andata
/
rancher-charts
mirror of https://git.rancher.io/charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
740 Commits
51 Branches
2 Tags
435 MiB
Commit Graph

740 Commits (6ca9fb2c056b03daa34dbb0b4c948345431dbb9a)

Author SHA1 Message Date
maggieliu 826d5dc2df
(dev-v2.6-archive) Merge pull request #675 from aiyengar2/fix_pushprox_chart_hardened 
Support pushprox in hardened RKE clusters

(partially cherry picked from commit 6edb750ce9)
 2022-01-06 11:33:28 -08:00
Prachi Damle a63a0d586a
(dev-v2.6-archive) Merge pull request #676 from prachidamle/airgap_fix 
Use global registry for security-scan and sonobuoy tool images to support airgapped setups

(partially cherry picked from commit 0f786657a2)
 2022-01-06 11:33:27 -08:00
Jacob Payne fba428baa7
(dev-v2.6-archive) allow tolerations to be passed to fluentbit containers (#673) 
(partially cherry picked from commit 91d1dedca1)
 2022-01-06 11:33:27 -08:00
Prachi Damle 2d82003905
(dev-v2.6-archive) Use the system_default_registry for security-scan and sonobuoy images 
Deleting tgz assets

(partially cherry picked from commit 42f30bfad1)
 2022-01-06 11:33:26 -08:00
Steven Crespo ed4687076b
(dev-v2.6-archive) Merge pull request #670 from PennyScissors/update-gk-v3.1.1 
Update gatekeeper to version 3.1.1

(partially cherry picked from commit 32f1b41934)
 2022-01-06 11:33:26 -08:00
Steven Crespo b21fe035b5
(dev-v2.6-archive) Update gatekeeper to v3.1.1 
(partially cherry picked from commit 5757f8cc15)
 2022-01-06 11:33:25 -08:00
Arvind Iyengar ae60d235cb
(dev-v2.6-archive) Support monitoring in hardened RKE clusters 
This commit adds support for deploying rancher-monitoring into hardened clusters.

It modifies some of the default securityContexts and does some misc. fixes such as:
- Removing default AppArmor PSP annotations from Grafana (related to https://github.com/helm/charts/issues/9090)
- Modifying rkeScheduler and rkeControllerManager to use localhost to scrape components since the endpoints aren't exposed in a hardened cluster

These changes have been verified on a hardened RKE cluster.

(partially cherry picked from commit e3d6033572)
 2022-01-06 11:33:25 -08:00
Arvind Iyengar 0eded521bd
(dev-v2.6-archive) Support pushprox in hardened RKE clusters 
This commit adds support for deploying rancher-pushprox into hardened clusters.

It introduces securityContexts and rearranges the RBAC in order to support a PodSecurityPolicy for the PushProx clients.

These changes have been verified on a hardened RKE cluster.

(partially cherry picked from commit 7d1332356c)
 2022-01-06 11:33:24 -08:00
Arvind Iyengar 0ec38633eb
(dev-v2.6-archive) Move pushprox RBAC into separate file 
(partially cherry picked from commit 4da2300a26)
 2022-01-06 11:33:24 -08:00
Jacob Payne 53db0ed5b4
(dev-v2.6-archive) fixed eks and k3s logging in airgap (#671) 
(partially cherry picked from commit 60c84b3c3b)
 2022-01-06 11:33:23 -08:00
Arvind Iyengar 5b49312554
(dev-v2.6-archive) Use separate namespace only for dashboards 
This commit renames `grafana-dashboards` to `cattle-dashboards` and deprecates the `grafana-datasources` namespace in favor of the normal release namespace.

Related Issue: rancher/rancher#28887

(partially cherry picked from commit b80fb3a8ff)
 2022-01-06 11:33:23 -08:00
Arvind Iyengar a4d132cf54
(dev-v2.6-archive) Split RBAC for ConfigMaps and Secrets 
Related Issue: https://github.com/rancher/rancher/issues/29013

(partially cherry picked from commit 0fa3a06de0)
 2022-01-06 11:33:22 -08:00
Arvind Iyengar a05cd088c8
(dev-v2.6-archive) Relocate Rancher roles to overlay/ 
(partially cherry picked from commit 2e1ed1b130)
 2022-01-06 11:33:22 -08:00
Daishan 536bdd588e
(dev-v2.6-archive) Bump fleet, rancher-operator, webhook 
(partially cherry picked from commit 89cb2793e9)
 2022-01-06 11:33:21 -08:00
Arvind Iyengar 6e9ba81e6d
(dev-v2.6-archive) Add annotations that were left out on rebase 
Dropped on accident in rebase https://github.com/rancher/charts/pull/641/files#diff-ed5b5b87cf149adc6a6408bf81993efdR681-R682

(partially cherry picked from commit 95cf887f5f)
 2022-01-06 11:33:21 -08:00
Brenda Rearden 237e44a8f1
(dev-v2.6-archive) Merge pull request #667 from brendarearden/image-updates 
Set installer repo,tag in values.yaml

(partially cherry picked from commit 34676b359a)
 2022-01-06 11:33:21 -08:00
aiyengar2 d6e2d6fe20
(dev-v2.6-archive) Merge pull request #666 from aiyengar2/fix_kube_dns_namespace 
Create kube-dns service monitor in kube-system

(partially cherry picked from commit 034952747f)
 2022-01-06 11:33:20 -08:00
Brenda Rearden cea35722ed
(dev-v2.6-archive) Set installer repo,tag in values.yaml 
(partially cherry picked from commit 9932422f51)
 2022-01-06 11:33:20 -08:00
Rajashree Mandaogane d9d9732036
(dev-v2.6-archive) Merge pull request #663 from mrajashree/upd 
Update resourceset to include configmaps for clusterrepos

(partially cherry picked from commit 820f105aa2)
 2022-01-06 11:33:19 -08:00
Arvind Iyengar 6d6bc2110a
(dev-v2.6-archive) Create kube-dns service monitor in kube-system 
This is required since, by default, we ignoreNamespaceSelectors.

(partially cherry picked from commit 700975ee95)
 2022-01-06 11:33:19 -08:00
aiyengar2 f04ef106ae
(dev-v2.6-archive) Merge pull request #662 from aiyengar2/use_new_busybox 
Replace rancher/busybox w/ rancher/library-busybox

(partially cherry picked from commit afb3af8690)
 2022-01-06 11:33:18 -08:00
rajashree 748bfc929f
(dev-v2.6-archive) Update resourceset to include configmaps for clusterrepos 
(partially cherry picked from commit b3cc3a717c)
 2022-01-06 11:33:18 -08:00
Brenda Rearden 450547552b
(dev-v2.6-archive) Merge pull request #659 from brendarearden/image-updates 
Image updates for Istio 1.7.1 and Kiali 1.23.0

(partially cherry picked from commit 14f0a39a4a)
 2022-01-06 11:33:17 -08:00
Prachi Damle 3215b5c901
(dev-v2.6-archive) Merge pull request #664 from prachidamle/new_cis_fixes 
CIS chart fixes to update image tag, fixes for hardened cluster

(partially cherry picked from commit 89746f9fe1)
 2022-01-06 11:33:17 -08:00
Prachi Damle 866397beaa
(dev-v2.6-archive) Delete tgz files from assets, parameter in the post-install hook for namespace should use the 
helm templating

(partially cherry picked from commit 2dd35d89bb)
 2022-01-06 11:33:16 -08:00
Brenda Rearden 8e6e45ad6d
(dev-v2.6-archive) Update kiali to 1.23.0 
(partially cherry picked from commit d397bb512c)
 2022-01-06 11:33:16 -08:00
Darren Shepherd 824e9a5211
(dev-v2.6-archive) fleet-0.3.0-beta1 
(partially cherry picked from commit ecd90e66af)
 2022-01-06 11:33:15 -08:00
Prachi Damle 3b038e7b76
(dev-v2.6-archive) Fixes to clear error state on scan retry, fixes for CIS hardened cluster 
(partially cherry picked from commit af609af172)
 2022-01-06 11:33:15 -08:00
Daishan Peng e7c5d7a499
(dev-v2.6-archive) Merge pull request #660 from StrongMonkey/add-rio-annotations 
Add istio dependency to rio chart

(partially cherry picked from commit 4cd7a24bd8)
 2022-01-06 11:33:14 -08:00
Arvind Iyengar 5e6cfe0671
(dev-v2.6-archive) Replace rancher/busybox w/ rancher/library-busybox 
Related Issue: https://github.com/rancher/rancher/issues/28978

(partially cherry picked from commit c263e58157)
 2022-01-06 11:33:14 -08:00
Arvind Iyengar b8cec21d48
(dev-v2.6-archive) Rebase to new upstream at kube-prometheus-stack 
The old upstream at https://github.com/helm/charts/tree/master/stable/prometheus-operator has been deprecated in favor of the chart at https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-prometheus-stack.

This commit modifies the rancher-monitoring patch in order to rebase to this new upstream, so it contains a ton of different changes to the patch file.

Related Issue: rancher/rancher#28822

(partially cherry picked from commit 178528b12c)
 2022-01-06 11:33:13 -08:00
Daishan 187233ac3f
(dev-v2.6-archive) Add istio dependency to rio chart 
(partially cherry picked from commit f29ed480a8)
 2022-01-06 11:33:13 -08:00
Brenda Rearden 6e7b67e0b9
(dev-v2.6-archive) Update istio to 1.7.1 
(partially cherry picked from commit 5c46fa62ec)
 2022-01-06 11:33:12 -08:00
Darren Shepherd 5f817e15c7
(dev-v2.6-archive) Update rancher-operator and fleet 
(partially cherry picked from commit 915894a74a)
 2022-01-06 11:33:12 -08:00
rajashree 4789e1bf5e
(dev-v2.6-archive) Expand default resourceset to include 2.5 CRDs 
(partially cherry picked from commit 00d42a178c)
 2022-01-06 11:33:11 -08:00
Jacob Payne 5093067190
(dev-v2.6-archive) rke1 to rke (#638) 
(partially cherry picked from commit 74ea61d262)
 2022-01-06 11:33:11 -08:00
Darren Shepherd ff6ccebd8a
(dev-v2.6-archive) Update rancher-operator 
(partially cherry picked from commit 4fc422c4b3)
 2022-01-06 11:33:10 -08:00
Darren Shepherd 76e34ad2bb
(dev-v2.6-archive) Update rancher-operator crd 
(partially cherry picked from commit a0de135517)
 2022-01-06 11:33:10 -08:00
Darren Shepherd b2cd7ca9c8
(dev-v2.6-archive) New rancher-operator and fleet 
(partially cherry picked from commit 0239984da2)
 2022-01-06 11:33:09 -08:00
Darren Shepherd 83d98eead2
(dev-v2.6-archive) rancher-operator v0.1.0-alpha4 
(partially cherry picked from commit 16dfb1154b)
 2022-01-06 11:33:09 -08:00
Arvind Iyengar 970d5e7246
(dev-v2.6-archive) Create Alertmanager secret in pre-install hook 
(partially cherry picked from commit d03ffe81df)
 2022-01-06 11:33:08 -08:00
Prachi Damle 145544197f
(dev-v2.6-archive) Merge pull request #644 from prachidamle/new_cis_fixes 
New cis-operator state transition fixes

(partially cherry picked from commit 433d3a5ffa)
 2022-01-06 11:33:08 -08:00
Jacob Payne 77baa20d90
(dev-v2.6-archive) bumped image versions (#639) 
(partially cherry picked from commit 2d2f818ad5)
 2022-01-06 11:33:07 -08:00
Prachi Damle 6eb9626f52
(dev-v2.6-archive) Updating cis-operator image tag, correcting readme, updating CRD defn 
(partially cherry picked from commit e0a5f24a68)
 2022-01-06 11:33:07 -08:00
Darren Shepherd 84fb2b6f98
(dev-v2.6-archive) Update fleet and rancher-operator 
(partially cherry picked from commit 2d2bcdde50)
 2022-01-06 11:33:06 -08:00
Jacob Payne cc82bdd326
(dev-v2.6-archive) upgraded upstream chart version (#608) 
* upgraded upstream chart version

(partially cherry picked from commit 1908520a34)
 2022-01-06 11:33:06 -08:00
Arvind Iyengar ef6896d23d
(dev-v2.6-archive) Update docs, descriptions, and other minor fixes 
- [rancher-pushprox] add hidden annotation + update description
- [rancher-monitoring] update description + add monitoring app-README.md
- [rancher-monitoring|rancher-pushprox] Move systemDefaultRegistry to global.cattle
- [rancher-monitoring] Move exporter enabled logic to _helpers.tpl

(partially cherry picked from commit 4d5653b2ec)
 2022-01-06 11:33:06 -08:00
Darren Shepherd c559ac3867
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha7 
(partially cherry picked from commit ec627b5fd2)
 2022-01-06 11:33:05 -08:00
Darren Shepherd 0c83354892
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha6 
(partially cherry picked from commit a1684f1d11)
 2022-01-06 11:33:05 -08:00
Darren Shepherd f5d62138d2
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha4 
(partially cherry picked from commit caa9a4fc38)
 2022-01-06 11:33:04 -08:00