K8SPSMDB-1183 bundle generations for psmdb

percona · Oct 21, 2024 · ce0549c · ce0549c
1 parent 518f941
commit ce0549c
Show file tree

Hide file tree

Showing 28 changed files with 1,173 additions and 5 deletions.
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -1,3 +1,3 @@
-* @hors @egegunes @inelpandzic @pooknull
-/e2e-tests/ @tplavcic @nmarukovich @ptankov @jvpasinatto @eleo007
-Jenkinsfile @tplavcic @nmarukovich @ptankov @jvpasinatto @eleo007
+* @hors @egegunes @inelpandzic @pooknull @nmarukovich
+/e2e-tests/ @nmarukovich @ptankov @jvpasinatto @eleo007
+Jenkinsfile @nmarukovich @ptankov @jvpasinatto @eleo007
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -23,7 +23,7 @@ updates:
  time: "01:00"
  reviewers:
  - hors
- - tplavcic
+ - nmarukovich
  ignore:
  # ignore patch updates for all dependencies
  - dependency-name: "*"

diff --git a/.gitignore b/.gitignore
@@ -182,3 +182,7 @@ bin/
 ### VisualStudioCode ###
 .vscode/*
 .history
+
+projects/
+installers/olm/operator_*.yaml
+installers/olm/bundles
diff --git a/Jenkinsfile b/Jenkinsfile
@@ -12,7 +12,7 @@ void createCluster(String CLUSTER_SUFFIX) {
  gcloud auth activate-service-account --key-file $CLIENT_SECRET_FILE
  gcloud config set project $GCP_PROJECT
  gcloud container clusters list --filter $CLUSTER_NAME-${CLUSTER_SUFFIX} --zone $region --format='csv[no-heading](name)' | xargs gcloud container clusters delete --zone $region --quiet || true
- gcloud container clusters create --zone $region $CLUSTER_NAME-${CLUSTER_SUFFIX} --cluster-version=1.27 --machine-type=n1-standard-4 --preemptible --num-nodes=3 --network=jenkins-vpc --subnetwork=jenkins-${CLUSTER_SUFFIX} --no-enable-autoupgrade --cluster-ipv4-cidr=/21 --labels delete-cluster-after-hours=6 --enable-ip-alias --workload-pool=cloud-dev-112233.svc.id.goog && \
+ gcloud container clusters create --zone $region $CLUSTER_NAME-${CLUSTER_SUFFIX} --cluster-version=1.28 --machine-type=n1-standard-4 --preemptible --num-nodes=3 --network=jenkins-vpc --subnetwork=jenkins-${CLUSTER_SUFFIX} --no-enable-autoupgrade --cluster-ipv4-cidr=/21 --labels delete-cluster-after-hours=6 --enable-ip-alias --workload-pool=cloud-dev-112233.svc.id.goog && \
  kubectl create clusterrolebinding cluster-admin-binding --clusterrole cluster-admin --user jenkins@"$GCP_PROJECT".iam.gserviceaccount.com || ret_val=\$?
  if [ \${ret_val} -eq 0 ]; then break; fi
  ret_num=\$((ret_num + 1))

diff --git a/config/bundle/kustomization.yaml b/config/bundle/kustomization.yaml
@@ -0,0 +1,10 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../crd
+- ../rbac/namespace
+- ../manager/namespace
+images:
+- name: percona-server-mongodb-operator
+ newName: perconalab/percona-server-mongodb-operator
+ newTag: main
diff --git a/config/community/kustomization.yaml b/config/community/kustomization.yaml
@@ -0,0 +1,5 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- ../operator
diff --git a/config/manager/cluster/kustomization.yaml b/config/manager/cluster/kustomization.yaml
@@ -0,0 +1,13 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- manager-cluster.yaml
+commonLabels:
+ app.kubernetes.io/component: operator
+ app.kubernetes.io/instance: percona-server-mongodb-operator
+ app.kubernetes.io/name: percona-server-mongodb-operator
+ app.kubernetes.io/part-of: percona-server-mongodb-operator
+images:
+- name: psmdb-operator
+ newName: tishina/percona-server-mongodb-operator
+ newTag: main
diff --git a/config/manager/cluster/manager-cluster.yaml b/config/manager/cluster/manager-cluster.yaml
@@ -0,0 +1,48 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ name: percona-server-mongodb-operator
+spec:
+ replicas: 1
+ selector:
+ matchLabels:
+ name: percona-server-mongodb-operator
+ template:
+ metadata:
+ labels:
+ name: percona-server-mongodb-operator
+ spec:
+ serviceAccountName: percona-server-mongodb-operator
+ containers:
+ - name: percona-server-mongodb-operator
+ image: perconalab/percona-server-mongodb-operator:main
+ imagePullPolicy: Always
+ livenessProbe:
+ failureThreshold: 3
+ httpGet:
+ path: /metrics
+ port: metrics
+ scheme: HTTP
+ ports:
+ - containerPort: 8080
+ protocol: TCP
+ name: metrics
+ command:
+ - percona-server-mongodb-operator
+ env:
+ - name: LOG_STRUCTURED
+ value: 'false'
+ - name: LOG_LEVEL
+ value: INFO
+ - name: WATCH_NAMESPACE
+ value: ""
+ - name: POD_NAME
+ valueFrom:
+ fieldRef:
+ fieldPath: metadata.name
+ - name: OPERATOR_NAME
+ value: percona-server-mongodb-operator
+ - name: RESYNC_PERIOD
+ value: 5s
+ - name: DISABLE_TELEMETRY
+ value: "false"
diff --git a/config/manager/namespace/kustomization.yaml b/config/manager/namespace/kustomization.yaml
@@ -0,0 +1,13 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- manager-namespace.yaml
+commonLabels:
+ app.kubernetes.io/component: operator
+ app.kubernetes.io/instance: percona-server-mongodb-operator
+ app.kubernetes.io/name: percona-server-mongodb-operator
+ app.kubernetes.io/part-of: percona-server-mongodb-operator
+images:
+- name: psmdb-operator
+ newName: tishina/percona-server-mongodb-operator
+ newTag: main
diff --git a/config/manager/namespace/manager-namespace.yaml b/config/manager/namespace/manager-namespace.yaml
@@ -0,0 +1,50 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ name: percona-server-mongodb-operator
+spec:
+ replicas: 1
+ selector:
+ matchLabels:
+ name: percona-server-mongodb-operator
+ template:
+ metadata:
+ labels:
+ name: percona-server-mongodb-operator
+ spec:
+ serviceAccountName: percona-server-mongodb-operator
+ containers:
+ - name: percona-server-mongodb-operator
+ image: perconalab/percona-server-mongodb-operator:main
+ imagePullPolicy: Always
+ livenessProbe:
+ failureThreshold: 3
+ httpGet:
+ path: /metrics
+ port: metrics
+ scheme: HTTP
+ ports:
+ - containerPort: 8080
+ protocol: TCP
+ name: metrics
+ command:
+ - percona-server-mongodb-operator
+ env:
+ - name: LOG_STRUCTURED
+ value: 'false'
+ - name: LOG_LEVEL
+ value: INFO
+ - name: WATCH_NAMESPACE
+ valueFrom:
+ fieldRef:
+ fieldPath: metadata.namespace
+ - name: POD_NAME
+ valueFrom:
+ fieldRef:
+ fieldPath: metadata.name
+ - name: OPERATOR_NAME
+ value: percona-server-mongodb-operator
+ - name: RESYNC_PERIOD
+ value: 5s
+ - name: DISABLE_TELEMETRY
+ value: "false"
diff --git a/config/marketplace/kustomization.yaml b/config/marketplace/kustomization.yaml
@@ -0,0 +1,6 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- ../operator
+
diff --git a/config/operator/kustomization.yaml b/config/operator/kustomization.yaml
@@ -0,0 +1,6 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- ../bundle
+
diff --git a/config/rbac/cluster/kustomization.yaml b/config/rbac/cluster/kustomization.yaml
@@ -0,0 +1,7 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- service_account.yaml
+- role.yaml
+- role_binding.yaml
diff --git a/config/rbac/cluster/role.yaml b/config/rbac/cluster/role.yaml
@@ -0,0 +1,153 @@
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ name: percona-server-mongodb-operator
+rules:
+ - apiGroups:
+ - psmdb.percona.com
+ resources:
+ - perconaservermongodbs
+ - perconaservermongodbs/status
+ - perconaservermongodbs/finalizers
+ - perconaservermongodbbackups
+ - perconaservermongodbbackups/status
+ - perconaservermongodbbackups/finalizers
+ - perconaservermongodbrestores
+ - perconaservermongodbrestores/status
+ - perconaservermongodbrestores/finalizers
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - admissionregistration.k8s.io
+ resources:
+ - validatingwebhookconfigurations
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - ""
+ resources:
+ - nodes
+ verbs:
+ - get
+ - list
+ - watch
+ - apiGroups:
+ - ""
+ resources:
+ - pods
+ - pods/exec
+ - services
+ - persistentvolumeclaims
+ - secrets
+ - configmaps
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - apps
+ resources:
+ - deployments
+ - replicasets
+ - statefulsets
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - batch
+ resources:
+ - cronjobs
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - policy
+ resources:
+ - poddisruptionbudgets
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - coordination.k8s.io
+ resources:
+ - leases
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - events.k8s.io
+ - ""
+ resources:
+ - events
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - patch
+ - apiGroups:
+ - certmanager.k8s.io
+ - cert-manager.io
+ resources:
+ - issuers
+ - certificates
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - deletecollection
+ - apiGroups:
+ - net.gke.io
+ - multicluster.x-k8s.io
+ resources:
+ - serviceexports
+ - serviceimports
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - deletecollection
diff --git a/config/rbac/cluster/role_binding.yaml b/config/rbac/cluster/role_binding.yaml
@@ -0,0 +1,13 @@
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ name: service-account-percona-server-mongodb-operator
+subjects:
+ - kind: ServiceAccount
+ name: percona-server-mongodb-operator
+ namespace: "psmdb-operator"
+roleRef:
+ kind: ClusterRole
+ name: percona-server-mongodb-operator
+ apiGroup: rbac.authorization.k8s.io
diff --git a/config/rbac/cluster/service_account.yaml b/config/rbac/cluster/service_account.yaml
@@ -0,0 +1,5 @@
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+ name: percona-server-mongodb-operator
diff --git a/config/rbac/namespace/kustomization.yaml b/config/rbac/namespace/kustomization.yaml
@@ -0,0 +1,7 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- service_account.yaml
+- role.yaml
+- role_binding.yaml