Skip to content

Apiserver proxy rewriting not useful for intra-cluster links #5897

New issue
New issue
Closed
Closed
Apiserver proxy rewriting not useful for intra-cluster links#5897
Labels
area/apiserverarea/usabilitypriority/backlogHigher priority than priority/awaiting-more-evidence.sig/api-machineryCategorizes an issue or PR as relevant to SIG API Machinery.
@bgrant0607

Description

@bgrant0607
bgrant0607
opened on Mar 25, 2015

Forked from #4440.

The apiserver proxy uses httputil.NewSingleHostReverseProxy. This rewrites URLs to a fixed scheme, host, and base path. This is not smart enough to facilitate translation of links to other (intra-cluster) services, pods, and nodes, which are all proxy-able directly. In fact, if someone puts the correct proxy links into their pages, the links are munged and broken by the reverse proxy.

Internally, we don't rewrite links. Applications use intra-cluster names (DNS and our internal NS) and addresses, and we have a few different mechanisms to route those to the reverse proxy.

If we want to stick with the rewriting approach, the proxy should recognize and translate intra-cluster names and addresses. #3481 proposed proxying by IP address in addition to resource path.

cc @enisoc @lavalamp @smarterclayton

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/apiserverarea/usabilitypriority/backlogHigher priority than priority/awaiting-more-evidence.sig/api-machineryCategorizes an issue or PR as relevant to SIG API Machinery.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions