aws-app-mesh-controller-for-k8s
aws-app-mesh-controller-for-k8s copied to clipboard
aws
A controller to help manage App Mesh resources for a Kubernetes cluster.
*SECURITY NOTICE: If you think you’ve found a potential security issue, please do not post it in the Issues. Instead, please follow the instructions [here](https://aws.amazon.com/security/vulnerability-reporting/) or [email AWS security directly](mailto:[email protected]).*...
**Describe the bug** when creating (in this order): 1. mesh with namespaceSelector: {} 2. virtualgateway 3. appmesh-controller this happens: 1. the controller-pod is up 2. the mesh gets an arn...
**Describe the bug** When enabling TLS on a virtual node using ACM PCA, the DNS service discovery response type of ENDPOINTS is not registered in the App Mesh configuration. **Steps...
The [injector](https://github.com/aws/aws-app-mesh-inject) configuration could be done dynamically via a Kubernetes custom resource. This would allow different configurations without installing the webhook in each namespace. Example: ```yaml apiVersion: appmesh.k8s.aws/v1beta1 kind: Injector...
App Mesh virtual services should behave similar to the Kubernetes DNS resolver. If I create a virtual service called `backend` in the `test` namespace, the backend app should be reachable...
**Is your feature request related to a problem?** A description of what the problem is. For example: I'm frustrated when [...] More customization with CloudMap service discovery setting to include...
**Is your feature request related to a problem?** Today the Controller ([link](https://github.com/aws/aws-app-mesh-controller-for-k8s/blob/master/config/helm/appmesh-controller/values.yaml#L11)), Envoy ([link](https://github.com/aws/aws-app-mesh-controller-for-k8s/blob/master/config/helm/appmesh-controller/values.yaml#L17)) & proxy init ([link](https://github.com/aws/aws-app-mesh-controller-for-k8s/blob/master/config/helm/appmesh-controller/values.yaml#L41)) images are hardcoded to download docker images from us-west-2 region. Since all...
**Tell us about your request** What do you want us to build? "proxy/init" container requires elevated permission using NET_ADMIN capability and it also requires the "allowPrivilegeEscalation=true" property as well which...
App Mesh users should be able to define port mappings. Right now the VirtualNode, VirtualRouter and container port must be the same. This makes it impossible to expose an app...
**Tell us about your request** A lot of features (side car injection, CRDs, Jaeger/Prometheus) is available via the chart - but is not documented in the official docs. **Which integration(s)...
