Skip to content
This repository has been archived by the owner on Feb 14, 2023. It is now read-only.

CAPI K8s Release v0.4.0

Latest
Latest
Compare
Choose a tag to compare
@capi-bot capi-bot released this 09 Oct 22:02
v0.4.0
28a84a6

Highlights

  • Enforce CF CLI v7 as the minimum supported version in cf-for-k8s
  • Support upload, deletion, and cleanup of expired packages from the configured package registry (except DockerHub deletion)
  • All component images are now built with paketo buildpacks
  • k8s secrets used for all credentials

Known Issues

  • Package copy is not supported yet when package registry is configured details
  • Buildpack apps with custom start commands don't have PATH set correctly details
  • Process commands not displayed correctly by /v3/processes/PROCESS_GUID details
  • Droplet upload and download not yet supported details
  • API can report stack incorrectly details

CC API Version: 2.155.0 and 3.90.0-rc

Service Broker API Version: 2.15

CAPI K8s Release

  • As a platform engineer, I'd like to enable debug logging for all CC components details
  • given a package registry is configured, packages uploaded to CC are uploaded to the package registry details
  • cloudfoundry/capi-k8s-release #44: CF API returns 500 if UAA server certs secret not provided details
  • cloudfoundry/capi-k8s-release #58: Allow skip_cert_verify to be configurable so operators can decide if they want to skip ssl validation details
  • Prevent access to internal endpoints when running on Kubernetes details
  • Operator can validate that inconsistencies in Route desired state are eventually represented in the K8s API details
  • Job queue metrics are often missing details
  • cloudfoundry/capi-k8s-release #65: Set memory and cpu requests and limit values for all containers details
  • all cf-api-server containers should run as UID 1000 details
  • cloudfoundry/capi-k8s-release #68: remove eirini cert defaults details
  • Ensure that minimum supported CLI version is v7 for cf-for-k8s details
  • audit capi-k8s-release/templates/ccng-config.lib.yml for security issues [timebox 1 day] details
  • API client receives an error when trying to start/stage an app using the v2 API on cf-for-k8s details
  • Add script to tarball for dealing with metadata to json and to diff details
  • Create a go web server that, given a path to a tarball, creates an oci image details
  • Create a mechanism to delete OCI images from a registry details
  • Explore the QoS options for components using resource requests/limits to determine the best scheduling option for system components details
  • Move our stuff to CAPI details
  • Refactor cf package in cf-api-controllers to use ginkgo details
  • Remove diego config on cf-for-k8s details
  • Remove cc_service_key_client_secret from k8s configmap details
  • Remove metric-proxy cert generation from hack script and update CAPI client details
  • Support kpack >= 0.1.x in capi-k8s-release details
  • UAA Client password in cf-api-controllers should be a k8s secret details
  • cloudfoundry/capi-k8s-release #61: Create NOTICE details
  • cloudfoundry/capi-k8s-release #63: Remove TLS for metric-proxy details
  • extract a unit tested layer from cf-api-controllers/{build,images}_controllers.go details
  • refactor config loading in cf-api-controllers details
  • rename cloudfoundry/capi-kpack-watcher image on Docker Hub? details
  • rename package-image-uploader to registry-buddy details
  • reorganize capi-k8s-release ServiceAccounts & Bindings details
  • write draft ADR for k8s->CCDB route sync details

Cloud Controller

  • /apply_manifest endpoint throws 500 error when manifest with metadata is provided details
  • API client can order apps by state details
  • API client can filter a variety of resources by created_ats and updated_ats details
  • API client can filter a variety of resources by guids details
  • API client can filter audit events that did NOT target a resource with a given target guid details
  • API client can filter feature flags by updated_ats details
  • API client can see validations when generating a manifest diff details
  • Admin users should be able to list routes in a performant manner for large environments details
  • Explore Order-by work for all resources details
  • Review PR: cloudfoundry/cloud_controller_ng #1787: Add audit events for Apps#show_env and Revisions#show_environment_variables details
  • Scaling a process with extreme memory results in an UnknownError details
  • Staging apps using v3 should respect memory specified in the application manifest details
  • cf apply-manifest throws 500 error when manifest with services is provided details
  • v3 Add a link to details in service credential binding response details
  • v3 Add link to parameters in service credential binding response details
  • v3 Binding while other operations are in progress details
  • v3 Create service cred binding between app and MSI sync details
  • v3 Create service cred binding between app and UPSI (2/2) details
  • v3 Filter service credentials bindings list by service offering details
  • v3 Filter service credentials bindings list by service plan details
  • v3 Get details of a service credential binding created in originating space details
  • v3 Get details of a service credential binding created in shared to space details
  • v3 Get details of a service credential binding that includes credhub ref details
  • v3 Get parameters of a service credential binding details
  • v3 Handling last operation response on create route binding details
  • v3 Include service instance resources when retrieving service credential bindings details
  • v3 Orphan mitigation on failed route bindings details
  • v3 Route binding while other operations are in progress details
  • v3 Unbind service credential binding for UPSI details
  • v3 Validate request to create service cred binding between app and MSI details
  • v3 Validate request to create service cred binding between app and UPSI (1/2) details
  • v3 fix flaky service_credentials_binding request spec details
  • v3: Binding a route to a managed service instance async details
  • v3: Binding a route to a managed service instance sync details
  • v3: Binding a route to a user-provided service instance (action) details
  • v3: Binding a route to a user-provided service instance (response body) details
  • v3: Includes for route bindings details
  • v3: Respect "Retry-After" header when polling Last Operation for a route binding details
  • v3: Respect plan "max_polling_duration" defined in broker catalog when creating route bindings details
  • v3: add order_by name filter for service offerings details
  • v3: delete a route binding async details
  • v3: delete a route binding sync details
  • v3: filter list of route bindings details
  • v3: get a list of route bindings details
  • v3: get a single route binding relating to a managed service instance details
  • v3: get a single route binding relating to a user-provided service instance details
  • v3: Operator can update the broker poll interval while an async creating binding job is enqueued details
  • v8 Add ability to wait for SI creation completion details
  • v8 Show SI bound apps details in cf service si-name command details
  • given a package registry is configured, packages uploaded to CC are uploaded to the package registry details
  • cloudfoundry/capi-k8s-release #44: CF API returns 500 if UAA server certs secret not provided details
  • cloudfoundry/cloud_controller_ng #1774: cf4k8s: POST /v3/builds gives a weird error message details
  • Prevent access to internal endpoints when running on Kubernetes details
  • Operator can validate that inconsistencies in Route desired state are eventually represented in the K8s API details
  • Job queue metrics are often missing details
  • cloudfoundry/cloud_controller_ng #1836: Package downloads fail with an UnknownError when using an image registry for package storage details
  • 422 should be returned for package copy if package registry is configured details
  • API client receives an error when trying to start/stage an app using the v2 API on cf-for-k8s details
  • Add kpack lifecycle to api docs details
  • Deleted/expired packages are deleted from the package registry details
  • Handle additional errors during the creation of a service instance details
  • Providing fields in the Process Endpoint should not return a 500 if it exceeds the maximum database value details
  • Remove diego config on cf-for-k8s details
  • Remove staging.auth.* configs on k8s details
  • Remove cc_service_key_client_secret from k8s configmap details
  • Support kpack >= 0.1.x in capi-k8s-release details
  • Use paketo buildpack to build CCNG image details
  • label is escaping into queries details
  • cloudfoundry/cloud_controller_ng #1379: CF cloudcontroller events inconsistent details
  • cloudfoundry/cloud_controller_ng #1816: build(deps): bump kubeclient from 4.9.0 to 4.9.1 details
  • cloudfoundry/cloud_controller_ng #1842: capi 1.93.0 v2 api breaking change. orphan mitigation triggered on async provisioning failure details
  • cloudfoundry/cloud_controller_ng #1847: capi 1.97.0 breaking change: "cf set-label service-instance" swallows service instance status and message details
  • cloudfoundry/cloud_controller_ng #1848: [sapi] 1.93.0 regression. Unable to update meta-data to a service instance being async provisioned details

Cloud Controller Database Migrations

Pull Requests and Issues

Assets 2
Loading