aws-load-balancer-controller

aws-load-balancer-controller copied to clipboard

Identify VPC by resource tags

3

### Issue Addresses https://github.com/kubernetes-sigs/aws-load-balancer-controller/issues/3644. ### Description This PR introduces a new runtime argument, `aws-vpc-tag-key` which is used to identify VPCs, from which we can infer the VPC ID. This is...

cathal-c

feat: NLB Certificate autodiscovery using ssl-domains annotations

25

### Issue #3210 ### Description - Added a new annotation `service.beta.kubernetes.io/aws-load-balancer-ssl-domains` which helps to reuse the `CertificateDiscovery` implementation done for Ingress. - Auto discovery will happen only when the ssl-certs...

Kavinraja-G

NLB Certificates Discovery

17

**Is your feature request related to a problem?** It will be great to have ACM certificates discovery for kind:Service. In my case, I have multiple clusters in different accounts. I...

sergeyshevch

feat: enable/disable automountServiceAccountToken at Pod level

4

### Description Some people may want to disable mounting API credentials at ServiceAccount level but still want controller Pod to have automatically access to resources defined in RBACs. This PR...

darkweaver87

Support for optionally enforcing NLB security groups on PrivateLink traffic

5

**Is your feature request related to a problem?** I would like to be able to leverage [this AWS feature](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-security-groups.html#update-security-settings) which allows me to configure whether NLB security groups should block...

omallo

Combine multiple LB rules to one rule with OR

16

**Is your feature request related to a problem?** Let's say we have the following (I used use-annotation, but it doesn't matter) ``` - host: myFirstDNS.example.com http: paths: - backend: service:...

nirroz93

Ingress can not be deleted when securitygroups updated

22

**Describe the bug** Ingress can not be deleted when securitygroups updated in the meantime by other ingress in the same group **Steps to reproduce** - Add `Ingress A` of `ingress...

haorenfsa

Metric for reconcilation error - add extra labels

3

**Is your feature request related to a problem?** Currently when someone ships faulty ingress definition the only way to get a notification via metric is to use `controller_runtime_reconcile_errors_total{job="aws-load-balancer-controller"}` - which...

michalschott

add the ability to add a runtimeClassName parameter in values.yaml to enable gvisor or kata containers

3

**Summary** Currently, our Helm charts lack the capability to specify a custom runtimeClassName in the values.yaml file. This limitation restricts us from leveraging alternative container runtimes like gVisor and Kata...

devopserio

The way the LBC handles reconciling security groups seems dangerous

6

**Describe the bug** The way that the LBC reconciles SG rules is to revoke old rules, then add new ones, which I think is liable to cause downtime in a...

2rs2ts