Bump kube-runtime from 0.63.2 to 0.64.0 in /cmd/pinniped-proxy

[dependabot]

Bumps kube-runtime from 0.63.2 to 0.64.0.

Release notes

Sourced from kube-runtime's releases.

0.64.0

• BREAKING: Replaced feature kube-derive/schema with attribute #[kube(schema)] - #690
  • If you currently disable default kube-derive default features to avoid automatic schema generation, add #[kube(schema = "disabled")] to your spec struct instead
• BREAKING: Moved CustomResource derive crate overrides into subattribute #[kube(crates(...))] - #690
  • Replace #[kube(kube_core = .., k8s_openapi = .., schema = .., serde = .., serde_json = ..)] with #[kube(crates(kube_core = .., k8s_openapi = .., schema = .., serde = .., serde_json = ..))]
• Added openssl-tls feature to use openssl for TLS on all platforms. Note that, even though native-tls uses a platform specific TLS, kube requires openssl on all platforms because native-tls only allows PKCS12 input to load certificates and private key at the moment, and creating PKCS12 requires openssl. - #700
• BREAKING: Changed to fail loading configurations with PEM-encoded certificates containing invalid sections instead of ignoring them. Updated pem to 1.0.1. - #702
• oauth: Updated tame-oauth to 0.6.0 which supports the same default credentials flow as the Go oauth2 for Google OAuth. In addition to reading the service account information from JSON file specified with GOOGLE_APPLICATION_CREDENTIALS environment variable, Application Default Credentials from gcloud, and obtaining OAuth tokens from local metadata server when running inside GCP are now supported. - #701

Refining Errors

We started working on improving error ergonomics. See the tracking issue #688 for more details.

The following is the summary of changes to kube::Error included in this release:

• Added Error::Auth(kube::client::AuthError) (errors related to client auth, some of them were previously in Error::Kubeconfig)
• Added Error::BuildRequest(kube::core::request::Error) (errors building request from kube::core)
• Added Error::InferConfig(kube::config::InferConfigError) (for Client::try_default)
• Added Error::OpensslTls(kube::client::OpensslTlsError) (new openssl-tls feature) - #700
• Added Error::UpgradeConnection(kube::client::UpgradeConnectinError) (ws feature, errors from upgrading a connection)
• Removed Error::Connection (was unused)
• Removed Error::RequestBuild (was unused)
• Removed Error::RequestSend (was unused)
• Removed Error::RequestParse (was unused)
• Removed Error::InvalidUri (replaced by variants of errors in kube::config errors)
• Removed Error::RequestValidation (replaced by a variant of Error::BuildRequest)
• Removed Error::Kubeconfig (replaced by Error::InferConfig, and Error::Auth)
• Removed Error::ProtocolSwitch (ws only, replaced by Error::UpgradeConnection)
• Removed Error::MissingUpgradeWebSocketHeader (ws only, replaced by Error::UpgradeConnection)
• Removed Error::MissingConnectionUpgradeHeader (ws only, replaced by Error::UpgradeConnection)
• Removed Error::SecWebSocketAcceptKeyMismatch (ws only, replaced by Error::UpgradeConnection)
• Removed Error::SecWebSocketProtocolMismatch (ws only, replaced by Error::UpgradeConnection)
• Removed impl From<T> for Error

The following breaking changes were made as a part of an effort to refine errors (the list is large, but most of them are lower level, and shouldn't require much change in most cases):

• Removed impl From<E> for kube::Error - #686
• Removed unused error variants in kube::Error: Connection, RequestBuild, RequestSend, RequestParse - #689
• Removed unused error variant kube::error::ConfigError::LoadConfigFile - #689
• Changed kube::Error::RequestValidation(String) to kube::Error::BuildRequest(kube::core::request::Error). Includes possible errors from building an HTTP request, and contains some errors from kube::core that was previously grouped under kube::Error::SerdeError and kube::Error::HttpError. kube::core::request::Error is described below. - #686
• Removed kube::core::Error and kube::core::Result. kube::core::Error was replaced by more specific errors. - #686
  • Replaced kube::core::Error::InvalidGroupVersion with kube::core::gvk::ParseGroupVersionError
  • Changed the error returned from kube::core::admission::AdmissionRequest::with_patch to kube::core::admission::SerializePatchError (was kube::core::Error::SerdeError)
  • Changed the error associated with TryInto<AdmissionRequest<T>> to kube::core::admission::ConvertAdmissionReviewError (was kube::core::Error::RequestValidation)
  • Changed the error returned from methods of kube::core::Request to kube::core::request::Error (was kube::core::Error). kube::core::request::Error represents possible errors when building an HTTP request. The removed kube::core::Error had RequestValidation(String), SerdeError(serde_json::Error), and HttpError(http::Error) variants. They are now Validation(String), SerializeBody(serde_json::Error), and BuildRequest(http::Error) respectively in kube::core::request::Error.
• Changed variants of error enums in kube::runtime to tuples. Replaced snafu with thiserror. - #686

... (truncated)

Changelog

Sourced from kube-runtime's changelog.

0.64.0 / 2021-11-16

• BREAKING: Replaced feature kube-derive/schema with attribute #[kube(schema)] - #690
  • If you currently disable default kube-derive default features to avoid automatic schema generation, add #[kube(schema = "disabled")] to your spec struct instead
• BREAKING: Moved CustomResource derive crate overrides into subattribute #[kube(crates(...))] - #690
  • Replace #[kube(kube_core = .., k8s_openapi = .., schema = .., serde = .., serde_json = ..)] with #[kube(crates(kube_core = .., k8s_openapi = .., schema = .., serde = .., serde_json = ..))]
• Added openssl-tls feature to use openssl for TLS on all platforms. Note that, even though native-tls uses a platform specific TLS, kube requires openssl on all platforms because native-tls only allows PKCS12 input to load certificates and private key at the moment, and creating PKCS12 requires openssl. - #700
• BREAKING: Changed to fail loading configurations with PEM-encoded certificates containing invalid sections instead of ignoring them. Updated pem to 1.0.1. - #702
• oauth: Updated tame-oauth to 0.6.0 which supports the same default credentials flow as the Go oauth2 for Google OAuth. In addition to reading the service account information from JSON file specified with GOOGLE_APPLICATION_CREDENTIALS environment variable, Application Default Credentials from gcloud, and obtaining OAuth tokens from local metadata server when running inside GCP are now supported. - #701

Refining Errors

We started working on improving error ergonomics. See the tracking issue #688 for more details.

The following is the summary of changes to kube::Error included in this release:

• Added Error::Auth(kube::client::AuthError) (errors related to client auth, some of them were previously in Error::Kubeconfig)
• Added Error::BuildRequest(kube::core::request::Error) (errors building request from kube::core)
• Added Error::InferConfig(kube::config::InferConfigError) (for Client::try_default)
• Added Error::OpensslTls(kube::client::OpensslTlsError) (new openssl-tls feature) - #700
• Added Error::UpgradeConnection(kube::client::UpgradeConnectinError) (ws feature, errors from upgrading a connection)
• Removed Error::Connection (was unused)
• Removed Error::RequestBuild (was unused)
• Removed Error::RequestSend (was unused)
• Removed Error::RequestParse (was unused)
• Removed Error::InvalidUri (replaced by variants of errors in kube::config errors)
• Removed Error::RequestValidation (replaced by a variant of Error::BuildRequest)
• Removed Error::Kubeconfig (replaced by Error::InferConfig, and Error::Auth)
• Removed Error::ProtocolSwitch (ws only, replaced by Error::UpgradeConnection)
• Removed Error::MissingUpgradeWebSocketHeader (ws only, replaced by Error::UpgradeConnection)
• Removed Error::MissingConnectionUpgradeHeader (ws only, replaced by Error::UpgradeConnection)
• Removed Error::SecWebSocketAcceptKeyMismatch (ws only, replaced by Error::UpgradeConnection)
• Removed Error::SecWebSocketProtocolMismatch (ws only, replaced by Error::UpgradeConnection)
• Removed impl From<T> for Error

The following breaking changes were made as a part of an effort to refine errors (the list is large, but most of them are lower level, and shouldn't require much change in most cases):

• Removed impl From<E> for kube::Error - #686
• Removed unused error variants in kube::Error: Connection, RequestBuild, RequestSend, RequestParse - #689
• Removed unused error variant kube::error::ConfigError::LoadConfigFile - #689
• Changed kube::Error::RequestValidation(String) to kube::Error::BuildRequest(kube::core::request::Error). Includes possible errors from building an HTTP request, and contains some errors from kube::core that was previously grouped under kube::Error::SerdeError and kube::Error::HttpError. kube::core::request::Error is described below. - #686
• Removed kube::core::Error and kube::core::Result. kube::core::Error was replaced by more specific errors. - #686
  • Replaced kube::core::Error::InvalidGroupVersion with kube::core::gvk::ParseGroupVersionError
  • Changed the error returned from kube::core::admission::AdmissionRequest::with_patch to kube::core::admission::SerializePatchError (was kube::core::Error::SerdeError)
  • Changed the error associated with TryInto<AdmissionRequest<T>> to kube::core::admission::ConvertAdmissionReviewError (was kube::core::Error::RequestValidation)
  • Changed the error returned from methods of kube::core::Request to kube::core::request::Error (was kube::core::Error). kube::core::request::Error represents possible errors when building an HTTP request. The removed kube::core::Error had RequestValidation(String), SerdeError(serde_json::Error), and HttpError(http::Error) variants. They are now Validation(String), SerializeBody(serde_json::Error), and BuildRequest(http::Error) respectively in kube::core::request::Error.

... (truncated)

Commits

• b5c76ea release 0.64.0
• f9bfe11 remove line from something for next release
• 6f09e6c Merge pull request #713 from kazk/summarize-kube-error-changes
• 90bcd17 Summarize kube::Error changes
• 398cb14 cargo deny mutliple-fields ban (#711)
• 519cc7b derive PartialEq + Clone on kube_core::params::Patch - closes #705 (#708)
• 0bc29f6 add issue template + improve contributor help docs (#699)
• 13df70b Merge pull request #701 from kazk/update-tame-oauth
• 92de104 Update tame-oauth to 0.6.0
• 20fe294 Merge pull request #702 from kazk/update-pem
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[antgamdia]

@dependabot recreate

[antgamdia]

@dependabot recreate

[antgamdia]

@dependabot recreate