Azure
/
ARO-RP
зеркало из https://github.com/Azure/ARO-RP.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
6 655 коммитов 229 Ветки 194 Теги 231 MiB
Граф коммитов

358 Коммитов

Автор SHA1 Сообщение Дата
Amber Brown 7e88099964 Add an Operator controller for Managed Upgrade Operator 2022-02-25 11:23:07 +00:00
Peter Kostyukov 7b68ab7aac Addressing feedback 
FIx
 2022-02-23 13:32:37 -06:00
Mangirdas Judeikis c1662ed7d9 add operator storage acc and endpoints reconcilers 2022-02-15 13:17:54 -06:00
Mikalai Radchuk cba69e401b Feedback follow up on image config controller 2022-02-09 11:41:59 +00:00
Karan.Magdani 3bab8855a9 imageconfig controller 2022-02-02 17:31:10 +00:00
bennerv c857fddf3b Start reading release graph for mirroring to 4.6 2021-12-17 14:47:52 -05:00
Petr Kotas a8f7ff5570 Move health probe to manager 
Remove the http server and utilizes builtin http
health probes in manager

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-11-23 09:19:13 +00:00
Amber Brown ce0c6551e4 fix code drift 2021-11-08 12:45:41 +11:00
Brett Embery 03cd88e983 Added listening address to debug during portal startup 2021-11-08 12:45:41 +11:00
Amber Brown d50ed565cd Changes for the front-end to run 2021-11-08 12:45:41 +11:00
Amber Brown db8ebd388e
Merge pull request #1467 from nilsanderselde/crypto2 
feat: Enable DB to use AEAD_AES_256_CBC_HMAC_SHA_512
 2021-10-11 10:58:00 +11:00
Drew Anderson d61fd1609f Ensure build tag "aro" is present 
make runlocal-rp
Fail run and use Tests to report -tags status
Updated doc
 2021-09-30 16:45:59 +01:00
Matt Woodson 183423e2f6 added a 'doNotMirrorTags' map to skip un-mirrorable versions 2021-09-13 18:11:41 -04:00
Jim Minter 9b3c4383a4 add encryption.multi 2021-09-10 11:26:20 -04:00
Jim Minter 6aecbe085a add GetBase64Secrets 2021-09-10 11:26:20 -04:00
Mangirdas Judeikis 853a637c38
refactor subnet operator side 2021-09-06 11:03:56 +01:00
Petr Kotas b8c064bc1a Extract certificateRefresher timer out 
enables ticker mocking by extracting the timer out of the refresher.
with extracted timer, mock is added int he tests, enabling exact steps
as required per test.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-08-26 11:23:01 +01:00
bennerv 2768de54cb Add ose-tools to mirroring if registry.redhat.io pull secret not present 2021-08-23 14:37:24 -04:00
Caden Marchese 8846c9c2af Add new operator controller MachineSet, tests, e2e 2021-08-23 14:27:03 +01:00
Leszek Jakubowski d73e128386
Adding ARO SRE notification banner controller (#1589) 2021-08-23 12:23:37 +01:00
Jim Minter 4006cf08a7 add missing heartbeat metrics 2021-08-19 10:36:46 -04:00
Jim Minter dc1d2efacd add refresher metric 2021-08-19 10:36:46 -04:00
Jim Minter fb0ff700c8 rename Ready->HasSyncedOnce for clarity 2021-08-19 10:36:45 -04:00
Jim Minter 0fa9287010 add basic gateway metrics 2021-08-19 10:36:45 -04:00
Jim Minter fcc0db8cf0 forward Go prometheus metrics to MDM 2021-08-19 10:36:45 -04:00
Jim Minter ed319c139b update rp 2021-08-19 10:30:29 -04:00
Jim Minter 91d6a55e8e add gateway 2021-08-19 10:21:09 -04:00
bennerv 7ffd4b5dcd Add DBTOKEN_CLIENT_ID to RP config 2021-07-28 09:44:32 -04:00
Petr Kotas 72b26b18ca Add CertificateRefresher 
Wraps around KeyvaultManager.GetCertificateSecret and
acts and simple poller. Refreshes certificates in regular
intervals, when error happens, it is logged and old
certificate is preserved.

If certificate is already rotated azure-wise the RP will
fail to authenticate, and there will be mention in the logs
about the error.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-07-20 06:30:49 -07:00
Mangirdas Judeikis 6ba3d3b1bd
rename 20210131 -> 20210901 2021-07-20 12:15:25 +01:00
Nils Elde 73a7c9aff2 standardize names/order in ARO operator 2021-07-16 13:23:16 -04:00
Stephane Erbrech d1cec63767 use oidc v2.0 issuer 
RP startup errors out with

oidc: issuer did not match the issuer returned by provider, expected "https://login.microsoftonline.us/cab8a31a-1906-4287-a0d8-4eef66b95f6e/" got "https://sts.windows.net/cab8a31a-1906-4287-a0d8-4eef66b95f6e/"
this is because we use "https://login.microsoftonline.us" (comes from autorest environment config) but we compare it with the issuer advertised by the v1 well-known openid config endpoint :
V1 :
https://login.microsoftonline.us/cab8a31a-1906-4287-a0d8-4eef66b95f6e/.well-known/openid-configuration
returns issuer as https://sts.windows.net/cab8a31a-1906-4287-a0d8-4eef66b95f6e/

V2:
https://login.microsoftonline.us/cab8a31a-1906-4287-a0d8-4eef66b95f6e/v2.0/.well-known/openid-configuration
returns issuer as https://login.microsoftonline.us/cab8a31a-1906-4287-a0d8-4eef66b95f6e/v2.0 as expected
 2021-07-15 17:14:52 +10:00
Mangirdas Judeikis 60938a9ae5
Merge pull request #1505 from cadenmarchese/machine-controller 
Replace existing machine checker with new operator controller Machine
 2021-07-13 09:24:34 +01:00
Mangirdas Judeikis 03783bfe71
Feature flags (#1579) 
* Add Feature flag for alertwebhook

* Add feature flag DNSMasq

* Add feature flag Geneva Logging

* Add feature flag to monitoring config

* Add feature flag for node drainer

* Add feature flag for secrets

* Add feature flag for routefix

* Add workarounds controller flags
 2021-07-12 16:31:23 +01:00
Mangirdas Judeikis 7f5f60fa44
Fixup routefix for 4.7.15+ 2021-07-05 10:03:50 +01:00
Caden Marchese 0ec1357b8d Remove machinechecker, add new controller Machine 2021-06-24 14:55:38 -04:00
Nils Elde cbce001bc1 Make hardcoded domains cloud-aware 2021-06-24 10:19:18 -04:00
mikeandescavage 59bcf6022b
Update mirroring to infer geneva images from environment variables (#1539) 
Checks for full image overrides for Geneva's MDM and MDSD images. In certain scenarios, it cannot be programmatically determined based on environment and other variables. This also affords the team to update end-points without the need to recompile code.
 2021-06-11 14:25:28 -04:00
mikeandescavage 2f981448ff
Update cmd/aro/mirror.go 
I'll commit your suggestion.  Reasoning why I went this route is because `srcAuthGeneva` is a very specific var name.  Adding the if/else makes it more human readable, but the end-result is still the same.

Co-authored-by: Nils Elde <nils.elde@gmail.com>
 2021-06-02 12:32:05 -07:00
Michael Andescavage e543e85ba9 Update to mirror to check for env var for geneva 2021-06-02 11:15:17 -07:00
Leszek Jakubowski 144606bb00 adding NSG controller in ARO Operator 2021-05-31 11:22:00 +02:00
Nils Elde 19ba912163 allow geneva src acr override 2021-05-26 16:33:28 -04:00
Mangirdas Judeikis 125b928c98
Merge pull request #1493 from bennerv/gateway-prereqs 
Gateway prereqs
 2021-05-12 16:04:00 +03:00
Mangirdas Judeikis 4fc49285fb
Hack EV2 for GovCloud 2021-05-12 11:14:21 +01:00
Jim Minter 7dde80a432 remove NewMSIAuthorizer call from pkg/database 2021-05-11 11:48:19 -04:00
Jim Minter dc1c23f046 generalise rpauthorizer to msiauthorizer 2021-05-11 11:48:19 -04:00
Troy Connor ea8fe560a6
mirror: Allow image mirroring to UsGovernmentCloud 2021-05-10 16:03:01 -04:00
Mangirdas Judeikis a1b174bbef
Merge pull request #1425 from petrkotas/aro-rh-key-state 
Signal Red Hat keys presence in the cluster.status
 2021-04-28 11:28:29 +01:00
Jim Minter e61efa5666
add cmd/dbtoken 2021-04-26 15:22:21 -05:00
Jim Minter 2a869d0671
move Verifier to pkg/util/oidc 2021-04-26 13:56:50 -05:00
Jim Minter 31fbebea89
update NewDatabaseClient to new go-cosmosdb API 2021-04-26 13:56:49 -05:00
Jim Minter 81229ae196
for clarity, rename IsDevelopmentMode -> IsLocalDevelopmentMode 2021-04-23 10:25:46 -05:00
Jim Minter 7e24cdfb81
enable 'make deploy in development mode' 2021-04-22 10:27:10 -05:00
Petr Kotas 73484fdf3c
Add Red Hat keys list to cluster.status 
Add a checks that parses pull-secret from openshift-config
namespace and extracts the list of present Red Hat keys.
Keys are presented in a cluster.status.RedHatKeysPresent field.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-04-22 16:24:39 +02:00
Ivan Sim 5eb56f7ed3
Add IFxAudit Logging To Admin Portal (#1411) 
* Add ifxaudit logging to admin portal

Signed-off-by: Ivan Sim <isim@redhat.com>

* Update comment in test

Signed-off-by: Ivan Sim <isim@redhat.com>
 2021-04-20 10:01:06 +01:00
Mangirdas Judeikis 58fd2f4b79
Merge pull request #1348 from m1kola/aro_clusteroperator 
Skeleton for blocking cluster updates via clusteroperator status
 2021-04-15 07:56:57 +01:00
bennerv 444aaca867 Operator: Expose SP Cred validity as a condition in aro cluster cr 2021-04-14 15:35:32 -04:00
Mikalai Radchuk 1d02b4f6c2 Adds ARO cluster operator reconciler 2021-04-14 13:45:16 +01:00
Jim Minter 10554999eb
remove pkg/util/deployment and revert to isDevelopment bool 2021-04-08 09:12:13 -05:00
Jim Minter 9177d18c85
remove unused RP_VERSION environment variable 2021-04-07 13:07:38 -05:00
Naveen Malik b76aeffbf0 Removed uuid facade recently added. 
The facade was inconsistently used and was replicating what was already
in uuid.Must(...)
 2021-04-01 10:23:03 -04:00
Naveen Malik d5c35ca3c5 Move from github.com/satori/go.uuid to github.com/gofrs/uuid 
Why: https://www.whitesourcesoftware.com/vulnerability-database/WS-2018-0594

Requires updating azure-sdk-for-go, moved to latest release
Created wrapper util for gofrs/uuid as NewV4() now returns 2 args and we use it a lot in-line

Vendor updates coming in separate commit to keep this one clean.

There is no v1.2.1 tag for these repos on github.com.
A replace was added for these to 'master'.
Running `go mod vendor` updated the value from 'master' to what you see
in go.mod now.
The v0.0.0 versions needed excluded to get them to drop from go.sum.
Do not exlude v1.2.0 or dependencies cannot be resolved.
 2021-03-30 17:13:29 -04:00
bennerv 275ba5032c Add 'latest' option to mirroring script 2021-03-25 12:45:12 -04:00
Jim Minter 2197765f0f
Revert "Add ARO operator status condition with Red Hat key presence info" 2021-03-24 13:55:03 -06:00
Mangirdas Judeikis 2fac92d8d2
Merge pull request #1347 from petrkotas/aro-operator-rh-key-condition 
Add ARO operator status condition with Red Hat key presence info
 2021-03-22 08:59:43 +00:00
Petr Kotas 4e41e3ea5c
Add Red Hat Key condition to operator 
Introduce ARO operator condition which
signals one of:
 - cloud.redhat.io
 - registry.redhat.io
keys presence in pull-secret.

Full list of present conditions is displayed
as a message.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2021-03-18 16:08:53 +01:00
Leszek Jakubowski 82db406c15 Manual location override for INT env 2021-03-16 09:05:51 +01:00
Jim Minter 1effb3850f
sync additional geneva/rhel images on single-shot mode to make it easier to stand up an ACR 2021-03-11 18:19:52 -06:00
Jim Minter 4f5b13726d
add node drainer 2021-03-09 12:21:57 -06:00
Jim Minter 043718e577
separate SaveVersion from UpgradeRP 2021-03-08 10:27:50 -06:00
Jim Minter c31d8ed0c1
noop rename Deploy -> DeployRP, Upgrade -> UpgradeRP 2021-03-08 10:27:39 -06:00
Jim Minter d68fda1888
noop fixup imports 2021-03-02 13:17:01 -06:00
Jim Minter 5c5c0d2dc5
remove fullDeploy 2021-02-23 19:34:27 -06:00
Jim Minter 6a09db1993
add dnsmasq controllers 2021-02-23 11:38:51 -06:00
Jim Minter a998cf66a5
Merge pull request #1287 from nilsanderselde/govcloud-continued-2 
govcloud enablement, continued
 2021-02-10 12:03:49 -06:00
Nils Elde 70ef1bef53 cloud awareness 2021-02-10 10:20:03 -05:00
Jim Minter a452396af6
move *KeyVaultSuffix to env 2021-02-09 08:52:28 -06:00
Jim Minter 66f6695731
Merge pull request #1294 from jim-minter/genevaauth 
remove SRC_AUTH_GENEVA: anonymous read is now enabled
 2021-02-08 09:12:48 -06:00
Jim Minter d36292ebce
remove SRC_AUTH_GENEVA: anonymous read is now enabled 2021-02-05 16:48:37 -06:00
Ivan Sim a6ef29638f
Collect Audit Logs From RP Frontend (#1243) 
* Update RP frontend to collect audit logs

1. Add a new middleware to audit inbound requests
2. Requests to the Azure 'operationsstatus' endpoints are skipped
3. Remove the embedded 'env' from the audit log hook to decouple the
   dependency. The 'env' is passed in to the Audit middleware
4. Replace unnecessary custom string types with basic string types
5. Update the testutil 'AssertLoggingOutput' method to skip asserting
   audit logs to reduce flakiness in tests. Audit logs assertion is done
   in a new 'audit.AssertAuditingOutput()' testutil method

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Troy's feedback

Signed-off-by: Ivan Sim <isim@redhat.com>

* Update fluent-bit config with rewrite_tag filter

This filter rewrites the input tag of journald logs that have the field
LOGKIND=ifxaudit, to ifxaudit. Using a different tag for ifxaudit logs
allows us to separate them from non-audit logs in the mdsd
configuration.

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Jim's feedback

Signed-off-by: Ivan Sim <isim@redhat.com>

* New changes per discussion with Jim

1. Merge the 'audit' middleware with the 'log' middleware
to avoid type assertions
3. Update security_test.go with audit test
4. Remove pointer reference to audit constructor
5. Add new audit log entry to testinfra struct

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address MJ's feedback

1. Add unit test to test supported URL patterns

Signed-off-by: Ivan Sim <isim@redhat.com>

* Address Jim's feedback

1. Move adminOp 'if' conditional to log middleware
2. Extract out the 'if' conditional check into a helper function
3. Add start and end symbols to new regex expressions

Signed-off-by: Ivan Sim <isim@redhat.com>
 2021-02-04 11:09:06 +00:00
Jim Minter 454a93ab72
pass enriched log to enrichers 2021-01-25 10:58:56 -06:00
Nils Elde a33bd7173f split k8s and az actions 2021-01-13 15:26:18 -05:00
Jim Minter 5cf4ea12cd
remove unused error return 2021-01-04 09:13:40 -06:00
Mangirdas Judeikis 8a2771c351
Merge pull request #1233 from mjudeikis/add.operator.feature.flag 
Add feature gate to operator
 2020-12-18 08:34:38 -02:00
Mangirdas Judeikis f9fe54d8cf
Add feature gate to operator 2020-12-17 12:00:08 +00:00
Jim Minter 7a14788cea
renames: 
cipher -> aead
  encrypt/decrypt -> seal/open
  aeadCipher -> xChaCha20Poly1305
 2020-12-14 11:18:57 -06:00
Jim Minter f9b8cda775
emit metrics for portal queries 2020-12-09 16:22:51 -06:00
Jim Minter 9e5c4f8930
portal initial commit 2020-12-09 16:22:51 -06:00
Jim Minter cb44296ca2
add system:aro-sre clusterrole and clusterrolebinding 2020-12-09 16:22:50 -06:00
Jim Minter 4780834e9c
Merge pull request #1191 from mjudeikis/api.kickoff 
2021-01-31 kickoff
 2020-12-04 11:50:43 -06:00
Mangirdas Judeikis e2684b0a65
Fix CI 2020-12-04 09:31:46 -06:00
Mangirdas Judeikis c19f4111cd
2020-10-31-preview -> 2021-01-31-preview 2020-12-02 12:08:47 -06:00
Troy Connor 517c524b86
operator: livenessProbe on aro-master operator pod 2020-12-02 09:20:32 -05:00
Jim Minter 11259cbb49
allow mirror tool to mirror single (e.g. hotfix) releases 2020-11-30 16:50:29 -06:00
Jim Minter 2b23c6fa33
fixups 2020-11-25 18:33:18 -06:00
Nils Elde f685abb2d4 add NewCoreForCI 2020-11-25 16:24:55 -05:00
Nils Elde e46c49b015 use values for current cloud env 2020-11-25 10:51:35 -05:00
Olga Mirensky 186aaf1757 Add monitoring controller to configure prometheus to persist data 2020-11-20 15:52:43 +11:00
Jim Minter 17d4f2d663
remove key vault autodiscovery 2020-11-19 07:54:22 -06:00
Jim Minter c2888e0dab
remove service keyvault from env.Core 2020-11-19 07:54:22 -06:00
Jim Minter e80ffcffbf
remove env.GetBase64Secret from pkg/util/encryption 2020-11-19 07:53:25 -06:00
Nils Elde f9b9135ce8 try to improve some names; return exported types 2020-11-13 16:34:33 -05:00
Nils Elde a4c2278be0 Initial changes to allow cloud awareness 2020-11-13 11:43:28 -05:00
Troy Connor 1f529856c5
routefix: Add to it's own controller 2020-11-12 14:45:53 -05:00
Mangirdas Judeikis bc6fdb968b
Merge pull request #1116 from mjudeikis/sync.tooling 
Sync tooling image into ACR
 2020-11-11 08:52:15 -02:00
Mangirdas Judeikis a2b4a7a2e7
sync tooling image into acr 2020-11-09 11:00:04 +00:00
Jim Minter 975819e1e8
upgrade-related code fixes 2020-11-06 11:35:58 -06:00
Jim Minter cb21eef3f5
replace github.com/openshift/cluster-api with github.com/openshift/machine-api-operator 2020-11-06 11:35:57 -06:00
Jim Minter 72b06ded44
bump github.com/containers/image to github.com/containers/image/v5 2020-11-06 11:35:57 -06:00
Ivan Sim 8a098b22b7
Logs deployment mode during startup 
The log output ensures developers are aware of the deployment mode that
their RP is running in.

Signed-off-by: Ivan Sim <isim@redhat.com>
 2020-10-22 09:04:47 -07:00
Jim Minter 3a95570a4a
Merge pull request #1067 from jim-minter/fix 
enable pprof on localhost
 2020-10-14 10:25:50 -05:00
Jim Minter f1cd7a1978
enable pprof on localhost 2020-10-14 10:17:25 -05:00
Jim Minter 5f5713ec7a
remove database.Database 2020-10-08 09:41:18 -05:00
Jim Minter 8cf6c9dbe7
internalise uuid into database clients 2020-10-08 09:41:18 -05:00
Jim Minter 4841138101
remove fields from Database struct 2020-10-08 09:41:17 -05:00
Jim Minter 2503d1f09c
remove pkg/env from pkg/monitor 2020-10-08 09:41:17 -05:00
Jim Minter b663e73cb2
pull out deployment.Mode 2020-09-25 09:21:23 -05:00
Angus Salkeld da780675fb
Add machine checker 2020-09-18 11:59:04 -05:00
Mangirdas Judeikis a85f51296a
Merge pull request #956 from petrkotas/issue-954 
Move checkRequiredFields to deployer.New and mark all fields required
 2020-09-15 04:28:50 -02:00
Mangirdas Judeikis 550f3b258b
Merge pull request #915 from petrkotas/new-sdk 
Add ability to genereate multiple SDKs
 2020-09-07 12:28:27 -02:00
Petr Kotas 49b87005cc
Move checkRequiredFields to deployer.New 
The logic place for checkRequiredFields is in
deployer logic.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2020-09-04 15:29:58 +02:00
Jim Minter 2e91c652e8
don't call encryption.NewXChaCha20Poly1305 in cluster.New 
each call to encryption.NewXChaCha20Poly1305 causes a key vault lookup, which
is excessive
 2020-09-03 17:20:58 -05:00
Petr Kotas afeeb91583
Rename api v20201232preview -> v20201031preview 2020-09-03 15:49:12 +02:00
Jim Minter 01f13f2565
Merge pull request #951 from asalkeld/apply-system-reserve 
Add workaround controller and systemreserved fix
 2020-09-01 08:32:41 -05:00
Nils Elde 24cb2072d1 Move clients used by admin API to new adminactions 2020-08-28 11:34:35 -04:00
Angus Salkeld 8b90acd680
apply a static memory reservation 2020-08-27 16:47:38 +10:00
Angus Salkeld 1f98d0dbed
Add workaround controller and systemreserved fix 2020-08-27 15:23:48 +10:00
Mangirdas Judeikis 324be48961
Merge pull request #848 from petrkotas/issue-838 
Change template configuration to pointers
 2020-08-25 07:59:32 +01:00
Petr Kotas 18aed2ba88
Validate config after loading 
Invalid config is refused and missing fields
are reported.

Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2020-08-24 10:57:22 +02:00
Angus Salkeld 54d6598b10
Move each controller into it's own sub-package 2020-08-12 11:21:47 +10:00
Amber Brown 09b8718f01 Add definitions to Type for interface, remove RP_MODE checks, and regenerate mocks 2020-08-07 15:18:04 +10:00
Jim Minter ebdf715096
Merge pull request #725 from Azure/aro-operator 
ARO operator
 2020-07-31 19:48:33 +01:00
Angus Salkeld dd85f24fce
Add aro-operator 
Co-Authored-By: Olga Mirensky <olga.mirensky@redhat.com>
Co-Authored-By: Jim Minter <jminter@redhat.com>
 2020-07-29 15:46:23 +01:00
Mangirdas Judeikis ce68e27f45
Merge pull request #897 from petrkotas/new-api 
Add preview API to ARO-RP
 2020-07-29 09:47:04 +01:00
Petr Kotas b93b8b443b Register new v20201231preview api 
Signed-off-by: Petr Kotas <pkotas@redhat.com>
 2020-07-21 18:48:22 +02:00
Mangirdas Judeikis 87f87b350b
add vnet to geneva output 2020-07-17 12:49:42 +01:00
Jim Minter 9ae58368a0
move fluentbit, mdm, mdsd image definitions to const.go 2020-07-10 15:45:01 -05:00
Jim Minter 9e320a83c4
bump mdsd and mdm image versions 2020-07-09 11:11:19 -05:00
Amber Brown bee52b107b Move version embedding of ARO-RP to a central location 2020-06-25 14:38:08 +10:00
Shruti Ramesh e2c9a8f0ff
Draft - Update Mdm Image Version (#798) 
* updating to new version of mdm

* running generate

Co-authored-by: Shruti Ramesh <shramesh@Shrutis-MacBook-Air.local>
 2020-06-08 17:50:59 -05:00
Jim Minter a074000fa1
bump geneva version 2020-05-27 14:53:21 -05:00
Jim Minter f4d4dbe822
sync new mdsd image 2020-05-22 16:10:04 -05:00
Jim Minter e6688113e5
Merge pull request #662 from jim-minter/deployperms 
Default to lower permissions in deployment tool
 2020-05-18 16:46:59 -05:00
Jim Minter 6e8bbe1e53
move version code from pkg/mirror to pkg/util/version 2020-05-18 14:47:00 -05:00
Jim Minter 704d82f1a6
add fullDeploy field in struct 
Co-Authored-By: Mangirdas Judeikis <Mangirdas@Judeikis.LT>
 2020-05-15 08:38:13 +01:00
Jim Minter 25e43e01b1
stop using outputs on ARM templates, makes it easier for them to be optional 
Co-Authored-By: Mangirdas Judeikis <Mangirdas@Judeikis.LT>
 2020-05-15 08:38:12 +01:00
Jim Minter 62360a31b5
remove RP_PREDEPLOY_ONLY, it's not used 
Co-Authored-By: Mangirdas Judeikis <Mangirdas@Judeikis.LT>
 2020-05-15 08:38:12 +01:00
Mangirdas Judeikis d91b592369
mirror without max limit 2020-05-12 17:03:09 +01:00
Jim Minter 29a04bd7a9
mirror new geneva packages 2020-04-23 16:55:11 -05:00
Jim Minter 971b506877
mirror from correct repository, otherwise get an auth failure 2020-04-23 16:41:07 -05:00
Angus Salkeld 5771bd21c9
add admin vm restart operation 2020-04-21 13:43:51 -05:00
Nils Elde 43d8b4d0e0 use kubeActionsFactory 2020-04-20 15:06:23 -04:00
Jim Minter 07fc29a151
mirror all released versions, fix stupid bug in version.Lt and add tests 2020-04-18 09:57:35 -05:00
Jim Minter 9d45b1c08d
move OpenShiftPullSpec to use quay.io and rely on platform to substitute 2020-04-08 15:29:24 -05:00
Angus Salkeld eeaeef7a00
Add list resources admin action 
This returns the list of Azure resources within the cluster's resourceGroup
 2020-04-08 12:07:20 -05:00
Jim Minter 641a4aa009
only emit database metrics in RP 2020-04-08 10:49:03 -05:00
Mikalai Radchuk e201718d90
Adds pagination to API 2020-04-07 19:07:19 -05:00
Jim Minter bcce714c35
Revert "override isCreate" 2020-04-03 23:39:04 -06:00
Jim Minter b814e60f0a
override isCreate 2020-04-03 23:37:30 -06:00
Jim Minter babfdb5117
Merge pull request #283 from asalkeld/ocget-admin-action 
Add upgrade and GetKubernetes geneva actions
 2020-03-31 13:08:01 -06:00
Jim Minter e8d9c3c21e
clearly log location 2020-03-30 15:51:13 -06:00
Angus Salkeld 7565e397ab
Add GetKubernetesObjects admin action 2020-03-30 14:14:11 +10:00
Jim Minter 03fe91fb01
persist docker login 2020-03-27 00:07:18 -06:00
Jack Quincy ffbbe174c6
removing validation for unused environment variables, and removing location on global deployment 2020-03-26 21:07:07 -06:00
Jim Minter 382429d482
remove pull secret from int/prod 2020-03-26 09:58:14 -06:00
Jim Minter b6f6db61ff
bump geneva image versions 2020-03-26 08:53:03 -06:00
Jack Quincy 93cfcf9bc9
remove hard coded arosvc references 2020-03-24 18:20:31 -06:00
Jim Minter f6ab8ee62f
copy 2019-12-31-preview API to 2020-04-30 API 2020-03-24 17:57:24 -06:00
Jim Minter 515c16066d
implement container registry replication 2020-03-23 18:54:42 -06:00
Jim Minter 5c9ccb2abc
move NewAuthorizerFromEnvironment into deploy.New 2020-03-23 18:54:41 -06:00
Jim Minter 0638050f12
various modifications 2020-03-21 22:49:18 -06:00
Mangirdas Judeikis 52fefb38e8
add config.yaml for deployer tooling 2020-03-21 22:40:56 -06:00
Jim Minter bab7907422
clarify api interfaces 2020-03-20 20:03:29 -06:00
Jack 3ffe9bd17a
Mirror mdm images to int ACR (#266) 
* pushing geneva images to int acr and pulling mdm image from int acr if rp image is coming from in acr

* passing in values to setup geneva actions in int

* removing newline

* allowing wrong host names on the ssl calls since all will have the hostname on the load balancer and not the one to call the individual vm

* rerunning the make generate

* switching to point mirror to an ACR instead of pushing images to INT and PROD

* regenerating bindata post rebase
 2020-03-13 14:54:23 -06:00
Mikalai Radchuk 35632b5048 Admin clientauthorizer implementation 2020-03-06 17:48:56 +00:00
Jim Minter 362632c035
add random delay to space out monitoring workload 2020-03-04 20:27:05 -06:00
Jim Minter 7d3973d247
fix -loglevel 2020-03-04 20:27:05 -06:00
Jim Minter 572577df94
add missing environment variable validation 2020-03-04 20:27:04 -06:00
Jim Minter 195b5f55a4
pull tracing metrics up so that clusterm does not register them 2020-03-03 15:18:39 -06:00
Jim Minter 67705f8de9
geneva logging part 2 2020-03-02 16:13:35 -06:00
Jim Minter 9c396e2e60
updates 2020-03-02 15:11:47 -06:00
Mangirdas Judeikis 390c2198b4
implement deploy tool 2020-03-02 15:11:43 -06:00
Jim Minter d60236fffb
bump to 4.3.3 2020-02-26 13:02:09 -06:00
Jim Minter e33a662f88
Merge pull request #221 from jim-minter/wheel 
Build az extension wheel
 2020-02-26 09:44:52 -06:00
Jim Minter df038d544e
Merge pull request #218 from jim-minter/splitm 
split service and cluster monitoring
 2020-02-26 09:42:15 -06:00
Jim Minter e9b58b8b70
add missing error log 2020-02-26 08:41:19 -06:00
Mangirdas Judeikis fa53d50b63 add healthz endpoint and better shutdown logic 2020-02-26 09:42:37 +00:00
Jim Minter cbd4d04083
split service and cluster monitoring 2020-02-25 18:51:14 -06:00
Jim Minter 75704ca8ea
check for PULL_SECRET only when running aro rp 2020-02-24 20:26:42 -06:00
Jim Minter 7f39d125e1
make statsd backend asynchronous 2020-02-24 20:26:41 -06:00
Jim Minter b209b6d362
log release version 2020-02-24 08:16:02 -06:00
Jim Minter 92a98a80b4
mirror mdsd/mdm packages published by geneva 2020-02-24 08:12:19 -06:00
Mikalai Radchuk 5d9968e635
Adds admin API 2020-02-18 15:33:54 -06:00
Jim Minter 7abfe09a02
don't hard-code ocp-release:4.3.0-x86_64 in mirror as it's now advertised upstream 2020-02-17 10:48:08 -06:00
Mangirdas Judeikis 99bc9bad68
grateful shutdown (sigterm), 60min wait, sigkill 2020-02-12 16:50:04 -05:00
Jim Minter edd02eacbe encryption fixups: 
* pass cipher into database.NewDatabase, rather than bool
* unexport as much as possible
* remove backwards-compatibility and "read without key" options for now, adds too much complexity
 2020-02-10 07:50:26 +00:00
Mangirdas Judeikis 468621f73c add encrypt pkg 2020-02-07 09:37:41 +00:00
Mangirdas Judeikis d36f0e72c6 add cosmosdb metrics 2020-01-25 09:05:37 +00:00
Jim Minter 095dfc5f05
deploy 4.3.0 2020-01-22 10:18:21 -06:00
Jim Minter 9f722a81ec
add configurable loglevel 2020-01-22 09:15:12 -06:00