52e2382ca0
chore: update golangci-lint to v1.50.0 ( #700 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2023-01-18 01:49:33 +00:00
8372568b1b
fix: use generate name in logs if pod name is empty ( #706 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2023-01-18 00:48:51 +00:00
a915e40f8e
chore: bump github.com/sirupsen/logrus from 1.8.1 to 1.8.2 ( #702 )
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-17 22:45:35 +00:00
50834a5f1d
chore: bump github/codeql-action from 2.1.37 to 2.1.38 ( #701 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.37 to 2.1.38.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](959cbb7472...515828d974
2023-01-17 11:38:34 -08:00
03e849e487
fix: explicitly set runAsNonRoot to false ( #697 ) ( #698 )
2023-01-13 11:09:27 -08:00
f41afae1a2
chore: bump jsonwebtoken from 8.5.1 to 9.0.0 in /examples/msal-node ( #690 )
...
Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken ) from 8.5.1 to 9.0.0.
- [Release notes](https://github.com/auth0/node-jsonwebtoken/releases )
- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md )
- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.0 )
---
updated-dependencies:
- dependency-name: jsonwebtoken
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 19:52:25 +00:00
cba0c3853b
docs: Update quick start doc for user assigned identity ( #692 )
...
* docs: update quick start doc for user assigned identity
Previous code will return `Unable to get object id from principal name.`
* fixup! docs: update quick start doc for user assigned identity
2023-01-11 09:25:58 -08:00
257fd5df35
chore: bump jsonwebtoken and @azure/msal-node ( #694 )
...
Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken ) and [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js ). These dependencies needed to be updated together.
Updates `jsonwebtoken` from 8.5.1 to 9.0.0
- [Release notes](https://github.com/auth0/node-jsonwebtoken/releases )
- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md )
- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.0 )
Updates `@azure/msal-node` from 1.14.1 to 1.14.6
- [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases )
- [Commits](https://github.com/AzureAD/microsoft-authentication-library-for-js/compare/msal-node-v1.14.1...msal-node-v1.14.6 )
---
updated-dependencies:
- dependency-name: jsonwebtoken
dependency-type: indirect
- dependency-name: "@azure/msal-node"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-10 23:37:48 +00:00
df6362a239
docs: update go sdk ref link ( #684 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-21 16:05:09 -08:00
4d5f063d1e
feat: add azure-identity go example ( #683 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-20 23:04:49 +00:00
c3f08b374a
chore: bump goreleaser/goreleaser-action from 3 to 4 ( #679 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3 to 4.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-20 10:09:01 -08:00
aec29987cf
chore: bump github/codeql-action from 2.1.36 to 2.1.37 ( #678 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a669cc5936...959cbb7472
2022-12-19 11:34:09 -08:00
80d9a4256f
test: remove mutate pod based on label tests from GINKGO_SKIP ( #675 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-19 09:55:31 -08:00
9e27154155
release: update manifest and helm charts for v0.15.0 ( #672 )
...
Co-authored-by: aramase <aramase@users.noreply.github.com>
2022-12-13 23:13:02 +00:00
3f544c2e07
security: fix CVE-2022-41717 ( #673 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-13 21:59:10 +00:00
cc70d41b94
chore: bump k8s.io/client-go from 0.25.4 to 0.25.5 ( #668 )
...
* chore: bump k8s.io/client-go from 0.25.4 to 0.25.5
Bumps [k8s.io/client-go](https://github.com/kubernetes/client-go ) from 0.25.4 to 0.25.5.
- [Release notes](https://github.com/kubernetes/client-go/releases )
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.25.4...v0.25.5 )
---
updated-dependencies:
- dependency-name: k8s.io/client-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* run "go mod tidy"
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-12 22:00:53 +00:00
0edd8800a2
chore: bump github/codeql-action from 2.1.35 to 2.1.36 ( #666 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.35 to 2.1.36.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b2a92eb56d...a669cc5936
2022-12-12 12:48:11 -08:00
01e38b0d77
ci: enable tests with kubernetes v1.26 ( #663 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-09 18:21:19 -05:00
7e807f7e5c
fix: use HasSuffix check for generating scope ( #660 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-09 15:21:57 -05:00
b52c7f96f8
feat: mutate pods based on pod label ( #653 )
...
* feat: mutate pods based on pod label
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* feat: add warning for pods missing labels
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* test: add e2e test for validating mutation with labelled pod
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* add warnings as part of audit annotations
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* update error message and admission response
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* update e2e to check for warning
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-07 23:41:09 +00:00
c4c898f4f1
fix: remove `UPDATE` operation from mutatingwebhookconfiguration ( #652 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-12-07 18:30:57 +00:00
e00e0d3155
chore: bump github/codeql-action from 2.1.32 to 2.1.35 ( #655 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.32 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4238421316...b2a92eb56d
2022-12-05 11:10:51 -08:00
b8726b0e18
docs: fix header level in known-issues.md ( #654 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-30 18:19:37 -05:00
e74bbd16b1
docs: add inline table of contents ( #649 )
2022-11-30 12:17:23 -08:00
1553f0c0b7
chore: bump stefanprodan/helm-gh-pages from 1.6.0 to 1.7.0 ( #648 )
...
Bumps [stefanprodan/helm-gh-pages](https://github.com/stefanprodan/helm-gh-pages ) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/stefanprodan/helm-gh-pages/releases )
- [Commits](https://github.com/stefanprodan/helm-gh-pages/compare/v1.6.0...v1.7.0 )
---
updated-dependencies:
- dependency-name: stefanprodan/helm-gh-pages
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-28 12:54:58 -08:00
231c6be829
docs: add minimum required permissions for creating federated identity credential ( #645 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-22 20:49:29 -08:00
91bd8aa391
chore: update msal-go example to use azidentity and azsecrets sdk ( #639 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-22 23:01:25 +00:00
71e9738c20
docs: replace pmi with azwi in development doc ( #646 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-22 17:17:44 -05:00
28a5746f31
feat: make mwh namespaceSelector configurable in helm charts ( #644 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-22 11:59:38 -08:00
f7755df0bb
chore: use `KEYVAULT_URL` instead of `KEYVAULT_NAME` in quick start and tests ( #638 )
...
* chore: remove KEYVAULT_NAME requirement in msal samples
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* docs: remove setting KEYVAULT_NAME in quick start
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* test: use KEYVAULT_URL instead of KEYVAULT_NAME for e2e
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-21 09:43:45 -08:00
8835cf4d42
chore: bump k8s.io/kubernetes from 1.25.3 to 1.25.4 in /test/e2e ( #636 )
...
Bumps [k8s.io/kubernetes](https://github.com/kubernetes/kubernetes ) from 1.25.3 to 1.25.4.
- [Release notes](https://github.com/kubernetes/kubernetes/releases )
- [Commits](https://github.com/kubernetes/kubernetes/compare/v1.25.3...v1.25.4 )
---
updated-dependencies:
- dependency-name: k8s.io/kubernetes
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-16 21:11:42 +00:00
9dd2c003de
docs: Update link to AKS docs for OIDC Issuer
...
- Remove preview suffix
2022-11-14 15:18:29 -08:00
5181e52f90
chore: bump k8s.io/client-go from 0.25.3 to 0.25.4 ( #633 )
...
* chore: bump k8s.io/client-go from 0.25.3 to 0.25.4
Bumps [k8s.io/client-go](https://github.com/kubernetes/client-go ) from 0.25.3 to 0.25.4.
- [Release notes](https://github.com/kubernetes/client-go/releases )
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.25.3...v0.25.4 )
---
updated-dependencies:
- dependency-name: k8s.io/client-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* run "go mod tidy"
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-14 19:51:24 +00:00
310b694c29
chore: bump github/codeql-action from 2.1.31 to 2.1.32 ( #632 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.31 to 2.1.32.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c3b6fce4ee...4238421316
2022-11-14 11:06:47 -08:00
56bad9b482
docs: remove kubernetes version 1.22 (EOL) ( #631 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-10 17:54:50 +00:00
79cc91ba14
feat: Fallback to `AZURE_CLIENT_ID` env var if no `client_id` query param in token request ( #628 )
...
* feat: Fallback to `AZURE_CLIENT_ID` env var if no `client_id` query param in token request
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
* test: add e2e test for validating proxy fallback to AZURE_CLIENT_ID
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-10 02:01:00 +00:00
c4a69ecd9d
fix: set expires_in the proxy token response ( #630 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-09 20:42:14 +00:00
0cd6d96dac
docs: add required label for pod ( #629 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-09 10:41:37 -08:00
6a8e4bb1f6
feat: add podLabels to helm charts ( #627 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-09 10:40:26 -08:00
b382e9ff10
chore: bump sigs.k8s.io/controller-runtime from 0.13.0 to 0.13.1 ( #626 )
...
* chore: bump sigs.k8s.io/controller-runtime from 0.13.0 to 0.13.1
Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime ) from 0.13.0 to 0.13.1.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases )
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.13.0...v0.13.1 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* run "go mod tidy"
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-11-08 00:22:16 +00:00
bfc8cb24a6
chore: bump github/codeql-action from 2.1.29 to 2.1.31 ( #625 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...c3b6fce4ee
2022-11-07 11:14:48 -08:00
bfa335048f
docs: fix variable name in quick start ( #623 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-31 17:05:29 -07:00
129ed928f3
ci: update `set-output` to use `GITHUB_OUTPUT` in workflow ( #617 )
...
xref: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-28 11:33:19 -07:00
fa92133281
chore: bump github/codeql-action from 2.1.28 to 2.1.29 ( #614 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cc7986c02b...ec3cf9c605
2022-10-27 13:36:53 -07:00
7eb49ce501
ci: add test/e2e to dependabot config ( #613 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-27 13:15:38 -07:00
c6b1771374
test: use separate module for e2e ( #607 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-27 19:50:56 +00:00
f855688c93
docs: update tenant id step in quick start ( #612 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-27 11:35:48 -07:00
0444b7b587
docs: add troubleshooting guide for AADSTS90061 ( #608 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-24 20:15:33 +00:00
91f2ed09fb
chore: bump github/codeql-action from 2.1.27 to 2.1.28 ( #610 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](807578363a...cc7986c02b
2022-10-24 12:58:02 -07:00
055fc1fbf1
docs: update release instructions ( #604 )
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
2022-10-24 10:17:41 -07:00
Anish Ramasekar
dependabot[bot]
Danek Duvall
Dong Liu
github-actions[bot]
Aaron Crawfis