kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
53,054 Commits
70 Branches
73 Tags
1 GiB
Commit Graph

112 Commits (03ae214e8129b009b7a336dfa328e3eb2cb15dc2)

Author SHA1 Message Date
michellengnx baba5e4c35 Merge main into dev-1.32 to keep in sync 2024-12-09 23:11:06 -05:00
Rita Zhang 3b8c927a3b
Address comments 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2024-11-20 19:00:50 -08:00
Rita Zhang 926db124d0
Add deprecation warnings for enforce-mountable-secrets annotation 2024-11-19 07:59:43 -08:00
Tim Bannister 950a9dfdb6
Improve admission control reference 
- Change page title. The reference is about admission control (as a
  concept) as well as providing a list of all admission controllers.
- Expand the intro section to provide more of an explanation of
  admission control.
- Emphasize that ValidatingAdmissionPolicy, along with mutating and
  validating webhooks, are extension points.
 2024-11-11 22:07:22 +00:00
carlory 8c773b2e31 update PersistentVolumeLabel admission plugin 2024-05-10 11:40:49 +08:00
Tim Bannister 9f327512c6 Reorder authn/authz pages 
Group topics together, in order of how these happen within Kubernetes'
API server's processing chain (authn, then authz, then admission
control).
 2024-04-23 01:42:18 +01:00
mtardy ca4dc02375 Remove the SecurityContextDeny admission plugin documentation 2024-02-14 16:39:37 +01:00
chansuke 244c6353bd Improve documentation for `kubernetes.io/enforce-mountable-secrets` annotation on `ServiceAccount` 2023-11-22 00:46:34 +09:00
Tony Gorman 01d9e07e27
Update admission-controllers.md 
Sentence seems grammatically incorrect
 2023-10-17 17:32:46 +01:00
Marek Skrobacki f900debc63
admission controllers: put type information at top of section 
Signed-off-by: Marek Skrobacki <skrobul@skrobul.com>
 2023-07-28 18:02:02 +01:00
Marek Skrobacki fce6bfc32f
admission controllers: document types 
Signed-off-by: Marek Skrobacki <skrobul@skrobul.com>
 2023-07-28 11:08:32 +01:00
mtardy c32b30f457 Update scdeny plugin documentation for deprecation 2023-06-30 10:52:50 +02:00
Guangwen Feng 58455c59e9 Remove duplicate "the" in admission-controllers.md 
Signed-off-by: Guangwen Feng <fenggw-fnst@fujitsu.com>
 2023-03-03 16:27:25 +08:00
Kubernetes Prow Robot ee4b88ed37
Merge pull request #37733 from sftim/20221105_update_docs_podsecuritypolicy_removal 
Update documentation for PodSecurityPolicy removal
 2023-02-14 12:55:51 -08:00
windsonsea 4164430555 Add spaces in code snippets for consistency 2023-01-30 18:15:06 +08:00
mtardy 6c701a7d96 Update doc of admission plugin SecurityContextDeny 
Note the shortcomings of the implementation of this admission plugin

Co-authored-by: Tim Bannister <tim@scalefactory.com>
Co-authored-by: Qiming Teng <tengqm@outlook.com>
 2023-01-29 17:27:12 +01:00
Tim Bannister bb85d62752 Update docs for PodSecurityPolicy removal 2023-01-24 22:24:09 +00:00
Yash Pimple b590431f4e
Updated the wrong format 2022-12-20 01:24:49 +05:30
Cici Huang 98d41f24ef Address comments 2022-11-30 16:47:27 +00:00
Cici Huang 4dc90ef731 Add doc for ValidatingAdmissionPolicy 2022-11-30 06:35:18 +00:00
Tim Bannister f348002c26
Tweak reference for admission controllers 
- Improve page title
- Update page to match style guide
- Wording and correctness tweaks
 2022-11-06 08:14:58 +00:00
houjun 523b0f89b4 Fix the feature state of PodSecurity 2022-09-19 09:00:29 +08:00
whitebear009 9acf28fce9 fix note typo 2022-08-31 17:58:31 +08:00
windsonsea 61a5b7b69d Fix typos on /access-authn-authz 2022-08-22 20:10:58 +08:00
Qiming Teng 96dd915152 Update admission controllers page 
This PR updates the admission controllers page by:

- removing two plugins which have been removed since 1.18
- removing text about ancient history
- removing shortcode about plugins that graduated into GA a long time ago;
 2022-08-16 22:33:37 +08:00
Rishit Dagli 0be2557ecd Fix CertificateSubjectRestriction in Admission Controllers docs 2022-05-31 19:35:12 +00:00
wei.wang 1cf774a05e [zh]Update content/zh/docs/reference/access-authn-authz/admission-controllers.md 2022-05-24 02:26:02 +08:00
Qiming Teng c992c4c04f Add imagepolicy.v1alpha1 API 2022-05-18 14:20:20 +08:00
Qiming Teng 90a395745d Cleanup admission-controllers page 
This PR fixes several things in the admission-controllers page:

- The `PodSecurity` plugin is enabled by default, but it was not listed so;
- The `apiserver.config.k8s.io/v1alpha1` has been deprecated since v1.17, we are still documenting it side by side with the `apiserver.config.k8s.io/v1` API group;
- The `eventratelimit.admission.k8s.io/v1alpha1` API could use a better reference rather than the design doc; **The imagepolicy.v1alpha1 API is not documented anywhere, I'll add it later on.**
- There are statements about future, which should be removed;
- We are supposed refer to the `LimitRage` API reference rather than pointing users to the design docs;
- We are supposed refer to the `ResourceQuota` API reference rather than pointing users to the design docs;
- There are long lines in the page source which could have been wrapped properly.
 2022-05-17 15:37:58 +08:00
Qiming Teng 0bc8468bfa The PodOverhead feature is GA 2022-04-13 11:49:50 +08:00
Nate W e65201a5b3 Merge remote-tracking branch 'upstream/main' into dev-1.24 2022-04-11 09:31:28 -07:00
Mads Jensen eefc776e29
Fix typos in Markdown links. (#32802) 
* Fix typos in Markdown links.

* Test

Co-authored-by: Mads Jensen <atombrella@users.noreply.github.com>
 2022-04-08 00:16:41 -07:00
Nate W f85be125b9 Merge remote-tracking branch 'upstream/main' into dev-1.24 2022-03-31 15:18:13 -07:00
Tim Bannister 672813f3e7
Move PSP into Security concepts section 
The logical navigation definitely works better if Pod Security admission
and PodSecurityPolicy are pages in the same section. Make It So.

Co-authored-by: Rey Lejano <rlejano@gmail.com>
 2022-03-30 17:30:35 +01:00
Qiming Teng 93bdfe8142 Move all volume expansion feature gates to GA 2022-03-29 10:38:58 +08:00
Jesse Butler 584421fe11 Merge remote-tracking branch 'upstream/main' into dev-1.23 2021-12-06 08:55:54 -05:00
Wang 8a8f9c40f9 Update admission-controllers.md 2021-12-06 09:16:27 +09:00
Hemant Kumar 37532e231a Add docs for RecoverVolumeExpansionFailure feature 2021-11-29 16:37:57 -05:00
Jordan Liggitt 4b7784728a PodSecurity beta updates 2021-11-10 10:30:51 -05:00
Samuel Roth e0d4b53b1c incorporating initial round of feedback 2021-07-21 15:33:46 +00:00
chenxuc f0f957ff21 update state for PodSecurityPolicy 2021-06-20 16:17:40 +08:00
Jai Govindani a6ab6dca21
docs(admission-controllers): update release status of TaintNodesByCondition 
Signed-off-by: Jai Govindani <jai@honestbank.com>
 2021-04-30 13:21:19 +07:00
Victor Palade ca046d9b1f Merge master into dev-1.21 to keep in sync 2021-03-26 21:29:52 +01:00
Rey Lejano a6f829f29a update denyexeconprivileged removal to release 1.21 
update denyexeconprivileged removal to release 1.21

update denyexeconprivileged removal to release 1.21
 2021-03-25 18:02:29 -07:00
Victor Palade 70096affc5 Merge remote-tracking branch 'upstream/master' into dev-1.21 2021-03-05 17:05:24 +01:00
Jordan Liggitt 4103230c18 Clarify stability level of admission plugins 2021-02-27 12:46:20 -05:00
ChandaniM123 bfcea97d39 Merge remote-tracking branch 'upstream/master' into dev-1.21 2021-02-12 20:05:18 -05:00
Kubernetes Prow Robot d7d113abb7
Merge pull request #26297 from thockin/docs-kep2200 
Add docs for KEP 2200 (DenyServiceExternalIPs)
 2021-02-09 08:13:10 -08:00
Tim Hockin c111b4ac62 Docs for KEP 2200 
* Document DenyServiceExternalIPs admission controller
* Re-order other admission controller blocks to be alphabetical
* Document DefaultIngressClass (missing)
 2021-02-08 16:21:42 -08:00
Karen Bradshaw 3fd65482e8 clean up use of word: simply 2021-02-07 12:15:29 -05:00