Ranger is beginning the process
of retirement in openstack, and
will be removed from OSH as a
result.
Change-Id: I4844964c4edbde935de47dad3f689ffa89671ccc
Ranger has not used SSH since the
project finished conversions to
python 3.6. The data below is to be
removed, barring user_home and
retry_limit as they are values
which have been co-opted by other
parts of the ranger/ranger-agent
codebase.
Change-Id: If7cd18ddd6f266d58a10bfabd202f9daa4a518bf
Helm v3 doesnt like null secrets.
Attempting to switch to empty string,
testing for v2 compatibility before
merging for v3 use. Also removed references
to deprecated code cloud repo usage for
storing heat templates.
Change-Id: I3d06c77d02b398253f22b847f68bb359e0c2ec2f
Since we introduced chart version check in gates, requirements are not
satisfied with strict check of 0.1.0
Change-Id: I6e0a3b301392e82231a2081859ca4d380a0138d8
Signed-off-by: Andrii Ostapenko <andrii.ostapenko@att.com>
Service pod which fails connection, timed out, or unexpected
error during health probing should return with error status.
Change-Id: I26795a9f421fbdc84e75501b729da043b898c994
This patch enables TLS for Ranger Agent services so that internal
call from Ranger Agent services pods to Openstack services such as
keystone, heat, and mariadb utilizes TLS.
Change-Id: I8a548ff435e8b87783a50c5ce82b5931a3d76a22
This updates the Ranger chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true.
Depends-On: https://review.opendev.org/740119/
Change-Id: Ic06caec81015ac04fb162d8c2482da6b2329e204
- brackets
- braces
- colon
- commas
- comments
- key-duplicates
with corresponding code adjustment.
Also removes x flag from yamls for ranger and ranger-agent charts.
Change-Id: I156b991ba6e17b6f9e1f128295362c0675afd8cc
The current copyright refers to a non-existent group
"openstack helm authors" with often out-of-date references that
are confusing when adding a new file to the repo.
This change removes all references to this copyright by the
non-existent group and any blank lines underneath.
Change-Id: I631ae4345f18fee70b380867ba8b33af5e3b3254
Test will make default call for all 7 services to ensure service running
Increase timeout to 100 second in case services are restarting
Increase timeout to 100 second for health probe to avoid pod restart
Change-Id: Id635d24236238e73b7a8292ee183b88328d621c4
Newer versions (2.x) of Ranger is removing git repo support When
Older versions (1.x) still using it, this patch is to attempt to flag to
not use repo in case not supported repo and do cleanup
Change-Id: I36c36faa0be1f9e9ea4e5479e219dc14c205d853
This updates the kubernetes-entrypoint image reference to consume
the publicly available kubernetes-entrypoint image that is built
and maintained under the airshipit namespace, as the stackanetes
image is no longer actively maintained
Depends-On: https://review.opendev.org/688435
Change-Id: I7f48605f08f574822179d51cd645ded07714d9c3
Signed-off-by: Steve Wilkerson <sw5822@att.com>
This updates the kubernetes api version for the ranger and
ranger agent deployment templates to apps/v1
Change-Id: I9a75de99441ad7c0bc7068e720686a3f96e92870
Signed-off-by: Steve Wilkerson <sw5822@att.com>
Health probe for Ranger-services pod is used for both liveness
and readiness probe.
Health probe launches a call to ranger services open interfaces.
Probe is successful if call returns without error; otherwise failure
will be reported.
Change-Id: I55ce381f344330157085ef294a169ea6df975737
This updates the Ranger chart to include the pod
security context on the pod template
when I set to true It is going into crashloopbackoff
Change-Id: I00304483de5109e75860bde826ed18370610e286
We now have a process for OSH-images image building,
using Zuul, so we should point the images by default to those
images, instead of pointing to stale images.
Without this, the osh-images build process is completely not
in use (and completely opaque to deployers), and updating the
osh-images process or patching its code has no impact on OSH-addons.
This should fix it.
Change-Id: I23d69b56e6de4f0f76d6031b301e81a294ddcc50
This adds the release-uuid annotation to the pod spec for all
replication controller templates in the openstack-helm-addons
charts
Change-Id: I040fe3a60d4d10e101238a4d760da14cbb18bf31
The "ranger" and "ranger-agent" user ids are hard coded in the helm
services scripts. This prevents overriding them. Changed both scripts
to use $USER instead of hard-coded values.
Change-Id: I2dd9a667c6b33575324c179a8c10c394bf07ab47
1. Fix tls secret keys identification for services
2. Removed ingress definitions for uuid and audit which are not required for now
3. Fix flag for ingress definitions in rds
Change-Id: Ifa2a97334c83901af705a061a0d8fd9cc1753651
This is an effort to implement helm charts for ranger component
Included integration changes needed in ranger-agent
Signed-off-by: Hari Om Singh<hosingh000@gmail.com>
Change-Id: I27911d134882365a29b7ffcf1f7ab2e38cf717be