* 🐛 Fix the `invalid reference format` error
* 🐛 Fix the `kubeUrl`
2023-11-18 02:56:07 +03:00
M. Mert Yildiran
19723debb2
🐛 Fix GetHubUrl method
2023-11-01 20:35:19 +03:00
M. Mert Yildiran
cb0e89934d
🔨 Fix the AUTH_APPROVED_TENANTS config map key
2023-10-27 22:04:42 +03:00
M. Mert Yildiran
62d4c3a86e
🔨 Add ApprovedTenants field to AuthConfig and enable auth by default
2023-10-26 20:27:34 +03:00
M. Mert Yildiran
5bd44b57f4
✨ In case of tap re-run, update the config and start a proxy
2023-09-25 23:21:38 +03:00
M. Mert Yildiran
41dacbff1a
🔨 Add tracer as a separate container to worker DaemonSet ( #1428 )
...
* 🔨 Add `tracer` as a separate container to worker `DaemonSet`
* 🔥 Delete some of the unused connector methods
* 🔨 Set `POD_NAME` and `POD_NAMESPACE` environment variables in worker `DeamonSet`
* 🔨 Set `POD_NAME` and `POD_NAMESPACE` environment variables in hub `Deployment`
* Fix the labels
* Fix the self config role
* Restrict it to specific resource names
* Run `make generate-manifests`
2023-09-24 04:23:32 +03:00
Luiz Oliveira
3dfff2b7a5
♻️ Turn the Ingress path rewrite for Hub into an Nginx location directive ( #1426 )
...
* fixes websocket for nginx-ingress
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* update messagem when helm completes
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* force react port to be a path
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* include Authorization header to the proxy
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* remove hub from proxy
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* remove REACT_APP_HUB_PORT info
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* include path back again to REACT_APP_HUB_PORT
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
---------
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
2023-09-15 21:43:34 +03:00
Luiz Oliveira
f95db49317
🚀 Change Hub's and Front's resource type from Pod to Deployment ( #1412 )
...
* change services to ClusterIP and update selector labels
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* replace kind of hub and front to Deployments
Pod -> Deployments
hub config -> Uses a config-map
license -> Ises a secret
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* uses map of labels to select pods and services
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* remove ListAllNamespaces method
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
* include livenessProbe and readinessProbe for deployments
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
---------
Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com>
2023-08-16 02:35:31 +03:00
M. Mert Yildiran
746eff1e23
🔥 Remove the dead code in kubernetes package
2023-08-15 17:46:23 +03:00
M. Mert Yildiran
b32f5f9e12
🔥 Remove the unused constants in kubernetes package
2023-08-04 20:49:21 +03:00
M. Mert Yildiran
4c2884c40f
✨ Add KUBESHARK_HELM_CHART_PATH environment variable to set a local path for the Helm chart
2023-07-03 17:15:47 +03:00
M. Mert Yildiran
0ef3e2d018
⚡ Fix the issues related to release namespace
2023-07-03 16:33:50 +03:00
M. Mert Yildiran
7b004e7a1f
⚡ Change GetLocalhostOnPort method to GetProxyOnPort
2023-06-19 02:19:52 +03:00
M. Mert Yildiran
7a5bf83336
✨ Use the Helm chart in tap command to install Kubeshark ( #1362 )
...
* ✨ Use the Helm chart in `tap` command to install Kubeshark
* ⬆️ Set Go version to `1.19` in `go.mod` file
* ✨ Add `Helm` struct`, `NewHelm` and `NewHelmDefault` methods
* ⚡ Better logging and error return
* ⚡ Pass the config as `values.yaml` to Helm install
* 🔥 Remove `helm-chart`, `manifests` and `check` commands
* ➖ Run `go mod tidy`
* 🎨 Move `helm` package into `kubernetes` package
* 🔥 Remove `# THIS FILE IS AUTOMATICALLY GENERATED BY KUBESHARK CLI. DO NOT EDIT!` notice from the manifests and Helm templates
* 🔥 Remove the unused `GenerateApplyConfiguration` and `buildWithDefaultLabels` methods
2023-06-06 12:16:03 +03:00
M. Mert Yildiran
be5bd6a372
⚡ Template the AUTH_APPROVED_DOMAINS and certmanager.k8s.io/cluster-issuer
...
Also add `networking.k8s.io` to `apiGroups` in `ClusterRole`
2023-05-25 05:07:42 +03:00
M. Mert Yildiran
c19cd00c77
⚡ Add CertManager field to IngressConfig and add an Ingress TLS example
2023-05-24 04:01:45 +03:00
M. Mert Yildiran
39f8d40b76
Revert " ⚡ Add Refresh-Token to the list of Access-Control-Allow-Headers"
...
This reverts commit bf731073c8
2023-05-24 02:10:48 +03:00
M. Mert Yildiran
bf731073c8
⚡ Add Refresh-Token to the list of Access-Control-Allow-Headers
2023-05-24 02:04:56 +03:00
M. Mert Yildiran
4bb68afaaf
✨ Add AuthConfig struct and pass domains in AUTH_APPROVED_DOMAINS environment variable
2023-05-24 01:50:59 +03:00
M. Mert Yildiran
ad9dfbce40
✨ Add Ingress ( #1357 )
...
* ✨ Add `Ingress`
* ⚡ Rewrite the target in `Ingress`
* ⚡ Fix the path of front pod in `Ingress`
* ✨ Add `IngressConfig` struct
* ⚡ Generate the correct Helm chart based on `tap.ingress` field of `values.yaml`
2023-05-16 19:46:47 +03:00
M. Mert Yildiran
139336d4ee
⚡ Template hostPort(s) in the Helm chart
2023-05-10 14:38:38 +03:00
M. Mert Yildiran
f68fed0de8
🐛 Fix the effect of proxy config port changes
2023-05-10 01:28:43 +03:00
M. Mert Yildiran
a33a3467fc
✨ Add persistentstorage option
2023-05-08 00:50:56 +03:00
M. Mert Yildiran
fab0f713ed
🐛 Pass the license string
2023-05-04 21:18:34 +03:00
M. Mert Yildiran
60cfa92efb
⚡ Apply the same Kubernetes tolerations to all pods
2023-04-20 20:27:22 +03:00
M. Mert Yildiran
38d121556c
✨ Add storageclass option to config.yaml
2023-04-20 20:20:24 +03:00
M. Mert Yildiran
df7d1ac10c
⚡ Give the permission of listing or watching the persistentvolumeclaims to the ClusterRole
2023-04-20 03:01:25 +03:00
M. Mert Yildiran
657ea8570c
✨ Add PersistentVolumeClaim and mount it to worker DaemonSet
2023-04-20 00:09:22 +03:00
M. Mert Yildiran
686dd5fba1
🔥 Remove the -A flag and allnamespaces field from config.yaml
2023-04-19 20:52:28 +03:00
M. Mert Yildiran
5ce10b626f
⚡ Pass every config through environment variables and don't make HTTP calls in first tap command
2023-04-18 03:21:23 +03:00
M. Mert Yildiran
fb06545887
⚡ Add a header comment to generated manifests and Helm chart templates
2023-04-12 03:10:23 +03:00
M. Mert Yildiran
18addbb980
⚡ Fix the issues in Helm chart such that helm template succeeds
2023-04-12 02:12:12 +03:00
M. Mert Yildiran
d2b9bddf78
✨ Do more Helm templating
2023-04-12 01:33:41 +03:00
M. Mert Yildiran
3ebf816a68
✨ Generate Helm chart templates
2023-04-12 01:06:39 +03:00
M. Mert Yildiran
02990912b7
⚡ Move ResourceLabels and NodeSelectorTerms fields into TapConfig
2023-04-11 22:37:29 +03:00
M. Mert Yildiran
c42481deb8
✨ Add POD_REGEX, NAMESPACES, STORAGE_LIMIT and LICENSE environment variables to Hub
2023-04-11 18:40:34 +03:00
M. Mert Yildiran
39d1b77045
⚡ Fix the issues in worker DaemonSet
2023-04-11 02:33:17 +03:00
M. Mert Yildiran
f19db77228
⚡ Fix more issues in manifests command
2023-04-11 02:18:23 +03:00
M. Mert Yildiran
077fc6c126
⚡ Set the apiVersion in the manifests
2023-04-11 02:09:03 +03:00
M. Mert Yildiran
5dafc015bb
✨ Add manifests command to generate Kubernetes manifests
2023-04-11 01:54:06 +03:00
M. Mert Yildiran
d1b17d4534
✨ Build worker DaemonSet separately then apply it by converting it to ApplyConfiguration
2023-04-10 22:24:54 +03:00
M. Mert Yildiran
c962864d0b
🐛 Fix the clean command cause leftover ClusterRole and ClusterRoleBinding
2023-04-10 00:48:22 +03:00
M. Mert Yildiran
07b080e97a
🔥 Remove the unused methods in the kubernetes package
2023-04-01 21:36:48 +03:00
M. Mert Yildiran
e4684a10af
✨ Add --ignoreTainted flag to tap command
2023-03-27 16:26:09 +03:00
M. Mert Yildiran
b7f0dd7f3c
🔨 Rename the newly added customLabels field to resourceLabels in the config
2023-03-16 02:34:41 +03:00
