kubeshark

mirror of https://github.com/kubeshark/kubeshark.git synced 2025-05-04 22:59:00 +00:00

Author	SHA1	Message	Date
tiptophelmet	5a63457cf1	🔧 Rename default auth type to `oidc`	2025-03-25 13:45:46 +02:00
Alon Girmonsky	dc50ef48fd	🔖 Bump the Helm chart version to 52.6.0	2025-03-24 15:03:27 -07:00
Serhii Ponomarenko	453d27af43	🔨 Create `tap.routing.front.basePath` flag (#1726 ) * 🔨 Add `tap.routing.front.basePath` helm value * 🔨 Use `tap.routing.front.basePath` to adjust nginx blocks * 🔨 Set `front` base path to empty string * 📝 Update `front` base path docs * 📝 Add `front` base path example * 📝 Add base-path to Kubeshark URL in instructions --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-03-24 14:23:41 -07:00
Alon Girmonsky	c95d63feb0	Sentry Enabled By Default (#1721 ) * Update values.yaml Enable Sentry by default. * Update README.md	2025-03-24 14:09:58 -07:00
Serhii Ponomarenko	f85c7dfb4b	✨ OIDC support (Dex IdP) (#1722 ) * 🔧 Create dex config-map * 🔧 Create dex deployment * 🔧 Create dex service * 🔧 Create dex network policy * 🔧 Create dex network policy * 🔧 Add dex node selector terms * 🔧 Add a kubeshark-hub static client to dex config * 🐛 Use correct redirect URI for `kubeshark-hub` client * 🎨 Remove unused/commented dex config options * 🔨 Create a helper template to pick Kubeshark client secret * 🔧 Adjust front deployment env to allow `dex` auth type * 🔧 Adjust configmap to allow `dex` auth type * 🔧 Create k8s secret to store dex yaml config * 🔧 Mount dex-yaml-conf secret into `dex-config.yaml` * 🔥 Remove sample env var * 🔧 Create k8s config keys for Dex expiry settings * 🔧 Create k8s secret key for Dex client secret * 🔧 Deploy Dex resources if Dex auth is enabled * 🔧 Move `oauth2StateParamExpiry` under `customSettings` * 📝 Add basic helm-values docs to set up Dex auth * ✨ Separate Dex OIDC app settings from configuration * 📝 Update Dex documentation * 📝 Update Dex IdP documentation * 🦺 Add fallback value for OIDC issuer config * 🦺 Add fallback values for OIDC client ID/secret * 📝 Update Dex IdP documentation * 📝 Update Dex IdP documentation * 📝 Add reference to OIDC docs at `docs.kubeshark.co` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-03-24 14:05:38 -07:00
Volodymyr Stoiko	0386e57906	Add watchdog option (#1723 ) * add watchdog * Enable watchdog on sniffer	2025-03-24 11:02:57 -07:00
Alon Girmonsky	529ca63a47	Update RELEASE.md.TEMPLATE removed legacy	2025-03-01 22:23:24 +02:00
Alon Girmonsky	eec4404038	🔖 Bump the Helm chart version to 52.5.0	2025-03-01 22:00:24 +02:00
Volodymyr Stoiko	e47a665d68	Update structs and docs (#1710 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-02-21 09:07:17 -08:00
Serhii Ponomarenko	f656acea64	🔧 Add `aiAssistantEnabled` helm value (#1717 ) * 🔧 Add `aiAssistantEnabled` helm value * 🐛 Add quotes to `AI_ASSISTANT_ENABLED` config val --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-02-21 08:53:27 -08:00
Serhii Ponomarenko	000fb91461	🔧 Enable BPF-override on `tap.packetCapture: af_packet` (#1712 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-02-20 17:34:54 -08:00
bogdanvbalan	3c8ee11216	Update name of merged file (#1716 ) Co-authored-by: bogdan.balan1 <bogdanvalentin.balan@1nce.com> Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-02-20 17:30:43 -08:00
Serhii Ponomarenko	631e5f2d24	🔨 Add `demoModeEnabled` helm value (#1714 ) * 🔨 Add `demoModeEnabled` helm value * 🐛 Fix `demoModeEnabled` ternary expressions * 🦺 Check `demoModeEnabled` existence	2025-02-20 17:25:58 -08:00
Alon Girmonsky	95d6655af6	finished templating `tap.mountBpf` option. (#1711 )	2025-02-12 12:28:52 -08:00
Alon Girmonsky	62912d248d	for mac os compatibility	2025-02-10 13:53:42 -08:00
Alon Girmonsky	be8136687b	🔖 Bump the Helm chart version to 52.4.0	2025-02-05 12:15:19 -08:00
Volodymyr Stoiko	3d4606d439	Worker component security context refactoring (#1707 ) * Add new security context config * Fine-grained template for securityContext --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-02-03 13:38:41 -08:00
Ilya Gavrilov	46ca7e3ad7	Remove init container; remove -disable-ebpf option (#1706 ) * Remove init container; remove -disable-ebpf option * Remove init container; remove -disable-ebpf option	2025-02-03 08:58:32 -08:00
Alon Girmonsky	e9796bfb24	Readme updated (#1705 ) * Update README.md * Update README.md	2025-01-29 14:05:00 -08:00
Volodymyr Stoiko	ce7913ce2e	Fix pull secret aligning (#1703 ) * Fix pull secret aligning * align	2025-01-29 08:34:43 -08:00
bogdanvbalan	8f6ef686de	Refactor and simplify pcapdump logic (#1701 ) * Fix spammy logs * Fix err related to value missing from pcap config * Test target dir only when provided * Improve consistency of error handling * Remove obsolete code --------- Co-authored-by: bogdan.balan1 <bogdanvalentin.balan@1nce.com>	2025-01-27 13:42:59 -08:00
M. Mert Yildiran	f2e60cdee1	Add `PortMapping` to `TapConfig` for port number based dissector prioritization (#1700 )	2025-01-25 12:10:53 -08:00
Alon Girmonsky	67aa1dac39	Automatic patch updates Update Makefile to include the Minor version in the Chart.yaml in support for automatic patch updates.	2025-01-24 14:54:19 -08:00
Alon Girmonsky	818a9e2bec	Moving to eBPF as a default packet capture method. Making default packet capture method eBPF, defaulting to AF_PACKET in case eBPF is not available	2025-01-24 14:24:02 -08:00
Alon Girmonsky	7eb35a4e11	🔖 Bump the Helm chart version to 52.3.96	2025-01-24 11:42:47 -08:00
Alon Girmonsky	858864e7bc	Changed two errors to warnings.	2025-01-24 09:59:43 -08:00
Volodymyr Stoiko	ad10212ba5	Add dns config (#1698 ) * Add dnsconfig * Update templates * Add dns configuration values * readme	2025-01-24 09:14:08 -08:00
Alon Girmonsky	0e3f137a69	add diameter protocol support (#1696 )	2025-01-22 15:57:46 -08:00
Volodymyr Stoiko	ef17eb9fbe	Make node selector component specific (#1694 ) * Make node selector component specific * Update templates --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-01-22 12:50:17 -08:00
Alon Girmonsky	aa7c8f36f5	added `-disable-tracer` option (#1695 ) to the worker daemon set, when `tap.tls=false` is set.	2025-01-22 12:32:05 -08:00
bogdanvbalan	c92f509863	#528 Remove pcap src from configMap (#1693 ) * Remove pcap src from configMap * change folder name keep it simple and short --------- Co-authored-by: bogdan.balan1 <bogdanvalentin.balan@1nce.com> Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-01-22 10:10:44 -08:00
Serhii Ponomarenko	0d5bbd53aa	🔧 Add helm variable to disable live config-map user actions (#1689 ) * 🔧 Add helm variable to disable live config-map user actions * 🐛 Fix ternary for `PRESET_FILTERS_CHANGING_ENABLED` config --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-01-18 13:15:46 +02:00
bogdanvbalan	0b00b1846b	Fix error on getting namespaces for pcap target files (#1691 ) * Fix err when using dest arg * Add debug * Debug pcap download * Fix ns bug * Fix namespace bug * Clean debug leftovers --------- Co-authored-by: bogdan.balan1 <bogdanvalentin.balan@1nce.com>	2025-01-18 13:04:54 +02:00
bogdanvbalan	507099c1ec	Fix err when using dest arg (#1688 ) Co-authored-by: bogdan.balan1 <bogdanvalentin.balan@1nce.com>	2025-01-16 10:19:18 +02:00
Alon Girmonsky	aca3f4ad44	🔖 Bump the Helm chart version to 52.3.95	2025-01-11 15:53:08 +01:00
Volodymyr Stoiko	f9c66df528	Update worker liveness/readiness config (#1684 ) * Increase worker init delay to 30s * Update values * fix * Make probe values configurable * upd --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2025-01-08 13:09:51 -08:00
Alon Girmonsky	1d572e6bff	support new radius protocol (#1682 )	2025-01-08 13:05:57 -08:00
Alon Girmonsky	46ad335446	updated the notes (#1681 )	2025-01-06 18:42:17 -08:00
Alon Girmonsky	317357e83b	✨ Update the Helm chart	2025-01-03 15:42:21 -08:00
Alon Girmonsky	d89ef8789f	🔖 Bump the Helm chart version to 52.3.93	2025-01-03 14:22:00 -08:00
Alon Girmonsky	773ad78ac7	extended the https macro to include http2 in addition to http	2025-01-03 10:30:22 -08:00
Alon Girmonsky	bbcaf74fa7	added https as a default macro (#1680 ) * added https as a default macro * small syntax fix	2025-01-03 09:54:50 -08:00
M. Mert Yildiran	639f1deb51	Add `CUSTOM_MACROS` to `ConfigMap` (#1674 ) Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-12-25 16:45:03 -08:00
Alon Girmonsky	b377bfe35f	Revert "Revert "Initialize kubeshark pinned eBPF resources inside init container (#1665 )" (#1676 )" (#1678 ) This reverts commit `12f8883052`.	2024-12-25 16:21:08 -08:00
Serhii Ponomarenko	5242d9af07	🛂 Add save/activate/delete role scripting permissions (#1675 ) * 🛂 Add save/activate/delete role scripting permissions * 🔧 Add scripting permissions to tap-config * 🔨 Re-generate helm values & `complete.yaml` * 📝 Add scripting permissions to helm chart docs * 🏷️ Make scripting permissions `true` by default --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-12-25 12:33:16 -08:00
M. Mert Yildiran	12f8883052	Revert "Initialize kubeshark pinned eBPF resources inside init container (#1665 )" (#1676 ) This reverts commit `29de008f22`.	2024-12-25 11:21:51 -08:00
Alon Girmonsky	7eef5efcd9	Added security capabilities, especially IPC_LOCK (#1671 ) to Sniffer in case eBPF traffic capture mechanism is used.	2024-12-23 16:49:54 -08:00
M. Mert Yildiran	af47154a8d	Revert "Add `CUSTOM_MACROS` to `ConfigMap`" This reverts commit `17759d296d`.	2024-12-23 21:26:42 +03:00
M. Mert Yildiran	17759d296d	Add `CUSTOM_MACROS` to `ConfigMap`	2024-12-23 21:25:11 +03:00
Ilya Gavrilov	29de008f22	Initialize kubeshark pinned eBPF resources inside init container (#1665 ) * Clean kubeshark pinned bpf resources inside init container * Clean kubeshark pinned bpf resources inside init container * Update 09-worker-daemon-set.yaml * add IPC_LOCK capability to sniffer * add init container to mount bpf filesystem * add init container to mount bpf filesystem --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-12-19 16:20:13 -08:00

1 2 3 4 5 ...

2090 Commits