* Fix workflow for autogenerating docs (#592)
* Use grep -c flag in check for changes step to fix case when more than 1 website file was modified
* Implemented validation logic for the webhook
- Created a single Validate() function to validate both updating and creating Jenkins CR.
- Implemented the Validate function to fetch warnings from the API and do security check if
being enabled.
- Updated the helm charts and helm-e2e target to run the helm tests.
* Configure bot for labelling new issues as needing triage (#597)
* Configure bot for managing stale issues (#598)
* Docs: explanation what is backed up and why (#599)
* Explanation what's backed up and why
* Auto-updated docs (#600)
Co-authored-by: prryb <prryb@users.noreply.github.com>
* Docs: clarification of description of get latest command in backup (#601)
* Auto-updated docs (#602)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Bump seedjobs agent image version to 4.9-1 (#604)
* Add GitLFS pull after checkout behaviour to SeedJob GroovyScript Template (#483)
Add GitLFS pull after checkout behaviour to support also repositories which are relying on Git LFS
Close#482
* Docs: minor fixes (#608)
* Link to project's DockerHub in README's section on nightly builds, add paragraph about nightly builds in installation docs
* Fix repositoryURL in sample seedJob configuration with SSH auth
* Slightly expand on #348
* Fix formatting in docs on Jenkins' customization, update plugin versions
* Add notes on Jenkins home Volume in Helm chart values.yaml and docs (#589)
* Auto-updated docs (#610)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Reimplemented the validation logic with caching the security warnings
- Reimplemented the validator interface
- Updated manifests to allocate more resources
* Add an issue template for documentation (#613)
* Docs: add info on restricted volumeMounts other than jenkins-home(#612)
* Update note in installation docs
* Update Helm chart default values.yaml
* Update schema
* Auto-updated docs (#616)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Auto-updated docs (#617)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Updated Validation logic
- Defined a security manager struct to cache all the plugin data
- Added flag to make validating security warnings optional while deploying the operator
* Helm Chart: Remove empty priorityClassName from Jenkins template (#618)
Also bump Helm Chart version to v0.5.2
* Added unit test cases for webhook
* Updated Helm Charts
- Optimized the charts
- Made the webhook optional
- Added cert manager as dependency to be installed while running webhook
* Updated unit tests, helm charts and validation logic
* Completed helm e2e tests and updated helm charts
- Completed helm tests for various scenarios
- Disabled startupapi check for cert manager webhook, defined a secret and updated templates
- Made the webhook completely optional
* Code optimization and cleanup
* Modified helm tests
* code cleanup and optimization
* Fix workflow for autogenerating docs (#592)
* Use grep -c flag in check for changes step to fix case when more than 1 website file was modified
* Configure bot for labelling new issues as needing triage (#597)
* Configure bot for managing stale issues (#598)
* Docs: explanation what is backed up and why (#599)
* Explanation what's backed up and why
* Auto-updated docs (#600)
Co-authored-by: prryb <prryb@users.noreply.github.com>
* Docs: clarification of description of get latest command in backup (#601)
* Auto-updated docs (#602)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Bump seedjobs agent image version to 4.9-1 (#604)
* Add GitLFS pull after checkout behaviour to SeedJob GroovyScript Template (#483)
Add GitLFS pull after checkout behaviour to support also repositories which are relying on Git LFS
Close#482
* Docs: minor fixes (#608)
* Link to project's DockerHub in README's section on nightly builds, add paragraph about nightly builds in installation docs
* Fix repositoryURL in sample seedJob configuration with SSH auth
* Slightly expand on #348
* Fix formatting in docs on Jenkins' customization, update plugin versions
* Add notes on Jenkins home Volume in Helm chart values.yaml and docs (#589)
* Auto-updated docs (#610)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Add an issue template for documentation (#613)
* Docs: add info on restricted volumeMounts other than jenkins-home(#612)
* Update note in installation docs
* Update Helm chart default values.yaml
* Update schema
* Auto-updated docs (#616)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Auto-updated docs (#617)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Helm Chart: Remove empty priorityClassName from Jenkins template (#618)
Also bump Helm Chart version to v0.5.2
* Fix bad identation in chart/index.yaml (#619)
Co-authored-by: Szymon Fugas <sz.fugas@gmail.com>
Co-authored-by: Piotr Ryba <55996264+prryb@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: prryb <prryb@users.noreply.github.com>
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
Co-authored-by: Cosnita Radu Viorel <radu.cosnita@gmail.com>
Co-authored-by: Morten Birkelund <mbi@salecto.com>
Co-authored-by: Ernestas <ernetas@gmail.com>
- Scaffolded a new validation webhook using operator-sdk
- Added manifests for webhook.
- Added manifests for self signed issuer and certificates
- Added a new spec named ValidateSecurityWarnings to the Jenkins custom resource definition to enable/disable security check.
- Updated Makefile to deploy the operator locally.
- Updated helm template and default values.yaml
* Fix link to Installation on Getting started index
* Separate instructions on installing via YAML and Helm more clearly
* Link deploy jenkins section in instructions on installing via YAML
Co-authored-by: Sig00rd <sfugas@virtuslab.com>
* Don't validate external credential type
The operator shouldn't try to fetch credentials that have their types
defined as `external` - that means that credentials are supplied
externally, without using k8s secrets.
* Docs: Add example of `external` credential type
* Skip kube-api-access volume comparison
This hotfixes the incompatibility between the Operator and Kubernetes
1.21.
Kubernetes 1.21 started adding a new volume named
"kube-api-access-<random-suffix>" and that broke the comparison
function and resulted in an infinite loop.
* Fix WATCH_NAMESPACE in helm chart
When applying the chart, the operator will now watch the correct
namespace. This required changes in roles and role bindings so that
the operator has access to both namespaces.
* Use Role instead of ClusterRole
Mitigates the risk of restrictions in creating ClusterRole in
multitenant k8s clusters.
* Update configuration-as-code version to 1.47
This allows the user to use keys other than PEM encoded RSA. ed25519
is often recommended to be used if it's supported. Using this
algorithm implies the use of OpenSSH key format in ssh-keygen.
sharmapulkit04
Mateusz Korus
SylwiaBrant
github-actions[bot]
Szymon Fugas
Michael Schmid
Szymon Fugas
Tomasz Sęk
MKajzik
Piotr Ryba
Tomasz Sęk
Sylwia Brant
Peter Niederlag
Fabiano Pimentel