-
Notifications
You must be signed in to change notification settings - Fork 83
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Isolate private ksvc using different envoy listener ports #852
Isolate private ksvc using different envoy listener ports #852
Conversation
e36341b
to
81ef68f
Compare
Codecov Report
@@ Coverage Diff @@
## main #852 +/- ##
==========================================
- Coverage 81.60% 80.77% -0.83%
==========================================
Files 18 18
Lines 1185 1233 +48
==========================================
+ Hits 967 996 +29
- Misses 174 190 +16
- Partials 44 47 +3
Continue to review full report at Codecov.
|
81ef68f
to
f3f1635
Compare
f3f1635
to
8073c8e
Compare
1d9aa7e
to
20795c3
Compare
@lionelvillard hi, could you add a link to the ft doc in the description? |
done. |
f6075ce
to
70c66a4
Compare
@skonto can you take a look at this PR? I'm trying to see why the upgrade tests are failing. The log is not very helpful and these tests cannot run on a Mac. |
/hold |
150e2f5
to
4a99326
Compare
54283a3
to
0f626a8
Compare
I'm looking at this now, it seems easy enough but due to the time constraint, I would rather do this in a separate PR. IMO, as soon as both knative/serving#13094 and knative/serving#13112 are green, it should be safe to merge this PR.
No plans. This is a much bigger topic!
Yes I can create an Github issue tracking all remaining tasks |
/hold I need to verify the PoC is still working. |
/unhold PoC is working. |
@evankanderson @skonto @nak3 @rhuss Please can you take another look? Since the last round of reviews I:
I'm tracking knative/serving#13094 and knative/serving#13112. So far it looks good. I'm working on e2e tests (in a separate PR). I don't know if I will have time to finish before the 1.6 release (which is tomorrow). |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A few notes for the next PR, but happy to get this in for 1.6.
/lgtm
/approve
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: evankanderson, lionelvillard The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/unhold |
@evankanderson can you please TAL? All tests are green (including the Serving ones). |
/lgtm |
bumping knative.dev/net-kourier 0d68ef5...9b26dcb: > 9b26dcb Revert changes from knative-extensions/net-kourier#852 (# 1099) > d696408 Update community files (# 1101) > 36c41d7 upgrade to latest dependencies (# 1100) Signed-off-by: Knative Automation <[email protected]>
bumping knative.dev/net-kourier 0d68ef5...9b26dcb: > 9b26dcb Revert changes from knative-extensions/net-kourier#852 (# 1099) > d696408 Update community files (# 1101) > 36c41d7 upgrade to latest dependencies (# 1100) Signed-off-by: Knative Automation <[email protected]>
Add support for multiple private ingresses backed by multiple envoy listeners (each with a unique port).
This is an experimental Kourier-only feature guarded by a flag in
config-kourier
:The selection of which envoy listener to use is done at the namespace-level. The traffic of all internal services within the same namespace is redirected to the same envoy listener. Here are the annotation for mapping a namespace to a particular envoy listener:
The allocation/assignment of a namespace to an envoy listener is an orthogonal concern and not address in this PR. This can be done by manually editing namespace annotations or automatically by a Tenant controller.
Each envoy listener is exposed using a k8s service (e.g
kourier-isolation-9000
). This PR does not automatically create/delete these services since this concern is also related to tenant management.Additional context:
Changes
/kind enhancement
Fixes #
Release Note
Docs
Remaining tasks are tracked in this issue.
/cc @evankanderson @nak3 @rhuss