andata
/
rancher-charts
mirror of https://git.rancher.io/charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,071 Commits
50 Branches
2 Tags
432 MiB
Commit Graph

716 Commits (9fab3d3ce4dc8d4abb2138eb5573c93a148fc7d6)

Author SHA1 Message Date
Arvind Iyengar 00927521f0
(dev-v2.6-archive) Rebase to 086f1f7f0870e110abf30aa6bfe7c141e83cc950 
(cherry picked from commit 383fb984af)

(partially cherry picked from commit 28f95b059f)
 2022-01-06 11:34:25 -08:00
Arvind Iyengar 86fb1ad0a5
(dev-v2.6-archive) Change kube-state-metrics commit and url 
(cherry picked from commit 3c5014784e)

(partially cherry picked from commit c58aa6d7f4)
 2022-01-06 11:34:24 -08:00
Arvind Iyengar 10fd5f03fe
(dev-v2.6-archive) Update rancher-prometheus-adapter to new base 50b719af447594abbae7beeb4d6458a19f8e9689 
(cherry picked from commit 93b8c72bcf)

(partially cherry picked from commit 19a218b8af)
 2022-01-06 11:34:24 -08:00
Arvind Iyengar 23d22a40f3
(dev-v2.6-archive) Rebase to 50b719af447594abbae7beeb4d6458a19f8e9689 
(cherry picked from commit 215afb6707)

(partially cherry picked from commit baea983d2f)
 2022-01-06 11:34:23 -08:00
Arvind Iyengar d5196531dc
(dev-v2.6-archive) Update rancher-node-exporter to new base a05f7b8888d6174827b815aa097d64b94f00af3e 
(cherry picked from commit dbc71f3dfc)

(partially cherry picked from commit 1916fb1654)
 2022-01-06 11:34:22 -08:00
Arvind Iyengar 288f3a8a63
(dev-v2.6-archive) Rebase to a05f7b8888d6174827b815aa097d64b94f00af3e 
(cherry picked from commit 6e32565f54)

(partially cherry picked from commit f8cdd3a3ef)
 2022-01-06 11:34:21 -08:00
Arvind Iyengar cdf102f638
(dev-v2.6-archive) Merge pull request #1278 from aiyengar2/check_monitoring 
Add dummy openAPIV3Schema on pre-install step

(partially cherry picked from commit b24e4ee460)
 2022-01-06 11:34:20 -08:00
Donnie Adams 9350ad1384
(dev-v2.6-archive) Bump aks-operator chart to 1.0.1-rc12 
(partially cherry picked from commit 7b20ac89ce)
 2022-01-06 11:34:20 -08:00
Donnie Adams 68c408a7c1
(dev-v2.6-archive) Merge pull request #1287 from thedadams/bump-eks-v1.1.1-rc4 
Bump eks-operator chart to 1.1.1-rc4

(partially cherry picked from commit c5552eb0de)
 2022-01-06 11:34:18 -08:00
Donnie Adams c27468963b
(dev-v2.6-archive) Merge pull request #1288 from thedadams/bump-gke-v1.1.1-rc4 
Bump gke-operator chart to 1.1.1-rc4

(partially cherry picked from commit 2e23e41254)
 2022-01-06 11:34:18 -08:00
Donnie Adams ed5ec609d3
(dev-v2.6-archive) Bump gke-operator chart to 1.1.1-rc4 
(partially cherry picked from commit 9d2ab0d8f9)
 2022-01-06 11:34:16 -08:00
Donnie Adams f4fb1d0c70
(dev-v2.6-archive) Bump eks-operator chart to 1.1.1-rc4 
(partially cherry picked from commit bafe6cded9)
 2022-01-06 11:34:16 -08:00
Michal Jura a42c3cc1e3
(dev-v2.6-archive) Bump aks-operator chart to 1.0.1-rc11 
(partially cherry picked from commit d86330f7c5)
 2022-01-06 11:34:15 -08:00
Jiaqi Luo db423ccabe
(dev-v2.6-archive) Merge pull request #1277 from jiaqiluo/fix-alerting-driver 
(partially cherry picked from commit 022b4453a3)
 2022-01-06 11:34:14 -08:00
Jiaqi Luo c6381c9acd
(dev-v2.6-archive) user the image rancher/kubectl to avoid runAsRoot 
(partially cherry picked from commit 0a8d93a080)
 2022-01-06 11:34:13 -08:00
Jiaqi Luo 2f0a596193
(dev-v2.6-archive) bump rancher-backup to 2.2.0-rc2 
(partially cherry picked from commit 66506a37a9)
 2022-01-06 11:34:13 -08:00
Jiaqi Luo cf70932465
(dev-v2.6-archive) update versions on multiple charts 
(partially cherry picked from commit 26d9c3d28c)
 2022-01-06 11:34:12 -08:00
Jiaqi Luo 944b14aaab
(dev-v2.6-archive) bump rancher-backup to 2.2.0-rc1 
(partially cherry picked from commit 494564d483)
 2022-01-06 11:34:11 -08:00
Arvind Iyengar 1110c8c82e
(dev-v2.6-archive) Add dummy openAPIV3Schema to initContainer and log patch 
(partially cherry picked from commit 3202417f2d)
 2022-01-06 11:34:10 -08:00
Darren Shepherd 77225d476b
(dev-v2.6-archive) Bump rancher-webhook to 0.2.0-alpha02 
(partially cherry picked from commit 2a023fdc38)
 2022-01-06 11:34:10 -08:00
Jacob Payne 7821fd2296
(dev-v2.6-archive) Fix/issue 32301 (#1247) 
* cis 1.0.6 1.22 fixes

* make charts

(partially cherry picked from commit 0e089425ab)
 2022-01-06 11:34:09 -08:00
Daishan Peng f32ff6597f
(dev-v2.6-archive) Merge pull request #1262 from StrongMonkey/fleet-v0.3.6-rc2 
Fleet v0.3.6 rc2

(partially cherry picked from commit ed3d4f771f)
 2022-01-06 11:34:08 -08:00
Jiaqi Luo cc72f9ac45
(dev-v2.6-archive) support installing rancher-alerting-drivers in hardened cluster 
(partially cherry picked from commit a9dfdea9b4)
 2022-01-06 11:34:08 -08:00
Jiaqi Luo bd7135beb9
(dev-v2.6-archive) add missing permission in the podSecurityPolicy for rancher-prom2teams 
(partially cherry picked from commit d9f7aa887b)
 2022-01-06 11:34:07 -08:00
Jiaqi Luo 3bd972ffb2
(dev-v2.6-archive) add missing permission in the podSecurityPolicy for rancher-sachet 
(partially cherry picked from commit de95419e0c)
 2022-01-06 11:34:06 -08:00
Daishan 6fcba17b8f
(dev-v2.6-archive) Update fleet to v0.3.6-rc2 
(partially cherry picked from commit ea50d27198)
 2022-01-06 11:34:06 -08:00
Jiaqi Luo 260458573b
(dev-v2.6-archive) Merge pull request #1256 from jiaqiluo/update-charts-build-scrpts 
(partially cherry picked from commit aab21e8493)
 2022-01-06 11:34:05 -08:00
Jiaqi Luo 667240cc68
(dev-v2.6-archive) update all charts' version to 100.0.0 
(partially cherry picked from commit 09f8f4b5bf)
 2022-01-06 11:34:04 -08:00
Manuel Buil a4ac0510ee
(dev-v2.6-archive) Add sriov chart 
Signed-off-by: Manuel Buil <mbuil@suse.com>

(partially cherry picked from commit e56e520221)
 2022-01-06 11:34:04 -08:00
Jiaqi Luo 2fe40e5d5c
(dev-v2.6-archive) run make template to update templates 
(partially cherry picked from commit a6980385e1)
 2022-01-06 11:34:03 -08:00
Nick Gerace 178bcc5d60
(dev-v2.6-archive) Merge pull request #1261 from nickgerace/dev-v2.6-sprig-and-helm-are-not-fun 
Force convert non-string buffer values for Logging 3.10.0

(partially cherry picked from commit 1c33d37907)
 2022-01-06 11:34:02 -08:00
Daishan Peng 6ca9fb2c05
(dev-v2.6-archive) Merge pull request #1257 from StrongMonkey/fleet-v0.3.6-rc1-2.6 
Fleet v0.3.6-rc1

(partially cherry picked from commit 6da36d301f)
 2022-01-06 11:34:01 -08:00
Daishan f4cb5b7eba
(dev-v2.6-archive) Make charts 
(partially cherry picked from commit a9e2003ebb)
 2022-01-06 11:34:01 -08:00
Nick Gerace 9d6ca1d72c
(dev-v2.6-archive) Force convert non-string buffer values for Logging 3.10.0 
Force convert non-string buffer values for Logging 3.10.0. Remove
packageVersion 0 version of the chart.

(partially cherry picked from commit d9295e7c00)
 2022-01-06 11:34:00 -08:00
Jiaqi Luo 5dcbb0283b
(dev-v2.6-archive) Merge pull request #1227 from jiaqiluo/pushprox-for-ingress-nginx-dev-v2.6 
(partially cherry picked from commit 4f1aa0319f)
 2022-01-06 11:33:59 -08:00
Nick Gerace 091cda727d
(dev-v2.6-archive) Fix logging 3.10.0 and remove bad chart 
(partially cherry picked from commit c320d24d50)
 2022-01-06 11:33:59 -08:00
Jiaqi Luo ed9fa241d7
(dev-v2.6-archive) add sub-charts for scraping ingress-nginx in rke and rke2 clusters 
(partially cherry picked from commit 1157b4a153)
 2022-01-06 11:33:58 -08:00
Jiaqi Luo e45348b081
(dev-v2.6-archive) Update rancher-pushprox to support overriding namespace and switching the workload type of the client between Deployment and DaemonSet by adding replicas and affinity in pod.spec 
(partially cherry picked from commit 8bf9b82e91)
 2022-01-06 11:33:58 -08:00
Daishan 63682d8921
(dev-v2.6-archive) Update fleet to v0.3.6-rc1 
(partially cherry picked from commit a8e8fb5957)
 2022-01-06 11:33:57 -08:00
Nick Gerace beeeff4cee
(dev-v2.6-archive) Update logging to 3.10.0 and convert fluent-bit buffer fields to string 
(partially cherry picked from commit d8d38e6082)
 2022-01-06 11:33:56 -08:00
Jacob Payne 41f86f41d1
(dev-v2.6-archive) fix/issue 32993 (#1248) 
* use journald to consume k3s logs

* make charts

(partially cherry picked from commit f91fac2cf7)
 2022-01-06 11:33:55 -08:00
Jacob Payne 5537e98926
(dev-v2.6-archive) Fix/issue 33092 (#1254) 
* removed rke2 containers logging and added some extra settings to the fluentbit configmap

* charts

(partially cherry picked from commit ba4492b7d4)
 2022-01-06 11:33:55 -08:00
Arvind Iyengar d7b9e7e2ba
(dev-v2.6-archive) Add kubelet and nodeExporter pushprox and bump image (#1245) 
* Bump PushProx chart version

* Expose serviceMonitor endpoints and client SA RBAC

* Bump PushProx image to v0.1.0-rancher2

* Support hardened kubelet+nodeExporter & update k3s

* Generate charts

* Disable kubelet serviceMonitor if k3sServer enabled

* make charts

(partially cherry picked from commit a064b37d4e)
 2022-01-06 11:33:54 -08:00
Donnie Adams 28c320bdb8
(dev-v2.6-archive) Merge pull request #1244 from thedadams/bump-gke-v1.1.1-rc2 
(partially cherry picked from commit e2e04c8f8e)
 2022-01-06 11:33:54 -08:00
Donnie Adams 8cd004c998
(dev-v2.6-archive) Bump gke-operator chart to 1.1.1-rc2 
(partially cherry picked from commit c3219d0cbd)
 2022-01-06 11:33:53 -08:00
Donnie Adams 7d48f885ae
(dev-v2.6-archive) Bump aks-operator chart to 1.0.1-rc7 
(partially cherry picked from commit c44dfebdde)
 2022-01-06 11:33:52 -08:00
Donnie Adams 2bdbd65274
(dev-v2.6-archive) Bump eks-operator chart to 1.1.1-rc2 
(partially cherry picked from commit 06802f45b5)
 2022-01-06 11:33:52 -08:00
Arvind Iyengar 2e2ec8ec2c
(dev-v2.6-archive) Move establishing CRD logic to a helper template 
(partially cherry picked from commit 02ff0c9df8)
 2022-01-06 11:33:51 -08:00
Arvind Iyengar 00ab624721
(dev-v2.6-archive) Mimic Helm CRD install process by introducing wait 
As part of the Helm CRD installation process shown [here](43853ea772/pkg/action/install.go (L160-L162)), charts that both attempt to install CRDs and then install resources (e.g. `len(totalItems) > 0`) invalidate the cache and attempt to get the CRDs again to `Give time for the CRD to be recognized.` before continuing the Helm installation.

Because Monitoring V2 currently does not observe this invalidation and wait, flakey race conditions documented in issues like https://github.com/rancher/rancher/issues/32025 and https://github.com/rancher/rancher/issues/29171 can be caused. This commit introduces that invalidation process.

(partially cherry picked from commit 5f3bbe4a36)
 2022-01-06 11:33:50 -08:00
Darren Shepherd 43394525cf
(dev-v2.6-archive) Fix invalid tag in system-upgrade-controller 
(partially cherry picked from commit b1dcdd1a87)
 2022-01-06 11:33:50 -08:00
Colleen Murphy dfc77a99a9
(dev-v2.6-archive) Merge pull request #1213 from cmurphy/dev-v2.6-aks-operator 
Add aks-operator charts

(partially cherry picked from commit 556c9b1afa)
 2022-01-06 11:33:49 -08:00
Colleen Murphy 57998bd35d
(dev-v2.6-archive) Add aks-operator package 
(partially cherry picked from commit 2abda43f33)
 2022-01-06 11:33:48 -08:00
Jiaqi Luo cb516236eb
(dev-v2.6-archive) Merge pull request #1214 from jiaqiluo/rancher-backup-105-rc1-dev-v2.6 
[dev-v2.6] cut rancher-backup and rancher-backup-crd 1.1.100+up1.1.1

(partially cherry picked from commit dac8de7d7e)
 2022-01-06 11:33:48 -08:00
Donnie Adams 91cf674a50
(dev-v2.6-archive) Merge pull request #1195 from thedadams/add-gke-operator 
(partially cherry picked from commit 9f439d72ae)
 2022-01-06 11:33:47 -08:00
Donnie Adams ed7f77d9af
(dev-v2.6-archive) Add gke-operator 
(partially cherry picked from commit b608a65c41)
 2022-01-06 11:33:46 -08:00
dbason 7d753513f7
(dev-v2.6-archive) Add support for the kube audit log to v2 logging (#1223) 
* Add logging for kube-audit

* Generate charts for d274040a

(partially cherry picked from commit 4e6c09f559)
 2022-01-06 11:33:46 -08:00
Jiaqi Luo cf569513fa
(dev-v2.6-archive) Merge pull request #1230 from jiaqiluo/update-monitoring-image-dev-v2.6 
[dev-v2.6]update the image rancher/mirrored-library-nginx

(partially cherry picked from commit ef298fe102)
 2022-01-06 11:33:45 -08:00
Prachi Damle d729c71088
(dev-v2.6-archive) Merge pull request #1229 from prachidamle/cis_k8s_version_tag_26 
Updating cis-operator image tag to deliver fix for k8s upgrade issue

(partially cherry picked from commit d016ae3c10)
 2022-01-06 11:33:44 -08:00
Jiaqi Luo 0729838224
(dev-v2.6-archive) update the image rancher/mirrored-library-nginx 
(partially cherry picked from commit 5480033c84)
 2022-01-06 11:33:43 -08:00
Prachi Damle 19183ca1c2
(dev-v2.6-archive) Update CIS tag to include k8s version upgrade fix 
No need to update packageVersion

Generated assets

(partially cherry picked from commit 7302e66ece)
 2022-01-06 11:33:43 -08:00
Jiaqi Luo b9024c1fd2
(dev-v2.6-archive) cut rancher-backup and rancher-backup-crd v1.1.1 
(partially cherry picked from commit 84b66d8013)
 2022-01-06 11:33:42 -08:00
Arvind Iyengar 470ce9ee46
(dev-v2.6-archive) Add validation on trying to deploy Grafana PVC 
(partially cherry picked from commit 75a96a7e94)
 2022-01-06 11:33:41 -08:00
Arvind Iyengar b78b04ad05
(dev-v2.6-archive) Bump packageVersion 
(partially cherry picked from commit 0bdbaf798d)
 2022-01-06 11:33:41 -08:00
Arvind Iyengar 4dc8ac280d
(dev-v2.6-archive) Merge pull request #1224 from aiyengar2/fix_rke_2_etcd_default_2_6 
[2.6] Add NoExecute toleration to rke2Etcd and remove key

(partially cherry picked from commit 9c5c1c5ef3)
 2022-01-06 11:33:40 -08:00
Donnie Adams 6b385a97b9
(dev-v2.6-archive) Change eks-operator version to v1.1.1 
(partially cherry picked from commit 8d7f56d799)
 2022-01-06 11:33:39 -08:00
Arvind Iyengar 05c3912de8
(dev-v2.6-archive) Add NoExecute toleration to rke2Etcd and remove key 
(cherry picked from commit a181ea3011)

(partially cherry picked from commit 6239716e10)
 2022-01-06 11:33:38 -08:00
Nick Gerace bc7d68d557
(dev-v2.6-archive) Fix windows prefix path for logging 
(partially cherry picked from commit c9bf5990b0)
 2022-01-06 11:33:37 -08:00
Arvind Iyengar 5c0f816c65
(dev-v2.6-archive) Fix monitoring Chart.yaml 
This is required due to the change released in v0.1.0 of the charts-build-scripts to switch the package used for YAML marshalling / unmarshalling.

Note: This does not need a packageVersion bump since it has already been bumped once for this release.
(cherry picked from commit 7ec1716f66)

(partially cherry picked from commit e2c9a0746b)
 2022-01-06 11:33:37 -08:00
Arvind Iyengar 4db1d5822e
(dev-v2.6-archive) Fix istio requirement.yaml 
This is required due to the change released in v0.1.0 of the charts-build-scripts to switch the package used for YAML marshalling / unmarshalling.

(cherry picked from commit 5392d84cf6)

(partially cherry picked from commit 8845d9ae9f)
 2022-01-06 11:33:36 -08:00
Arvind Iyengar 47a4a72422
(dev-v2.6-archive) Fix alerting-drivers Chart.yaml 
This is required due to the change released in v0.1.0 of the charts-build-scripts to switch the package used for YAML marshalling / unmarshalling.

Note: This does not need a packageVersion bump since it has already been bumped once for this release.
(cherry picked from commit e5415e48de)

(partially cherry picked from commit ba726cdc6c)
 2022-01-06 11:33:35 -08:00
Arvind Iyengar 775e5e62f2
(dev-v2.6-archive) Remove rcVersions 
(partially cherry picked from commit b350bb93e0)
 2022-01-06 11:33:34 -08:00
Arvind Iyengar f859625d86
(dev-v2.6-archive) Checkout current packages from dev-v2.6-source 
```bash
git fetch upstream
git checkout upstream/dev-v2.6-source -- packages; git reset HEAD; git checkout -- packages/README.md
```

This overwrites the previous changes based on stuff currently in dev-v2.6-source today.

(partially cherry picked from commit 1107be9199)
 2022-01-06 11:33:33 -08:00
Arvind Iyengar 63af4011e1
(dev-v2.6-archive) Checkout current packages from dev-v2.5-source 
```bash
git fetch upstream
git checkout upstream/dev-v2.5-source -- packages; git reset HEAD; git checkout -- packages/README.md
```

(partially cherry picked from commit 551327b14e)
 2022-01-06 11:33:32 -08:00
Arvind Iyengar ff586304c1
(dev-v2.6-archive) Regenerate template based on v0.2.0 release 
```bash
make template
```

(partially cherry picked from commit e0424d8ac0)
 2022-01-06 11:33:31 -08:00
actions decb1db44b
(dev-v2.6-archive) Generated changes 
(partially cherry picked from commit 88defdad62)
 2022-01-06 11:33:31 -08:00
aiyengar2 2304c5e0fb
(dev-v2.6-archive) Merge pull request #677 from aiyengar2/fix_magic_links 
Fix broken magic links for Grafana and Prometheus

(partially cherry picked from commit f7cee8c5c7)
 2022-01-06 11:33:31 -08:00
Darren Shepherd b2b0a96592
(dev-v2.6-archive) fleet v0.3.0-beta3 
(partially cherry picked from commit 161b04a5e6)
 2022-01-06 11:33:30 -08:00
Arvind Iyengar d652d4db01
(dev-v2.6-archive) Add nginx proxy to Prometheus for magic links 
This commit adds an nginx proxy in front of Prometheus that intercepts the requests that are sent to the Prometheus pod. This change was necessary since the Prometheus pod encounters issues with Rancher proxy URLs that are formatted like:

```
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-prometheus:9090/proxy
```

Specifically, if using the root_url option, it doubles up this URL when making requests for resources, e.g.
```
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-prometheus:9090/proxy/<my-path>
=>
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-prometheus:9090/proxy/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-prometheus:9090/proxy/<my-path>
```

However, this does not resolve the issue in https://github.com/rancher/rancher/issues/29068.

(partially cherry picked from commit 92f0eca770)
 2022-01-06 11:33:30 -08:00
Arvind Iyengar b9758f95c4
(dev-v2.6-archive) Add nginx proxy to Grafana for magic links 
This commit adds an nginx proxy in front of Grafana that intercepts the requests that are sent to the Grafana pod. This change was necessary since the Grafana pod encounters issues with Rancher proxy URLs that are formatted like:

```
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-grafana:80/proxy
```

Specifically, if using the root_url option, it doubles up this URL when making requests for resources, e.g.
```
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-grafana:80/proxy/<my-path>
=>
<server-url>/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-grafana:80/proxy/k8s/clusters/<cluster-id>/api/v1/namespaces/cattle-monitoring-system/services/http:rancher-monitoring-grafana:80/proxy/<my-path>
```

(partially cherry picked from commit d6c774aa42)
 2022-01-06 11:33:29 -08:00
rajashree 42d7b9382d
(dev-v2.6-archive) Change encryption config field name in restore crd 
(partially cherry picked from commit 37a8648cf8)
 2022-01-06 11:33:29 -08:00
maggieliu 2e262303da
(dev-v2.6-archive) Merge pull request #674 from aiyengar2/fix_monitoring_chart_hardened 
Support monitoring in hardened RKE clusters

(partially cherry picked from commit 34fdd14bca)
 2022-01-06 11:33:28 -08:00
maggieliu 826d5dc2df
(dev-v2.6-archive) Merge pull request #675 from aiyengar2/fix_pushprox_chart_hardened 
Support pushprox in hardened RKE clusters

(partially cherry picked from commit 6edb750ce9)
 2022-01-06 11:33:28 -08:00
Prachi Damle a63a0d586a
(dev-v2.6-archive) Merge pull request #676 from prachidamle/airgap_fix 
Use global registry for security-scan and sonobuoy tool images to support airgapped setups

(partially cherry picked from commit 0f786657a2)
 2022-01-06 11:33:27 -08:00
Jacob Payne fba428baa7
(dev-v2.6-archive) allow tolerations to be passed to fluentbit containers (#673) 
(partially cherry picked from commit 91d1dedca1)
 2022-01-06 11:33:27 -08:00
Prachi Damle 2d82003905
(dev-v2.6-archive) Use the system_default_registry for security-scan and sonobuoy images 
Deleting tgz assets

(partially cherry picked from commit 42f30bfad1)
 2022-01-06 11:33:26 -08:00
Steven Crespo ed4687076b
(dev-v2.6-archive) Merge pull request #670 from PennyScissors/update-gk-v3.1.1 
Update gatekeeper to version 3.1.1

(partially cherry picked from commit 32f1b41934)
 2022-01-06 11:33:26 -08:00
Steven Crespo b21fe035b5
(dev-v2.6-archive) Update gatekeeper to v3.1.1 
(partially cherry picked from commit 5757f8cc15)
 2022-01-06 11:33:25 -08:00
Arvind Iyengar ae60d235cb
(dev-v2.6-archive) Support monitoring in hardened RKE clusters 
This commit adds support for deploying rancher-monitoring into hardened clusters.

It modifies some of the default securityContexts and does some misc. fixes such as:
- Removing default AppArmor PSP annotations from Grafana (related to https://github.com/helm/charts/issues/9090)
- Modifying rkeScheduler and rkeControllerManager to use localhost to scrape components since the endpoints aren't exposed in a hardened cluster

These changes have been verified on a hardened RKE cluster.

(partially cherry picked from commit e3d6033572)
 2022-01-06 11:33:25 -08:00
Arvind Iyengar 0eded521bd
(dev-v2.6-archive) Support pushprox in hardened RKE clusters 
This commit adds support for deploying rancher-pushprox into hardened clusters.

It introduces securityContexts and rearranges the RBAC in order to support a PodSecurityPolicy for the PushProx clients.

These changes have been verified on a hardened RKE cluster.

(partially cherry picked from commit 7d1332356c)
 2022-01-06 11:33:24 -08:00
Arvind Iyengar 0ec38633eb
(dev-v2.6-archive) Move pushprox RBAC into separate file 
(partially cherry picked from commit 4da2300a26)
 2022-01-06 11:33:24 -08:00
Jacob Payne 53db0ed5b4
(dev-v2.6-archive) fixed eks and k3s logging in airgap (#671) 
(partially cherry picked from commit 60c84b3c3b)
 2022-01-06 11:33:23 -08:00
Arvind Iyengar 5b49312554
(dev-v2.6-archive) Use separate namespace only for dashboards 
This commit renames `grafana-dashboards` to `cattle-dashboards` and deprecates the `grafana-datasources` namespace in favor of the normal release namespace.

Related Issue: rancher/rancher#28887

(partially cherry picked from commit b80fb3a8ff)
 2022-01-06 11:33:23 -08:00
Arvind Iyengar a4d132cf54
(dev-v2.6-archive) Split RBAC for ConfigMaps and Secrets 
Related Issue: https://github.com/rancher/rancher/issues/29013

(partially cherry picked from commit 0fa3a06de0)
 2022-01-06 11:33:22 -08:00
Arvind Iyengar a05cd088c8
(dev-v2.6-archive) Relocate Rancher roles to overlay/ 
(partially cherry picked from commit 2e1ed1b130)
 2022-01-06 11:33:22 -08:00
Daishan 536bdd588e
(dev-v2.6-archive) Bump fleet, rancher-operator, webhook 
(partially cherry picked from commit 89cb2793e9)
 2022-01-06 11:33:21 -08:00
Arvind Iyengar 6e9ba81e6d
(dev-v2.6-archive) Add annotations that were left out on rebase 
Dropped on accident in rebase https://github.com/rancher/charts/pull/641/files#diff-ed5b5b87cf149adc6a6408bf81993efdR681-R682

(partially cherry picked from commit 95cf887f5f)
 2022-01-06 11:33:21 -08:00
Brenda Rearden 237e44a8f1
(dev-v2.6-archive) Merge pull request #667 from brendarearden/image-updates 
Set installer repo,tag in values.yaml

(partially cherry picked from commit 34676b359a)
 2022-01-06 11:33:21 -08:00
aiyengar2 d6e2d6fe20
(dev-v2.6-archive) Merge pull request #666 from aiyengar2/fix_kube_dns_namespace 
Create kube-dns service monitor in kube-system

(partially cherry picked from commit 034952747f)
 2022-01-06 11:33:20 -08:00
Brenda Rearden cea35722ed
(dev-v2.6-archive) Set installer repo,tag in values.yaml 
(partially cherry picked from commit 9932422f51)
 2022-01-06 11:33:20 -08:00
Rajashree Mandaogane d9d9732036
(dev-v2.6-archive) Merge pull request #663 from mrajashree/upd 
Update resourceset to include configmaps for clusterrepos

(partially cherry picked from commit 820f105aa2)
 2022-01-06 11:33:19 -08:00
Arvind Iyengar 6d6bc2110a
(dev-v2.6-archive) Create kube-dns service monitor in kube-system 
This is required since, by default, we ignoreNamespaceSelectors.

(partially cherry picked from commit 700975ee95)
 2022-01-06 11:33:19 -08:00
aiyengar2 f04ef106ae
(dev-v2.6-archive) Merge pull request #662 from aiyengar2/use_new_busybox 
Replace rancher/busybox w/ rancher/library-busybox

(partially cherry picked from commit afb3af8690)
 2022-01-06 11:33:18 -08:00
rajashree 748bfc929f
(dev-v2.6-archive) Update resourceset to include configmaps for clusterrepos 
(partially cherry picked from commit b3cc3a717c)
 2022-01-06 11:33:18 -08:00
Brenda Rearden 450547552b
(dev-v2.6-archive) Merge pull request #659 from brendarearden/image-updates 
Image updates for Istio 1.7.1 and Kiali 1.23.0

(partially cherry picked from commit 14f0a39a4a)
 2022-01-06 11:33:17 -08:00
Prachi Damle 3215b5c901
(dev-v2.6-archive) Merge pull request #664 from prachidamle/new_cis_fixes 
CIS chart fixes to update image tag, fixes for hardened cluster

(partially cherry picked from commit 89746f9fe1)
 2022-01-06 11:33:17 -08:00
Prachi Damle 866397beaa
(dev-v2.6-archive) Delete tgz files from assets, parameter in the post-install hook for namespace should use the 
helm templating

(partially cherry picked from commit 2dd35d89bb)
 2022-01-06 11:33:16 -08:00
Brenda Rearden 8e6e45ad6d
(dev-v2.6-archive) Update kiali to 1.23.0 
(partially cherry picked from commit d397bb512c)
 2022-01-06 11:33:16 -08:00
Darren Shepherd 824e9a5211
(dev-v2.6-archive) fleet-0.3.0-beta1 
(partially cherry picked from commit ecd90e66af)
 2022-01-06 11:33:15 -08:00
Prachi Damle 3b038e7b76
(dev-v2.6-archive) Fixes to clear error state on scan retry, fixes for CIS hardened cluster 
(partially cherry picked from commit af609af172)
 2022-01-06 11:33:15 -08:00
Daishan Peng e7c5d7a499
(dev-v2.6-archive) Merge pull request #660 from StrongMonkey/add-rio-annotations 
Add istio dependency to rio chart

(partially cherry picked from commit 4cd7a24bd8)
 2022-01-06 11:33:14 -08:00
Arvind Iyengar 5e6cfe0671
(dev-v2.6-archive) Replace rancher/busybox w/ rancher/library-busybox 
Related Issue: https://github.com/rancher/rancher/issues/28978

(partially cherry picked from commit c263e58157)
 2022-01-06 11:33:14 -08:00
Arvind Iyengar b8cec21d48
(dev-v2.6-archive) Rebase to new upstream at kube-prometheus-stack 
The old upstream at https://github.com/helm/charts/tree/master/stable/prometheus-operator has been deprecated in favor of the chart at https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-prometheus-stack.

This commit modifies the rancher-monitoring patch in order to rebase to this new upstream, so it contains a ton of different changes to the patch file.

Related Issue: rancher/rancher#28822

(partially cherry picked from commit 178528b12c)
 2022-01-06 11:33:13 -08:00
Daishan 187233ac3f
(dev-v2.6-archive) Add istio dependency to rio chart 
(partially cherry picked from commit f29ed480a8)
 2022-01-06 11:33:13 -08:00
Brenda Rearden 6e7b67e0b9
(dev-v2.6-archive) Update istio to 1.7.1 
(partially cherry picked from commit 5c46fa62ec)
 2022-01-06 11:33:12 -08:00
Darren Shepherd 5f817e15c7
(dev-v2.6-archive) Update rancher-operator and fleet 
(partially cherry picked from commit 915894a74a)
 2022-01-06 11:33:12 -08:00
rajashree 4789e1bf5e
(dev-v2.6-archive) Expand default resourceset to include 2.5 CRDs 
(partially cherry picked from commit 00d42a178c)
 2022-01-06 11:33:11 -08:00
Jacob Payne 5093067190
(dev-v2.6-archive) rke1 to rke (#638) 
(partially cherry picked from commit 74ea61d262)
 2022-01-06 11:33:11 -08:00
Darren Shepherd ff6ccebd8a
(dev-v2.6-archive) Update rancher-operator 
(partially cherry picked from commit 4fc422c4b3)
 2022-01-06 11:33:10 -08:00
Darren Shepherd 76e34ad2bb
(dev-v2.6-archive) Update rancher-operator crd 
(partially cherry picked from commit a0de135517)
 2022-01-06 11:33:10 -08:00
Darren Shepherd b2cd7ca9c8
(dev-v2.6-archive) New rancher-operator and fleet 
(partially cherry picked from commit 0239984da2)
 2022-01-06 11:33:09 -08:00
Darren Shepherd 83d98eead2
(dev-v2.6-archive) rancher-operator v0.1.0-alpha4 
(partially cherry picked from commit 16dfb1154b)
 2022-01-06 11:33:09 -08:00
Arvind Iyengar 970d5e7246
(dev-v2.6-archive) Create Alertmanager secret in pre-install hook 
(partially cherry picked from commit d03ffe81df)
 2022-01-06 11:33:08 -08:00
Prachi Damle 145544197f
(dev-v2.6-archive) Merge pull request #644 from prachidamle/new_cis_fixes 
New cis-operator state transition fixes

(partially cherry picked from commit 433d3a5ffa)
 2022-01-06 11:33:08 -08:00
Jacob Payne 77baa20d90
(dev-v2.6-archive) bumped image versions (#639) 
(partially cherry picked from commit 2d2f818ad5)
 2022-01-06 11:33:07 -08:00
Prachi Damle 6eb9626f52
(dev-v2.6-archive) Updating cis-operator image tag, correcting readme, updating CRD defn 
(partially cherry picked from commit e0a5f24a68)
 2022-01-06 11:33:07 -08:00
Darren Shepherd 84fb2b6f98
(dev-v2.6-archive) Update fleet and rancher-operator 
(partially cherry picked from commit 2d2bcdde50)
 2022-01-06 11:33:06 -08:00
Jacob Payne cc82bdd326
(dev-v2.6-archive) upgraded upstream chart version (#608) 
* upgraded upstream chart version

(partially cherry picked from commit 1908520a34)
 2022-01-06 11:33:06 -08:00
Arvind Iyengar ef6896d23d
(dev-v2.6-archive) Update docs, descriptions, and other minor fixes 
- [rancher-pushprox] add hidden annotation + update description
- [rancher-monitoring] update description + add monitoring app-README.md
- [rancher-monitoring|rancher-pushprox] Move systemDefaultRegistry to global.cattle
- [rancher-monitoring] Move exporter enabled logic to _helpers.tpl

(partially cherry picked from commit 4d5653b2ec)
 2022-01-06 11:33:06 -08:00
Darren Shepherd c559ac3867
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha7 
(partially cherry picked from commit ec627b5fd2)
 2022-01-06 11:33:05 -08:00
Darren Shepherd 0c83354892
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha6 
(partially cherry picked from commit a1684f1d11)
 2022-01-06 11:33:05 -08:00
Darren Shepherd f5d62138d2
(dev-v2.6-archive) rancher-webhook v0.1.0-alpha4 
(partially cherry picked from commit caa9a4fc38)
 2022-01-06 11:33:04 -08:00
Darren Shepherd ae53f90c0c
(dev-v2.6-archive) Update fleet, rancher-operator, rancher-webhook 
(partially cherry picked from commit ceda36dce4)
 2022-01-06 11:33:04 -08:00
Rajashree Mandaogane 0739834448
(dev-v2.6-archive) Merge pull request #630 from mrajashree/quote 
Remove quotes around pvc storageClassName

(partially cherry picked from commit ef9d7aeafb)
 2022-01-06 11:33:03 -08:00
rajashree b39c8588a4
(dev-v2.6-archive) Removes quotes around pvc storageClassName 
The field storageClassName uses "quote" template function. So the quotes around it
lead to errors. This commit removes the quotes

(partially cherry picked from commit 4fbdb77861)
 2022-01-06 11:33:03 -08:00
Steven Crespo 5fbdeaedb4
(dev-v2.6-archive) Merge pull request #616 from PennyScissors/update-gatekeeper-v3.1.0 
Update opa gatekeeper to v3.1.0

(partially cherry picked from commit 81c286cb9f)
 2022-01-06 11:33:03 -08:00
Steven Crespo 7c9064ca09
(dev-v2.6-archive) Update opa gatekeeper to v3.1.0 
(partially cherry picked from commit fb8c308737)
 2022-01-06 11:33:02 -08:00
Brenda Rearden ac8e1a52cd
(dev-v2.6-archive) Merge pull request #627 from brendarearden/istio-version-rollback 
Add annotation changes to version Istio 1.6.8

(partially cherry picked from commit 1322150a57)
 2022-01-06 11:33:02 -08:00
Brenda Rearden e2f6c101ab
(dev-v2.6-archive) Add cattle system registry 
(partially cherry picked from commit 46204a9171)
 2022-01-06 11:33:01 -08:00
Brenda Rearden 759d9a2f35
(dev-v2.6-archive) Add annotation changes to version Istio 1.6.8 
(partially cherry picked from commit 583b669a92)
 2022-01-06 11:33:01 -08:00
aiyengar2 47f53fb0ab
(dev-v2.6-archive) Merge pull request #595 from aiyengar2/change_crd_ownership 
Add generateCRDChart.assumeOwnershipOfCRDs flag

(partially cherry picked from commit 7d32212d2c)
 2022-01-06 11:33:00 -08:00
prachidamle cf361b4183
(dev-v2.6-archive) Generated changes 
(partially cherry picked from commit 2e8885abaa)
 2022-01-06 11:33:00 -08:00
Prachi Damle 3a84d26ed3
(dev-v2.6-archive) Adding rancher-cis-benchmark-crds - CRD chart for CIS v2 
Adding rancher-cis-benchmark - Main chart for deploying cis-operator

Review comments and changes CRDs and adding the roles

Adding default ClusterScanProfiles in a Configmap

Updating kubernetes version to have major.minor.patch

Package the CRDs within the original chart and add package.yaml

chart changes for tolerations, crds, added
global.cattle.systemDefaultRegistry

Review changes to removed nodeSelector helper, combine all cis clusterroles in one file

CRD name change and adding keywords, moving package.yaml one folder upi
Renamed hardened benchmark
Move providesGVR to chart.yaml

(partially cherry picked from commit b55e6ec019)
 2022-01-06 11:32:59 -08:00
Arvind Iyengar 60bbba3221
(dev-v2.6-archive) Use assumeOwnershipOfCRDs for rancher-monitoring 
(partially cherry picked from commit 9fe6ed19c1)
 2022-01-06 11:32:59 -08:00
rajashree b3a1c04d85
(dev-v2.6-archive) Backup-restore-operator chart 
(partially cherry picked from commit 4ad856c2cc)
 2022-01-06 11:32:58 -08:00
Brenda Rearden 40ab3830d6
(dev-v2.6-archive) Add providesGVR to patch file and remove from package.yaml 
(partially cherry picked from commit da849a2dee)
 2022-01-06 11:32:58 -08:00
Caleb Bron 8d769b2a5b
(dev-v2.6-archive) Make monitoring gvr singular 
(partially cherry picked from commit f223cb6b6d)
 2022-01-06 11:32:57 -08:00
Brenda Rearden 6fbadc5687
(dev-v2.6-archive) Update provides/requires gvr, added keywords 
(partially cherry picked from commit aa13a90e13)
 2022-01-06 11:32:57 -08:00
Brenda Rearden 009fed1e72
(dev-v2.6-archive) Add hidden annotation to kiali-server chart 
(partially cherry picked from commit e6d0c9c8bf)
 2022-01-06 11:32:56 -08:00
Brenda Rearden 93bfba0adb
(dev-v2.6-archive) Update to rancher image, remove extra end in helper 
(partially cherry picked from commit 9808ea00df)
 2022-01-06 11:32:56 -08:00
Arvind Iyengar 97c85e9597
(dev-v2.6-archive) Use Rancher mirror for jettech/kube-webhook-certgen 
(partially cherry picked from commit 30aa33a5b1)
 2022-01-06 11:32:55 -08:00
Jacob Payne f6c59bb748
(dev-v2.6-archive) use cattle system registry (#613) 
(partially cherry picked from commit 0e21736bed)
 2022-01-06 11:32:55 -08:00
Caleb Bron 146a4d2bf0
(dev-v2.6-archive) update how we manage dependency annotations 
(partially cherry picked from commit 92211af12a)
 2022-01-06 11:32:55 -08:00
Arvind Iyengar bc85f45531
(dev-v2.6-archive) Use Rancher images for monitoring subcharts 
(partially cherry picked from commit 1b0deff7a9)
 2022-01-06 11:32:54 -08:00
Arvind Iyengar 079f3c0c0c
(dev-v2.6-archive) Add private registry to monitoring subcharts 
(partially cherry picked from commit bd24317ee8)
 2022-01-06 11:32:54 -08:00
Arvind Iyengar 43f504d503
(dev-v2.6-archive) Use fixed versions for subcharts of rancher-monitoring 
(partially cherry picked from commit 43efb64f82)
 2022-01-06 11:32:53 -08:00
Arvind Iyengar 7e2065bc4d
(dev-v2.6-archive) fix typos in alerting config 
(partially cherry picked from commit 3b6f47638d)
 2022-01-06 11:32:53 -08:00
Caleb Bron 406ca13dfc
(dev-v2.6-archive) Remove nginx-ingress 
It was part of rke2 and all of those charts have moved elsewhere

(partially cherry picked from commit 3bbde5f819)
 2022-01-06 11:32:52 -08:00
Jacob Payne 34485efcc6
(dev-v2.6-archive) removed k3s syslog parser (#593) 
(partially cherry picked from commit ffa781597a)
 2022-01-06 11:32:52 -08:00
Steven Crespo 1ddd9888dd
(dev-v2.6-archive) Merge pull request #588 from PennyScissors/update-rancher-gatekeeper-readme 
Update default value of `auditInterval` in README

(partially cherry picked from commit 4f583e6f46)
 2022-01-06 11:32:51 -08:00
Darren Shepherd 4cc56c42e4
(dev-v2.6-archive) Update to fleet v0.3.0-alpha6 
(partially cherry picked from commit 6cddc8911f)
 2022-01-06 11:32:51 -08:00
Jacob Payne 0612463487
(dev-v2.6-archive) added support for gathering rke1 container logs (#573) 
(partially cherry picked from commit 96282022fa)
 2022-01-06 11:32:50 -08:00
Jacob Payne 3ed5ee5294
(dev-v2.6-archive) changed default operator image (#590) 
(partially cherry picked from commit 4128861cb3)
 2022-01-06 11:32:50 -08:00
aiyengar2 5b05df23a9
(dev-v2.6-archive) Merge pull request #599 from aiyengar2/update_default_alerting_template 
Update default Alerting template for defaults set in UI

(partially cherry picked from commit 5825928eac)
 2022-01-06 11:32:50 -08:00
Jacob Payne d1de0044a3
(dev-v2.6-archive) removed logging output and flow configs (#587) 
(partially cherry picked from commit e8486d3953)
 2022-01-06 11:32:49 -08:00
Darren Shepherd b96368994d
(dev-v2.6-archive) Fleet v0.3.0-alpha5 
(partially cherry picked from commit d3a7562fda)
 2022-01-06 11:32:48 -08:00
Arvind Iyengar 25f1d860c0
(dev-v2.6-archive) Update default Alerting template 
(partially cherry picked from commit 6bc9f8c45f)
 2022-01-06 11:32:48 -08:00
Arvind Iyengar 5d7ce13351
(dev-v2.6-archive) Rearrange patch 
This commit is required due to patch flip-flops that will occur till https://github.com/rancher/rancher/issues/28627 is resolved.

(partially cherry picked from commit 267b8afc95)
 2022-01-06 11:32:47 -08:00
Jacob Payne c36cd669ce
(dev-v2.6-archive) Feature/logging/eks (#583) 
* added eks support

(partially cherry picked from commit 695110ff2b)
 2022-01-06 11:32:47 -08:00
Caleb Bron 54dcb1a2ef
(dev-v2.6-archive) Merge pull request #544 from MonzElmasry/rke2-monitoring 
rke2-monitoring

(partially cherry picked from commit a8748de0f4)
 2022-01-06 11:32:46 -08:00
Arvind Iyengar 8e591ce2af
(dev-v2.6-archive) switch copyCerts image to rancher/busybox 
(partially cherry picked from commit 23fbc636ab)
 2022-01-06 11:32:46 -08:00
Brenda Rearden 5fc81128ca
(dev-v2.6-archive) Merge pull request #577 from brendarearden/kiali-fixes 
Update kiali image conventions, remove release.name from naming convention

(partially cherry picked from commit 95800e5bd0)
 2022-01-06 11:32:45 -08:00
Brenda Rearden 036a7bef97
(dev-v2.6-archive) Remove release name, refactor image values, update web_root 
(partially cherry picked from commit 5da19fc4a4)
 2022-01-06 11:32:45 -08:00
Menna 2f3f12fa4c
(dev-v2.6-archive) add rke2proxy toleration 
(partially cherry picked from commit 7c63442e79)
 2022-01-06 11:32:44 -08:00
Menna f28495743d
(dev-v2.6-archive) Adds support for monitoring the following k8s components in rke2 clusters: 
- `rke2-scheduler`
- `rke2-controller-manager`
- `rke2-proxy`
- `rke2-etcd`

All exporters are created from the cattle-pushprox chart. This commit
also modifies the relevant Grafana Dashboard ConfigMaps and
PrometheusRules to deploy if the PushProx exporters are enabled.

See changes to `overlay/CHANGELOG.md` for details on what has been added/modified.

(partially cherry picked from commit e5dfdc5c88)
 2022-01-06 11:32:44 -08:00
Arvind Iyengar 200aba0f0e
(dev-v2.6-archive) Use Rancher images for rancher-monitoring 
(partially cherry picked from commit e0d3e6519b)
 2022-01-06 11:32:43 -08:00
Arvind Iyengar 261ea5234f
(dev-v2.6-archive) Add private registry support to rancher-monitoring 
(partially cherry picked from commit aa30c498ea)
 2022-01-06 11:32:42 -08:00
Arvind Iyengar fed0d9cf3b
(dev-v2.6-archive) Add private registry support to rancher-pushprox 
(partially cherry picked from commit d5a2f275f7)
 2022-01-06 11:32:42 -08:00
Steven Crespo 33cfbfc673
(dev-v2.6-archive) Update default value of `auditInterval` in README 
(partially cherry picked from commit 7f77955729)
 2022-01-06 11:32:41 -08:00
Brenda Rearden 268166def1
(dev-v2.6-archive) Correcting version in chart.yaml 
(partially cherry picked from commit cbe0c6021b)
 2022-01-06 11:32:41 -08:00
Brenda Rearden 3990a653f2
(dev-v2.6-archive) Change image tags to 1.7.0, update pod image version, remove addons 
(partially cherry picked from commit 49f0aaad9e)
 2022-01-06 11:32:40 -08:00
Brenda Rearden e8f7e0842d
(dev-v2.6-archive) Merge pull request #574 from brendarearden/istio-168 
Istio: Add default pod disruption budget

(partially cherry picked from commit 8445fe7bd6)
 2022-01-06 11:32:40 -08:00
aiyengar2 314abc60c0
(dev-v2.6-archive) Merge pull request #534 from aiyengar2/alerting_v2 
Add Alerting V2

(partially cherry picked from commit 58374d5078)
 2022-01-06 11:32:40 -08:00
Arvind Iyengar c5b386d2e8
(dev-v2.6-archive) Add alerting support to rancher-monitoring 
(partially cherry picked from commit d085bc088f)
 2022-01-06 11:32:39 -08:00
Brenda Rearden 68da928570
(dev-v2.6-archive) Add default podDisruptionBudget 
(partially cherry picked from commit 5a211497c2)
 2022-01-06 11:32:39 -08:00
Brenda Rearden 3972b3e913
(dev-v2.6-archive) Change image version to remove canary support 
(partially cherry picked from commit 0786578203)
 2022-01-06 11:32:38 -08:00
Brenda Rearden 89c0769f87
(dev-v2.6-archive) Change to rancher images 
(partially cherry picked from commit a267e30656)
 2022-01-06 11:32:38 -08:00
Brenda Rearden 79e8630531
(dev-v2.6-archive) Add default podDisruptionBudget 
(partially cherry picked from commit a486f692f7)
 2022-01-06 11:32:37 -08:00
Jacob Payne b5283d8838
(dev-v2.6-archive) fixed missing rke2 config 
(partially cherry picked from commit f022fe5757)
 2022-01-06 11:32:37 -08:00
Jacob Payne 8e72e0da12
(dev-v2.6-archive) fixed crd breakout (#578) 
* fixed crd breakout

(partially cherry picked from commit 729e3c53d4)
 2022-01-06 11:32:36 -08:00
Jacob Payne 7958a2e9eb
(dev-v2.6-archive) Feature/logging/rke2 (#568) 
added rke2 logging support

(partially cherry picked from commit fb19db55fb)
 2022-01-06 11:32:36 -08:00
Brenda Rearden cdb296b1d1
(dev-v2.6-archive) Change image version to remove canary support 
(partially cherry picked from commit 4e719e4404)
 2022-01-06 11:32:35 -08:00
Brenda Rearden 3b9e525e2d
(dev-v2.6-archive) Merge pull request #569 from brendarearden/istio-167 
Remove canary and set version to 1.6.7 for upgrade testing

(partially cherry picked from commit af2f94b759)
 2022-01-06 11:32:35 -08:00
Darren Shepherd 9e5c0abc62
(dev-v2.6-archive) Add Fleet 
(partially cherry picked from commit 323e56fe20)
 2022-01-06 11:32:34 -08:00
Jacob Payne d91f49e076
(dev-v2.6-archive) fixed template issues with k3s (#567) 
(partially cherry picked from commit 7e14b4ee14)
 2022-01-06 11:32:34 -08:00
Brenda Rearden 1799bcb3bf
(dev-v2.6-archive) Remove canary and set version to 1.6.7 for upgrade testing 
(partially cherry picked from commit 6e4c1e8d25)
 2022-01-06 11:32:33 -08:00
Brenda Rearden dd7e18120c
(dev-v2.6-archive) Change to rancher imags, delete old builds 
(partially cherry picked from commit bddd43f53f)
 2022-01-06 11:32:33 -08:00
Caleb Bron b5eaa9042c
(dev-v2.6-archive) remove rke2 charts 
(partially cherry picked from commit 0a381894df)
 2022-01-06 11:32:32 -08:00
Jacob Payne 7bfb20e89a
(dev-v2.6-archive) added k3s support (#560) 
(partially cherry picked from commit a63500248a)
 2022-01-06 11:32:32 -08:00
Steven Crespo 65557904bf
(dev-v2.6-archive) Merge pull request #553 from PennyScissors/update-gatekeeper 
Update gatekeeper to v3.1.0-rc.1

(partially cherry picked from commit 813457423b)
 2022-01-06 11:32:31 -08:00
Daishan 7dc502a321
(dev-v2.6-archive) Update rio to v0.8.0-rc2, add experimental label 
(partially cherry picked from commit 4e991faf6a)
 2022-01-06 11:32:31 -08:00
Arvind Iyengar 77be6b1378
(dev-v2.6-archive) Change default to all CRs in all namespaces 
This commit sets the following field to false:
`<serviceMonitor|podMonitor|rule>SelectorNilUsesHelmValues: true`

As a result, we look for all CRs with any labels in all namespaces rather than just
the ones tagged with `release: rancher-monitoring`.

(partially cherry picked from commit d2bf307e59)
 2022-01-06 11:32:30 -08:00
Arvind Iyengar 1167f62350
(dev-v2.6-archive) Update grafana default deploymentStrategy 
If the Grafana deployment strategy is not Recreate, the deployment will
be stuck during an upgrade when PV is attached.

(partially cherry picked from commit f3aebdca14)
 2022-01-06 11:32:30 -08:00
Arvind Iyengar 99cb52dac7
(dev-v2.6-archive) Add NoExecute + NoSchedule toleration to PushProx 
This commit adds NoExecute / NoSchedule tolerations by default to all of the
PushProx exporters since the default expectation when deploying these exporters
is that they are deployed on the expected nodes based on nodeSelector labels
regardless of any taints added to those nodes.

Users can always choose to override these settings if necessary.

(partially cherry picked from commit 215cf10a68)
 2022-01-06 11:32:29 -08:00
Arvind Iyengar bf8675697f
(dev-v2.6-archive) Increase prometheus resource limits and requests 
(partially cherry picked from commit de6fbbb129)
 2022-01-06 11:32:29 -08:00
Arvind Iyengar 54f6d00110
(dev-v2.6-archive) Move ClusterRoles and change values.yaml fields 
- Moves `monitoringRole` settings into `global.rbac` in values.yaml
- Moves user ClusterRoles into one file: `rancher-monitoring/clusterroles.yaml`
- Reformats user ClusterRoles format to look like upstream format
- Enables aggregateRolesForRBAC by default
- Updates README.md and CHANGELOG.md for relevant ClusterRole changes

(partially cherry picked from commit 3d6b8c94c7)
 2022-01-06 11:32:28 -08:00
Arvind Iyengar b643adedc0
(dev-v2.6-archive) Use Rancher PushProx image 
(partially cherry picked from commit 93f477b3e9)
 2022-01-06 11:32:28 -08:00
Arvind Iyengar 74439b3f23
(dev-v2.6-archive) Update default namespace to cattle-monitoring-system 
(partially cherry picked from commit 701098fd72)
 2022-01-06 11:32:27 -08:00
Arvind Iyengar 67f6d928ab
(dev-v2.6-archive) Update README to add rancher-monitoring changes 
Adds prometheus-adapter and rancher-pushprox to the README.md and also
adds fields for Rancher Monitoring config

(partially cherry picked from commit 63647c6849)
 2022-01-06 11:32:27 -08:00
brendarearden bb03a724e0
(dev-v2.6-archive) Change namespace back to istio-system 
Add force install flag
Increase istio version

(partially cherry picked from commit ff8bcc0755)
 2022-01-06 11:32:26 -08:00
Jacob Payne f5880772d6
(dev-v2.6-archive) added image overrides (#554) 
(partially cherry picked from commit b3e81b1db6)
 2022-01-06 11:32:26 -08:00
Steven Crespo f6e48e44ae
(dev-v2.6-archive) Update gatekeeper to v3.1.0-rc.1 
- Updated package to reference latest release
- Removed previous chart's tgz to make changes in place

(partially cherry picked from commit 1aaa1948f6)
 2022-01-06 11:32:25 -08:00
Caleb Bron d6dbe16191
(dev-v2.6-archive) add custom web_root to kiali 
(partially cherry picked from commit b76723768c)
 2022-01-06 11:32:25 -08:00
Jacob Payne 400c0e7cad
(dev-v2.6-archive) added toggle for logging persistence (#540) 
(partially cherry picked from commit 3ec3d344c7)
 2022-01-06 11:32:24 -08:00
Jacob Payne 65ed401a0b
(dev-v2.6-archive) Merge pull request #539 from paynejacob/logging-secrets 
use secrets for certs and passwords

(partially cherry picked from commit 444367b353)
 2022-01-06 11:32:24 -08:00
Caleb Bron f58e10c4aa
(dev-v2.6-archive) Remove helm vendored dependencies from charts 
(partially cherry picked from commit cb3b2acebd)
 2022-01-06 11:32:23 -08:00
cbron 82a5370088
(dev-v2.6-archive) Generated changes 
(partially cherry picked from commit 7e532ef2fe)
 2022-01-06 11:32:22 -08:00
Caleb Bron f69fe062c6
(dev-v2.6-archive) Merge pull request #532 from cbron/kiali-server 
rancher-kiali-server

(partially cherry picked from commit 9329c3c38d)
 2022-01-06 11:32:22 -08:00
Jacob Payne f9245f662f
(dev-v2.6-archive) use secrets for certs and passwords 
(partially cherry picked from commit 4f4e7dce5d)
 2022-01-06 11:32:21 -08:00
Jacob Payne 2f50ffa5c4
(dev-v2.6-archive) Merge pull request #536 from paynejacob/fix/issue-28256 
fixed logging cluster roles

(partially cherry picked from commit 413a846647)
 2022-01-06 11:32:21 -08:00
Jacob Payne e05f634466
(dev-v2.6-archive) Merge pull request #535 from paynejacob/feature/rke 
added rke support

(partially cherry picked from commit 924a9fd125)
 2022-01-06 11:32:20 -08:00
Jacob Payne 56bc2e6fc0
(dev-v2.6-archive) Merge pull request #537 from paynejacob/feature/logging-crd-breakout 
added crd annotations for logging

(partially cherry picked from commit 8dc1928d82)
 2022-01-06 11:32:20 -08:00
Jacob Payne 41b77cb8e0
(dev-v2.6-archive) added rke support 
(partially cherry picked from commit 569e213fe8)
 2022-01-06 11:32:19 -08:00
Jacob Payne 78ffaa8df3
(dev-v2.6-archive) added crd annotations for logging 
(partially cherry picked from commit ac8099a8e3)
 2022-01-06 11:32:19 -08:00
Steven Crespo 43572f2c70
(dev-v2.6-archive) Merge pull request #527 from PennyScissors/update-gatekeeper-chart-rebase 
Update gatekeeper chart

(partially cherry picked from commit fbbcefc976)
 2022-01-06 11:32:19 -08:00
Jacob Payne 2bdbe9d888
(dev-v2.6-archive) fixed logging cluster roles 
(partially cherry picked from commit 6e70b85a5b)
 2022-01-06 11:32:18 -08:00
Caleb Bron 326e93fe55
(dev-v2.6-archive) rancher-kiali-server init 
(partially cherry picked from commit ef8a72e077)
 2022-01-06 11:32:18 -08:00
Darren Shepherd 75a1d1f625
(dev-v2.6-archive) Remove ECM feature chart 
(partially cherry picked from commit 6554efb687)
 2022-01-06 11:32:17 -08:00
Steven Crespo 88a5e1654f
(dev-v2.6-archive) Add webhook service and update changelog 
(partially cherry picked from commit c6370509d8)
 2022-01-06 11:32:17 -08:00
Steven Crespo 6485c882dd
(dev-v2.6-archive) Move add-on files to overlay 
Move add-on files allowedrepos.yaml, job-constraints-crd.yaml and
requiredlabels.yaml to overlay

(partially cherry picked from commit 865476ee75)
 2022-01-06 11:32:16 -08:00
Jacob Payne 45057ae28f
(dev-v2.6-archive) Merge pull request #522 from paynejacob/feature/logging-providers 
added kafka, splunk, syslog output support

(partially cherry picked from commit 33fa5f70ca)
 2022-01-06 11:32:16 -08:00
Steven Crespo 812cabad8a
(dev-v2.6-archive) Enable generate CRD chart 
(partially cherry picked from commit df740fecc8)
 2022-01-06 11:32:15 -08:00
Steven Crespo 34f2f45468
(dev-v2.6-archive) Update for Helm 3 compatibility 
- Move crds to crds directory
- Remove crd-install hooks and templates from crds

(partially cherry picked from commit 19b1be917d)
 2022-01-06 11:32:15 -08:00
Steven Crespo b50f96056d
(dev-v2.6-archive) Remove index and update istio-kubectl 
- Remove index as we package and host our charts
- Update rancher/istio-kubectl image tag to 1.5.8

(partially cherry picked from commit d2578e40da)
 2022-01-06 11:32:15 -08:00
Steven Crespo 071fc996e0
(dev-v2.6-archive) Update namespace annotation 
- Update namespace annotation to `cattle-gatekeeper-system`
- Remove `gatekeeper-system` from templates as Rancher handles
namespaces for chart installation.

(partially cherry picked from commit 6e147640be)
 2022-01-06 11:32:14 -08:00
Jacob Payne 16b52cb135
(dev-v2.6-archive) added kafka, splunk, syslog output support 
(partially cherry picked from commit 75d396906a)
 2022-01-06 11:32:14 -08:00
Brenda Rearden 834dfcbf0d
(dev-v2.6-archive) Merge pull request #529 from brendarearden/istio-versioning 
Update version to 1.6.7

(partially cherry picked from commit df9f93262b)
 2022-01-06 11:32:13 -08:00
Steven Crespo 1d5874faa4
(dev-v2.6-archive) Update opa gatekeeper chart to v3.1.0-beta.11 
The previous patch didn't apply cleanly since the latest version had
significant changes made including structural. Instead I started with
an empty patch file and made changes manually. This patch includes the
same changes done in our previous patch, but on the latest version of
the chart.

(partially cherry picked from commit 3d8b451d4a)
 2022-01-06 11:32:13 -08:00
Arvind Iyengar 014be77b77
(dev-v2.6-archive) Remove CRD code from upstream 
Removes the code that supports the Helm 2 hack for crd/ (`prometheus-operator/cleanup-crds.yaml` and
`prometheus-operator/crds.yaml`) and removes crd-install hooks from crds.

Also updates the README.md and CHANGELOG.md accordingly.

(partially cherry picked from commit 921f735cbc)
 2022-01-06 11:32:12 -08:00
Brenda Rearden db4a2dd1e3
(dev-v2.6-archive) Update version to 1.6.7 
(partially cherry picked from commit b0a79ea343)
 2022-01-06 11:32:12 -08:00
aiyengar2 662552e078
(dev-v2.6-archive) Merge pull request #517 from aiyengar2/add_split_crd_flag 
Add generateCRDChart flag

(partially cherry picked from commit c72f44d1cc)
 2022-01-06 11:32:12 -08:00
Arvind Iyengar bdb8f7d3bf
(dev-v2.6-archive) Enable splitting CRDs to separate package 
This commit adds script changes to automatically allow packages to split
the CRD components located in a crd/ directory into a separate package.

It also automatically adds in a validation yaml helper to the main package
to prevent a user from installing the base package without installing the crd
install package first.

Any package can enable the creation of a separate crd package by just adding
`splitCRDsIntoSeparatePackage: true` into the package.yaml, as shown in the
rancher-monitoring chart.

(partially cherry picked from commit fcc8528186)
 2022-01-06 11:32:11 -08:00
Jacob Payne bd4b445e42
(dev-v2.6-archive) fixed logging namespace and ui component name 
(partially cherry picked from commit bca787abea)
 2022-01-06 11:32:11 -08:00
Vincent Fiduccia 8129f4196f
(dev-v2.6-archive) Update README.md 
(partially cherry picked from commit d239bf188a)
 2022-01-06 11:32:10 -08:00
Caleb Bron f893fe12c3
(dev-v2.6-archive) moving dev-charts to charts and fixing logo path 
(partially cherry picked from commit a224a87038)
 2022-01-06 11:32:10 -08:00
Caleb Bron 35c812165a
(dev-v2.6-archive) copy charts from dev-charts 
(partially cherry picked from commit f7dd80a3c1)
 2022-01-06 11:32:09 -08:00
Denise Schannon 3c2a851726
(dev-v2.6-archive) Initial commit 
(partially cherry picked from commit 44e16849c3)
 2022-01-06 11:32:09 -08:00
Arvind Iyengar 0b5f0f8c2e
Remove packages/istio from the main branch 
This commit removes packages/istio from the main branch.

This has been a long-standing pending maintenance task and should not have any impact on the main branch.

Signed-off-by: Arvind Iyengar <arvind.iyengar@rancher.com>
 2021-01-14 22:23:04 -08:00
actions f5fcf301c1 Generated changes 2020-10-02 00:51:10 +00:00
Caleb Bron 2087de28b5 clean up main 2020-09-30 16:45:24 -07:00
rajashree 37a8648cf8 Change encryption config field name in restore crd 2020-09-22 10:26:48 -07:00
maggieliu 34fdd14bca
Merge pull request #674 from aiyengar2/fix_monitoring_chart_hardened 
Support monitoring in hardened RKE clusters
 2020-09-22 10:04:58 -07:00
maggieliu 6edb750ce9
Merge pull request #675 from aiyengar2/fix_pushprox_chart_hardened 
Support pushprox in hardened RKE clusters
 2020-09-22 10:04:44 -07:00
Prachi Damle 0f786657a2
Merge pull request #676 from prachidamle/airgap_fix 
Use global registry for security-scan and sonobuoy tool images to support airgapped setups
 2020-09-21 20:59:38 -07:00
Jacob Payne 91d1dedca1
allow tolerations to be passed to fluentbit containers (#673) 2020-09-21 16:47:48 -07:00
Prachi Damle 42f30bfad1 Use the system_default_registry for security-scan and sonobuoy images 
Deleting tgz assets
 2020-09-21 15:21:56 -07:00
Steven Crespo 32f1b41934
Merge pull request #670 from PennyScissors/update-gk-v3.1.1 
Update gatekeeper to version 3.1.1
 2020-09-21 15:01:46 -07:00
Steven Crespo 5757f8cc15 Update gatekeeper to v3.1.1 2020-09-21 12:26:43 -07:00
Arvind Iyengar e3d6033572 Support monitoring in hardened RKE clusters 
This commit adds support for deploying rancher-monitoring into hardened clusters.

It modifies some of the default securityContexts and does some misc. fixes such as:
- Removing default AppArmor PSP annotations from Grafana (related to https://github.com/helm/charts/issues/9090)
- Modifying rkeScheduler and rkeControllerManager to use localhost to scrape components since the endpoints aren't exposed in a hardened cluster

These changes have been verified on a hardened RKE cluster.
 2020-09-21 12:04:07 -07:00
Arvind Iyengar 7d1332356c Support pushprox in hardened RKE clusters 
This commit adds support for deploying rancher-pushprox into hardened clusters.

It introduces securityContexts and rearranges the RBAC in order to support a PodSecurityPolicy for the PushProx clients.

These changes have been verified on a hardened RKE cluster.
 2020-09-21 00:20:45 -07:00
Arvind Iyengar 4da2300a26 Move pushprox RBAC into separate file 2020-09-21 00:20:10 -07:00
Jacob Payne 60c84b3c3b
fixed eks and k3s logging in airgap (#671) 2020-09-20 15:00:04 -07:00
Arvind Iyengar b80fb3a8ff Use separate namespace only for dashboards 
This commit renames `grafana-dashboards` to `cattle-dashboards` and deprecates the `grafana-datasources` namespace in favor of the normal release namespace.

Related Issue: rancher/rancher#28887
 2020-09-19 19:23:35 -07:00
Arvind Iyengar 0fa3a06de0 Split RBAC for ConfigMaps and Secrets 
Related Issue: https://github.com/rancher/rancher/issues/29013
 2020-09-19 19:23:33 -07:00
Arvind Iyengar 2e1ed1b130 Relocate Rancher roles to overlay/ 2020-09-19 19:00:23 -07:00
Daishan 89cb2793e9 Bump fleet, rancher-operator, webhook 2020-09-18 23:01:59 -07:00
Arvind Iyengar 95cf887f5f Add annotations that were left out on rebase 
Dropped on accident in rebase https://github.com/rancher/charts/pull/641/files#diff-ed5b5b87cf149adc6a6408bf81993efdR681-R682
 2020-09-18 17:08:11 -07:00
Brenda Rearden 34676b359a
Merge pull request #667 from brendarearden/image-updates 
Set installer repo,tag in values.yaml
 2020-09-18 16:41:06 -07:00
aiyengar2 034952747f
Merge pull request #666 from aiyengar2/fix_kube_dns_namespace 
Create kube-dns service monitor in kube-system
 2020-09-18 16:34:48 -07:00
Brenda Rearden 9932422f51 Set installer repo,tag in values.yaml 2020-09-18 15:56:15 -07:00
Rajashree Mandaogane 820f105aa2
Merge pull request #663 from mrajashree/upd 
Update resourceset to include configmaps for clusterrepos
 2020-09-18 15:37:18 -07:00
Arvind Iyengar 700975ee95 Create kube-dns service monitor in kube-system 
This is required since, by default, we ignoreNamespaceSelectors.
 2020-09-18 15:35:21 -07:00
aiyengar2 afb3af8690
Merge pull request #662 from aiyengar2/use_new_busybox 
Replace rancher/busybox w/ rancher/library-busybox
 2020-09-18 15:29:56 -07:00
rajashree b3cc3a717c Update resourceset to include configmaps for clusterrepos 2020-09-18 15:26:55 -07:00
Brenda Rearden 14f0a39a4a
Merge pull request #659 from brendarearden/image-updates 
Image updates for Istio 1.7.1 and Kiali 1.23.0
 2020-09-18 10:57:10 -07:00
Prachi Damle 89746f9fe1
Merge pull request #664 from prachidamle/new_cis_fixes 
CIS chart fixes to update image tag, fixes for hardened cluster
 2020-09-18 10:47:13 -07:00
Prachi Damle 2dd35d89bb Delete tgz files from assets, parameter in the post-install hook for namespace should use the 
helm templating
 2020-09-18 10:36:16 -07:00
Brenda Rearden d397bb512c Update kiali to 1.23.0 2020-09-18 10:25:50 -07:00
Darren Shepherd ecd90e66af fleet-0.3.0-beta1 2020-09-18 07:33:18 -07:00
Prachi Damle af609af172 Fixes to clear error state on scan retry, fixes for CIS hardened cluster 2020-09-18 00:33:33 -07:00
Daishan Peng 4cd7a24bd8
Merge pull request #660 from StrongMonkey/add-rio-annotations 
Add istio dependency to rio chart
 2020-09-17 20:28:45 -07:00
Arvind Iyengar c263e58157 Replace rancher/busybox w/ rancher/library-busybox 
Related Issue: https://github.com/rancher/rancher/issues/28978
 2020-09-17 18:38:14 -07:00
Arvind Iyengar 178528b12c Rebase to new upstream at kube-prometheus-stack 
The old upstream at https://github.com/helm/charts/tree/master/stable/prometheus-operator has been deprecated in favor of the chart at https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-prometheus-stack.

This commit modifies the rancher-monitoring patch in order to rebase to this new upstream, so it contains a ton of different changes to the patch file.

Related Issue: rancher/rancher#28822
 2020-09-17 17:10:42 -07:00
Daishan f29ed480a8 Add istio dependency to rio chart 2020-09-17 16:51:55 -07:00
Brenda Rearden 5c46fa62ec Update istio to 1.7.1 2020-09-17 00:47:14 -07:00
Darren Shepherd 915894a74a Update rancher-operator and fleet 2020-09-17 00:01:27 -07:00
rajashree 00d42a178c Expand default resourceset to include 2.5 CRDs 2020-09-16 12:14:19 -07:00
Jacob Payne 74ea61d262
rke1 to rke (#638) 2020-09-16 11:36:08 -07:00
Darren Shepherd 4fc422c4b3 Update rancher-operator 2020-09-15 23:05:11 -07:00
Darren Shepherd a0de135517 Update rancher-operator crd 2020-09-15 23:01:37 -07:00
Darren Shepherd 0239984da2 New rancher-operator and fleet 2020-09-15 22:44:15 -07:00
Darren Shepherd 16dfb1154b rancher-operator v0.1.0-alpha4 2020-09-14 22:00:59 -07:00
Arvind Iyengar d03ffe81df Create Alertmanager secret in pre-install hook 2020-09-14 16:22:16 -07:00
Prachi Damle 433d3a5ffa
Merge pull request #644 from prachidamle/new_cis_fixes 
New cis-operator state transition fixes
 2020-09-14 09:50:11 -07:00
Jacob Payne 2d2f818ad5
bumped image versions (#639) 2020-09-14 08:52:53 -07:00
Prachi Damle e0a5f24a68 Updating cis-operator image tag, correcting readme, updating CRD defn 2020-09-14 00:29:45 -07:00
Darren Shepherd 2d2bcdde50 Update fleet and rancher-operator 2020-09-12 16:14:45 -07:00
Jacob Payne 1908520a34
upgraded upstream chart version (#608) 
* upgraded upstream chart version
 2020-09-11 14:25:14 -07:00
Arvind Iyengar 4d5653b2ec Update docs, descriptions, and other minor fixes 
- [rancher-pushprox] add hidden annotation + update description
- [rancher-monitoring] update description + add monitoring app-README.md
- [rancher-monitoring|rancher-pushprox] Move systemDefaultRegistry to global.cattle
- [rancher-monitoring] Move exporter enabled logic to _helpers.tpl
 2020-09-10 17:23:47 -07:00
Darren Shepherd ec627b5fd2 rancher-webhook v0.1.0-alpha7 2020-09-10 17:22:43 -07:00
Darren Shepherd a1684f1d11 rancher-webhook v0.1.0-alpha6 2020-09-10 17:10:50 -07:00
Darren Shepherd caa9a4fc38 rancher-webhook v0.1.0-alpha4 2020-09-10 16:33:48 -07:00
Darren Shepherd ceda36dce4 Update fleet, rancher-operator, rancher-webhook 2020-09-10 15:18:31 -07:00
Rajashree Mandaogane ef9d7aeafb
Merge pull request #630 from mrajashree/quote 
Remove quotes around pvc storageClassName
 2020-09-10 15:06:24 -07:00
rajashree 4fbdb77861 Removes quotes around pvc storageClassName 
The field storageClassName uses "quote" template function. So the quotes around it
lead to errors. This commit removes the quotes
 2020-09-10 14:43:53 -07:00
Steven Crespo 81c286cb9f
Merge pull request #616 from PennyScissors/update-gatekeeper-v3.1.0 
Update opa gatekeeper to v3.1.0
 2020-09-10 14:17:31 -07:00
Steven Crespo fb8c308737 Update opa gatekeeper to v3.1.0 2020-09-10 13:12:51 -07:00
Brenda Rearden 1322150a57
Merge pull request #627 from brendarearden/istio-version-rollback 
Add annotation changes to version Istio 1.6.8
 2020-09-10 09:22:14 -07:00
Brenda Rearden 46204a9171 Add cattle system registry 2020-09-09 17:04:25 -07:00
Brenda Rearden 583b669a92 Add annotation changes to version Istio 1.6.8 2020-09-09 16:17:44 -07:00
aiyengar2 7d32212d2c
Merge pull request #595 from aiyengar2/change_crd_ownership 
Add generateCRDChart.assumeOwnershipOfCRDs flag
 2020-09-09 16:08:08 -07:00
prachidamle 2e8885abaa Generated changes 2020-09-09 22:50:15 +00:00
Prachi Damle b55e6ec019 Adding rancher-cis-benchmark-crds - CRD chart for CIS v2 
Adding rancher-cis-benchmark - Main chart for deploying cis-operator

Review comments and changes CRDs and adding the roles

Adding default ClusterScanProfiles in a Configmap

Updating kubernetes version to have major.minor.patch

Package the CRDs within the original chart and add package.yaml

chart changes for tolerations, crds, added
global.cattle.systemDefaultRegistry

Review changes to removed nodeSelector helper, combine all cis clusterroles in one file

CRD name change and adding keywords, moving package.yaml one folder upi
Renamed hardened benchmark
Move providesGVR to chart.yaml
 2020-09-09 15:45:25 -07:00
Arvind Iyengar 9fe6ed19c1 Use assumeOwnershipOfCRDs for rancher-monitoring 2020-09-09 15:25:13 -07:00
rajashree 4ad856c2cc Backup-restore-operator chart 2020-09-09 12:56:50 -07:00
Brenda Rearden da849a2dee Add providesGVR to patch file and remove from package.yaml 2020-09-09 12:52:34 -07:00
Caleb Bron f223cb6b6d Make monitoring gvr singular 2020-09-08 22:13:09 -07:00
Brenda Rearden aa13a90e13 Update provides/requires gvr, added keywords 2020-09-08 21:12:11 -07:00
Brenda Rearden e6d0c9c8bf Add hidden annotation to kiali-server chart 2020-09-08 15:43:08 -07:00
Brenda Rearden 9808ea00df Update to rancher image, remove extra end in helper 2020-09-08 15:43:08 -07:00
Arvind Iyengar 30aa33a5b1 Use Rancher mirror for jettech/kube-webhook-certgen 2020-09-08 13:41:17 -07:00
Jacob Payne 0e21736bed
use cattle system registry (#613) 2020-09-08 13:01:27 -07:00
Caleb Bron 92211af12a update how we manage dependency annotations 2020-09-04 20:46:44 -07:00
Arvind Iyengar 1b0deff7a9 Use Rancher images for monitoring subcharts 2020-09-04 12:07:58 -07:00
Arvind Iyengar bd24317ee8 Add private registry to monitoring subcharts 2020-09-04 12:07:58 -07:00
Arvind Iyengar 43efb64f82 Use fixed versions for subcharts of rancher-monitoring 2020-09-04 12:07:58 -07:00
Arvind Iyengar 3b6f47638d fix typos in alerting config 2020-09-03 15:15:36 -07:00
Caleb Bron 3bbde5f819 Remove nginx-ingress 
It was part of rke2 and all of those charts have moved elsewhere
 2020-09-03 10:50:24 -07:00
Jacob Payne ffa781597a
removed k3s syslog parser (#593) 2020-09-03 10:47:57 -07:00
Steven Crespo 4f583e6f46
Merge pull request #588 from PennyScissors/update-rancher-gatekeeper-readme 
Update default value of `auditInterval` in README
 2020-09-01 12:29:28 -07:00
Darren Shepherd 6cddc8911f Update to fleet v0.3.0-alpha6 2020-08-31 23:53:18 -07:00
Jacob Payne 96282022fa
added support for gathering rke1 container logs (#573) 2020-08-31 16:20:32 -07:00
Jacob Payne 4128861cb3
changed default operator image (#590) 2020-08-31 15:58:31 -07:00
aiyengar2 5825928eac
Merge pull request #599 from aiyengar2/update_default_alerting_template 
Update default Alerting template for defaults set in UI
 2020-08-31 14:47:14 -07:00
Jacob Payne e8486d3953
removed logging output and flow configs (#587) 2020-08-31 14:22:23 -07:00
Darren Shepherd d3a7562fda Fleet v0.3.0-alpha5 2020-08-30 21:45:42 -07:00
Arvind Iyengar 6bc9f8c45f Update default Alerting template 2020-08-28 20:14:58 -07:00
Arvind Iyengar 267b8afc95 Rearrange patch 
This commit is required due to patch flip-flops that will occur till https://github.com/rancher/rancher/issues/28627 is resolved.
 2020-08-28 16:31:41 -07:00
Jacob Payne 695110ff2b
Feature/logging/eks (#583) 
* added eks support
 2020-08-28 11:45:13 -07:00
Caleb Bron a8748de0f4
Merge pull request #544 from MonzElmasry/rke2-monitoring 
rke2-monitoring
 2020-08-26 19:21:32 -07:00
Arvind Iyengar 23fbc636ab switch copyCerts image to rancher/busybox 2020-08-26 16:34:57 -07:00
Brenda Rearden 95800e5bd0
Merge pull request #577 from brendarearden/kiali-fixes 
Update kiali image conventions, remove release.name from naming convention
 2020-08-26 16:12:36 -07:00
Brenda Rearden 5da19fc4a4 Remove release name, refactor image values, update web_root 2020-08-26 15:59:31 -07:00
Menna 7c63442e79 add rke2proxy toleration 2020-08-27 00:49:54 +02:00
Menna e5dfdc5c88 Adds support for monitoring the following k8s components in rke2 clusters: 
- `rke2-scheduler`
- `rke2-controller-manager`
- `rke2-proxy`
- `rke2-etcd`

All exporters are created from the cattle-pushprox chart. This commit
also modifies the relevant Grafana Dashboard ConfigMaps and
PrometheusRules to deploy if the PushProx exporters are enabled.

See changes to `overlay/CHANGELOG.md` for details on what has been added/modified.
 2020-08-26 22:16:37 +02:00
Arvind Iyengar e0d3e6519b Use Rancher images for rancher-monitoring 2020-08-25 19:37:34 -07:00
Arvind Iyengar aa30c498ea Add private registry support to rancher-monitoring 2020-08-25 19:37:34 -07:00
Arvind Iyengar d5a2f275f7 Add private registry support to rancher-pushprox 2020-08-25 19:37:34 -07:00
Steven Crespo 7f77955729 Update default value of `auditInterval` in README 2020-08-25 15:50:37 -07:00
Brenda Rearden cbe0c6021b Correcting version in chart.yaml 2020-08-25 14:39:23 -07:00
Brenda Rearden 49f0aaad9e Change image tags to 1.7.0, update pod image version, remove addons 2020-08-25 13:56:35 -07:00