Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

20231107 release to main #289

Merged
merged 62 commits into from
Nov 8, 2023
Merged

20231107 release to main #289

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
62 commits
Select commit Hold shift + click to select a range
1a35e94
Merge pull request #240 from openinfradev/main
ktkfree Jul 13, 2023
23deb23
bumpup lma-addons(new dashboard)
Jul 20, 2023
baf5045
Merge pull request #244 from openinfradev/s3support
intelliguy Jul 22, 2023
c67512e
typo
Jul 22, 2023
58d9235
s3support: change release name
Jul 24, 2023
494374f
Merge pull request #245 from openinfradev/s3support
intelliguy Jul 24, 2023
3a6f6f7
Merge pull request #246 from openinfradev/s3support
intelliguy Jul 25, 2023
115c7d3
Update resources.yaml
intelliguy Jul 25, 2023
467f1d9
Merge pull request #248 from openinfradev/s3support
intelliguy Jul 27, 2023
4891c19
Merge pull request #251 from openinfradev/release
ktkfree Jul 31, 2023
f078232
Merge pull request #261 from openinfradev/main
ktkfree Aug 22, 2023
a7f95f6
ingress-nginx: update default replica and resource spec
Aug 29, 2023
3398c7e
update lma-addson chart version
robertchoi80 Aug 30, 2023
c475f09
Merge pull request #263 from openinfradev/tks-issues-858
ktkfree Aug 31, 2023
71857e8
Merge pull request #262 from openinfradev/minimal_deploy_support
ktkfree Sep 12, 2023
bde3d03
add tks-admin-tools group
robertchoi80 Sep 14, 2023
9d487ae
Merge pull request #264 from openinfradev/tks-issues-861
zugwan Sep 26, 2023
a202800
policy: add a decapod app for policies
Oct 4, 2023
9d54202
policy: add a decapod app for policies
Oct 4, 2023
5f29d8f
tks-cluster: byoh: upgrade byoh helm chart to v0.3.0
zugwan Oct 16, 2023
38b36d8
Merge branch 'develop' into fix_byoh_chart_version
zugwan Oct 16, 2023
6e74b51
Merge pull request #268 from openinfradev/fix_byoh_chart_version
ktkfree Oct 16, 2023
1f44bb3
Update site-values.yaml
ktkfree Oct 19, 2023
569183d
bugfix. change release name to tks-apis
ktkfree Oct 19, 2023
8aca782
Merge pull request #269 from openinfradev/tks_apis
cho4036 Oct 19, 2023
bcd8bd9
use separate ingress-nginx for tks-admin-tools
robertchoi80 Oct 10, 2023
64d38e7
trivial: add tunable tag
robertchoi80 Oct 10, 2023
e140219
Merge pull request #270 from openinfradev/clone-ingress-nginx
ktkfree Oct 19, 2023
7f0ccf4
test
ktkfree Oct 19, 2023
b141003
test
ktkfree Oct 19, 2023
22c7449
fix msa
seungkyua Oct 20, 2023
e3a073f
Merge pull request #271 from seungkyua/20231019_byoh_msa
seungkyua Oct 20, 2023
c5c3482
change jaeger cassandra options
seungkyua Oct 20, 2023
9fd8bae
Merge pull request #272 from seungkyua/20231019_byoh_msa
seungkyua Oct 20, 2023
b12821f
minio: update bucket names
Oct 23, 2023
bde5d2b
Merge pull request #273 from openinfradev/minio
intelliguy Oct 23, 2023
79e23e2
Merge pull request #274 from openinfradev/develop
ktkfree Oct 23, 2023
e5e3c85
change default loki's bucket name from loki to tks-loki
Oct 25, 2023
6148c6b
Merge pull request #275 from openinfradev/bucket-name
zugwan Oct 25, 2023
9c71cd3
make the upstream cluster-autoscaler chart common to all
zugwan Oct 30, 2023
8cca9a4
Merge pull request #276 from openinfradev/common_cluster-autoscaler
zugwan Oct 30, 2023
eac1539
remove unused cluster-autoscaler values
zugwan Oct 30, 2023
8ba2d07
Merge pull request #277 from openinfradev/remove_usued_autoscaler_values
zugwan Oct 30, 2023
acfffae
Merge pull request #278 from openinfradev/release
ktkfree Oct 31, 2023
ed42ec8
update aws-ebs-csi chart to v2.24.0
zugwan Oct 31, 2023
ed8b9e3
minor modification for skb installation
cho4036 Nov 2, 2023
eba1e64
Merge pull request #280 from cho4036/release
ktkfree Nov 2, 2023
20a7eb5
Merge pull request #279 from openinfradev/update_aws_ebs_csi
ktkfree Nov 2, 2023
2f95c4e
kube-prometheus-operator: bumpup due to update function for status
Aug 10, 2023
a335f90
Merge pull request #281 from openinfradev/hotfix_chart_version
ktkfree Nov 2, 2023
929be31
support kiali & gatekeeper for jaeger sso
cho4036 Nov 2, 2023
63ae556
Merge pull request #282 from cho4036/render-test-local
ktkfree Nov 2, 2023
ce23f65
minor fix. change app name
cho4036 Nov 3, 2023
508e8ce
Merge pull request #283 from cho4036/render-test-local
ktkfree Nov 3, 2023
0f01196
Merge pull request #284 from openinfradev/release
ktkfree Nov 3, 2023
2b4ad4f
lma-addons: bumpup
Nov 3, 2023
f5295e3
Merge pull request #285 from openinfradev/bumpup
intelliguy Nov 3, 2023
c202130
minio: change value key
Nov 6, 2023
453c3a9
Merge pull request #286 from openinfradev/bugfix_deployment
ktkfree Nov 6, 2023
274c8b7
bugfix: change keys for thanos service and minio policy
Nov 6, 2023
1392ee3
Merge pull request #287 from openinfradev/bugfix_skb
ktkfree Nov 6, 2023
2812e55
Merge pull request #288 from openinfradev/develop
ktkfree Nov 8, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 15 additions & 20 deletions lma/base/resources.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ spec:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: kube-prometheus-stack
version: 44.3.1
version: 48.3.1
origin: https://prometheus-community.github.io/helm-charts
helmVersion: v3
releaseName: prometheus-operator-crds
Expand All @@ -29,7 +29,7 @@ spec:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: kube-prometheus-stack
version: 44.3.1
version: 48.3.1
origin: https://prometheus-community.github.io/helm-charts
releaseName: prometheus-operator
targetNamespace: lma
Expand Down Expand Up @@ -71,29 +71,25 @@ spec:
enabled: true
image:
repository: tks/prometheus-operator
tag: v0.52.0
tag: v0.66.0
admissionWebhooks:
patch:
image:
repository: tks/kube-webhook-certgen
tag: v1.0
tag: v20221220-controller-v1.5.1-58-g787ea74b6
prometheusConfigReloader:
image:
repository: tks/prometheus-config-reloader
tag: v0.52.0
tag: v0.66.0
thanosImage:
repository: tks/thanos
tag: v0.30.2
tag: v0.31.0
nodeSelector: {} # TO_BE_FIXED
createCustomResource: true
cleanupCustomResource: true
cleanupCustomResourceBeforeInstall: true
prometheus:
enabled: false
prometheusSpec:
image:
repository: tks/prometheus
tag: v2.31.1
wait: true
---
apiVersion: helm.fluxcd.io/v1
Expand All @@ -108,7 +104,7 @@ spec:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: kube-prometheus-stack
version: 44.3.1
version: 48.3.1
origin: https://prometheus-community.github.io/helm-charts
releaseName: prometheus
targetNamespace: lma
Expand All @@ -123,7 +119,7 @@ spec:
alertmanagerSpec:
image:
repository: tks/alertmanager
tag: v0.23.0
tag: v0.25.0
nodeSelector: {} # TO_BE_FIXED
retention: TO_BE_FIXED

Expand Down Expand Up @@ -238,7 +234,7 @@ spec:
prometheusSpec:
image:
repository: tks/prometheus
tag: v2.31.1
tag: v2.45.0
retention: TO_BE_FIXED
storageSpec:
volumeClaimTemplate:
Expand Down Expand Up @@ -757,7 +753,7 @@ spec:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: lma-addons
version: 1.8.4
version: 1.8.6
origin: https://openinfradev.github.io/helm-repo
releaseName: addons
targetNamespace: lma
Expand Down Expand Up @@ -923,8 +919,8 @@ spec:
limits:
memory: 2Gi # tunable
mode: standalone
DeploymentUpdate.type: Recreate
# replicas: 3
DeploymentUpdate:
type: Recreate
---
apiVersion: helm.fluxcd.io/v1
kind: HelmRelease
Expand Down Expand Up @@ -962,9 +958,8 @@ spec:
nodeSelector: {}
service:
type: TO_BE_FIXED
http:
port: 9090
nodePort: TO_BE_FIXED
nodePorts:
http: TO_BE_FIXED
config: |-
type: IN-MEMORY
config:
Expand Down Expand Up @@ -1193,7 +1188,7 @@ spec:
shared_store: s3
aws:
s3: TO_BE_FIXED
bucketnames: loki
bucketnames: tks-loki
s3forcepathstyle: true
structuredConfig:
limits_config:
Expand Down
11 changes: 6 additions & 5 deletions lma/base/site-values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -173,10 +173,10 @@ charts:
versioning: true
objectlocking: false
customCommands:
- command: ilm rule add --expire-days 90 myminio/thanos
- command: ilm rule add --expire-days 15 myminio/loki
- command: ilm ls myminio/thanos
- command: ilm ls myminio/loki
- command: ilm rule add --expire-days 90 myminio/tks-thanos
- command: ilm rule add --expire-days 15 myminio/tks-loki
- command: ilm ls myminio/tks-thanos
- command: ilm ls myminio/tks-loki
persistence.storageClass: $(storageClassName)
persistence.accessMode: ReadWriteOnce
persistence.size: 20Gi
Expand All @@ -196,7 +196,8 @@ charts:
query.dnsDiscovery.sidecarsService: null
queryFrontend.nodeSelector: $(nodeSelector)
queryFrontend.service.type: NodePort
queryFrontend.service.http.nodePort: 30007
queryFrontend.service.nodePorts.http: 30005

bucketweb.nodeSelector: $(nodeSelector)
compactor.nodeSelector: $(nodeSelector)
storegateway.nodeSelector: $(nodeSelector)
Expand Down
5 changes: 5 additions & 0 deletions policy/base/kustomization.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
resources:
- resources.yaml

transformers:
- site-values.yaml
37 changes: 37 additions & 0 deletions policy/base/resources.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,37 @@
---
apiVersion: helm.fluxcd.io/v1
kind: HelmRelease
metadata:
labels:
name: opa-gatekeeper
name: opa-gatekeeper
spec:
chart:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: gatekeeper
version: 3.13.0
origin: https://open-policy-agent.github.io/gatekeeper/charts
helmVersion: v3
releaseName: opa-gatekeeper
targetNamespace: gatekeeper-system
values:
enableDeleteOperations: true
---
apiVersion: helm.fluxcd.io/v1
kind: HelmRelease
metadata:
labels:
name: policy-resources
name: policy-resources
spec:
chart:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: policy-resources
version: 1.0.0
origin: https://openinfradev.github.io/helm-charts/policy-resources
helmVersion: v3
releaseName: policy-resources
targetNamespace: gatekeeper-system
values: {}
27 changes: 27 additions & 0 deletions policy/base/site-values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
apiVersion: openinfradev.github.com/v1
kind: HelmValuesTransformer
metadata:
name: site

global:
# Specify nodes to install workload
nodeSelector:
taco-lma: enabled
# Specify cluster name. It is useful in multi-cluster env.
clusterName: cluster.local
# Storageclass to install persistant
storageClassName: taco-storage

charts:
- name: opa-gatekeeper
override:
postUpgrade.nodeSelector: $(nodeSelector)
postInstall.nodeSelector: $(nodeSelector)
preUninstall.nodeSelector: $(nodeSelector)
controllerManager.nodeSelector: $(nodeSelector)
audit.nodeSelector: $(nodeSelector)
crds.nodeSelector: $(nodeSelector)

enableDeleteOperations: true

- name: policy-resources
31 changes: 31 additions & 0 deletions service-mesh/base/resources.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -460,6 +460,7 @@ spec:
servers: cassandra-dc-service.tks-msa.svc
keyspace: jaeger_v1_datacenter
cassandraCreateSchema:
image: harbor.taco-cat.xyz/tks/jaeger-cassandra-schema:1.35.0
datacenter: "dc"
mode: "prod"
timeout: "3m"
Expand Down Expand Up @@ -717,3 +718,33 @@ spec:
optimization:
interval: "5s"
wait: true
---
apiVersion: helm.fluxcd.io/v1
kind: HelmRelease
metadata:
labels:
name: gatekeeper
name: gatekeeper
spec:
helmVersion: v3
chart:
type: helmrepo
repository: https://harbor.taco-cat.xyz/chartrepo/tks
name: gatekeeper
version: 0.1.39
origin: https://gogatekeeper.github.io/helm-gogatekeeper
releaseName: gatekeeper
targetNamespace: tks-msa
values:
image:
registry: harbor.taco-cat.xyz
repository: tks/gatekeeper
service:
type: LoadBalancer
config:
discovery-url: https://tks-console-dev.taco-cat.xyz/auth/realms/organization
upstream-url: http://jaeger-operator-jaeger-query.tks-msa.svc:16686
client-id: gatekeeper-jaeger
client-secret: secret
wait: true

18 changes: 17 additions & 1 deletion service-mesh/base/site-values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,9 @@ global:
tks-egressgateway: enabled
ingressGatewayLabel: istio-ingressgateway
egressGatewayLabel: istio-egressgateway
keycloakIssuerUri: https://keycloak.com/auth/realms/oraganization
keycloakClientPrefix: client-prefix
gatekeeperSecret: gatekeeper-secret

charts:
- name: cert-manager
Expand Down Expand Up @@ -96,7 +99,7 @@ charts:
global.hub: $(imageRepo)
global.proxy.clusterDomain: $(clusterName)
global.tracer.zipkin.address: jaeger-operator-jaeger-collector.$(namespace):9411

- name: istio-ingressgateway
override:
revision: ""
Expand Down Expand Up @@ -162,6 +165,11 @@ charts:
options:
servers: cassandra-dc-service.tks-msa.svc
keyspace: jaeger_v1_datacenter
cassandraCreateSchema:
image: harbor.taco-cat.xyz/tks/jaeger-cassandra-schema:1.35.0
datacenter: "dc"
mode: "prod"
timeout: "3m"
dependencies:
enabled: true
image: harbor.taco-cat.xyz/tks/spark-dependencies:1.35.0
Expand Down Expand Up @@ -237,3 +245,11 @@ charts:
namespace: tks-msa
aggregation.interval: "15s"
optimization.interval: "15s"

- name: gatekeeper
override:
config:
discovery-url: $(keycloakIssuerUri)
client-id: $(keycloakClientPrefix)-gatekeeper-jaeger
client-secret: $(gatekeeperSecret)

5 changes: 5 additions & 0 deletions tks-admin-tools/base/kustomization.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
resources:
- resources.yaml

transformers:
- site-values.yaml
Loading