Azure
/
ARO-RP
зеркало из https://github.com/Azure/ARO-RP.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
3 219 коммитов 227 Ветки 194 Теги 230 MiB
Граф коммитов

181 Коммитов

Автор SHA1 Сообщение Дата
Jim Minter 7e24cdfb81
enable 'make deploy in development mode' 2021-04-22 10:27:10 -05:00
Ivan Sim 5eb56f7ed3
Add IFxAudit Logging To Admin Portal (#1411) 
* Add ifxaudit logging to admin portal

Signed-off-by: Ivan Sim <isim@redhat.com>

* Update comment in test

Signed-off-by: Ivan Sim <isim@redhat.com>
 2021-04-20 10:01:06 +01:00
Mangirdas Judeikis 58fd2f4b79
Merge pull request #1348 from m1kola/aro_clusteroperator 
Skeleton for blocking cluster updates via clusteroperator status
 2021-04-15 07:56:57 +01:00
bennerv 444aaca867 Operator: Expose SP Cred validity as a condition in aro cluster cr 2021-04-14 15:35:32 -04:00
Mikalai Radchuk 1d02b4f6c2 Adds ARO cluster operator reconciler 2021-04-14 13:45:16 +01:00
Jim Minter 10554999eb
remove pkg/util/deployment and revert to isDevelopment bool 2021-04-08 09:12:13 -05:00
Jim Minter 9177d18c85
remove unused RP_VERSION environment variable 2021-04-07 13:07:38 -05:00
Naveen Malik b76aeffbf0 Removed uuid facade recently added. 
The facade was inconsistently used and was replicating what was already
in uuid.Must(...)
 2021-04-01 10:23:03 -04:00
Naveen Malik d5c35ca3c5 Move from github.com/satori/go.uuid to github.com/gofrs/uuid 
Why: https://www.whitesourcesoftware.com/vulnerability-database/WS-2018-0594

Requires updating azure-sdk-for-go, moved to latest release
Created wrapper util for gofrs/uuid as NewV4() now returns 2 args and we use it a lot in-line

Vendor updates coming in separate commit to keep this one clean.

There is no v1.2.1 tag for these repos on github.com.
A replace was added for these to 'master'.
Running `go mod vendor` updated the value from 'master' to what you see
in go.mod now.
The v0.0.0 versions needed excluded to get them to drop from go.sum.
Do not exlude v1.2.0 or dependencies cannot be resolved.
 2021-03-30 17:13:29 -04:00
bennerv 275ba5032c Add 'latest' option to mirroring script 2021-03-25 12:45:12 -04:00
Jim Minter 2197765f0f
Revert "Add ARO operator status condition with Red Hat key presence info" 2021-03-24 13:55:03 -06:00
Mangirdas Judeikis 2fac92d8d2
Merge pull request #1347 from petrkotas/aro-operator-rh-key-condition 
Add ARO operator status condition with Red Hat key presence info
 2021-03-22 08:59:43 +00:00
Petr Kotas 4e41e3ea5c
Add Red Hat Key condition to operator 
Introduce ARO operator condition which
signals one of:
 - cloud.redhat.io
 - registry.redhat.io
keys presence in pull-secret.

Full list of present conditions is displayed
as a message.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-03-18 16:08:53 +01:00
Leszek Jakubowski 82db406c15 Manual location override for INT env 2021-03-16 09:05:51 +01:00
Jim Minter 1effb3850f
sync additional geneva/rhel images on single-shot mode to make it easier to stand up an ACR 2021-03-11 18:19:52 -06:00
Jim Minter 4f5b13726d
add node drainer 2021-03-09 12:21:57 -06:00
Jim Minter 043718e577
separate SaveVersion from UpgradeRP 2021-03-08 10:27:50 -06:00
Jim Minter c31d8ed0c1
noop rename Deploy -> DeployRP, Upgrade -> UpgradeRP 2021-03-08 10:27:39 -06:00
Jim Minter d68fda1888
noop fixup imports 2021-03-02 13:17:01 -06:00
Jim Minter 5c5c0d2dc5
remove fullDeploy 2021-02-23 19:34:27 -06:00
Jim Minter 6a09db1993
add dnsmasq controllers 2021-02-23 11:38:51 -06:00
Jim Minter a998cf66a5
Merge pull request #1287 from nilsanderselde/govcloud-continued-2 
govcloud enablement, continued
 2021-02-10 12:03:49 -06:00
Nils Elde 70ef1bef53 cloud awareness 2021-02-10 10:20:03 -05:00
Jim Minter a452396af6
move *KeyVaultSuffix to env 2021-02-09 08:52:28 -06:00
Jim Minter 66f6695731
Merge pull request #1294 from jim-minter/genevaauth 
remove SRC_AUTH_GENEVA: anonymous read is now enabled
 2021-02-08 09:12:48 -06:00
Jim Minter d36292ebce
remove SRC_AUTH_GENEVA: anonymous read is now enabled 2021-02-05 16:48:37 -06:00
Ivan Sim a6ef29638f
Collect Audit Logs From RP Frontend (#1243) 
* Update RP frontend to collect audit logs

1. Add a new middleware to audit inbound requests
2. Requests to the Azure 'operationsstatus' endpoints are skipped
3. Remove the embedded 'env' from the audit log hook to decouple the
   dependency. The 'env' is passed in to the Audit middleware
4. Replace unnecessary custom string types with basic string types
5. Update the testutil 'AssertLoggingOutput' method to skip asserting
   audit logs to reduce flakiness in tests. Audit logs assertion is done
   in a new 'audit.AssertAuditingOutput()' testutil method

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Troy's feedback

Signed-off-by: Ivan Sim <isim@redhat.com>

* Update fluent-bit config with rewrite_tag filter

This filter rewrites the input tag of journald logs that have the field
LOGKIND=ifxaudit, to ifxaudit. Using a different tag for ifxaudit logs
allows us to separate them from non-audit logs in the mdsd
configuration.

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Jim's feedback

Signed-off-by: Ivan Sim <isim@redhat.com>

* New changes per discussion with Jim

1. Merge the 'audit' middleware with the 'log' middleware
to avoid type assertions
3. Update security_test.go with audit test
4. Remove pointer reference to audit constructor
5. Add new audit log entry to testinfra struct

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address MJ's feedback

1. Add unit test to test supported URL patterns

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Jim's feedback

1. Move adminOp 'if' conditional to log middleware
2. Extract out the 'if' conditional check into a helper function
3. Add start and end symbols to new regex expressions

Signed-off-by: Ivan Sim <isim@redhat.com>
 2021-02-04 11:09:06 +00:00
Jim Minter 454a93ab72
pass enriched log to enrichers 2021-01-25 10:58:56 -06:00
Nils Elde a33bd7173f split k8s and az actions 2021-01-13 15:26:18 -05:00
Jim Minter 5cf4ea12cd
remove unused error return 2021-01-04 09:13:40 -06:00
Mangirdas Judeikis 8a2771c351
Merge pull request #1233 from mjudeikis/add.operator.feature.flag 
Add feature gate to operator
 2020-12-18 08:34:38 -02:00
Mangirdas Judeikis f9fe54d8cf
Add feature gate to operator 2020-12-17 12:00:08 +00:00
Jim Minter 7a14788cea
renames: 
cipher -> aead
  encrypt/decrypt -> seal/open
  aeadCipher -> xChaCha20Poly1305
 2020-12-14 11:18:57 -06:00
Jim Minter f9b8cda775
emit metrics for portal queries 2020-12-09 16:22:51 -06:00
Jim Minter 9e5c4f8930
portal initial commit 2020-12-09 16:22:51 -06:00
Jim Minter cb44296ca2
add system:aro-sre clusterrole and clusterrolebinding 2020-12-09 16:22:50 -06:00
Jim Minter 4780834e9c
Merge pull request #1191 from mjudeikis/api.kickoff 
2021-01-31 kickoff
 2020-12-04 11:50:43 -06:00
Mangirdas Judeikis e2684b0a65
Fix CI 2020-12-04 09:31:46 -06:00
Mangirdas Judeikis c19f4111cd
2020-10-31-preview -> 2021-01-31-preview 2020-12-02 12:08:47 -06:00
Troy Connor 517c524b86
operator: livenessProbe on aro-master operator pod 2020-12-02 09:20:32 -05:00
Jim Minter 11259cbb49
allow mirror tool to mirror single (e.g. hotfix) releases 2020-11-30 16:50:29 -06:00
Jim Minter 2b23c6fa33
fixups 2020-11-25 18:33:18 -06:00
Nils Elde f685abb2d4 add NewCoreForCI 2020-11-25 16:24:55 -05:00
Nils Elde e46c49b015 use values for current cloud env 2020-11-25 10:51:35 -05:00
Olga Mirensky 186aaf1757 Add monitoring controller to configure prometheus to persist data 2020-11-20 15:52:43 +11:00
Jim Minter 17d4f2d663
remove key vault autodiscovery 2020-11-19 07:54:22 -06:00
Jim Minter c2888e0dab
remove service keyvault from env.Core 2020-11-19 07:54:22 -06:00
Jim Minter e80ffcffbf
remove env.GetBase64Secret from pkg/util/encryption 2020-11-19 07:53:25 -06:00
Nils Elde f9b9135ce8 try to improve some names; return exported types 2020-11-13 16:34:33 -05:00
Nils Elde a4c2278be0 Initial changes to allow cloud awareness 2020-11-13 11:43:28 -05:00