Add buffer configuration to external auth location config #2428

Eddman · 2018-04-26T14:11:40Z

What this PR does / why we need it:
If the External Auth service returns for instance cookies that are bigger then 4Kb the request fails.

This happens whenever external auth service returns cookies and other headers that exceed the default proxy buffer (4Kb). The configmap option proxy-buffer-size is completely ignored and its proxy_buffer_size equivalent is not propagated to the auth location.

Which issue this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close that issue when PR gets merged):
fixes #2427

Special notes for your reviewer:
no

aledbf · 2018-04-26T15:14:44Z

@Eddman please run make code-generator and push the changes

Eddman · 2018-04-26T18:24:13Z

@aledbf Done.

codecov-io · 2018-04-26T18:45:44Z

Codecov Report

Merging #2428 into master will increase coverage by 0.15%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master    #2428      +/-   ##
==========================================
+ Coverage   40.91%   41.06%   +0.15%     
==========================================
  Files          74       74              
  Lines        5248     5248              
==========================================
+ Hits         2147     2155       +8     
+ Misses       2809     2801       -8     
  Partials      292      292

Impacted Files	Coverage Δ
internal/file/bindata.go	`60.17% <ø> (ø)`	⬆️
internal/watch/file_watcher.go	`84.61% <0%> (+3.84%)`	⬆️
cmd/nginx/main.go	`26.2% <0%> (+4.82%)`	⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update bad526b...89af4d6. Read the comment docs.

aledbf · 2018-04-26T18:53:29Z

/lgtm

aledbf · 2018-04-26T18:53:35Z

/approve

k8s-ci-robot · 2018-04-26T18:53:37Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: aledbf, Eddman

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

~~OWNERS~~ [aledbf]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

aledbf · 2018-04-26T18:53:42Z

@Eddman thanks!

Add buffer configuration to external auth location config

8b6f043

k8s-ci-robot added size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Apr 26, 2018

aledbf self-assigned this Apr 26, 2018

make code-generator

89af4d6

k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Apr 26, 2018

k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 26, 2018

k8s-ci-robot merged commit adffe74 into kubernetes:master Apr 26, 2018

Eddman deleted the auth_proxy_buffer branch April 27, 2018 07:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add buffer configuration to external auth location config #2428

Add buffer configuration to external auth location config #2428

Eddman commented Apr 26, 2018

aledbf commented Apr 26, 2018

Eddman commented Apr 26, 2018

codecov-io commented Apr 26, 2018

aledbf commented Apr 26, 2018

aledbf commented Apr 26, 2018

k8s-ci-robot commented Apr 26, 2018

aledbf commented Apr 26, 2018

Add buffer configuration to external auth location config #2428

Add buffer configuration to external auth location config #2428

Conversation

Eddman commented Apr 26, 2018

aledbf commented Apr 26, 2018

Eddman commented Apr 26, 2018

codecov-io commented Apr 26, 2018

Codecov Report

aledbf commented Apr 26, 2018

aledbf commented Apr 26, 2018

k8s-ci-robot commented Apr 26, 2018

aledbf commented Apr 26, 2018