hal5d

module

v0.0.0-...-80bedfa Latest Latest Go to latest Published: May 3, 2019 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/planetlabs/hal5d

Links

Open Source Insights

README ¶

hal5d

An haproxy shim for linkerd Kubernetes ingress.

linkerd can be deployed as a Kubernetes ingress controller. Implementing Ingress via linkerd makes a lot of sense when linkerd also powers your in-cluster service mesh; your ingress traffic benefits from the same tracing, metrics, and traffic management patterns as in cluster traffic.

Unfortunately linkerd does not currently support TLS Server Name Indication (SNI). This means your ingress controller pods cannot serve HTTPS traffic for more than one ingress unless you use a wildcard certificate.

hal5d attempts to solve this by running a simple haproxy instance in front of each linkerd pod. There are three components to this pattern:

linkerd pods configured as ingress controllers.
haproxy run via haproxy-docker-wrapper
hal5d managing haproxy.

hal5d watches a Kubernetes API server for TLS enabled Kubernetes Ingress resources, saving their TLS key pairs to disk, and triggering a haproxy reload via haproxy-docker-wrapper.

Directories ¶

Path	Synopsis
cmd
hal5d
internal
cert
event
kubernetes
metrics Package metrics contains utilities to assist with exposing Prometheus metrics.	Package metrics contains utilities to assist with exposing Prometheus metrics.
webhook
webhook/subscriber
webhook/validator

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL