kubeshark

mirror of https://github.com/kubeshark/kubeshark.git synced 2026-05-17 06:36:44 +00:00

Author	SHA1	Message	Date
Serhii Ponomarenko	6785f024e4	✨ Feature-based SAML authorization (#49 ) (#1495 ) * 🔨 Add `showAdminConsoleLink` to helm values * 🔨 Add `ShowAdminConsoleLink` to `TapConfig` * 🔨 Regenerate `complete.yaml` manifest * 📝 Update helm-chart `README.md` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-02-06 13:36:32 -08:00
M. Mert Yildiran	92dab2e2f7	🔨 Add `PcapErrorTTL` field to `MiscConfig`	2024-02-06 01:32:07 +03:00
Serhii Ponomarenko	18d051af28	🔥 Remove old `Descope` auth (#1490 ) * 🔥 Remove Descope-related config updates * 🔥 Remove Descope-related helm values * 🔥 Remove Descope-related k8s configs * 🔥 Remove Descope-related fields from `tapConfig` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-31 14:49:55 -08:00
M. Mert Yildiran	4802cca646	✨ Add `MiscConfig` struct with has `JsonTTL` and `PcapTTL` fields	2024-01-30 02:25:04 +03:00
Serhii Ponomarenko	bfa3efd23a	✨ SAML authorization (#1487 ) * 🔨 Add `AUTH_SAML_ROLE_ATTRIBUTE` field to `ConfigMap` * 📝 Document `tap.auth.saml.roleAttribute/roles` values * 🔧 Re-generate `complete.yaml` * 🔥 Remove `default` tag from `SamlConfig.RoleAttribute` --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-24 16:05:37 -08:00
M. Mert Yildiran	f9e0c36d5f	🔨 Add `AUTH_SAML_ROLES` field to `ConfigMap`	2024-01-23 23:22:06 +03:00
Serhii Ponomarenko	a8dd332ff8	✨ SAML integration prototype (#1475 ) * 🔨 Add `AUTH_TYPE` field to `ConfigMap` * 🔨 Add `AUTH_SAML_IDP_METADATA_URL` field to `ConfigMap` * 🔨 Add `AUTH_SAML_X509_CRT` field to `Secret` * 🔨 Add `AUTH_SAML_X509_KEY` field to `Secret` * 🔨 Mount SAML X.509 key pair into `hub` * 🔨 Add `REACT_APP_AUTH_TYPE` environment variable to `front` * 🔧 Add Nginx path rewrite for `/saml` * 🔧 Raise request size to accept big SAML responses * 🔨 Add `REACT_APP_AUTH_TYPE` environment default value * 📝 Update `README.md` * 📝 Update `README.md` * 🔨 Add `AUTH_TYPE` config map key * 🔨 Add `AUTH_SAML_IDP_METADATA_URL` config map key * ☸ Set `CONFIG_AUTH_TYPE` from `TapConfig` * ☸ Set `CONFIG_AUTH_SAML_IDP_METADATA_URL` from `TapConfig` * ✨ Create `SamlConfig` in `TapConfig.AuthConfig` * 🔨 Use updated `tap.auth.saml.idpMetadataUrl` tap config field * 📝 Update `README.md` * 🔨 Add `tap.insgress.enabled/host` to `ConfigMap` * 🔨 Add `tap.proxy.front.port` to `ConfigMap` * 🔨 Add `REACT_APP_AUTH_SAML_IDP_METADATA_URL` env to `front` * 🔧 Supply `auth.saml` fields to `helm-chart/values.yaml` * 🐛 Fix indentation for X.509 secrets * 📝 Provide SAML setup docs * 📝 Update SAML setup docs * 📝 Update SAML setup docs * Added callback URL indication * 💥 Disable standard `Descope` auth --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-23 10:47:29 -08:00
M. Mert Yildiran	ddc1dc3d71	🔨 Add `TcpStreamChannelTimeoutMs` field to `TapConfig` struct	2024-01-15 23:00:31 +03:00
M. Mert Yildiran	d99bfea0db	🔨 Rename `worker` resource requirement to `sniffer`	2024-01-15 21:14:06 +03:00
Volodymyr Stoiko	aaeb3ca1eb	Load pf-ring kernel module in init container (#1476 ) * Load kernel module in init container * Update docs * Update formatting * Add pre-stop hook to unload pf_ring module * Enable hook only on kernel module enabled * fix template * Use sidecontainer to unload pf_ring * Add requirements for tracer into structs * fix values * fix typo --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com>	2024-01-12 15:49:39 -08:00
M. Mert Yildiran	8ba3e603a4	✨ Add `trafficSampleRate` field to `TapConfig`	2024-01-10 18:51:52 +03:00
Volodymyr Stoiko	db51e6dbc2	✨ Add `kubeshark-worker-metrics` service and document it (#1474 ) * Expose worker metrics * Add metrics documentation * upd * Update metrics port configuration * Update config/configStructs/tapConfig.go Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update helm-chart/README.md Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update helm-chart/templates/16-worker-service-metrics.yaml Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> --------- Co-authored-by: M. Mert Yildiran <me@mertyildiran.com>	2024-01-04 16:17:22 +03:00
M. Mert Yildiran	36767eda27	🔨 Add `KernelModuleConfig` struct to `TapConfig`	2023-12-28 22:09:01 +03:00
M. Mert Yildiran	6c06307d68	🔨 Add `GLOBAL_FILTER` field to `ConfigMap`	2023-12-27 23:58:17 +03:00
M. Mert Yildiran	c1fc4447ef	🔨 Move the list of Linux capabilities into `values.yaml`	2023-12-27 13:14:53 +03:00
M. Mert Yildiran	51968f2aae	🔨 Add `REPLAY_DISABLED` field to `ConfigMap`	2023-12-25 17:34:38 +03:00
M. Mert Yildiran	d3f2cdbf0e	✨ Add `DefaultFilter` field to `TapConfig`	2023-12-18 16:51:55 +03:00
M. Mert Yildiran	28bfbf4186	🐛 Fix the type of `EfsFileSytemIdAndPath` field	2023-12-18 16:51:21 +03:00
Serhiy Berezin	d3c21a07bb	EFS persistent volume helm deployment support (#1455 ) * EFS persistent volume docs/14 EFS static and dynamic provision added to default * Update helm-chart/values.yaml Co-authored-by: M. Mert Yildiran <mehmetmertyildiran@gmail.com> * Update helm-chart/templates/08-persistent-volume-claim.yaml Co-authored-by: M. Mert Yildiran <mehmetmertyildiran@gmail.com> * Update config/configStructs/tapConfig.go Fix format Co-authored-by: M. Mert Yildiran <mehmetmertyildiran@gmail.com> * Fix format config/configStructs/tapConfig.go Co-authored-by: M. Mert Yildiran <mehmetmertyildiran@gmail.com> * Improve formatting --------- Co-authored-by: Alon Girmonsky <1990761+alongir@users.noreply.github.com> Co-authored-by: M. Mert Yildiran <mehmetmertyildiran@gmail.com>	2023-12-11 10:52:58 -08:00
M. Mert Yildiran	510d5e5ed8	🔥 Remove `REACT_APP_HUB_HOST` and `REACT_APP_HUB_PORT` environment variables	2023-12-07 22:10:11 +03:00
M. Mert Yildiran	88f8998df3	🔨 Update the worker pod and run `make generate-helm-values && make generate-manifests`	2023-11-21 20:24:14 +03:00
M. Mert Yildiran	cc9dbbef2e	🔥 Remove `tapPcapRunner.go` and `--pcap` flag	2023-11-21 07:17:43 +03:00
M. Mert Yildiran	9c291bbf47	🔨 Disable auth by default	2023-10-27 22:06:07 +03:00
M. Mert Yildiran	62d4c3a86e	🔨 Add `ApprovedTenants` field to `AuthConfig` and enable auth by default	2023-10-26 20:27:34 +03:00
M. Mert Yildiran	3b5cd6c77b	🔨 Make the config field tags camelCase	2023-10-25 18:00:32 +03:00
M. Mert Yildiran	0e2bca9729	Revert "🔨 Decrease the default storage limit back to `200Mi`" This reverts commit `b1a40df069`.	2023-10-24 03:10:23 +03:00
M. Mert Yildiran	b1a40df069	🔨 Decrease the default storage limit back to `200Mi`	2023-10-24 03:06:02 +03:00
M. Mert Yildiran	a3383ee6cc	🔨 Template the Helm chart versions into Docker tags	2023-10-16 23:19:44 +03:00
M. Mert Yildiran	78481d4bcc	🔥 Delete unused `packetcapture` field	2023-10-12 18:31:59 +03:00
M. Mert Yildiran	9f1586ab50	🔨 Increase the default storage limit to `500Mi`	2023-10-11 20:57:42 +03:00
M. Mert Yildiran	6d79598c5d	🔨 Template `-no-kernel-module` flag	2023-10-09 21:17:34 +03:00
M. Mert Yildiran	4831b44dfa	Revert "🔨 Separate the resources of each container in worker `DaemonSet`" This reverts commit `6add6fb1ec`.	2023-10-04 06:02:19 +03:00
M. Mert Yildiran	6817fd70ab	Revert "🔨 Lower the resource limits" This reverts commit `d0b621070c`.	2023-10-04 06:02:12 +03:00
M. Mert Yildiran	d0b621070c	🔨 Lower the resource limits	2023-09-28 20:39:57 +03:00
M. Mert Yildiran	6add6fb1ec	🔨 Separate the resources of each container in worker `DaemonSet`	2023-09-28 01:36:56 +03:00
M. Mert Yildiran	5bd44b57f4	✨ In case of `tap` re-run, update the config and start a proxy	2023-09-25 23:21:38 +03:00
Luiz Oliveira	1ccaa03fb2	🏗️ Give the user ability to set ingress as needed (#1417 ) * Give the user hability to set ingress as needed - Removed unecessary IngressClass. - If no IngressClassName passed, use cluster's default class - Renamed `ingressclass` with `IngressClassName`. Is the standard name used for it. - Included custom annotations for Ingress. This way user can set any custom annotation for the ingress only. Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com> * Update helm-chart/templates/11-ingress.yaml Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update config/configStructs/tapConfig.go Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * Update helm-chart/templates/11-ingress.yaml Co-authored-by: M. Mert Yildiran <me@mertyildiran.com> * update default ingressClassName value Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com> --------- Signed-off-by: Luiz Oliveira <ziuloliveira@gmail.com> Co-authored-by: M. Mert Yildiran <me@mertyildiran.com>	2023-09-04 02:18:43 +03:00
M. Mert Yildiran	fa1e7bcf01	🔧 Add `TelemetryConfig` struct and `--telemetry-enabled` flag to `tap` command	2023-08-31 03:50:14 +03:00
M. Mert Yildiran	78c1c02fe6	🔥 Delete the recently added KMM related resources	2023-08-14 17:43:44 +03:00
M. Mert Yildiran	f4ff4d4dd6	✨ Add `KMMConfig` struct to `TapConfig`	2023-08-12 02:41:29 +03:00
M. Mert Yildiran	5ca90d70ff	⚡ Have consistent case style in `values.yaml`	2023-08-09 20:16:49 +03:00
M. Mert Yildiran	65bda4e844	⚡ Add the `IPv6` field to `TapConfig` struct	2023-08-09 01:24:08 +03:00
M. Mert Yildiran	c533bcd38c	✨ Add `AUTH_ENABLED` and `AUTH_APPROVED_EMAILS` environment variables to Hub's template	2023-08-09 01:22:10 +03:00
M. Mert Yildiran	988bb16260	Use the `tap.proxy.hub.port` and `tap.proxy.hub.srvport` in the Helm templates	2023-07-09 22:58:02 +03:00
M. Mert Yildiran	0f1f832ddd	🐛 Add the missing `json` struct tags to `ResourcesConfig`	2023-07-03 23:26:18 +03:00
M. Mert Yildiran	0ef3e2d018	⚡ Fix the issues related to release namespace	2023-07-03 16:33:50 +03:00
M. Mert Yildiran	77a14410f4	Revert "⏪ Rename `releasenamespace` field to `selfnamespace`" This reverts commit `d8ee89225c`.	2023-07-03 15:11:21 +03:00
M. Mert Yildiran	d8ee89225c	⏪ Rename `releasenamespace` field to `selfnamespace`	2023-07-03 11:54:06 +03:00
M. Mert Yildiran	b9f9e860b6	⚡ Change the default namespace from `kubeshark` to `default` and use `.Release.Namespace` in Helm templates	2023-06-27 21:06:44 +03:00
M. Mert Yildiran	16f1e116c0	⚡ Template the annotations in all resources	2023-06-27 03:45:47 +03:00

1 2 3

115 Commits