Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

241015 main from release ( v3.2.1 ) #391

Merged
merged 100 commits into from
Oct 15, 2024
Merged

241015 main from release ( v3.2.1 ) #391

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
100 commits
Select commit Hold shift + click to select a range
e5fe75c
Merge pull request #314 from openinfradev/release
ktkfree Nov 8, 2023
d49835f
Merge pull request #324 from openinfradev/main
ktkfree Nov 13, 2023
d51d9ab
policy: add a decapod app for policies
Oct 7, 2023
c3b6dbf
Merge pull request #331 from openinfradev/main
ktkfree Nov 17, 2023
006b1a3
Merge pull request #334 from openinfradev/main
ktkfree Nov 20, 2023
0c6a0ef
Merge pull request #256 from openinfradev/policy-serving
intelliguy Nov 24, 2023
d34689d
Merge pull request #343 from openinfradev/main
ktkfree Jan 15, 2024
d77a761
add missing oidc provider deletion
zugwan Jan 17, 2024
2bdfcd3
feature. change harbor url to harbor.taco-cat.xyz
ktkfree Feb 27, 2024
90aa68b
Merge pull request #344 from openinfradev/remove_eks_oidc_provider
bluejayA Mar 25, 2024
3ee7838
Merge pull request #345 from openinfradev/remove_cicd
bluejayA Mar 25, 2024
1649019
add keycloak setting during importing k8s cluster
cho4036 Apr 11, 2024
d4ea9c8
feature. add policy for creating stack
ktkfree Apr 9, 2024
a8a07d1
app-serving: add missing param 'project_id'
robertchoi80 Apr 15, 2024
5a47810
policy-serving: add cluster cr and tks info on label of the namespace
Mar 4, 2024
8a50c8d
feature. bugfix for eks deletion
ktkfree Apr 15, 2024
6b5eed4
add function to trim whitespace of keycloak secret data
cho4036 Apr 15, 2024
a87ae0e
remove client-role which is replaced with Project concept
cho4036 Apr 15, 2024
1b6a878
Merge pull request #349 from openinfradev/tks-issues-1094
ktkfree Apr 15, 2024
4165f15
add generating user kubeconfig for aws self-managed cluster & eks
cho4036 Apr 15, 2024
9ce8e7e
Merge pull request #346 from openinfradev/policy-serving
ktkfree Apr 16, 2024
7b2381a
Merge pull request #347 from openinfradev/stack_creation
ktkfree Apr 16, 2024
e9902f4
Merge pull request #348 from cho4036/develop
ktkfree Apr 16, 2024
31da450
bugfix. use grafana ep retrieved from loadbalancer
cho4036 Apr 16, 2024
1c59a91
bugfix. use grafana ep retrieved from loadbalancer
cho4036 Apr 16, 2024
103787b
Merge pull request #350 from cho4036/develop
ktkfree Apr 16, 2024
a5b98e5
bugfix. fix grammar error
cho4036 Apr 16, 2024
7037ccc
Merge pull request #351 from cho4036/develop
ktkfree Apr 16, 2024
1a2f8d8
bugfix. fix wrong parameter
cho4036 Apr 16, 2024
46809d6
bugfix. add missing input params
cho4036 Apr 16, 2024
930c0d7
Merge pull request #352 from cho4036/develop
ktkfree Apr 16, 2024
dfd5818
policy: bugfix to find the policy namespace with the organization
Apr 17, 2024
40c24ee
Merge branch 'develop' into policy-serving
ktkfree Apr 17, 2024
6fe4ba9
Merge pull request #353 from openinfradev/policy-serving
ktkfree Apr 17, 2024
99c6f40
policy: bugfix on cluster cr
Apr 17, 2024
1ee619c
Merge pull request #354 from openinfradev/policy-serving
ktkfree Apr 17, 2024
d6d7864
policy: bugfix to find policy namespace
Apr 17, 2024
d8c4ab8
Merge pull request #355 from openinfradev/policy-serving
ktkfree Apr 17, 2024
fc61aef
trivial. fix syntax error
ktkfree Apr 17, 2024
d2fd546
Merge pull request #356 from openinfradev/minor_fix
ktkfree Apr 17, 2024
490aa3f
trivial. use admin kubeconfig for policy workflow
ktkfree Apr 17, 2024
55de508
trivial. bug fix for policy
Apr 17, 2024
822b2a7
Merge pull request #357 from openinfradev/fix_policy
intelliguy Apr 18, 2024
2b1b216
feature. add applying policy step when creating stack
ktkfree Apr 18, 2024
9ba3431
Merge pull request #358 from openinfradev/fix_policy2
ktkfree Apr 18, 2024
33b16e4
trivial. bugfix for creating stack
ktkfree Apr 18, 2024
cce8edb
Merge pull request #359 from openinfradev/fix_policy2
zugwan Apr 18, 2024
c37fb1f
feature. remove policies argo apps when stack deleting
ktkfree Apr 19, 2024
ec0394c
Merge pull request #360 from openinfradev/fix_policy2
intelliguy Apr 19, 2024
7d5f5dc
tirivial. add policy_ids to createCluster workflow
ktkfree Apr 19, 2024
8f2d92a
Merge pull request #361 from openinfradev/fix_policy2
cho4036 Apr 19, 2024
bbea2fc
trivial. fix typo
Apr 19, 2024
cc35c98
Merge pull request #362 from openinfradev/fix_minor
cho4036 Apr 19, 2024
3f762b9
trivial. fix typo
ktkfree Apr 19, 2024
258116b
Merge pull request #363 from openinfradev/fix_typo
cho4036 Apr 25, 2024
45b7755
trivial. fix typo
ktkfree May 3, 2024
6c4ffb9
Merge pull request #366 from openinfradev/fix_typo
ktkfree May 3, 2024
63e653b
feature. fix typo
ktkfree May 3, 2024
b370546
Merge pull request #367 from openinfradev/fix_typo
ktkfree May 3, 2024
0a10c84
add wf for creating/deleteing cluster role resource
cho4036 May 14, 2024
95c562b
add rbac resource setting during create/import usercluster
cho4036 May 14, 2024
0d80688
Merge pull request #368 from openinfradev/develop
ktkfree May 17, 2024
e54ed49
remove keycloak client wf so that tks-api will handle it
cho4036 May 17, 2024
8206019
add multi-tenancy config on setting of eks oidc provider
cho4036 May 20, 2024
7123aa1
bugfix.
cho4036 May 20, 2024
6da23d9
trivial. remove test code
ktkfree May 20, 2024
72220e7
Merge pull request #370 from openinfradev/fix_typo
ktkfree May 20, 2024
5b474b3
Merge pull request #371 from cho4036/multi-tenancy
ktkfree May 20, 2024
8d1e1b4
Merge pull request #369 from cho4036/cluster-admin
ktkfree May 20, 2024
02485ce
trivial. add deletepolicy to iam role
ktkfree May 20, 2024
4124c6d
Merge pull request #372 from openinfradev/fix_typo
zugwan May 20, 2024
ae12015
Merge pull request #373 from openinfradev/develop
ktkfree May 21, 2024
7c24ae8
Merge pull request #374 from openinfradev/release
ktkfree May 23, 2024
5e659bb
feature. add step for unsetting policy crs
ktkfree May 23, 2024
699f13b
Merge pull request #375 from openinfradev/policy
ktkfree May 27, 2024
0e9c500
Merge pull request #376 from openinfradev/release
ktkfree Jun 4, 2024
257c3bc
user-logging: add loki for non-platform-logs as loki-user
Jun 24, 2024
d00dcb7
Merge pull request #377 from openinfradev/user-logging
intelliguy Jun 25, 2024
3f8bf83
trivial. change admin cluster name on dev environment
ktkfree Jun 25, 2024
e77a064
Merge pull request #378 from openinfradev/develop_fix
intelliguy Jun 25, 2024
49f1c6a
user logging: add installation for loki-user
Jun 25, 2024
1dd8e14
Merge pull request #379 from openinfradev/user-logging
intelliguy Jun 25, 2024
78967db
user logging: add installation for loki-user
Jun 25, 2024
19b7bff
Merge pull request #380 from openinfradev/user-logging
intelliguy Jun 25, 2024
9f5a55b
feature. create tks-endpoint-secret when cluster creating
ktkfree Jul 8, 2024
8efefdf
Merge pull request #381 from openinfradev/resume
ktkfree Jul 17, 2024
023267d
feature. add endpoint secret creation step when importing
ktkfree Jul 17, 2024
8cf7b38
feature. implementation import stack
ktkfree Jul 17, 2024
c76ec47
Merge pull request #382 from openinfradev/byok1
ktkfree Aug 26, 2024
82efcbb
trivial. rename base branch name for creating contract
Aug 28, 2024
5f3ca4a
Merge pull request #384 from openinfradev/git_tag
zugwan Aug 29, 2024
09ef59b
trivial. change max timeout when byoh creating
ktkfree Sep 9, 2024
bea2761
trivial. add secret loki-user to tks-enndpoint-secret
ktkfree Sep 9, 2024
1fb68e7
Merge pull request #385 from openinfradev/domain
zugwan Sep 9, 2024
1847681
lma-primary: update logic for object store
Sep 9, 2024
58269f0
Merge pull request #387 from openinfradev/object-store
ktkfree Sep 10, 2024
2c82bce
Merge pull request #388 from openinfradev/develop
ktkfree Oct 2, 2024
4028d21
bugfix. change kcp name CLUSTERID_control_plane to CLUSTERID
ktkfree Oct 2, 2024
bb65cae
Merge pull request #389 from openinfradev/release_fix1
ktkfree Oct 2, 2024
9fbba54
Merge pull request #390 from openinfradev/develop
ktkfree Oct 2, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 10 additions & 3 deletions app_serving/abort-java-app.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,8 @@ spec:
value: ""
- name: organization_id
value: "ose4j7p39"
- name: strategy
value: "blue-green"
- name: project_id
value: ""
# tks_info service URL
- name: tks_api_url
value: "http://tks-api.tks.svc:9110"
Expand All @@ -37,6 +37,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -57,6 +59,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -78,6 +82,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -96,6 +102,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand Down Expand Up @@ -131,7 +139,6 @@ spec:
ABORT_LOG='/mnt/out/abort_output.log'
app_name={{workflow.parameters.app_name}}
ns={{workflow.parameters.namespace}}
strategy={{workflow.parameters.strategy}}

# Prepare kubeconfig
echo "Preparing kubeconfig for target cluster..." | tee -a $ABORT_LOG
Expand Down
10 changes: 9 additions & 1 deletion app_serving/delete-java-app.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,9 @@ spec:
- name: asa_task_id
value: ""
- name: organization_id
value: "ose4j7p39"
value: ""
- name: project_id
value: ""
- name: tks_api_url
value: "http://tks-api.tks.svc:9110"

Expand All @@ -34,6 +36,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -54,6 +58,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -72,6 +78,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand Down
10 changes: 10 additions & 0 deletions app_serving/promote-java-app.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,8 @@ spec:
value: ""
- name: organization_id
value: "ose4j7p39"
- name: project_id
value: ""
- name: strategy
value: "blue-green"
# tks_info service URL
Expand All @@ -37,6 +39,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -57,6 +61,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -78,6 +84,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -96,6 +104,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand Down
10 changes: 10 additions & 0 deletions app_serving/rollback-java-app.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,8 @@ spec:
parameters:
- name: organization_id
value: "ose4j7p39"
- name: project_id
value: ""
- name: target_cluster_id
value: "C011b88fa"
- name: app_name
Expand Down Expand Up @@ -37,6 +39,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -57,6 +61,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -75,6 +81,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -93,6 +101,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand Down
22 changes: 20 additions & 2 deletions app_serving/serve-java-app.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,9 +24,11 @@ spec:
- name: app_type
value: "springboot"
- name: target_cluster_id
value: "cmibsrdnq"
value: ""
- name: organization_id
value: "ose4j7p39"
value: ""
- name: project_id
value: ""
- name: app_name
value: "spring-petclinic"
- name: namespace
Expand Down Expand Up @@ -106,6 +108,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -123,6 +127,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -140,6 +146,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -162,6 +170,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -182,6 +192,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -199,6 +211,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -219,6 +233,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand All @@ -238,6 +254,8 @@ spec:
parameters:
- name: organization_id
value: "{{workflow.parameters.organization_id}}"
- name: project_id
value: "{{workflow.parameters.project_id}}"
- name: asa_id
value: "{{workflow.parameters.asa_id}}"
- name: asa_task_id
Expand Down
1 change: 1 addition & 0 deletions cloud-accounts/aws-multi-tenancy-iam-resources.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,7 @@ spec:
- \"iam:TagOpenIDConnectProvider\"
- \"iam:CreatePolicy\"
- \"iam:GetPolicy\"
- \"iam:DeletePolicy\"
- \"iam:AttachRolePolicy\"
- \"iam:DetachRolePolicy\"
- \"iam:CreateRole\"
Expand Down
48 changes: 10 additions & 38 deletions deploy_apps/tks-lma-federation-wftpl.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ spec:
- name: console_url
value: "https://tks-console-dev.taco-cat.xyz"
- name: alert_tks
value: "https://tks-api-dev.taco-cat.xyz/system-api/1.0/alerts"
value: "https://tks-api-dev.taco-cat.xyz/system-api/1.0/system-notifications"
- name: alert_slack
value: "https://hooks.slack.com/services/fixme"
##########################
Expand All @@ -46,9 +46,6 @@ spec:
value: ""

volumes:
- name: tks-proto-vol
configMap:
name: tks-proto
- name: kubeconfig-adm
secret:
secretName: tks-admin-kubeconfig-secret
Expand Down Expand Up @@ -169,12 +166,16 @@ spec:
value: "{{ workflow.parameters.github_account }}/{{workflow.parameters.cluster_id}}"
when: "{{steps.update-auth-oidc-grafana.outputs.parameters.is_changed}} == YES"

- - name: argocd-sync-wait
template: argocd-sync-wait
- - name: garafana-sync-wait
templateRef:
name: create-application
template: argocd-sync-wait
arguments:
parameters:
- name: cluster_id
value: '{{workflow.parameters.cluster_id}}'
- name: appname
value: 'grafana'

- - name: grafana-restart
template: grafana-restart
Expand Down Expand Up @@ -312,9 +313,9 @@ spec:
sleep 5
done

grafana_ep_secret=$(kubectl get secret -n ${cluster_id} tks-endpoint-secret -o jsonpath='{.data.grafana}'| base64 -d )

if [[ ${grafana_ep_secret} == "" ]]; then
grafana_ep_secret=$(kubectl get secret -n ${cluster_id} tks-endpoint-secret -o jsonpath='{.data.grafana}'| base64 -d ) || grafana_ep_secret=""
if [ "$grafana_ep_secret" == "" ]; then
while [ -z $(kubectl --kubeconfig=kubeconfig get svc -n lma grafana -o jsonpath="{.status.loadBalancer.ingress[*].hostname}") ]; do
if [[ "$(kubectl --kubeconfig=kubeconfig get svc -n lma grafana -o jsonpath='{.spec.type}')" != "LoadBalancer" ]]; then
log "FAIL" "A service for the grafana in ${cluster_id} is not configured properly.(No LoadBalancer)"
Expand Down Expand Up @@ -447,35 +448,6 @@ spec:
path: /mnt/out/changed.txt
default: "NO"

- name: argocd-sync-wait
inputs:
parameters:
- name: cluster_id
container:
name: argocd-sync-wait
image: harbor.taco-cat.xyz/tks/argocd-cli:v2.2.5
command:
- /bin/bash
- '-c'
- |
# log into Argo CD server
./argocd login $ARGO_SERVER --plaintext --insecure --username $ARGO_USERNAME \
--password $ARGO_PASSWORD

app_name={{inputs.parameters.cluster_id}}-grafana

# sync app
echo "sync app $app_name"
./argocd app sync $app_name

# wait for sync
./argocd app wait $app_name --sync

envFrom:
- secretRef:
name: "decapod-argocd-config"
activeDeadlineSeconds: 900

- name: grafana-restart
inputs:
parameters:
Expand Down
Loading
Loading