This is a squashed commit, keeping previous messages intact for history.
- chore(tools/gate/jarvis): remove unused http_proxy
- fix(tools/gate/deploy-k8s): pre-pull Calico images
By pre-pulling Calico images, we can better ensure the timeout for
`kubectl wait` for `k8s-app=kube-dns` is sufficient, since most of the
time spent is on pulling images.
- fix(tools/gate/jarvis): skip loki Helm test when proxy is set
The Loki test attempts to install `curl` and `jq`, which will fail when
a proxy is required since the pod doesn't setup proxy environment
variables.
- feat(tools/deployment/vagrant): support providing a cert for proxy
- feat(ubuntu-base/standard-container): support internal-certs
The Vagrant file mounts an additional synced folder to
/airship_charts/tools/gate/jarvis/ubuntu-base/internal-certs.
This internal-certs dir has been added to this Git repository using a
placeholder `.gitkeep` file to keep the directory non-empty. This
directory has also been added to .gitignore to prevent any changes such
as the mounted internal certs from being committed.
The ubuntu-base image sets the proxy env vars as well as contains the
internal certs. The standard container is then based on the ubuntu-base
image.
The ubuntu-base image is published as library/ubuntu:focal in harbor.
- fix(tools/gate/jarvis): support Harbor behind proxy with cert
Change-Id: I602dfa3b04b798a1a2096242ffb6dfe7f2ba92e4
This adds example configurations in the gate to leverage LDAP
auth for Grafana dashboard.
This patch also fixes up minor indentation errors in YAML.
Signed-off-by: Tin Lam <tin@irrational.io>
Change-Id: I0961ced71b8a4d1c4f639fd898bc70761f8de995
1) Removes unused/duplicate deployment/gate scripts
2) Removes unrequired NFS deployment
3) Adds Ingress controller
4) Adds Cert-Manager
5) Removes unrequired harbor chart, and replaces with upstream
6) Adds ingress rules to tekton
7) Fix linting issues with newer k8s versions and dex-aio chart
8) Add Gerrit Chart
9) Fixes hardcoded namespace references in tekton-triggers chart.
10) Sets up CA certs on host to anble validation of tls backed services.
11) TLS in tekton dashboard via cert-manager
12) TLS in loki and grafana via cert-manager
13) TLS in harbor & notary ingres via cert-manager
14) TLS for all internal harbor components via self signed certs
15) TLS for gerrit via cert-manager
16) Rework DNS config to fix resolving k8s services from host
17) Update kube deployment script to configure /etc/resolv.conf to direct jarvis.local to ingress
18) Add docker push test for harbor
19) Reset documentation
Change-Id: I71850770ba46d7635b950da60ec59c0b08208c70
Signed-off-by: intlabs <pete@port.direct>
This adds a document zuul job and a base docs folder for technical
docs, user guides, etc. to the repository. This also publish the
documentation as part of promote-airship-project-docs.
Signed-off-by: Tin Lam <tin@irrational.io>
Change-Id: I6dd049bdc7454355440fcb28ade7a36f0810857a
This patch adds in a tekton zuul job and fixes/adjusts the existing
linting and building, which currently does not perform the advertised
checks. This is the final patch of the chain of patches in order:
0. https://review.opendev.org/#/c/759865/ : tekton-pipelines
1. https://review.opendev.org/#/c/759598/ : tekton-triggers
2. https://review.opendev.org/#/c/759764/ : tektnon-dashboard
Change-Id: Ie7bd9efd42fd13fe8e5e83f290f72ed00ba9dea1
Signed-off-by: Tin Lam <tin@irrational.io>
