Skip to content

2020.10.28-AlSugoDiNoci

Pre-release
Pre-release
Compare
Choose a tag to compare
@maxres-fr maxres-fr released this 18 Dec 02:25
2020.10.28-AlSugoDiNoci
9db40a9

ForgeOps Release Notes

Documentation

The ForgeOps documentation for this release is in the attached [forgeops-docs.zip] file. To view the documentation, download the zip file, extract the content, and access the forgeops/index.html file in your browser.

Features

Significant features

  • Deprecate cluster/pulumi Pulumi is no longer used for cluster configuration, instead shell scripts based on the cloud platform utilities are used for cluster configuration.

  • Add new quickstart.sh script for deploying CDQ (Cloud Deployment Quickstart) [CLOUD-2625]. You can use the quickstart.sh to create a sample deployment of ForgeRock platform in your cluster, including a Minikube cluster.

Other features

  • Add support for the DS operator [CLOUD-2667]
  • New script for changing product base images [CLOUD-2593]
  • Add pruning of block storage devices and better cli handling
  • Improve reliability of the nightly pipelines [CLOUD-2646]
  • Add filter routing and pruning rules [CLOUD-2574]
  • Switch lodestar profile to dev profile [LODESTAR-468]
  • Add AM configuration upgrader job to update config and restore placeholders after am config export [CLOUD-2568]
  • Increase IDM resources for medium profile [LODESTAR-467]
  • Add secret agent object in all profile [CLOUD-2213]
  • Create and attach CDQ manifests in github releases [CLOUD-2559]
  • Add Tekton pipeline to build images, bump skaffold version [CLOUD-2561]
  • Provide option to create a static IP address [CLOUD-2558]
  • Add capability to handle progressive login and updated readme for using load testing framework
  • Set the nginx pod count based on the cluster type
  • Add new AKS cluster provisioning bash scripts [CLOUD-2550]
  • Add GKE medium size [CLOUD-2557]
  • Enable prometheus/grafana/alertmanager external access by default [CLOUD-2552]
  • Add debug pod for diagnosing ldap or connectivity problems [CLOUD-1981]
  • Preserve configuration on AM pod restart [CLOUD-2498]
  • Add sample schema update [FRAAS-3977]
  • Increase the scope of dynamic configurations exported by amster [CLOUD-2419]
  • Add script to install, update, and remove secret agent operator [CLOUD-2514]
  • Simplify GKE scripts [CLOUD-2484]
  • Upgrade nginx chart to the kubernetes cncf version at https://kubernetes.github.io/ingress-nginx [CLOUD-2492]
  • Add build argument in cli containers for registry [CLOUD-2184]
  • Add new eksctl script for provisioning EKS clusters [CLOUD-2483]

Fixes

  • Install secret-agent only if it is not present
  • Use 'bash -x' in amster import.sh and ldif-importer ds-password.sh script to investigate random issue with incorrect ds password
  • Change the node pool names for perf sprint release cluster
  • Add the glcoud authenticate call to scale node pools
  • Add the name of the module cloud_utils containing scaleclusternodepool method
  • Set skaffold docker tags to short git commit
  • Update sleep in amster script to 200 secs to allow for am to be ready for import [CLOUD-2460]
  • Correct ds monitor password in secret agent config [CLOUD-2643]
  • Remove am_hmac_confirmation_id environment variable [CLOUD-2617]
  • Update recon template from forgerock,dc=com to forgerock,dc=io
  • Disable autoscaling in cluster-up.sh for AKS and GKE [CLOUD-2636]
  • Increase the length of passphrase used as confirmation hmac signature [CLOUD-2617]
  • Encode hmac confirmation id [CLOUD-2617]
  • Remove push true for local contexts [CLOUD-2614]
  • Add rbac permissions to manage sac for Tekton pipelines
  • Retain forgeops secrets to support Identity Cloud Services
  • Bump skaffold version [CLOUD-2561]
  • Retrieve region for AKS/GKE scripts to user's default cli configuration [CLOUD-2577]
  • Add recon association targets to ds repo config [OPENIDM-15491]
  • Release GCP load balancer before deleting the cluster [CLOUD-2579]
  • Add nginx class annotation to the ingress configs for the UIs
  • Change CDM small to use prod.iam.example.com [CLOUD-2580]
  • Remove dot from username as not supported by labels
  • Inject dsbackup vars from the platform configmap [CLOUD-2496]
  • Improve clusters generated by eksctl scripts [CLOUD-2520]
  • Fix ingress deployment scripts for eksctl [CLOUD-2517]
  • Update regex used to extract amster version
  • Add capability to handle case where GCP config isn't mounted in CDM entrypoint [CLOUD-2500]
  • Add kubeconfig directory which mounts config with proper permissions [CLOUD-2499]
  • Add missing label to prod-ds deployment
  • Set label on cluster-up.sh [CLOUD-2484]
  • Remove s3 bucket from aws-infra config [CLOUD-2502]
  • Resolve build parameters in google cloud build for cli.sh [CLOUD-2184]
  • Update Tekton event listener to latest specification [CLOUD-2464]
  • Update oidc claims script
  • Repo tools handles multiple tags at a single commit

Docs

  • Attach ForgeOps documentation in [forgeops-docs.zip] file
  • Update GCP pruner readme for deployment [CLOUD-1571]
  • Update sample sac to include language for azure [CLOUD-2148]
  • Update readme.md secrets section for secret-agent [CLOUD-2639]
Assets 5
Loading