Skip to content

Commit

Permalink
fix(cni): make check pass
Browse files Browse the repository at this point in the history
Signed-off-by: slonka <slonka@users.noreply.github.com>
  • Loading branch information
slonka committed Jul 28, 2022
1 parent 2073970 commit d04036a
Show file tree
Hide file tree
Showing 20 changed files with 268 additions and 1,178 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,6 @@ kumactl install control-plane [flags]
--cni-chained enable chained CNI installation
--cni-conf-name string set the CNI configuration name (default "kuma-cni.conf")
--cni-enabled install Kuma with CNI instead of proxy init container
--cni-experimental install Kuma with new version of the CNI (experimental)
--cni-net-dir string set the CNI install directory (default "/etc/cni/multus/net.d")
--cni-node-selector stringToString node selector for CNI deployment (default [])
--cni-registry string registry for the image of the Kuma CNI component
Expand Down
208 changes: 49 additions & 159 deletions docs/generated/resources/other_mesh.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,121 +3,47 @@
- `mtls` (optional)

mTLS settings.
+optional
+optional

Child properties:

- `enabledbackend` (required)

Name of the enabled backend

- `backends` (required, repeated)

List of available Certificate Authority backends

- `name` (required)

Name of the backend

- `type` (required)

Type of the backend. Has to be one of the loaded plugins (Kuma ships with
builtin and provided)

- `dpcert` (optional)

Dataplane certificate settings

- `rotation` (optional)

Rotation settings

- `expiration` (optional)

Time after which generated certificate for Dataplane will expire

- `requesttimeout` (optional)

Timeout on request to CA for DP certificate generation and retrieval

- `conf` (optional)

Configuration of the backend

- `mode` (optional, enum)

Mode defines the behaviour of inbound listeners with regard to traffic
encryption

- `STRICT`

- `PERMISSIVE`

- `rootchain` (optional)

- `requesttimeout` (optional)

Timeout on request for to CA for root certificate chain.
List of available Certificate Authority backends

- `tracing` (optional)

Tracing settings.
+optional
+optional

Child properties:

- `defaultbackend` (required)

Name of the default backend

- `backends` (required, repeated)

List of available tracing backends

- `name` (required)

Name of the backend, can be then used in Mesh.tracing.defaultBackend or in
TrafficTrace

- `sampling` (optional)

Percentage of traces that will be sent to the backend (range 0.0 - 100.0).
Empty value defaults to 100.0%

- `type` (required)

Type of the backend (Kuma ships with 'zipkin')

- `conf` (required)

Configuration of the backend
List of available tracing backends

- `logging` (optional)

Logging settings.
+optional
+optional

Child properties:

- `defaultbackend` (required)

Name of the default backend

- `backends` (required, repeated)

List of available logging backends

- `name` (required)

Name of the backend, can be then used in Mesh.logging.defaultBackend or in
TrafficLogging

- `format` (optional)

Format of access logs. Placeholders available on
https://www.envoyproxy.io/docs/envoy/latest/configuration/observability/access_log

- `type` (required)

Type of the backend (Kuma ships with 'tcp' and 'file')

- `conf` (required)

Configuration of the backend
List of available logging backends

- `metrics` (optional)

Expand All @@ -126,43 +52,39 @@
Settings defined here become defaults for every dataplane in a given Mesh.
Additionally, it is also possible to further customize this configuration
for each dataplane individually using Dataplane resource.
+optional
+optional

Child properties:

- `enabledbackend` (optional)

Name of the enabled backend

- `backends` (optional, repeated)

List of available Metrics backends

- `name` (optional)

Name of the backend, can be then used in Mesh.metrics.enabledBackend

- `type` (optional)

Type of the backend (Kuma ships with 'prometheus')

- `conf` (optional)

Configuration of the backend
List of available Metrics backends

- `networking` (optional)

Networking settings of the mesh
Networking settings of the mesh

Child properties:

- `outbound` (optional)

Outbound settings
Outbound settings

Child properties:

- `passthrough` (optional)

Control the passthrough cluster

- `routing` (optional)

Routing settings of the mesh
Routing settings of the mesh

Child properties:

- `localityawareloadbalancing` (optional)

Expand All @@ -175,36 +97,30 @@

- `constraints` (optional)

Constraints that applies to the mesh and its entities
Constraints that applies to the mesh and its entities

Child properties:

- `dataplaneproxy` (required)

DataplaneProxyMembership defines a set of requirements for data plane
proxies to be a member of the mesh.
proxies to be a member of the mesh.

Child properties:

- `requirements` (optional, repeated)

Requirements defines a set of requirements that data plane proxies must
fulfill in order to join the mesh. A data plane proxy must fulfill at
least one requirement in order to join the mesh. Empty list of allowed
requirements means that any proxy that is not explicitly denied can join.

- `tags` (required)

Tags defines set of required tags. You can specify '*' in value to
require non empty value of tag

- `restrictions` (optional, repeated)

Restrictions defines a set of restrictions that data plane proxies cannot
fulfill in order to join the mesh. A data plane proxy cannot fulfill any
requirement in order to join the mesh.
Restrictions takes precedence over requirements.

- `tags` (required)

Tags defines set of required tags. You can specify '*' in value to
require non empty value of tag
Restrictions takes precedence over requirements.
## CertificateAuthorityBackend

- `name` (required)
Expand All @@ -218,11 +134,15 @@

- `dpcert` (optional)

Dataplane certificate settings
Dataplane certificate settings

Child properties:

- `rotation` (optional)

Rotation settings
Rotation settings

Child properties:

- `expiration` (optional)

Expand All @@ -236,16 +156,20 @@

Configuration of the backend

- `mode` (optional, enum)
- `mode` (optional)

Mode defines the behaviour of inbound listeners with regard to traffic
encryption

Supported values:

- `STRICT`

- `PERMISSIVE`

- `rootchain` (optional)
- `rootchain` (optional)

Child properties:

- `requesttimeout` (optional)

Expand All @@ -254,7 +178,9 @@

- `outbound` (optional)

Outbound settings
Outbound settings

Child properties:

- `passthrough` (optional)

Expand All @@ -267,25 +193,7 @@

- `backends` (required, repeated)

List of available tracing backends

- `name` (required)

Name of the backend, can be then used in Mesh.tracing.defaultBackend or in
TrafficTrace

- `sampling` (optional)

Percentage of traces that will be sent to the backend (range 0.0 - 100.0).
Empty value defaults to 100.0%

- `type` (required)

Type of the backend (Kuma ships with 'zipkin')

- `conf` (required)

Configuration of the backend
List of available tracing backends
## TracingBackend

- `name` (required)
Expand Down Expand Up @@ -343,25 +251,7 @@

- `backends` (required, repeated)

List of available logging backends

- `name` (required)

Name of the backend, can be then used in Mesh.logging.defaultBackend or in
TrafficLogging

- `format` (optional)

Format of access logs. Placeholders available on
https://www.envoyproxy.io/docs/envoy/latest/configuration/observability/access_log

- `type` (required)

Type of the backend (Kuma ships with 'tcp' and 'file')

- `conf` (required)

Configuration of the backend
List of available logging backends
## LoggingBackend

- `name` (required)
Expand Down
Loading

0 comments on commit d04036a

Please sign in to comment.