change prerequisite to permissions and kubeconfig. These are more FYIs as Mizu requires very little prerequisites.
Change the description to match getmizu.io
* Show pod name and namespace (#61)
* WIP
* Update main.go, consts.go, and 2 more files...
* Update messageSensitiveDataCleaner.go
* Update consts.go and messageSensitiveDataCleaner.go
* Update messageSensitiveDataCleaner.go
* Update main.go, consts.go, and 3 more files...
* WIP
* Update main.go, messageSensitiveDataCleaner.go, and 6 more files...
* Update main.go, messageSensitiveDataCleaner.go, and 3 more files...
* Update consts.go, messageSensitiveDataCleaner.go, and tap.go
* Update provider.go
* Update serializableRegexp.go
* Update tap.go
* TRA-3234 fetch with _source + no hard limit (#64)
* remove the HARD limit of 5000
* TRA-3299 Reduce footprint and Add Tolerances(#65)
* Use lib const for DNSClusterFirstWithHostNet.
* Whitespace.
* Break lines.
* Added affinity to pod names.
* Added tolerations to NoExecute and NoSchedule taints.
* Implementation of Mizu view command
* .
* .
* Update main.go and messageSensitiveDataCleaner.go
* Update main.go
* String and not pointers (#68)
* TRA-3318 - Cookies not null and fix har file names (#69)
* no message
* TRA-3212 Passive-Tapper and Mizu share code (#70)
* Use log in tap package instead of fmt.
* Moved api/pkg/tap to root.
* Added go.mod and go.sum for tap.
* Added replace for shared.
* api uses tap module instead of tap package.
* Removed dependency of tap in shared by moving env var out of tap.
* Fixed compilation bugs.
* Fixed: Forgot to export struct field HostMode.
* Removed unused flag.
* Close har output channel when done.
* Moved websocket out of mizu and into passive-tapper.
* Send connection details over har output channel.
* Fixed compilation errors.
* Removed unused info from request response cache.
* Renamed connection -> connectionID.
* Fixed rename bug.
* Export setters and getters for filter ips and ports.
* Added tap dependency to Dockerfile.
* Uncomment error messages.
* Renamed `filterIpAddresses` -> `filterAuthorities`.
* Renamed ConnectionID -> ConnectionInfo.
* Fixed: Missed one replace.
* TRA-3342 Mizu/tap dump to har directory fails on Linux (#71)
* Instead of saving incomplete temp har files in a temp dir, save them in the output dir with a *.har.tmp suffix.
* API only loads har from *.har files (by extension).
* Add export entries endpoint for better up9 connect funcionality (#72)
* no message
* no message
* no message
* Filter 'cookie' header
* Release action (#73)
* Create main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* trying new approach
* no message
* yaml error
* no message
* no message
* no message
* missing )
* no message
* no message
* remove main.yml and fix branches
* Create tag-temp.yaml
* Update tag-temp.yaml
* Update tag-temp.yaml
* no message
* no message
* no message
* no message
* no message
* no message
* no message
* #minor
* no message
* no message
* added checksum calc to CLI makefile
* fixed build error - created bin directory upfront
* using markdown for release text
* use separate checksum files
* fixed release readme
* #minor
* readme updated
Co-authored-by: Alex Haiut <alex@up9.com>
* TRA-3360 Fix: Mizu ignores -n namespace flag and records traffic from all pods (#75)
Do not tap pods in namespaces which were not requested.
* added apple/m1 binary, updated readme (#77)
Co-authored-by: Alex Haiut <alex@up9.com>
* Update README.md (#78)
Co-authored-by: lirazyehezkel <61656597+lirazyehezkel@users.noreply.github.com>
Co-authored-by: RamiBerm <rami.berman@up9.com>
Co-authored-by: RamiBerm <54766858+RamiBerm@users.noreply.github.com>
Co-authored-by: gadotroee <55343099+gadotroee@users.noreply.github.com>
Co-authored-by: nimrod-up9 <59927337+nimrod-up9@users.noreply.github.com>
Co-authored-by: Igor Gov <igor.govorov1@gmail.com>
Co-authored-by: Alex Haiut <alex@up9.com>
* Update .gitignore
* WIP
* WIP
* Update README.md, root.go, and 4 more files...
* Update README.md
* Update README.md
* Update root.go
* Update provider.go
* Update provider.go
* Update root.go, go.mod, and go.sum
* Update mizu.go
* Update go.sum and provider.go
* Update portForward.go, watch.go, and mizu.go
* Update README.md
* Update watch.go
* Update mizu.go
* Update mizu.go
* no message
* no message
* remove unused things and use external for object id (instead of copy)
* no message
* Update mizu.go
* Update go.mod, go.sum, and 2 more files...
* no message
* Update README.md, go.mod, and resolver.go
* Update README.md
* Update go.mod
* Update loader.go
* some refactor
* Update loader.go
* no message
* status to statusCode
* return data directly
* Traffic viewer
* cleaning
* css
* no message
* Clean warnings
* Makefile - first draft
* Update Makefile
* Update Makefile
* Update Makefile, README.md, and 4 more files...
* Add api build and clean to makefile (files restructure) (#9)
* no message
* add clean api command
* no message
* stating with web socket
* Add tap as a separate executable (#10)
* Added tap.
* Ignore build directories.
* Added tapper build to Makefile.
* Improvements (#12)
* no message
* no message
* Feature/makefile (#11)
* minor fixes
* makefile fixes - docker build
* minor fix in Makefile
Co-authored-by: Alex Haiut <alex@up9.com>
* Update Dockerfile, multi-runner.sh, and 31 more files...
* Update multi-runner.sh
* no message
* Update .dockerignore, Dockerfile, and 30 more files...
* Update cleaner.go, grpc_assembler.go, and 2 more files...
* start the pod with host network and privileged
* fix multi runner passive tapper command
* add HOST_MODE env var
* do not return true in the should tap function
* remove line in the end
* default value in api is input
fix description and pass the parameter in the multi runner script
* missing flag.parse
* no message
* fix image
* Create main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Update main.yml
* Small fixes - permission + har writing exception (#17)
* Select node by pod (#18)
* Select node by pod.
* Removed watch pod by regex. Irrelevant for now.
* Changed default image to develop:latest.
* Features/clifix (#19)
* makefile fixes - docker build
* readme update, CLI usage fix
* added chmod
Co-authored-by: Alex Haiut <alex@up9.com>
* meta information
* Only record traffic of the requested pod. Filtered by pod IP. (#21)
* fixed readme and reduced batch size to 5 (#22)
Co-authored-by: Alex Haiut <alex@up9.com>
* API and TAP in single process (#24)
* no message
* no message
* CLI make --pod required flag and faster api image build (#25)
* makefile fixes - docker build
* readme update, CLI usage fix
* added chmod
* typo
* run example incorreect in makefile
* no message
* no message
* no message
Co-authored-by: Alex Haiut <alex@up9.com>
* Reduce delay between tap and UI - Skip dump to file (#26)
* Pass HARs between tap and api via channel.
* Fixed make docker commad.
* Various fixes.
* Added .DS_Store to .gitignore.
* Parse flags in Mizu main instead of in tap_output.go.
* Use channel to pass HAR by default instead of files.
* Infinite scroll (#28)
* no message
* infinite scroll + new ws implementation
* no message
* scrolling top
* fetch button
* more Backend changes
* fix go mod and sum
* mire fixes against develop
* unused code
* small ui refactor
Co-authored-by: Roee Gadot <roee.gadot@up9.com>
* Fix gRPC crash, display gRPC as base64, display gRPC URL and status code (#27)
* Added Method (POST) and URL (emtpy) to gRPC requests.
* Removed quickfix that skips writing HTTP/2 to HAR.
* Use HTTP/2 body to fill out http.Request and htt.Response.
* Make sure that in HARs request.postData.mimeType and response.content.mimeType are application/grpc in case of grpc.
* Comment.
* Add URL and status code for gRPC.
* Don't assume http scheme.
* Use http.Header.Set instead of manually acccessing the underlaying map.
* General stats api fix (#29)
* refactor and validation
* Show gRPC as ASCII (#31)
* Moved try-catch up one block.
* Display grpc as ASCII.
* Better code in entries fetch endpoint (#30)
* no message
* no message
* Feature/UI/filters (#32)
* UI filters
* refactor
* Revert "refactor"
This reverts commit 70e7d4b6ac.
* remove recursive func
* CLI cleanup (#33)
* Moved cli root command to tap subcommand.
* tap subcommand works.
* Added view and fetch placeholders.
* Updated descriptions.
* Fixed indentation.
* Added versio subcommand.
* Removed version flag.
* gofmt.
* Changed pod from flag to arg.
* Commented out "all namespaces" flag.
* CLI cleanup 2 (#34)
* Renamed dashboard -> GUI/web interface.
* Commented out --quiet, removed unused config variables.
* Quiter output when calling unimplemented subcommands.
* Leftovers from PR #30 (#36)
Co-authored-by: up9-github <info@up9.com>
Co-authored-by: RamiBerm <54766858+RamiBerm@users.noreply.github.com>
Co-authored-by: Liraz Yehezkel <lirazy@up9.com>
Co-authored-by: Alex Haiut <alex@testr.io>
Co-authored-by: lirazyehezkel <61656597+lirazyehezkel@users.noreply.github.com>
Co-authored-by: Alex Haiut <alex@up9.com>
Co-authored-by: nimrod-up9 <59927337+nimrod-up9@users.noreply.github.com>
Co-authored-by: RamiBerm <rami.berman@up9.com>
Co-authored-by: Alex Haiut <alex.haiut@gmail.com>
2021-05-09 11:45:39 +03:00
7 changed files with 22 additions and 48 deletions
tapCmd.Flags().Bool(configStructs.DisableRedactionTapName,defaultTapConfig.DisableRedaction,"Disables redaction of potentially sensitive request/response headers and body values")
tapCmd.Flags().String(configStructs.HumanMaxEntriesDBSizeTapName,defaultTapConfig.HumanMaxEntriesDBSize,"Override the default max entries db size")
tapCmd.Flags().Bool(configStructs.DryRunTapName,defaultTapConfig.DryRun,"Preview of all pods matching the regex, without tapping them")
tapCmd.Flags().String(configStructs.EnforcePolicyFile,defaultTapConfig.EnforcePolicyFile,"Yaml file with policy rules")
tapCmd.Flags().String(configStructs.EnforcePolicyFile,defaultTapConfig.EnforcePolicyFile,"Yaml file path with policy rules")
tapCmd.Flags().String(configStructs.EnforcePolicyFileDeprecated,defaultTapConfig.EnforcePolicyFileDeprecated,"Yaml file with policy rules")
This feature allows you to define set of simple rules, and test the API against them.
This feature allows you to define set of simple rules, and test the traffic against them.
Such validation may test response for specific JSON fields, headers, etc.
## Examples
Example 1: HTTP request (REST API call) that didn’t pass validation is highlighted in red
Example 1: HTTP request (REST API call) that didn't pass validation is highlighted in red
- - -
Example 2: Details pane shows the validation rule details and whether it passed or failed
## How to use
To use this feature - create simple rules file (see details below) and pass this file as parameter to `mizu tap` command. For example, if rules are stored in file named `rules.yaml` — run the following command:
```shell
mizu tap --traffic-validation rules.yaml PODNAME
mizu tap --traffic-validation-file rules.yaml
```
## Rules file structure
The structure of the traffic-validation-file is:
@@ -62,6 +59,7 @@ rules:
service:"carts.*"
```
### Explanation:
* First rule `holy-in-name-property`:
@@ -74,5 +72,4 @@ rules:
* Third rule `latency-test`:
> This rule will be applied to all request made to `carts.*` services. If the latency of the response is greater than `1` will be marked as failure, marked as success otherwise.
> This rule will be applied to all request made to `carts.*` services. If the latency of the response is greater than `1ms` will be marked as failure, marked as success otherwise.
Reference in New Issue
Block a user
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.
