Ranger is beginning the process
of retirement in openstack, and
will be removed from OSH as a
result.
Change-Id: I4844964c4edbde935de47dad3f689ffa89671ccc
Ranger has not used SSH since the
project finished conversions to
python 3.6. The data below is to be
removed, barring user_home and
retry_limit as they are values
which have been co-opted by other
parts of the ranger/ranger-agent
codebase.
Change-Id: If7cd18ddd6f266d58a10bfabd202f9daa4a518bf
Further null values found by helm v3
in openstack-helm-deployments must
be turned into empty strings instead
Change-Id: I83be4bbfd87add83a72f655e8b326250ef6383c9
Source was set as openstack-helm
rather than openstack-helm-addons,
which is the location that ranger-agent
charts live. This should correct an
issue currently being experienced
in openstack-helm-deployments patchset:
https://review.opendev.org/764492
Change-Id: I0217fde2ee0741b6b40462e30cffc99583d6c2dc
The add-region job/pod does not need to tie with the post-install
or post-upgrade hooks. In addition, hook-delete-policy is not needed
since this resource is not created by a hook. Job deletion prior to
upgrade is already being taken care of in values.yaml.
Change-Id: Ib22cce350e82986d0f51c7bca2be0ee5a01c36a9
Since we introduced chart version check in gates, requirements are not
satisfied with strict check of 0.1.0
Change-Id: I6e0a3b301392e82231a2081859ca4d380a0138d8
Signed-off-by: Andrii Ostapenko <andrii.ostapenko@att.com>
This patch enables TLS for Ranger Agent services so that internal
call from Ranger Agent services pods to Openstack services such as
keystone, heat, and mariadb utilizes TLS.
Change-Id: I8a548ff435e8b87783a50c5ce82b5931a3d76a22
This updates the ranger-agent chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true
Depends-On: https://review.opendev.org/740119/
Change-Id: I9fe5d96958805ae9634521604845411d904d8458
1)Update ranger-agent SHA to support bionic Images.
2)Added heat deploy script for ranger deployment.
3)Created seperate Jobs for ranger and mini-mirror apparmor.
Change-Id: Icecae5bd8f751508ef0417c8cc1a5e3959d44119
Signed-off-by: diwakar thyagaraj <diwakar.chitoor.thyagaraj@att.com>
- brackets
- braces
- colon
- commas
- comments
- key-duplicates
with corresponding code adjustment.
Also removes x flag from yamls for ranger and ranger-agent charts.
Change-Id: I156b991ba6e17b6f9e1f128295362c0675afd8cc
This patch creates a new job which will call Ranger RMS service
post deployment. The service call request Ranger to create a
region for the deployed site.
Change-Id: I03398453f579de5d2da5cf188b4779be527c3f5f
The current copyright refers to a non-existent group
"openstack helm authors" with often out-of-date references that
are confusing when adding a new file to the repo.
This change removes all references to this copyright by the
non-existent group and any blank lines underneath.
Change-Id: I631ae4345f18fee70b380867ba8b33af5e3b3254
This patch makes a correction to the url path used when making a
requests api call to ranger-agent-api pod.
Change-Id: I7b5db2dbbfade6ffec3bdb7e288bfa2197b57a65
This patch refactor ranger-agent-test pod to use python
module. It also fixes incompatible issue with the old
script that failed pod test with updated ranger-agent pod.
Change-Id: Ied86a3d137d6cff206eecbff5c33b7c0d50f90fb
Newer versions (2.x) of Ranger is removing git repo support When
Older versions (1.x) still using it, this patch is to attempt to flag to
not use repo in case not supported repo and do cleanup
Change-Id: I36c36faa0be1f9e9ea4e5479e219dc14c205d853
cgi module was having issue https://bugs.python.org/issue27777
due to use of tempfile.TemporaryFile("wb") ranger_agent_api needed
readOnlyRootFilesystem: false
Change-Id: Ia010627c931ed2765ea7d95e183e69ade5ab8f25
This updates the kubernetes-entrypoint image reference to consume
the publicly available kubernetes-entrypoint image that is built
and maintained under the airshipit namespace, as the stackanetes
image is no longer actively maintained
Depends-On: https://review.opendev.org/688435
Change-Id: I7f48605f08f574822179d51cd645ded07714d9c3
Signed-off-by: Steve Wilkerson <sw5822@att.com>
This updates the kubernetes api version for the ranger and
ranger agent deployment templates to apps/v1
Change-Id: I9a75de99441ad7c0bc7068e720686a3f96e92870
Signed-off-by: Steve Wilkerson <sw5822@att.com>
Health probe for Ranger-agent pods is used for both liveness
and readiness probe.
ranger-agent-api and ranger-agent-engine pods:
- Sends an RPC call with a known method to pod's listener
queue. Probe is successful if call returns with no error. If
listener is not reachable or fails to respond in time, returns
failure to probe.
- Check if the rpc socket status on ranger-agent pods to rabbitmq
are in established state.
ranger-agent-api pod:
- Launch a call to pod's open interface. Probe is successful if call
returns; otherwise failure if response has error or timed out.
Change-Id: I7a22fd50d47e58df19b413ed65ab528e2d78d609
This PS updates the charts to use the htk function
to allow oslo.messaging clients and servers to directly hit their
backends rather than using either DNS or K8S svc based routing.
Change-Id: I389de832740a59c0594e907177c8c2172a83958a
- Test is failing when repo changed and test template not exist
- Parameterizing expected status on basis provided template
- Parameterizing to pass region to request for specific site
Change-Id: I0d6cc27222c4b5eb36a91b8e5194e41701bb4820
This updates the Ranger-Agent chart to include the pod
security context on the pod template
when I set to true for rangen-agent engine it going to crashloopbackoff
Change-Id: I69f99d651a7d60f27c75f1718e894c84bcfea366
We now have a process for OSH-images image building,
using Zuul, so we should point the images by default to those
images, instead of pointing to stale images.
Without this, the osh-images build process is completely not
in use (and completely opaque to deployers), and updating the
osh-images process or patching its code has no impact on OSH-addons.
This should fix it.
Change-Id: I23d69b56e6de4f0f76d6031b301e81a294ddcc50
jh629g