Commit graph

643 commits

Author SHA1 Message Date
Eric
817ac8f256
Add organizationalUnit to passtlscert middleware 2021-07-28 17:42:09 +02:00
romain
4b456f3b76 Merge current v2.4 into v2.5 2021-07-28 14:40:49 +02:00
mpl
d9fc775084
ratelimiter: use correct ttlSeconds value, and always call Set
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
Co-authored-by: Daniel Tomcej <daniel.tomcej@gmail.com>
2021-07-26 17:20:27 +02:00
romain
a5b169c563 Merge current v2.4 into v2.5 2021-07-20 14:06:13 +02:00
Romain
bc5e621683
Get Kubernetes server version early 2021-07-20 13:02:10 +02:00
Ludovic Fernandez
1e69939532
Update yaegi to v0.9.21 2021-07-20 11:58:06 +02:00
Daniel Tomcej
c2c4dc9b58
Don't remove ingress config on API call failure 2021-07-19 20:06:07 +02:00
Ludovic Fernandez
ffd4e207a4
Downgrade yaegi to v0.9.19 2021-07-19 18:54:04 +02:00
romain
bd3271aff0 Merge current v2.4 into v2.5 2021-07-19 15:18:38 +02:00
Tom Moulard
c515ace328
Library change for compress middleware to increase performance 2021-07-19 10:22:14 +02:00
Daniel Tomcej
8d4620dc53
check if defaultcertificate is defined in store 2021-07-19 09:58:14 +02:00
Jean-Baptiste Doumenjou
16f65f669b
Update Gateway API version to v0.3.0
Co-authored-by: Tom Moulard <tom.moulard@traefik.io>
2021-07-15 17:20:08 +02:00
Mohammad Gufran
7e43e5615e
Add Support for Consul Connect
Co-authored-by: Florian Apolloner <apollo13@users.noreply.github.com>
2021-07-15 14:02:11 +02:00
romain
3a180e2afc Merge current v2.4 into v2.5 2021-07-13 18:12:29 +02:00
Daniel Tomcej
7e0f0d9d11
Ignore http 1.0 request host missing errors 2021-07-13 15:30:20 +02:00
Jean-Baptiste Doumenjou
e1f5866989
Detect certificates content modifications
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
Co-authored-by: Mathieu Lonjaret <mathieu.lonjaret@gmail.com>
2021-07-13 14:14:35 +02:00
Daniel Tomcej
3c1ed0d9b2
Disable ExternalName Services by default on Kubernetes providers 2021-07-13 12:54:09 +02:00
Daniel Tomcej
10ab39c33b
Add *headers.responseModifier CloseNotify() 2021-07-13 12:28:07 +02:00
Daniel Tomcej
3072354ca5
Disable Cross-Namespace by default for IngressRoute provider 2021-07-13 10:48:05 +02:00
Ludovic Fernandez
5d3dc3348e
accesslog: multiple times the same header name. 2021-07-09 14:22:13 +02:00
romain
fc69f882c5 Merge current v2.4 into master 2021-06-28 10:07:17 +02:00
mpl
838a8e18d3
healthcheck: add support at the load-balancers of services level
Co-authored-by: Dmitry Sharshakov <d3dx12.xx@gmail.com>
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
Co-authored-by: Tom Moulard <tom.moulard@traefik.io>
2021-06-25 21:08:11 +02:00
Ludovic Fernandez
5e3e47b484
Local private plugins.
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
2021-06-25 15:50:09 +02:00
Romain
cd68cbd3ea
Fix: malformed Kubernetes resource names and references in tests 2021-06-24 17:32:07 +02:00
romain
ce2e02b690 Merge current v2.4 into master 2021-06-22 14:44:56 +02:00
Daniel Tomcej
03b08d67f0
chore: upgrade linter 2021-06-22 00:08:06 +02:00
Wei Lun
dca348359b
add permissionsPolicy and deprecate featurePolicy 2021-06-21 15:16:13 +02:00
Romain
cf0759a48f
Update documentation references 2021-06-21 11:54:08 +02:00
Tom Moulard
c9df233d24
Changing default file format for the snippets from TOML to YAML 2021-06-19 00:08:08 +02:00
Ludovic Fernandez
99a23b0414
Use a dynamic buffer to handle client Hello SNI detection 2021-06-18 19:24:17 +02:00
Michael
2ccdc419d0
Override jaeger configuration with env variables 2021-06-18 18:10:05 +02:00
Rio Kierkels
0a3e40332a
Improve CA certificate loading from kubernetes secret 2021-06-14 18:06:10 +02:00
Richard Kojedzinszky
f15d05b22f
tls Manager: do not build a default certificate for ACME challenges store
Co-authored-by: Mathieu Lonjaret <mathieu.lonjaret@gmail.com>
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2021-06-14 10:06:05 +02:00
Romain
fc9f41b955
Add TCP Middlewares support 2021-06-11 15:30:05 +02:00
Tom Moulard
679def0151
Add routing IP rule matcher
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2021-06-07 18:14:09 +02:00
mpl
2560626419
doc: clarify usage for ratelimit's excludedIPs 2021-06-07 17:46:14 +02:00
Julien Salleyron
dd04c432e9
Support not in rules definition 2021-05-31 18:58:05 +02:00
Jean-Baptiste Doumenjou
b1fd3b8fc7 fix for review 2021-05-28 17:38:46 +02:00
Wouter Dullaert
456df0fc19 feat: Add ServersTransport annotation to k8s ingress provider 2021-05-28 17:38:46 +02:00
Tom Moulard
526f493e12
Removes headers middleware options 2021-05-28 09:24:14 +02:00
Tom Moulard
5632ee6378
Deprecates ssl redirect headers middleware options 2021-05-28 08:50:09 +02:00
Jakub Coufal
1680f00091
Fix incorrect behaviour with multi-port endpoint subsets 2021-05-28 00:58:07 +02:00
Ludovic Fernandez
21c0195d29
fix: ACME preferred chain. 2021-05-20 15:08:12 +02:00
Tom Moulard
56f845c71a
gatewayapi: adding support for TCPRoute and TLSRoute
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2021-05-20 11:50:12 +02:00
Manuel Zapf
e1e1fd640c
Upgrade IngressClass to use v1 over v1Beta on Kube 1.19+ 2021-05-17 16:50:09 +02:00
Douglas De Toni Machado
2408eeceba
Fix plugin unzip call on windows 2021-05-17 12:10:09 +02:00
LandryBe
6ae194934d
fix: use defaultEntryPoints when no entryPoint is defined in a TCPRouter 2021-05-11 16:46:14 +02:00
Ludovic Fernandez
63ef0f1cee
Add plugin's support for provider
Co-authored-by: Julien Salleyron <julien@traefik.io>
2021-05-11 16:14:10 +02:00
Henning
de2437cfec
kubernetes: remove logging of changed object with cast 2021-05-10 09:42:06 +02:00
Luca Berneking
32e08f3510
Add k8s provider option to create services without endpoints 2021-05-06 18:12:10 +02:00
Ludovic Fernandez
ee12424795
Bump paerser to v0.1.4 2021-05-06 09:32:04 +02:00
Jorge Arco
080cf98e51
Add router metrics 2021-04-30 10:22:04 +02:00
Tom Moulard
dc8d5ef744
Add a mechanism to format the sticky cookie value
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2021-04-29 17:56:03 +02:00
Joel Berger
70a02158e5
Add wildcard hostname rule to kubernetes gateway 2021-04-29 17:18:04 +02:00
Henning
ab71dad51a
[kubernetes] ignore empty endpoint changes 2021-04-29 16:20:03 +02:00
Tom Moulard
ac486d3d1d Merge current branch v2.4 into master 2021-04-21 11:39:53 +02:00
Martin Vizvary
5814ba5322
Kubernetes ingress provider to search via all endpoints 2021-04-15 18:16:04 +02:00
Kevin Crawley
be81ce244e
Error span on 5xx only 2021-04-14 12:20:03 +02:00
Jean-Baptiste Doumenjou
cb4fb973b2 Merge current branch v2.4 into master 2021-03-31 09:43:04 +02:00
Tom Moulard
513f6e9a68
Remove error when HTTProutes is empty
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2021-03-30 16:32:03 +02:00
jcuzzi
d13d078351
Add ability to disable HTTP/2 in dynamic config 2021-03-29 14:32:03 +02:00
Sylvain Rabot
31a5f3591f
Allow to define datadogs metrics endpoint with env vars 2021-03-23 17:48:04 +01:00
HMH
8947f85ddd
Improve host name resolution for TCP proxy 2021-03-23 11:24:03 +01:00
Romain
a513a05b7a
Raise errors for non-ASCII domain names in a router's rules 2021-03-22 21:16:04 +01:00
Tom Moulard
1e716a93ff
Adding an option to (de)activate Pilot integration into the Traefik dashboard
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2021-03-22 19:18:04 +01:00
Manuel Zapf
29908098e4
Upgrade Ingress Handling to work with networkingv1/Ingress 2021-03-15 11:16:04 +01:00
Jean-Baptiste Doumenjou
08e6ae07af
Update to gateway-api v0.2.0
Co-authored-by: Romain <rtribotte@users.noreply.github.com>
2021-03-15 09:44:03 +01:00
Jean-Baptiste Doumenjou
702e301990 Merge current branch v2.4 into master 2021-03-09 12:05:08 +01:00
Ludovic Fernandez
09d5f59701
fix: double close chan on TLS challenge
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
2021-03-08 11:18:04 +01:00
Julien Salleyron
3c8675bb8b
Fix flaky tests.
Co-authored-by: Ludovic Fernandez <ldez@users.noreply.github.com>
2021-03-08 09:58:04 +01:00
Marc Vertes
e898080460
feature: tune transport buffer size to increase performance 2021-03-05 14:30:04 +01:00
Romain
bdba7d3adf
Update to go1.16 2021-03-04 20:08:03 +01:00
Ludovic Fernandez
2e7833df49
chore: update linter. 2021-03-04 09:02:03 +01:00
Jean-Baptiste Doumenjou
992d4c1b94
Upgrade the CRD version from apiextensions.k8s.io/v1beta1 to apiextensions.k8s.io/v1
Co-authored-by: kevinpollet <pollet.kevin@gmail.com>
2021-03-03 15:32:04 +01:00
Tom Moulard
e658712d53
Filter ingress class resources by name
Co-authored-by: SantoDE <manuel.zapf@traefik.io>
2021-03-02 21:34:03 +01:00
Julien Salleyron
dd0701dd16
fix: wait for file and internal before applying configurations
Co-authored-by: Ludovic Fernandez <ldez@users.noreply.github.com>
2021-02-25 17:20:04 +01:00
romain
438eec720a Merge v2.4 into master 2021-02-22 09:40:24 +01:00
Manuel Zapf
bae28c5f57
Only allow iframes to be loaded from our domain 2021-02-18 14:54:03 +01:00
romain
1b21f0723f Merge v2.4 into master 2021-02-16 11:12:09 +01:00
Jean-Baptiste Doumenjou
951d61bfcd
Apply content type exclusion on response
Co-authored-by: kevinpollet <pollet.kevin@gmail.com>
2021-02-12 12:12:03 +01:00
Ludovic Fernandez
5597d7633d
Fix TLS challenge timeout and validation error
Co-authored-by: Julien Salleyron <julien.salleyron@gmail.com>
2021-02-11 16:32:03 +01:00
Jean-Baptiste Doumenjou
d211437d6c Merge v2.4 into master 2021-02-04 10:40:53 +01:00
Jean-Baptiste Doumenjou
7996a42f76
Allow crossprovider service reference
Co-authored-by: Harold Ozouf <harold.ozouf@gmail.com>
2021-02-02 19:36:04 +01:00
Jean-Baptiste Doumenjou
447c3567b4
Fix the redirect entrypoint default priority 2021-02-02 17:42:04 +01:00
Ludovic Fernandez
bf4a578bbb
fix: infinite loop in forwarded header middleware.
Co-authored-by: kevinpollet <pollet.kevin@gmail.com>
2021-02-02 11:40:04 +01:00
Romain
c53033a778
Fix aggregator test comment 2021-02-01 16:50:03 +01:00
Rémi BUISSON
ea8642e2a1
fix: reduce pressure of pilot services when errors occurs 2021-02-01 14:42:04 +01:00
Harold Ozouf
96a3468791
Fix servers transport not found 2021-02-01 12:36:03 +01:00
Harold Ozouf
2065f4c003
Fix HTTP challenge router unexpected delayed creation 2021-01-28 16:16:05 +01:00
LandryBe
9a931e4dc9
fix: add support for multiple ingress classes 2021-01-28 15:08:04 +01:00
Gabe Levasseur
49ec62c757
Fix refresh interval option description in consulcatalog provider 2021-01-28 11:10:04 +01:00
Ludovic Fernandez
a371f971fb
chore: update linter. 2021-01-28 09:00:03 +01:00
kevinpollet
2461e36ed4
Merge branch v2.4 into master 2021-01-25 12:42:23 +01:00
Harold Ozouf
1305bf49a5
Fix plugin type on middleware endpoint response 2021-01-25 11:08:04 +01:00
Pascal Fautré
f0d78471af
Forward Proxy-Authorization header to authentication server 2021-01-21 18:34:04 +01:00
Julien Salleyron
a90b2a672e
perf: improve forwarded header and recovery middlewares
Co-authored-by: Ludovic Fernandez <ldez@users.noreply.github.com>
2021-01-21 10:04:04 +01:00
Sune Keller
2bbb6fc427
Update sprig to v3.2.0 2021-01-20 15:10:04 +01:00
Romain
4b370930b5
Mutualize TLS version and cipher code 2021-01-20 04:08:03 +01:00
na4ma4
b05a5c818d
Add TLS version and cipher to the accessLog 2021-01-19 09:52:06 +01:00
Kevin Pollet
41d22ef17e
Improve kubernetes external name service support for UDP 2021-01-19 09:30:05 +01:00
Cirrith
bbee63fcf3
Add named port support to Kubernetes IngressRoute CRDs 2021-01-15 15:54:04 +01:00
romain
f742671bbe Merge branch v2.4 into master 2021-01-14 18:29:48 +01:00
Kevin Pollet
e62a00a3f5
Update copyright year for 2021 2021-01-13 16:50:03 +01:00
kevinpollet
ed5321999c
Merge branch v2.4 into master 2021-01-13 09:21:20 +01:00
romain
92886c46ea Merge branch v2.3 into v2.4 2021-01-11 16:26:53 +01:00
Sylvere Richard
83fa3f4cc8
Discrepancy in Traefik log levels 2021-01-11 15:42:04 +01:00
Kevin Pollet
c24f75ce0b
Update copyright year for 2021 2021-01-08 19:20:04 +01:00
Henning
63929b0341
Compile kubernetes ingress annotation regex only once 2021-01-07 18:56:03 +01:00
Linden Krouse
fc7ec17905
Feature: add udp timeout configuration 2021-01-07 17:16:03 +01:00
Julien Salleyron
e5a01c7cc8
Add HTTP3 support (experimental)
Co-authored-by: Ludovic Fernandez <ldez@users.noreply.github.com>
2021-01-07 14:48:04 +01:00
Michael
0509b6fdb9
Merge branch v2.4 into master 2021-01-06 18:59:45 +01:00
Michael
60d87f3c64
Merge back v2.3 into v2.4 2021-01-06 17:59:03 +01:00
Gian Ortiz
759d17547a
Use Datadog tracer environment variables to setup default config 2021-01-06 17:08:03 +01:00
Avdhoot Dendge
d4f0a9ff62
Fix wildcard hostname issue 2021-01-05 12:26:04 +01:00
Ludovic Fernandez
f54136b602
chore: update linter. 2020-12-29 10:54:03 +01:00
Sylvain Rabot
a3327c4430
Add TLS certs expiration metric 2020-12-18 18:44:03 +01:00
kevinpollet
f8ae972e70
Merge branch v2.3 into v2.4 2020-12-18 10:15:01 +01:00
Ludovic Fernandez
63f65e5b2a
Disable router when a rule has an error 2020-12-17 10:06:03 +01:00
Fabian Gruber
ec0075e0d0
Extend marathon port discovery to allow port names as identifier 2020-12-16 12:32:03 +01:00
Romain
c21597c593
Add Kubernetes Gateway Provider
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2020-12-15 16:40:05 +01:00
kevinpollet
eebbe64b36
Merge branch v2.3 into master 2020-12-11 10:58:00 +01:00
Romain
7ba907f261
IngressRoute: add an option to disable cross-namespace routing
Co-authored-by: Jean-Baptiste Doumenjou <925513+jbdoumenjou@users.noreply.github.com>
2020-12-10 14:58:04 +01:00
Harold Ozouf
c72769e2ea
Fix TLS options fallback when domain and options are the same
Co-authored-by: Kevin Pollet <pollet.kevin@gmail.com>
2020-12-09 14:16:03 +01:00
Harold Ozouf
7403b6fb82
Fix concatenation of IPv6 addresses and ports 2020-12-04 20:56:04 +01:00
Harold Ozouf
64a65cadf3
Send anonymized dynamic configuration to Pilot
Co-authored-by: Kevin Pollet <pollet.kevin@gmail.com>
2020-12-03 15:52:05 +01:00
Ludovic Fernandez
a488430f23
acme: add external account binding support. 2020-12-01 10:40:05 +01:00
Harold Ozouf
e9cccf6504
Do not evaluate templated URL in redirectRegex middleware 2020-11-24 14:16:03 +01:00
kevinpollet
2112de6f15
Merge branch v2.3 into master 2020-11-20 11:30:07 +01:00
Romain
be0845af02
Apply labelSelector as a TweakListOptions for Kubernetes informers 2020-11-20 00:18:04 +01:00
Harold Ozouf
a75819cae3
Filter out Helm secrets from informer caches
Co-authored-by: Kevin Pollet <pollet.kevin@gmail.com>
2020-11-19 14:32:03 +01:00
Harold Ozouf
4f43c9ebb4
Fix missing allow-empty tag on ECS and Consul Catalog providers
Co-authored-by: Kevin Pollet <pollet.kevin@gmail.com>
2020-11-19 00:12:03 +01:00
Harold Ozouf
9177982334
Fix consul catalog panic when health and services are not in sync
Co-authored-by: Kevin Pollet <pollet.kevin@gmail.com>
2020-11-17 17:30:03 +01:00
Matthias Schneider
84b125bdde
added support for tcp proxyProtocol v1&v2 to backend 2020-11-17 13:04:04 +01:00
Yoan Blanc
52eeff9f9f
fix: consulcatalog to update before the first interval 2020-11-16 20:44:04 +01:00
Douglas De Toni Machado
598dcf6b62
Improve service name lookup on TCP routers 2020-11-13 12:48:04 +01:00
Alessandro Chitolina
920e82f11a
fix: translate configured server port into correct mapped host port 2020-11-09 17:12:05 +01:00
Fernandez Ludovic
520fcf82ae Merge branch v2.3 into master. 2020-11-09 00:07:28 +01:00
Ludovic Fernandez
267d0b7b5a
chore: update linter. 2020-11-06 09:26:03 +01:00
Daniel Adams
74d1d55051
Feature: Exponential Backoff in Retry Middleware 2020-11-05 16:14:04 +01:00
Kevin Pollet
3a8cb3f010
Add AccessControlAllowOriginListRegex field to deepcopy 2020-11-05 11:24:03 +01:00
Sylvain Rabot
d38d11f02e
Set kubernetes client User-Agent to something meaningful 2020-10-30 17:56:03 +01:00
Michael
af04e92cf2
Enable stats collection when pilot is enabled 2020-10-30 16:54:04 +01:00
Michael
4ea1c98ac9
Improve anonymize configuration 2020-10-30 12:44:05 +01:00
Ludovic Fernandez
05333b9579
acme: new HTTP and TLS challenges implementations. 2020-10-29 15:40:04 +01:00
iamolegga
49cdb67ddc
Middlewares: add forwardAuth.authResponseHeadersRegex 2020-10-29 15:10:04 +01:00
Luca Guidi
b5198e63c4
Allow to use regular expressions for AccessControlAllowOriginList 2020-10-29 10:52:03 +01:00
Tristan Weil
db007efe00
Ignore errors when setting keepalive period is not supported by the system 2020-10-28 15:32:04 +01:00
Jean-Baptiste Doumenjou
4fccde84bd Merge current v2.3 branch into master 2020-10-23 14:29:22 +02:00
Romain
fc97ea7ee0
Use timezone without daylight saving time for logger formatter tests
Co-authored-by: jbdoumenjou <925513+jbdoumenjou@users.noreply.github.com>
2020-10-22 19:52:04 +02:00
Romain
3e61d1f233
Prepare release v2.3.2 2020-10-19 20:22:04 +02:00