Kong
diff --git a/‎CHANGELOG.md‎
Lines changed: 50 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 50 additions & 0 deletions
diff --git a/‎Makefile‎
Lines changed: 1 addition & 1 deletion b/‎Makefile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎README.md‎
Lines changed: 1 addition & 1 deletion b/‎README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎deploy/manifests/ingress-controller.yaml‎
Lines changed: 3 additions & 3 deletions b/‎deploy/manifests/ingress-controller.yaml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎deploy/manifests/kong.yaml‎
Lines changed: 1 addition & 1 deletion b/‎deploy/manifests/kong.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎deploy/single/all-in-one-postgres.yaml‎
Lines changed: 4 additions & 4 deletions b/‎deploy/single/all-in-one-postgres.yaml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎deploy/single/kong-resources-openshift.yaml‎
Lines changed: 3 additions & 3 deletions b/‎deploy/single/kong-resources-openshift.yaml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎docs/annotations.md‎
Lines changed: 28 additions & 5 deletions b/‎docs/annotations.md‎
Lines changed: 28 additions & 5 deletions
diff --git a/‎docs/custom-types.md‎
Lines changed: 55 additions & 45 deletions b/‎docs/custom-types.md‎
Lines changed: 55 additions & 45 deletions
@@ -1,10 +1,59 @@
 # Table of Contents
 
+ - [0.2.0](#020-20180921)
  - [0.1.0](#010-20180817)
  - [0.0.5](#005---20180602)
  - [0.0.4 and prior](#004-and-prior)
 
 
+## [0.2.0] - 2018/09/21
+
+#### Breaking Changes
+
+ - :warning: Support for Kong 0.13.x has been dropped in favor of 0.14.x
+
+#### Deprecated
+
+ - :warning: Configuring plugins in Kong using `<plugin-name>.plugin.konghq.com`
+ annotation is now deprecated and will be removed in a future release.
+ Please use `plugins.konghq.com` annotation instead.
+
+#### Added
+
+ - **Support for Kong 0.14.x** The supported version of Kong 0.14.x
+   has been introduced. Kong 0.14.x introduced breaking changes to a few
+   Admin API endpoints which have been updated in the Ingress Controller.
+   [#101](https://github.com/Kong/kubernetes-ingress-controller/pull/101)
+ - **Global Plugins** Plugins can be configured to run globally in Kong
+   using a "global" label on `KongPlugin` resource.
+   [#112](https://github.com/Kong/kubernetes-ingress-controller/pull/112)
+ - A new property `plugin` has been introduced in `KongPlugin` resource
+   which ties the configuration to be used and the type of the plugin.
+   [#122](https://github.com/Kong/kubernetes-ingress-controller/pull/122)
+ - Multiple plugins can be configured for an Ingress or a Service in k8s
+   using `plugins.konghq.com` annotation.
+   [#124](https://github.com/Kong/kubernetes-ingress-controller/pull/124)
+ - `KongPlugin` resources do not need to be duplicated any more.
+   The same `KongPlugin` resource can be used across
+   multiple Ingress/Service resources.
+   [#121](https://github.com/Kong/kubernetes-ingress-controller/pull/121)
+ - The custom resource definitions now have a shortname for all the
+   CRDs, making it easy to interract with `kubectl`.
+   [#120](https://github.com/Kong/kubernetes-ingress-controller/pull/120)
+
+#### Fixed
+
+ - Avoid issuing unnecessary PATCH requests on Services in Kong during the
+   reconcillation loop, which lead to unnecessary Router rebuilds inside Kong.
+   [#107](https://github.com/Kong/kubernetes-ingress-controller/pull/107)
+ - Fixed the diffing logic for plugin configuration between KongPlugin
+   resource in k8s and plugin config in Kong to avoid false positives.
+   [#106](https://github.com/Kong/kubernetes-ingress-controller/pull/106)
+ - Correctly format IPv6 address for Targets in Kong.
+   Thanks @NixM0nk3y for the patch!
+   [#118](https://github.com/Kong/kubernetes-ingress-controller/pull/118)
+
+
 ## [0.1.0] - 2018/08/17
 
 #### Breaking Changes
@@ -45,6 +94,7 @@
  - The initial versions rapidly were iterated delivering
    a working ingress controller.
 
+[0.2.0]: https://github.com/kong/kubernetes-ingress-controller/compare/0.1.0...0.2.0
 [0.1.0]: https://github.com/kong/kubernetes-ingress-controller/compare/v0.0.5...0.1.0
 [v0.0.5]: https://github.com/kong/kubernetes-ingress-controller/compare/v0.0.4...v0.0.5
 [v0.0.4]: https://github.com/kong/kubernetes-ingress-controller/compare/7866a27f268c32c5618fba546da2c73ba74d4a46...v0.0.4
@@ -18,7 +18,7 @@ all: all-container
 BUILDTAGS=
 
 # Use the 0.0 tag for testing, it shouldn't clobber any release builds
-TAG?=0.1.0
+TAG?=0.2.0
 REGISTRY?=kong-docker-kubernetes-ingress-controller.bintray.io
 GOOS?=linux
 DOCKER?=docker
 
@@ -8,7 +8,7 @@ This repository contains an Ingress controller for Kubernetes that works by depl
 
 - Tested with Kubernetes clusters running version `1.8` through `1.10`.
 - The Ingress Controller supports the following versions of Kong:
-   - Kong Community Edition(CE) `0.13.x`
+   - Kong Community Edition(CE) `0.14.x`
    - Kong Enterprise Edition(EE) `0.32.x`
    - Kong Enterprise Edition(EE) `0.33.x`
 
 
@@ -44,7 +44,7 @@ spec:
       serviceAccountName: kong-serviceaccount
       initContainers:
       - name: kong-migration
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
@@ -53,7 +53,7 @@ spec:
         command: [ "/bin/sh", "-c", "kong migrations up" ]
       containers:
       - name: admin-api
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
@@ -109,7 +109,7 @@ spec:
             fieldRef:
               apiVersion: v1
               fieldPath: metadata.namespace
-        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.1.0
+        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.2.0
         imagePullPolicy: IfNotPresent
         livenessProbe:
           failureThreshold: 3
 
@@ -16,7 +16,7 @@ spec:
     spec:
       containers:
       - name: kong-proxy
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
 
@@ -324,7 +324,7 @@ spec:
       serviceAccountName: kong-serviceaccount
       initContainers:
       - name: kong-migration
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
@@ -333,7 +333,7 @@ spec:
         command: [ "/bin/sh", "-c", "kong migrations up" ]
       containers:
       - name: admin-api
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
@@ -389,7 +389,7 @@ spec:
             fieldRef:
               apiVersion: v1
               fieldPath: metadata.namespace
-        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.1.0
+        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.2.0
         imagePullPolicy: IfNotPresent
         livenessProbe:
           failureThreshold: 3
@@ -449,7 +449,7 @@ spec:
     spec:
       containers:
       - name: kong-proxy
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
 
@@ -260,7 +260,7 @@ spec:
             fieldRef:
               apiVersion: v1
               fieldPath: metadata.namespace
-        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.1.0
+        image: kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller:0.2.0
         imagePullPolicy: IfNotPresent
         livenessProbe:
           failureThreshold: 3
@@ -338,7 +338,7 @@ spec:
         privileged: true
       containers:
       - name: kong
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_PG_PASSWORD
             value: kong
@@ -400,7 +400,7 @@ spec:
     spec:
       containers:
       - name: kong-migration-0130
-        image: kong:0.13.1-centos
+        image: kong:0.14.1-centos
         env:
           - name: KONG_NGINX_DAEMON
             value: 'off'
 
@@ -1,7 +1,33 @@
 # Kubernetes annotations
 
-To configure Kong plugins, credentials and consumers the ingress controller uses annotations to create a mapping between the Ingress and the [custom types][0].
-The prefix of the annotation shows which plugin we are trying to set up. For instance, the next code shows we want to configure the `rate-limiting` plugin:
+`KongPlugin` and `KongIngress` resources need to be associated with an Ingress resource
+for it to take effect, since these resources add value to your routing.
+
+# KongPlugin
+
+## `plugins.konghq.com` Annotation
+`KongPlugin` resource can be configured using the `plugins.konghq.com` annotation.
+This annotation was introduced in Kong Ingress Controller version 0.2.0.
+
+Following is an example on how to use the annotation:
+
+```yaml
+plugins.konghq.com: high-rate-limit, docs-site-cors
+```
+
+Here, `high-rate-limit` and `docs-site-cors` are the name of the KongPlugin resources which
+need to be applied to the Ingress.
+
+This annotation can be applied to a Service in Kubernetes as well, which
+will result in the plugin being executed at Service in Kong, meaning the plugin will be
+executed for every request that is proxied, no matter which Route it came from.
+
+## DEPRECATED `<name>.plugin.konghq.com` Annotation
+
+Before version 0.2.0, a different annotation was used to configure plugins,
+which is now deprecated.
+
+The annotation can be used as follows:
 
 ```yaml
 rate-limiting.plugin.konghq.com: |
@@ -24,8 +50,5 @@ Setting annotations in Ingress rules set ups plugins in `Kong Routes`. Sometimes
 
 **Rules:**
 
-- If the Ingress and Kubernetes service contains the same annotation, only the defined in the service will be used.
-- When there is no overlap of plugins in Ingress and Services annotations both plugins will be configured.
-
 [0]: custom-types.md
 [1]: https://konghq.com/blog/kong-ce-0-13-0-released/
@@ -1,51 +1,52 @@
 # Custom Resource Definitions
 
-Kong relies on several [Custom Resource Definition object][0] to declare the additional information to Ingress rules and synchronize configuration with the Kong admin API
+Kong relies on several [Custom Resource Definitions][0] to declare
+additional information to Ingress rules and synchronize configuration with the Kong admin API.
 
-This new types are:
+The custom resource names are:
 
-- kongconsumer
-- kongcredential
-- kongplugin
-
-Each one of this new object in Kubernetes have a one-to-one relation with a Kong resource:
-
-- [Consumer][1]
-- [Plugin][2]
-- Credential created in each authentication plugin.
-
-Using this Kubernetes feature allows us to add additional commands to [kubectl][3] which improves the user experience:
-
-```bash
-$ kubectl get kongplugins
-NAME                             AGE
-add-ratelimiting-to-route        5h
-http-svc-consumer-ratelimiting   5h
-```
+- **KongConsumer**: These resources map to [Consumer][1] entities in Kong.
+- **KongCredential**: These resources map to credentials (key-auth, basic-auth, etc) that belong to consumers.
+- **KongPlugin**: These resources belong to [Plugin][2] entities in Kong.
 
 ### KongPlugin
 
-This object allows the configuration of Kong plugins in the same way we [add plugins using the admin API][4]
+This resource allows the configuration of Kong plugins in the same way we [add plugins using the admin API][4]
 
 ```yaml
 apiVersion: configuration.konghq.com/v1
 kind: KongPlugin
 metadata:
   name: <object name>
   namespace: <object namespace>
-consumerRef: <name of an existing consumer>
-disabled: <boolean>
+  labels:
+    global: "true" # optional, please note the quotes around true
+consumerRef: <optional, name of an existing consumer> # optional
+disabled: <boolean>  # optional
 config:
     key: value
+plugin: <name-of-plugin>
 ```
 
-- The field `consumerRef` implies the plugin will be used for a particular consumer.
-- The value of the field must reference an existing consumer in the same namespace.
-- When `consumerRef` is empty it implies the plugin is global. This means, all the requests will use the plugin.
-- The field `config` contains a list of `key` and `value` required to configure the plugin.
-- The field `disabled` allows us to change the state of the plugin in Kong.
-
-**Important:** the validation of the fields is left to the user. Setting invalid fields avoid the plugin configuration.
+- `consumerRef`, an optional field, implies the plugin will be used for a particular consumer only.
+  The value of the field must reference an existing consumer in the same namespace.
+  If specified, the plugin will execute for the specific consumer only.
+- `config` contains a list of `key` and `value` required to configure the plugin.
+  All configuration values specific to the type of plugin go in here.
+  Please read the documentation of the plugin being configured to set values
+  in here.
+- `disabled` if set to true, disables the plugin in Kong (but not delete it).
+- `plugin` field determines the name of the plugin in Kong.
+  This field was introduced in Kong Ingress Controller 0.2.0.
+- Setting a label `global` to `"true"` will result in the plugin being
+  applied globally in Kong, meaning it will be executed for every
+  request that is proxied via Kong.
+
+**Important:** validation of the configuration fields is left to the user.
+Setting invalid fields will result in errors in the Ingress Controller.
+This behavior is set to improve in future.
+
+The plugins can be associated with Ingress resources using `plugins.konghq.com` annotation.
 
 *Example:*
 
@@ -57,11 +58,12 @@ metadata:
   namespace: default
 config:
   key: value
+plugin: my-plugin
 ```
 
 ### KongConsumer
 
-Definition:
+*Definition:*
 
 ```yaml
 apiVersion: configuration.konghq.com/v1
@@ -73,16 +75,15 @@ username: <user name>
 custom_id: <custom ID>
 ```
 
-*Example:*
-
-To set up a consumer, first we need a plugin and a credential:
+This resource allows configuring Consumers in Kong
 
 ```yaml
 apiVersion: configuration.konghq.com/v1
 kind: KongConsumer
 metadata:
   name: consumer-team-x
 username: team-X
+custom_id: my_team_x # optional and not recommended, please use `username`
 
 ---
 
@@ -106,20 +107,29 @@ config:
   hour: 1000
   limit_by: ip
   second: 100
+plugin: rate-limiting
 ```
 
 ### KongIngress
 
-This option allows us to configure setting from kong related to the [Upstream][5], [Service][6] and [routes][7] that are defined in the Kubernetes Ingress specification.
+Ingress resource spec in Kubernetes can define routing policies based on HTTP Host header and paths.
+While this is sufficient in most cases, sometimes, users may want more control over routing at the Ingress level.
+`KongIngress` works in conjunction with existing Ingress resource and extends it. It is not meant as a replacement to the
+`Ingress` resource in Kubernetes.
+Using `KongIngress`, all properties of [Upstream][5], [Service][6] and [Route][7] entitise in Kong related to an Ingress resource
+can be modified.
 
-*There are two ways of activating this feature:*
-- We can create a `KongIngress` object in the same namespace of the Ingress rule using the same name. With this convention we can avoid an additional annotation in the Ingress. This is useful but requires one `KongIngress` definition per Ingress, which could become hard to maintain when have multiple rules. 
+Once a `KongIngress` resource is created, it can be associated with `Ingress` resource in two ways:
+- Create a `KongIngress` object in the same namespace as that of the Ingress rule using the same name.
+  This avoids a need of additional annotation in Ingress oresource.
+  On the other hand, this approach requires a `KongIngress` resource per Ingress, which becomes hard to maintain with multiple Ingresses.
 
-- (Alternatively) To simplify maintenance, by reusing the same KongIngress on multiple Ingress resources, we can create just one or more `KongIngress` object and map which one should be used using the annotation `configuration.konghq.com: <name>`.
+- Create an `KongIngress` resource and then using the annotation `configuration.konghq.com: <KongIngress-resource-name>`,
+  associate it with one or more Ingress resources. This approach allows you to reuse the same `KongIngress`.
 
 *Note:* Is not required to define the complete object, we can define the `upstream`, `proxy` or `route` sections
 
-Example:
+Following is a complete spec example:
 
 ```yaml
 apiVersion: configuration.konghq.com/v1
@@ -180,10 +190,10 @@ route:
 ```
 
 [0]: https://kubernetes.io/docs/tasks/access-kubernetes-api/extend-api-custom-resource-definitions/
-[1]: https://getkong.org/docs/0.13.x/admin-api/#consumer-object
-[2]: https://getkong.org/docs/0.13.x/admin-api/#plugin-object
+[1]: https://getkong.org/docs/0.14.x/admin-api/#consumer-object
+[2]: https://getkong.org/docs/0.14.x/admin-api/#plugin-object
 [3]: https://kubernetes.io/docs/reference/kubectl/overview/
-[4]: https://getkong.org/docs/0.13.x/admin-api/#add-plugin
-[5]: https://getkong.org/docs/0.13.x/admin-api/#upstream-objects
-[6]: https://getkong.org/docs/0.13.x/admin-api/#service-object
-[7]: https://getkong.org/docs/0.13.x/admin-api/#route-object
+[4]: https://getkong.org/docs/0.14.x/admin-api/#add-plugin
+[5]: https://getkong.org/docs/0.14.x/admin-api/#upstream-objects
+[6]: https://getkong.org/docs/0.14.x/admin-api/#service-object
+[7]: https://getkong.org/docs/0.14.x/admin-api/#route-object