consul/agent/xdsv2
John Murret 62062fd4fd
NET-5132 - Configure multiport routing for connect proxies in TProxy mode (#18606)
* mesh-controller: handle L4 protocols for a proxy without upstreams

* sidecar-controller: Support explicit destinations for L4 protocols and single ports.

* This controller generates and saves ProxyStateTemplate for sidecar proxies.
* It currently supports single-port L4 ports only.
* It keeps a cache of all destinations to make it easier to compute and retrieve destinations.
* It will update the status of the pbmesh.Upstreams resource if anything is invalid.

* endpoints-controller: add workload identity to the service endpoints resource

* small fixes

* review comments

* Address PR comments

* sidecar-proxy controller: Add support for transparent proxy

This currently does not support inferring destinations from intentions.

* PR review comments

* mesh-controller: handle L4 protocols for a proxy without upstreams

* sidecar-controller: Support explicit destinations for L4 protocols and single ports.

* This controller generates and saves ProxyStateTemplate for sidecar proxies.
* It currently supports single-port L4 ports only.
* It keeps a cache of all destinations to make it easier to compute and retrieve destinations.
* It will update the status of the pbmesh.Upstreams resource if anything is invalid.

* endpoints-controller: add workload identity to the service endpoints resource

* small fixes

* review comments

* Make sure endpoint refs route to mesh port instead of an app port

* Address PR comments

* fixing copyright

* tidy imports

* sidecar-proxy controller: Add support for transparent proxy

This currently does not support inferring destinations from intentions.

* tidy imports

* add copyright headers

* Prefix sidecar proxy test files with source and destination.

* Update controller_test.go

* NET-5132 - Configure multiport routing for connect proxies in TProxy mode

* formatting golden files

* reverting golden files and adding changes in manually.  build implicit destinations still has some issues.

* fixing files that were incorrectly repeating the outbound listener

* PR comments

* extract AlpnProtocol naming convention to getAlpnProtocolFromPortName(portName)

* removing address level filtering.

* adding license to resources_test.go

---------

Co-authored-by: Iryna Shustava <iryna@hashicorp.com>
Co-authored-by: R.B. Boyer <rb@hashicorp.com>
Co-authored-by: github-team-consul-core <github-team-consul-core@hashicorp.com>
2023-09-12 01:17:56 +00:00
..
testdata NET-5132 - Configure multiport routing for connect proxies in TProxy mode (#18606) 2023-09-12 01:17:56 +00:00
cluster_resources.go NET-4858 - xds v2 - implement base connect proxy functionality for routes (#18501) 2023-08-17 21:04:53 +00:00
endpoint_resources.go NET-5338 - NET-5338 - Run a v2 mode xds server (#18579) 2023-08-24 16:44:14 -06:00
listener_resources.go NET-5132 - Configure multiport routing for connect proxies in TProxy mode (#18606) 2023-09-12 01:17:56 +00:00
resources.go Watch the ProxyTracker from xDS controller (#18611) 2023-08-29 14:39:29 -07:00
resources_test.go NET-5132 - Configure multiport routing for connect proxies in TProxy mode (#18606) 2023-09-12 01:17:56 +00:00
route_resources.go [APIGW] NET-5017 JWT Cleanup/Status Conditions (#18700) 2023-09-07 19:03:09 +00:00