Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add recommendation engine flags & values #174

Merged
merged 3 commits into from
Sep 6, 2022
Merged

Add recommendation engine flags & values #174

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
7896a7b
Add recommendation engine flags & values
pkbhowmick Sep 5, 2022
e21ff99
Add permission for Recommendation
pkbhowmick Sep 5, 2022
ea21f36
Update api
pkbhowmick Sep 5, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 9 additions & 0 deletions apis/installer/v1alpha1/kubevault_operator_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -78,6 +78,8 @@ type KubevaultOperatorSpec struct {
License string `json:"license"`
// +optional
ClusterName string `json:"clusterName"`
// +optional
RecommendationEngine RecommendationEngineConfig `json:"recommendationEngine"`
}

// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
Expand All @@ -89,3 +91,10 @@ type KubevaultOperatorList struct {
// Items is a list of KubevaultOperator CRD objects
Items []KubevaultOperator `json:"items,omitempty"`
}

type RecommendationEngineConfig struct {
RecommendationResyncPeriod metav1.Duration `json:"recommendationResyncPeriod"`
GenRotateTLSRecommendationBeforeExpiryYear int `json:"genRotateTLSRecommendationBeforeExpiryYear"`
GenRotateTLSRecommendationBeforeExpiryMonth int `json:"genRotateTLSRecommendationBeforeExpiryMonth"`
GenRotateTLSRecommendationBeforeExpiryDay int `json:"genRotateTLSRecommendationBeforeExpiryDay"`
}
18 changes: 18 additions & 0 deletions apis/installer/v1alpha1/zz_generated.deepcopy.go
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

68 changes: 36 additions & 32 deletions charts/kubevault-operator/README.md
View file
Open in desktop

Large diffs are not rendered by default.

365 changes: 365 additions & 0 deletions charts/kubevault-operator/crds/supervisor.appscode.com_recommendations.yaml
View file
Open in desktop

Large diffs are not rendered by default.

6 changes: 5 additions & 1 deletion charts/kubevault-operator/templates/cluster-role.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -115,4 +115,8 @@ rules:
- policy
resources:
- poddisruptionbudgets
verbs: ["get", "list", "create", "delete", "patch", "deletecollection"]
verbs: ["get", "list", "create", "delete", "patch", "deletecollection"]
- apiGroups:
- supervisor.appscode.com
resources: ["*"]
verbs: ["create", "get", "list", "watch", "update", "patch"]
6 changes: 6 additions & 0 deletions charts/kubevault-operator/templates/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,12 @@ spec:
- --cluster-name={{ .Values.clusterName }}
- --metrics-bind-address=:{{ .Values.monitoring.bindPort }}
- --health-probe-bind-address=:{{ .Values.apiserver.healthcheck.probePort }}
{{- with .Values.recommendationEngine }}
- --recommendation-resync-period={{ .recommendationResyncPeriod }}
- --gen-rotate-tls-recommendation-before-expiry-year={{ .genRotateTLSRecommendationBeforeExpiryYear }}
- --gen-rotate-tls-recommendation-before-expiry-month={{ .genRotateTLSRecommendationBeforeExpiryMonth }}
- --gen-rotate-tls-recommendation-before-expiry-day={{ .genRotateTLSRecommendationBeforeExpiryDay }}
{{- end }}
{{- if include "appscode.license" . }}
- --license-file=/var/run/secrets/appscode/license/key.txt
{{- end }}
Expand Down
16 changes: 16 additions & 0 deletions charts/kubevault-operator/values.openapiv3_schema.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1153,6 +1153,22 @@ properties:
type: string
type: object
type: object
recommendationEngine:
properties:
genRotateTLSRecommendationBeforeExpiryDay:
type: integer
genRotateTLSRecommendationBeforeExpiryMonth:
type: integer
genRotateTLSRecommendationBeforeExpiryYear:
type: integer
recommendationResyncPeriod:
type: string
required:
- genRotateTLSRecommendationBeforeExpiryDay
- genRotateTLSRecommendationBeforeExpiryMonth
- genRotateTLSRecommendationBeforeExpiryYear
- recommendationResyncPeriod
type: object
registryFQDN:
type: string
replicaCount:
Expand Down
18 changes: 18 additions & 0 deletions charts/kubevault-operator/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -97,3 +97,21 @@ monitoring:
labels: {}
# Name of cluster used in a multi-cluster setup
clusterName: ""
recommendationEngine:
# Recommendation will be generated after every given duration based on the resource status at that moment.
# Default value is one hour.
# The flag accepts a integer 64 bit value in nanosecond for time.Duration. Ref: https://pkg.go.dev/time#Duration
recommendationResyncPeriod: 1h0m0s
# Rotate TLS recommendation will be generated before given year of expiration.
# It also depends on gen-rotate-tls-recommendation-before-expiry-month and gen-rotate-tls-recommendation-before-expiry-year.
# Default values are 0(zero) for gen-rotate-tls-recommendation-before-expiry-year, 1(one) for gen-rotate-tls-recommendation-before-expiry-month,
# 0(zero) for gen-rotate-tls-recommendation-before-expiry-day flags.
genRotateTLSRecommendationBeforeExpiryYear: 0
# Rotate TLS recommendation will be generated before given month of expiration.
# It also depends on gen-rotate-tls-recommendation-before-expiry-year and gen-rotate-tls-recommendation-before-expiry-day flag.
# By default it is set as 1(one).
genRotateTLSRecommendationBeforeExpiryMonth: 1
# Rotate TLS recommendation will be generated before given day of expiration.
# It also depends on gen-rotate-tls-recommendation-before-expiry-year and gen-rotate-tls-recommendation-before-expiry-month flag.
# By default it is set as 0(zero).
genRotateTLSRecommendationBeforeExpiryDay: 0
16 changes: 16 additions & 0 deletions charts/kubevault/values.openapiv3_schema.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1263,6 +1263,22 @@ properties:
type: string
type: object
type: object
recommendationEngine:
properties:
genRotateTLSRecommendationBeforeExpiryDay:
type: integer
genRotateTLSRecommendationBeforeExpiryMonth:
type: integer
genRotateTLSRecommendationBeforeExpiryYear:
type: integer
recommendationResyncPeriod:
type: string
required:
- genRotateTLSRecommendationBeforeExpiryDay
- genRotateTLSRecommendationBeforeExpiryMonth
- genRotateTLSRecommendationBeforeExpiryYear
- recommendationResyncPeriod
type: object
registryFQDN:
type: string
replicaCount:
Expand Down
4 changes: 4 additions & 0 deletions hack/scripts/import-crds.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -76,3 +76,7 @@ crd-importer \
crd-importer \
--input=https://github.com/kubernetes-sigs/secrets-store-csi-driver/raw/v1.1.2/config/crd/bases/secrets-store.csi.x-k8s.io_secretproviderclasses.yaml \
--out=./charts/secrets-store-reader/crds

crd-importer \
--input=https://github.com/kubeops/supervisor/raw/v0.0.1/crds/supervisor.appscode.com_recommendations.yaml \
--out=./charts/kubevault-operator/crds