Replace base64 encoding with random uuid #1215

aledbf · 2017-08-22T12:34:12Z

No description provided.

k8s-reviewable · 2017-08-22T12:34:19Z

This change is

sethpollack · 2017-08-22T12:47:46Z

controllers/nginx/pkg/template/template.go

@@ -342,8 +342,7 @@ var (

 func buildWhitelistVariable(s string) string {
 	if _, ok := whitelistVarMap[s]; !ok {
-		str := base64.URLEncoding.EncodeToString([]byte(s))
-		whitelistVarMap[s] = strings.Replace(str, "=", "", -1)
+		whitelistVarMap[s] = fmt.Sprintf("whitelist_%v", uuid.New())


You still need to strip the - from the uuid's.

that is not needed, we already use this for the whitelist feature

geo $the_real_ip $deny_9ab24030-716f-4c64-9ed5-ec94ec67f001 { default 1; 192.168.8.104/32 0; }

hmm, I tried that yesterday and got an error because its an invalid variable.

Let me test real quick

Error: exit status 1 2017/08/22 13:02:25 [emerg] 21#21: unknown "whitelist_8329fc5c" variable nginx: [emerg] unknown "whitelist_8329fc5c" variable nginx: configuration file /tmp/nginx-cfg571771066 test failed ------------------------------------------------------------------------------- W0822 13:02:25.543292 5 queue.go:90] requeuing kube-system/kube-dns, err ------------------------------------------------------------------------------- Error: exit status 1 2017/08/22 13:02:25 [emerg] 21#21: unknown "whitelist_8329fc5c" variable nginx: [emerg] unknown "whitelist_8329fc5c" variable nginx: configuration file /tmp/nginx-cfg571771066 test failed ------------------------------------------------------------------------------- I0822 13:02:28.050807 5 controller.go:423] backend reload required E0822 13:02:28.077494 5 controller.go:428] unexpected failure restarting the backend: ------------------------------------------------------------------------------- Error: exit status 1 2017/08/22 13:02:28 [emerg] 26#26: unknown "whitelist_8329fc5c" variable nginx: [emerg] unknown "whitelist_8329fc5c" variable nginx: configuration file /tmp/nginx-cfg523483857 test failed ------------------------------------------------------------------------------- W0822 13:02:28.077531 5 queue.go:90] requeuing kube-system/kubernetes-dashboard, err ------------------------------------------------------------------------------- Error: exit status 1 2017/08/22 13:02:28 [emerg] 26#26: unknown "whitelist_8329fc5c" variable nginx: [emerg] unknown "whitelist_8329fc5c" variable nginx: configuration file /tmp/nginx-cfg523483857 test failed -------------------------------------------------------------------------------```

@sethpollack please post the ingress you are using

kind: Ingress metadata: name: sample-app annotations: kubernetes.io/ingress.class: "nginx" ingress.kubernetes.io/limit-whitelist: 127.0.0.1 ingress.kubernetes.io/limit-rpm: "10" spec: rules: - host: sample-app.com http: paths: - path: /foo backend: serviceName: nginx-default-backend servicePort: 80

I only get the error with the rate limit whitelist, not ingress.kubernetes.io/whitelist-source-range

coveralls · 2017-08-22T13:15:36Z

Coverage decreased (-0.03%) to 44.387% when pulling c4fc497 on aledbf:random-name into def5155 on kubernetes:master.

aledbf · 2017-08-22T13:54:02Z

@sethpollack please review. Temporal image with this PR: quay.io/aledbf/nginx-ingress-controller:0.188

coveralls · 2017-08-22T14:00:07Z

Coverage decreased (-0.004%) to 44.416% when pulling a392f29 on aledbf:random-name into def5155 on kubernetes:master.

sethpollack

lgtm

sethpollack · 2017-08-22T14:22:50Z

Thanks!

k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Aug 22, 2017

aledbf requested a review from sethpollack August 22, 2017 12:34

sethpollack reviewed Aug 22, 2017

View reviewed changes

aledbf force-pushed the random-name branch from c4fc497 to 7a537c3 Compare August 22, 2017 13:36

Replace base64 encoding with random uuid

a392f29

aledbf force-pushed the random-name branch from 7a537c3 to a392f29 Compare August 22, 2017 13:53

sethpollack approved these changes Aug 22, 2017

View reviewed changes

aledbf closed this Aug 22, 2017

aledbf reopened this Aug 22, 2017

aledbf merged commit ed3803c into kubernetes:master Aug 22, 2017

aledbf deleted the random-name branch August 22, 2017 14:33

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Replace base64 encoding with random uuid #1215

Replace base64 encoding with random uuid #1215

aledbf commented Aug 22, 2017

k8s-reviewable commented Aug 22, 2017

sethpollack Aug 22, 2017

aledbf Aug 22, 2017

sethpollack Aug 22, 2017

sethpollack Aug 22, 2017

sethpollack Aug 22, 2017

aledbf Aug 22, 2017

sethpollack Aug 22, 2017

sethpollack Aug 22, 2017

coveralls commented Aug 22, 2017

aledbf commented Aug 22, 2017

coveralls commented Aug 22, 2017

sethpollack left a comment •

edited

Loading

sethpollack commented Aug 22, 2017

Replace base64 encoding with random uuid #1215

Replace base64 encoding with random uuid #1215

Conversation

aledbf commented Aug 22, 2017

k8s-reviewable commented Aug 22, 2017

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

coveralls commented Aug 22, 2017

aledbf commented Aug 22, 2017

coveralls commented Aug 22, 2017

sethpollack left a comment • edited Loading

Choose a reason for hiding this comment

sethpollack commented Aug 22, 2017

sethpollack left a comment •

edited

Loading