Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

common automatic update #272

Merged
merged 40 commits into from
Sep 6, 2024
Merged

common automatic update #272

merged 40 commits into from
Sep 6, 2024

Conversation

mbaldessari
Copy link
Contributor

  • Allow originRepo to be set via make install and main.git parameters
  • resolves Eliminate out-of-sync conditions #21 rag-llm-gitops
  • Fix vars that were erroneously dropped
  • Allow more flexibility with multiSourceConfig schema
  • Inject VALUES_SECRET env var
  • Add helmRepoUrl variable
  • Update letsencrypt to v0.1.1
  • Allow overriding gitops source on spokes
  • Update acm chart to v0.1.1
  • Update clustergroup chart to 0.8.11
  • Extend the schema for disconnected
  • Update clustergroup chart to 0.8.12
  • Update super-linter to v7
  • Fix action path
  • Fix action path v2
  • Upgrade ESO to v0.10.0
  • Upgrade vault to 1.17.3
  • Update hashicorp-vault to 0.1.2
  • Update golang-external-secrets to 0.1.2
  • Switch to gitops-1.13
  • Add a pushsecrets policy and vault path for ESO syncing
  • Fix PyInk warnings
  • Update tests after common rebase

mbaldessari and others added 30 commits August 8, 2024 11:55
@mbaldessari
Allow originRepo to be set via make install and main.git parameters
ec340b1 
We introduce the `main.git.repoUpstreamURL` parameter. This can be used
to set `originRepo`.

When `originRepo` is set, an in-cluster gitea will automatically be spawned.
In this case `originRepo` will point to the upstream repository and `targetRepo`
will point to the internal in-cluster gitea mirror.
@day0hero
resolves validatedpatterns#21 rag-llm-gitops
73313cb
@mbaldessari
Merge pull request #564 from day0hero/ragllm-pr21
af69b30 
resolves validatedpatterns#21 rag-llm-gitops
@mbaldessari
Merge pull request #563 from mbaldessari/main-gitea
9142471 
Allow originRepo to be set via make install and main.git parameters
@mbaldessari
Fix vars that were erroneously dropped
99bc297 
In 98d4312 (Fix pki bind mount when
using podman machine) we erroneously dropped some K8S_* variables.

Reported-by: Andrew Beekhof <beekhof@redhat.com>
@darkdoc
Merge pull request #565 from mbaldessari/fix-vars
0ec7cc6 
Fix vars that were erroneously dropped
@mbaldessari
Allow more flexibility with multiSourceConfig schema
58b6958 
We specifically also add helmRepoUrl as it make it more discoverable,
but we stay flexible in what we accept so that things can be extended
without having to be in lockstep with the operator.
@mbaldessari
Merge pull request #566 from mbaldessari/extend-multisource-schema
4544bc6 
Allow more flexibility with multiSourceConfig schema
@mbaldessari
Inject VALUES_SECRET env var
3c28c4b 
Since it can be used to point to an alternative file, let's inject it
into the container
@mbaldessari
Merge pull request #567 from mbaldessari/values_secret
5f4cf89 
Inject VALUES_SECRET env var
@mbaldessari
Add helmRepoUrl variable
7ed4d1e
@mbaldessari
Merge pull request #568 from mbaldessari/helmrepourl
4e3505c 
Add helmRepoUrl variable
@mbaldessari
Update letsencrypt to v0.1.1
9ec9af0
@mbaldessari
Merge pull request #569 from mbaldessari/letsencrypt-test
6617090 
Update letsencrypt to v0.1.1
@mbaldessari
Allow overriding gitops source on spokes
5ec42ac 
This is needed on spokes when installing in a disconnected environment
@mbaldessari
Update acm chart to v0.1.1
e6511e7
@mbaldessari
Update clustergroup chart to 0.8.11
1a5cce8
@mbaldessari
Merge pull request #570 from mbaldessari/some-updates
741a52e 
A couple of small updated and new releases
@mbaldessari
Extend the schema for disconnected
9ccd486
@mbaldessari
Merge pull request #571 from mbaldessari/relax-schema-for-gitops
654dbae 
Extend the schema for disconnected
@mbaldessari
Update clustergroup chart to 0.8.12
b3cef81
@mbaldessari
Merge pull request #572 from mbaldessari/clustergroup-0.8.12
96c428d 
Update clustergroup chart to 0.8.12
@mbaldessari
Update super-linter to v7
a8d7f94
@mbaldessari
Fix action path
3fbf2e8
@mbaldessari
Fix action path v2
97b9589
@mbaldessari
Merge pull request #573 from mbaldessari/super-linter-new
02bfd1f 
Update super-linter to v7
@mbaldessari
Upgrade ESO to v0.10.0
55beff3
@mbaldessari
Merge pull request #574 from mbaldessari/eso-0.10.0
6cd5b50 
Upgrade ESO to v0.10.0
@mbaldessari
Upgrade vault to 1.17.3
bd74dba
@mbaldessari
Merge pull request #575 from mbaldessari/vault-1.17.3
f8921c3 
Upgrade vault to 1.17.3
mbaldessari and others added 10 commits August 26, 2024 11:31
@mbaldessari
Update hashicorp-vault to 0.1.2
c7105bc
@mbaldessari
Update golang-external-secrets to 0.1.2
86ad342
@mbaldessari
Merge pull request #576 from mbaldessari/hashicorp-vault-0.1.1
29d9d0a 
Release new hashicorp-vault and golang-external-secrets charts
@mbaldessari
Switch to gitops-1.13
fc3fb1f 
It is supported all the way back to OCP 4.12

Tested on sno hub + spoke successfully
@mbaldessari
Merge pull request #577 from mbaldessari/gitops-1.13-support
0a20ea6 
Switch to gitops-1.13
@mbaldessari
Add a pushsecrets policy and vault path for ESO syncing
051cd8c 
See the README for more details, but TLDR: you can use
`secret/pushsecrets` to push secrets from any node to the vault.
This secret can then be retrieved from either a different namespace
or a different cluster node.

Tested this with a pushsecret as follows:
```
apiVersion: external-secrets.io/v1alpha1
kind: PushSecret
metadata:
  name: pushsecret
  namespace: hello-world
spec:
  data:
    - conversionStrategy: None
      match:
        remoteRef:
          property: baz
          remoteKey: pushsecrets/testme
        secretKey: bar
  deletionPolicy: Delete
  refreshInterval: 10s
  secretStoreRefs:
    - kind: ClusterSecretStore
      name: vault-backend
  selector:
    secret:
      name: existing-secret
  updatePolicy: Replace
```

The above takes the property called `baz` of an existing secret called `existing-secret` in
the `hello-world` namespace and pushes it to the `secret/pushsecrets/testme` vault path.

Suggested-By: Chris Butler <chbutler@redhat.com>

Closes: MBP-641
@mbaldessari
Fix PyInk warnings
9aef778
@mhjacks
Merge pull request #579 from mbaldessari/push-secrets
5acb722 
Add a pushsecrets policy and vault path for ESO syncing
@mbaldessari
Merge remote-tracking branch 'common-upstream/main' into common-autom…
39d3942 
…atic-update
@mbaldessari
Update tests after common rebase
625c3a7
@mbaldessari mbaldessari merged commit 144147d into validatedpatterns:main Sep 6, 2024
1 of 2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@mbaldessari @day0hero @darkdoc @mhjacks