Skip to content

Bug 1795312: initialize auth plugins #269

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
soltysh wants to merge 20 commits into from
Closed

Bug 1795312: initialize auth plugins #269

soltysh wants to merge 20 commits into from

Conversation

@soltysh
Copy link
Contributor

@soltysh soltysh commented Jan 27, 2020

Manual cherry-pick of #266 b/c this is touching deps.

/assign @deads2k

smarterclayton and others added 20 commits October 2, 2019 19:34
@smarterclayton
upgrade: Separate flags for safety instead of abusing force
772f7a4 
The --force flag is dangerous and potentially allows untrusted
content to be upgraded to accidentally. Instead, introduce two
new flags `--allow-explicit-upgrade` (for upgrading to something not
in availableVersions) and `--allow-upgrade-with-warnigns` (for upgrading
when another upgrade is in progress or the cluster is reporting
an error) and remove those checks from `--force`.

While this is an API change, it is necessary to ensure that users
do not accidentally get access to untrusted content when
performing upgrades across major versions in advance of graph
updates, or when they are upgrading in disconnected environments.
@openshift-merge-robot
Merge pull request openshift#111 from smarterclayton/upgrade_42
d5465d7 
Bug 1756454: Separate upgrade flags for safety instead of abusing force
@soltysh
Pin openshift deps to release-4.2
be6713d
@soltysh
bump(*)
0b15fb9
@smarterclayton
image-mirror: Manifest list manifests have to be copied
3fba6cf 
We mirror the manifest list and blobs, but not the sub manifests.
Correct that by registering those with the plan. We must then
upload dependent manifests first, since the registry will not allow
partial manifest lists.
@openshift-merge-robot
Merge pull request openshift#125 from soltysh/bug1760269
420c3d6 
Bug 1760269: UPSTREAM: 77874: fix CVE-2019-11244: kubectl --http-cache=<world-accessible dir>
@ricardomaraschini
Fixed Dockerfile FROM statement parser.
016d7da 
In some cases the FROM statement on a Dockerfile may contain an extra
alias, e.g.:

FROM fedora:latest AS builder

This commit fixes the parser to use only the second parsed node on the
FROM statement(on this case "fedora:latest") instead of returning the
last one(on this case "builder").
@soltysh
bump(*)
185c098
@yselkowitz
Enable all Linux arches in cli-artifacts
913c34c 
In order for console-operator deployment to succeed, cli-artifacts needs
to be available on all arches for downloads-openshift-console.  However,
in that case, /usr/bin/oc (inherited from cli) is a native binary, and
we want to provide all primary Linux architectures to match those on
mirror.openshift.com.

In order to do so, this provides cross-compiled Linux binaries for
multiple architectures.  Cross-compiling oc fails with gssapi enabled,
therefore it is disabled in the cross builds.

(cherry picked from commit e949088)
(squashed commit 2510f47)
@soltysh
Update ruby-22-centos7 to ruby-25-centos7
7a1918a
@openshift-merge-robot
Merge pull request openshift#195 from soltysh/bug1771420
57a203c 
Bug 1771420: Update ruby-22-centos7 to ruby-25-centos7
@openshift-merge-robot
Merge pull request openshift#168 from multi-arch/release-4.2
4ac9078 
Bug 1773807: Enable all Linux arches in cli-artifacts [4.2]
@openshift-merge-robot
Merge pull request openshift#128 from openshift-cherrypick-robot/cher…
08d90ed 
…ry-pick-124-to-release-4.2

Bug 1761922: Manifest lists can fail to mirror because dependent manifests are not uploaded
@openshift-merge-robot
Merge pull request openshift#154 from openshift-cherrypick-robot/cher…
98a84c6 
…ry-pick-136-to-release-4.2

Bug 1770741: Fixed Dockerfile FROM statement parser.
@openshift-merge-robot
Merge pull request openshift#163 from soltysh/bug1772463
d16a24a 
Bug 1772463: Set TypeSetter in get print flags, like we do everywhere elsewhere
@soltysh
Bug 1776100: don't install quota CRDs
622aeb3
@openshift-merge-robot
Merge pull request openshift#214 from soltysh/bug1776495
7207690 
[release-4.2] Bug 1776495: don't install quota CRDs
@deads2k @soltysh
initialize auth plugins
d7f236a
@soltysh
pin deps to release-4.2 versions
340a6e9
@soltysh
bump(*): to pick up upstream auth plugins
548ecae
@openshift-ci-robot openshift-ci-robot added the bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. label Jan 27, 2020
@openshift-ci-robot
Copy link

openshift-ci-robot commented Jan 27, 2020

@soltysh: This pull request references Bugzilla bug 1795312, which is invalid:

  • expected the bug to target the "4.4.0" release, but it targets "4.2.z" instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

Bug 1795312: initialize auth plugins

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@soltysh
Copy link
Contributor Author

soltysh commented Jan 27, 2020

Wrong branch 🤦‍♂️

@soltysh soltysh closed this Jan 27, 2020
@openshift-ci-robot openshift-ci-robot added the size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. label Jan 27, 2020
@openshift-ci-robot openshift-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jan 27, 2020
@openshift-ci-robot
Copy link

openshift-ci-robot commented Jan 27, 2020

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: soltysh

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci-robot openshift-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jan 27, 2020
@openshift-ci-robot
Copy link

openshift-ci-robot commented Jan 27, 2020

@soltysh: PR needs rebase.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

1 similar comment
@openshift-ci-robot
Copy link

openshift-ci-robot commented Jan 27, 2020

@soltysh: PR needs rebase.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci-robot
Copy link

openshift-ci-robot commented Jan 27, 2020

@soltysh: The following tests failed, say /retest to rerun all failed tests:

Test name Commit Details Rerun command
ci/prow/e2e-cmd 548ecae link /test e2e-cmd
ci/prow/verify 548ecae link /test verify
ci/prow/e2e-aws 548ecae link /test e2e-aws
ci/prow/unit 548ecae link /test unit
ci/prow/e2e-aws-builds 548ecae link /test e2e-aws-builds
ci/prow/build-rpms-from-tar 548ecae link /test build-rpms-from-tar
ci/prow/e2e-aws-upgrade 548ecae link /test e2e-aws-upgrade
ci/prow/images 548ecae link /test images
ci/prow/rpm-build 548ecae link /test rpm-build

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@csrwng csrwng Awaiting requested review from csrwng

@smarterclayton smarterclayton Awaiting requested review from smarterclayton

Assignees

@deads2k deads2k

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@soltysh @openshift-ci-robot @deads2k @smarterclayton @openshift-merge-robot @ricardomaraschini @yselkowitz