-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add upgradeApproval field to OperatorPolicy #249
Add upgradeApproval field to OperatorPolicy #249
Conversation
deploy/crds/kustomize_operatorpolicy/policy.open-cluster-management.io_operatorpolicies.yaml
Outdated
Show resolved
Hide resolved
deploy/crds/policy.open-cluster-management.io_operatorpolicies.yaml
Outdated
Show resolved
Hide resolved
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
good to me
/hold for Gus comments |
Breaking change: setting `InstallPlanApproval` on the subscription is invalid, and will result in a noncompliant policy that does not perform any other actions. Previously, *not* setting that field was invalid. Being able to set `InstallPlanApproval` in the policy was somewhat confusing, because the controller would override the supplied value in many cases, in order to have control over which upgrades would be approved. Additionally, there was a desire to separate the approval for the initial installation from the approval for later upgrades. The new field addresses these concerns. Initial installs will be approved whenever the policy is enforced (as long as it matches the policy's specified allowed versions), and upgrades will only be approved when `upgradeApproval` is set to Automatic. Refs: - https://issues.redhat.com/browse/ACM-11268 Signed-off-by: Justin Kulikauskas <jkulikau@redhat.com>
aa46c6c
to
2390970
Compare
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: gparvin, JustinKuli The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/unhold |
5b60de6
into
open-cluster-management-io:main
Per a recent change in the controller, it is now invalid to specify installPlanApproval in an OperatorPolicy, and it is necessary to specify upgradeApproval. Refs: - open-cluster-management-io/config-policy-controller#249 Signed-off-by: Justin Kulikauskas <jkulikau@redhat.com>
Per a recent change in the controller, it is now invalid to specify installPlanApproval in an OperatorPolicy, and it is necessary to specify upgradeApproval. Refs: - open-cluster-management-io/config-policy-controller#249 Signed-off-by: Justin Kulikauskas <jkulikau@redhat.com>
Breaking change: setting
InstallPlanApproval
on the subscription is invalid, and will result in a noncompliant policy that does not perform any other actions. Previously, not setting that field was invalid.Being able to set
InstallPlanApproval
in the policy was somewhat confusing, because the controller would override the supplied value in many cases, in order to have control over which upgrades would be approved. Additionally, there was a desire to separate the approval for the initial installation from the approval for later upgrades.The new field addresses these concerns. Initial installs will be approved whenever the policy is enforced (as long as it matches the policy's specified allowed versions), and upgrades will only be approved when
upgradeApproval
is set to Automatic.Refs: