- 07 Mar, 2018 6 commits
-
-
Denise Schannon authored
-
Denise Schannon authored
-
Denise Schannon authored
-
Alena Prokharchyk authored
-
Alena Prokharchyk authored
-
Craig Jellick authored
If test is successful, the current user's principal is saved to the user, so adding it to the allowed principals is to reflect that future state.
-
- 06 Mar, 2018 11 commits
-
-
Craig Jellick authored
-
Craig Jellick authored
-
Alena Prokharchyk authored
add labels to RkeNodeConfig
-
Alena Prokharchyk authored
so updated data can be fetched when namespace gets created from project context
-
Alena Prokharchyk authored
fix publish image step with dockerhub credential
-
Craig Jellick authored
Clean roles to make them k8s compatible (lowercarse verbs and resources) during the gathering function so that all subsequent logic that uses the roles gets the clean versions.
-
gitlawr authored
-
Denise Schannon authored
-
Nathan Jenan authored
When a new namespace is created and assigned to a project and that project has a pod security policy, the pod security policy is not binding correctly. This is because when the service account handler looks to see if a binding exists for a given service account in a given namespace, it only looks for the first policy with a matching parent template annotation and then exits. This fixes the issue by making it compare the name and namespace of the subject in the clusterrole and then creating the role binding it if does not exist. Issue: https://github.com/rancher/rancher/issues/11887
-
Craig Jellick authored
-
Craig Jellick authored
If a PRTB/CRTB is created with the userPrincipalId set, we will ultimately need to ensure that the user exists in rancher. This is done in a controller, which does not have access to the principals API. So, set the principal's display name as an annotation on the RTB during the API request (where we do have access to the principals API) so that it can be used to ensure the user in the controller.
-
- 05 Mar, 2018 15 commits
-
-
Craig Jellick authored
kubernetes is case sensitive for role rules. This change ensures verbs and resources are all lowercase when syncing a roleTemplate.
-
Alena Prokharchyk authored
Vendor bump
-
Craig Jellick authored
-
Alena Prokharchyk authored
Workload ports update fix
-
moelsayed authored
-
Alena Prokharchyk authored
-
Craig Jellick authored
-
Nathan Jenan authored
-
Daishan Peng authored
-
Craig Jellick authored
So, for example, an RBAC rule for statefulsets is properly recognized as authorizing statefulSets.
-
Darren Shepherd authored
-
Craig Jellick authored
This change adds a status condition to namespace that indicates its initial roles have been populated from rancher. Namespaces do not natively support adding conditions. This change puts a status type object into an annotation so that we can control the rancher state.
-
Darren Shepherd authored
-
Darren Shepherd authored
-
Alena Prokharchyk authored
Pipeline additional options
-
- 04 Mar, 2018 8 commits
-
-
gitlawr authored
support reuse global github config when enabling pipeline add option to run specific branch fix missing triggerUser when manually run add pipeline validator fix webhook/cron updates on pipeline updates
-
Daishan Peng authored
-
galal-hussein authored
-
Darren Shepherd authored
-
Darren Shepherd authored
-
Alena Prokharchyk authored
-
Darren Shepherd authored
-
Darren Shepherd authored
-