CodeCow/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2026-06-06 21:01:11 +08:00
Code Issues Actions 18 Packages Projects Releases Wiki Activity
eb3d35c8b5
tailscale/cmd
History
David Bond eb3d35c8b5
cmd/k8s-operator,k8s-operator: define ProxyGroupPolicy reconciler (#18654) 
This commit implements a reconciler for the new `ProxyGroupPolicy`
custom resource. When created, all `ProxyGroupPolicy` resources
within the same namespace are merged into two `ValidatingAdmissionPolicy`
resources, one for egress and one for ingress.

These policies use CEL expressions to limit the usage of the
"tailscale.com/proxy-group" annotation on `Service` and `Ingress`
resources on create & update.

Included here is also a new e2e test that ensures that resources that
violate the policy return an error on creation, and that once the
policy is changed to allow them they can be created.

Closes: https://github.com/tailscale/corp/issues/36830

Signed-off-by: David Bond <davidsbond93@gmail.com>
2026-02-18 09:34:55 +00:00
..
addlicense all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
build-webclient all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
checkmetrics all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
cigocacher cmd/cigocacher: remove Windows-specific disk code moved upstream (#18697) 2026-02-16 16:26:39 +00:00
cloner all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
connector-gen all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
containerboot cmd/containerboot: fix error handling for egress (#18657) 2026-02-10 10:19:06 +00:00
derper all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
derpprobe all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
dist all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
distsign all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
featuretags all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
get-authkey all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
gitops-pusher cmd/gitops-pusher: fix precedence when id token env var is empty 2026-01-30 17:37:11 -07:00
hello all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
jsonimports all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
k8s-nameserver all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
k8s-operator cmd/k8s-operator,k8s-operator: define ProxyGroupPolicy reconciler (#18654) 2026-02-18 09:34:55 +00:00
k8s-proxy all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
mkmanifest all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
mkpkg all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
mkversion all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
nardump all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
natc all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
netlogfmt all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
nginx-auth all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
omitsize all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
pgproxy all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
printdep cmd/printdep: add --next flag to use rc Go build hash instead 2026-01-27 14:49:56 -08:00
proxy-test-server all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
proxy-to-grafana all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
sniproxy all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
speedtest all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
ssh-auth-none-demo all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
stunc all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
stund all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
stunstamp all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
sync-containers all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
systray all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
tailscale clientupdate, cmd/tailscale/cli: support updating to release-candidates (#18632) 2026-02-12 14:49:52 -05:00
tailscaled ipn/ipnlocal: add basic support for netmap caching (#18530) 2026-02-17 14:51:54 -08:00
testcontrol all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
testwrapper cmd/testwrapper: support experimental -cachelink 2026-02-03 09:10:07 -08:00
tl-longchain all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
tsconnect all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
tsidp ipn/ipnlocal: add basic support for netmap caching (#18530) 2026-02-17 14:51:54 -08:00
tsshd all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
tta all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
vet all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
viewer all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
vnet all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00
xdpderper all: remove AUTHORS file and references to it 2026-01-23 15:49:45 -08:00