* Add note that jenkins.namespace also affects jenkins-operator resources
* Add handling of empty WATCH_NAMESPACE value of jenkins.namespace
If jenkins.namespace is set to "", it leads to WATCH_NAMESPACE
environment value of Jenkins Operator itself to be set to "", which
leads that operator watches all namespaces (see
https://github.com/jenkinsci/kubernetes-operator/issues/77#issuecomment-523727092).
This case requires custom handling: instead of creating role and
role_binding we need to create clusterrole and clusterrolebinding with
the required permissions.
* Bump chart version
* Fix grammar as suggested by @Sig00rd
Co-authored-by: Sig00rd <sz.fugas@gmail.com>
* Fix workflow for autogenerating docs (#592)
* Use grep -c flag in check for changes step to fix case when more than 1 website file was modified
* Configure bot for labelling new issues as needing triage (#597)
* Configure bot for managing stale issues (#598)
* Docs: explanation what is backed up and why (#599)
* Explanation what's backed up and why
* Auto-updated docs (#600)
Co-authored-by: prryb <prryb@users.noreply.github.com>
* Docs: clarification of description of get latest command in backup (#601)
* Auto-updated docs (#602)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Bump seedjobs agent image version to 4.9-1 (#604)
* Add GitLFS pull after checkout behaviour to SeedJob GroovyScript Template (#483)
Add GitLFS pull after checkout behaviour to support also repositories which are relying on Git LFS
Close#482
* Docs: minor fixes (#608)
* Link to project's DockerHub in README's section on nightly builds, add paragraph about nightly builds in installation docs
* Fix repositoryURL in sample seedJob configuration with SSH auth
* Slightly expand on #348
* Fix formatting in docs on Jenkins' customization, update plugin versions
* Add notes on Jenkins home Volume in Helm chart values.yaml and docs (#589)
* Auto-updated docs (#610)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Add an issue template for documentation (#613)
* Docs: add info on restricted volumeMounts other than jenkins-home(#612)
* Update note in installation docs
* Update Helm chart default values.yaml
* Update schema
* Auto-updated docs (#616)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Auto-updated docs (#617)
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
* Helm Chart: Remove empty priorityClassName from Jenkins template (#618)
Also bump Helm Chart version to v0.5.2
* Fix bad identation in chart/index.yaml (#619)
Co-authored-by: Szymon Fugas <sz.fugas@gmail.com>
Co-authored-by: Piotr Ryba <55996264+prryb@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: prryb <prryb@users.noreply.github.com>
Co-authored-by: Sig00rd <Sig00rd@users.noreply.github.com>
Co-authored-by: Cosnita Radu Viorel <radu.cosnita@gmail.com>
Co-authored-by: Morten Birkelund <mbi@salecto.com>
Co-authored-by: Ernestas <ernetas@gmail.com>
- Defined a security manager struct to cache all the plugin data
- Added flag to make validating security warnings optional while deploying the operator
* Link to project's DockerHub in README's section on nightly builds, add paragraph about nightly builds in installation docs
* Fix repositoryURL in sample seedJob configuration with SSH auth
* Slightly expand on #348
* Fix formatting in docs on Jenkins' customization, update plugin versions
* Add notes on Jenkins home Volume in Helm chart values.yaml and docs (#589)
- Created a single Validate() function to validate both updating and creating Jenkins CR.
- Implemented the Validate function to fetch warnings from the API and do security check if
being enabled.
- Updated the helm charts and helm-e2e target to run the helm tests.
- Scaffolded a new validation webhook using operator-sdk
- Added manifests for webhook.
- Added manifests for self signed issuer and certificates
- Added a new spec named ValidateSecurityWarnings to the Jenkins custom resource definition to enable/disable security check.
- Updated Makefile to deploy the operator locally.
- Updated helm template and default values.yaml
* Fix link to Installation on Getting started index
* Separate instructions on installing via YAML and Helm more clearly
* Link deploy jenkins section in instructions on installing via YAML
Co-authored-by: Sig00rd <sfugas@virtuslab.com>
* Don't validate external credential type
The operator shouldn't try to fetch credentials that have their types
defined as `external` - that means that credentials are supplied
externally, without using k8s secrets.
* Docs: Add example of `external` credential type
* Skip kube-api-access volume comparison
This hotfixes the incompatibility between the Operator and Kubernetes
1.21.
Kubernetes 1.21 started adding a new volume named
"kube-api-access-<random-suffix>" and that broke the comparison
function and resulted in an infinite loop.
* Fix WATCH_NAMESPACE in helm chart
When applying the chart, the operator will now watch the correct
namespace. This required changes in roles and role bindings so that
the operator has access to both namespaces.
* Use Role instead of ClusterRole
Mitigates the risk of restrictions in creating ClusterRole in
multitenant k8s clusters.
* Update configuration-as-code version to 1.47
Oleksandr Kovalchuk
Mateusz Korus
Ernestas
Morten Birkelund
sharmapulkit04
github-actions[bot]
Szymon Fugas
Cosnita Radu Viorel
Piotr Ryba
SylwiaBrant
Michael Schmid
Szymon Fugas
Tomasz Sęk
MKajzik
Tomasz Sęk