Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add optional TLS spec for RouteGroups #16

Merged
merged 4 commits into from
Jan 9, 2024
Merged

Add optional TLS spec for RouteGroups #16

merged 4 commits into from
Jan 9, 2024

Conversation

rickhlx
Copy link
Contributor

@rickhlx rickhlx commented Jan 1, 2024

This will allow Skipper to add TLS certs defined in RouteGroups to the certificate registry which will be used to terminate TLS based on the configured hostnames. This behaviors mimics Ingress Spec.

@rickhlx
Add optional TLS spec for RouteGroups
3264e73 
The optional TLS spec will allow per-host TLS
termination using Kubernetes secrets.
@rickhlx rickhlx mentioned this pull request Jan 1, 2024
Merged
@szuecs
Copy link
Owner

szuecs commented Jan 2, 2024

@rickhlx will check this as soon zalando/skipper#2814 is merged.

@AlexanderYastrebov
Copy link
Collaborator

LGTM, will merge after we land zalando/skipper#2814 (please update CRD there)

szuecs
szuecs approved these changes Jan 9, 2024
View reviewed changes
Copy link
Owner

@szuecs szuecs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks for the PR

@szuecs szuecs merged commit f5b8129 into szuecs:master Jan 9, 2024
1 check passed
@rickhlx rickhlx deleted the routegroup-host-tls branch January 9, 2024 16:58
AlexanderYastrebov added a commit that referenced this pull request Mar 26, 2024
@AlexanderYastrebov
crd: add hosts max length
b67155e 
controller-gen does not support validating internal list items on list types,
see kubernetes-sigs/controller-tools#342

To add host pattern we used perl hack that is hard to extend to multiple
validations.

Also #16 added optional tls spec that contains hosts field for which
perl hack worked by accident, see #16 (comment)

This change replaces perl hack for a go hack and adds max length constraint.

Signed-off-by: Alexander Yastrebov <alexander.yastrebov@zalando.de>
@AlexanderYastrebov AlexanderYastrebov mentioned this pull request Mar 26, 2024
Merged
AlexanderYastrebov added a commit that referenced this pull request Mar 26, 2024
@AlexanderYastrebov
crd: add hosts max length
d4ea708 
controller-gen does not support validating internal list items on list types,
see kubernetes-sigs/controller-tools#342

To add host pattern we used perl hack that is hard to extend to multiple
validations.

Also #16 added optional tls spec that contains hosts field for which
perl hack worked by accident, see #16 (comment)

This change replaces perl hack for a go hack and adds max length constraint.

Signed-off-by: Alexander Yastrebov <alexander.yastrebov@zalando.de>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AlexanderYastrebov AlexanderYastrebov AlexanderYastrebov left review comments

@szuecs szuecs szuecs approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rickhlx @szuecs @AlexanderYastrebov