From f583f651912348d727ef690ff072276a3e0494b4 Mon Sep 17 00:00:00 2001 From: Carlos Feria Date: Thu, 29 Aug 2024 13:16:57 -0500 Subject: [PATCH] operator trustify-operator (0.1.0-alpha.8) --- .../trustifies.org.trustify-v1.crd.yml | 116 ++++++ ...ustify-operator.clusterserviceversion.yaml | 364 ++++++++++++++++++ .../0.1.0-alpha.8/metadata/annotations.yaml | 11 + 3 files changed, 491 insertions(+) create mode 100644 operators/trustify-operator/0.1.0-alpha.8/manifests/trustifies.org.trustify-v1.crd.yml create mode 100644 operators/trustify-operator/0.1.0-alpha.8/manifests/trustify-operator.clusterserviceversion.yaml create mode 100644 operators/trustify-operator/0.1.0-alpha.8/metadata/annotations.yaml diff --git a/operators/trustify-operator/0.1.0-alpha.8/manifests/trustifies.org.trustify-v1.crd.yml b/operators/trustify-operator/0.1.0-alpha.8/manifests/trustifies.org.trustify-v1.crd.yml new file mode 100644 index 00000000000..20f12f1f03c --- /dev/null +++ b/operators/trustify-operator/0.1.0-alpha.8/manifests/trustifies.org.trustify-v1.crd.yml @@ -0,0 +1,116 @@ +# Generated by Fabric8 CRDGenerator, manual edits might get overwritten! +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + name: trustifies.org.trustify +spec: + group: org.trustify + names: + kind: Trustify + plural: trustifies + singular: trustify + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + properties: + spec: + properties: + db: + description: In this section you can find all properties related to + connect to a database. + properties: + resourceLimits: + description: In this section you can configure resource limits + settings. + properties: + cpuLimit: + description: Limit CPU. + type: string + cpuRequest: + description: Requested CPU. + type: string + memoryLimit: + description: Limit Memory. + type: string + memoryRequest: + description: Requested memory. + type: string + type: object + size: + description: Size of the PVC to create. + type: string + type: object + dbImage: + description: Custom Trustify DB Server image to be used. For internal + use only + type: string + hostname: + description: In this section you can configure hostname and related + properties. + properties: + hostname: + description: Hostname for the server. + type: string + type: object + http: + description: In this section you can configure features related to + HTTP and HTTPS + properties: + tlsSecret: + description: "A secret containing the TLS configuration for HTTPS.\ + \ Reference: https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets." + type: string + type: object + imagePullPolicy: + description: Custom Image Pull Policy for images managed by the Operator + type: string + imagePullSecrets: + description: Secret(s) that might be used when pulling an image from + a private container image registry or repository. + items: + properties: + name: + type: string + type: object + type: array + serverImage: + description: Custom Trustify Server image to be used. For internal + use only + type: string + serverResourceLimits: + description: In this section you can configure resource limits settings + for the Server. + properties: + cpuLimit: + description: Limit CPU. + type: string + cpuRequest: + description: Requested CPU. + type: string + memoryLimit: + description: Limit Memory. + type: string + memoryRequest: + description: Requested memory. + type: string + type: object + type: object + status: + properties: + conditions: + items: + properties: + status: + type: string + type: + type: string + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} diff --git a/operators/trustify-operator/0.1.0-alpha.8/manifests/trustify-operator.clusterserviceversion.yaml b/operators/trustify-operator/0.1.0-alpha.8/manifests/trustify-operator.clusterserviceversion.yaml new file mode 100644 index 00000000000..fe91475d862 --- /dev/null +++ b/operators/trustify-operator/0.1.0-alpha.8/manifests/trustify-operator.clusterserviceversion.yaml @@ -0,0 +1,364 @@ +apiVersion: operators.coreos.com/v1alpha1 +kind: ClusterServiceVersion +metadata: + annotations: + containerImage: ghcr.io/trustification/trustify-operator:v0.1.0-alpha.8 + repository: https://github.com/trustification/trustify-operator + capabilities: Basic Install + categories: Application Runtime + certified: 'false' + alm-examples: | + [{ + "apiVersion": "org.trustify/v1alpha1", + "kind": "Trustify", + "metadata": { + "name": "myapp" + }, + "spec": { } + }] + support: https://github.com/trustification/trustify-operator/issues + description: An Operator for installing and managing Trustify + createdAt: '2024-08-29' + name: trustify-operator.v0.1.0-alpha.8 +spec: + customresourcedefinitions: + owned: + - kind: Trustify + name: trustifies.org.trustify + version: v1alpha1 + description: Represents a Trustify instance + displayName: Trustify + description: |+ + Trustify is vendor-neutral, thought-leadering, mostly informational collection of resources devoted to making Software Supply Chains easier to create, manage, consume and ultimately... to trust! + + + You can use Trustify for: + + - Store and Manage all the SBOM (Software Bill of Materials) files of your company. + - Understand which are the Vulnerabilities that affect each of your SBOM files + - Understand exactly which Packages are included/shipped within each SBOM + + Trustify is a project within the [Trustification community](https://trustification.io/). + + + ### Install + Once you have successfully installed the Operator, proceed to deploy components by creating the required CR. + + By default, the Operator installs the following components on a target cluster: + + * Server + * UI + + ### Documentation + Documentation can be found on our [website](https://trustification.io/). + + ### Getting help + If you encounter any issues while using Trustify, you can create an issue on our [Github repo](https://github.com/trustification/trustify/issues), for bugs, enhancements or other requests. + + ### Contributing + You can contribute by: + + * Raising any issues you find + * Fixing issues by opening [Pull Requests](https://github.com/trustification/trustify/pulls) + + displayName: Trustify Operator + icon: + - base64data:  + mediatype: image/png + install: + spec: + clusterPermissions: + - rules: + - apiGroups: + - apiextensions.k8s.io + resources: + - customresourcedefinitions + verbs: + - get + - list + - apiGroups: + - config.openshift.io + resources: + - ingresses + verbs: + - get + - list + serviceAccountName: trustify-operator + deployments: + - name: trustify-operator + spec: + replicas: 1 + selector: + matchLabels: + app.kubernetes.io/name: trustify-operator + template: + metadata: + annotations: + app.quarkus.io/quarkus-version: 3.11.3 + app.quarkus.io/build-timestamp: 2024-08-29 - 18:02:39 +0000 + prometheus.io/scrape: 'true' + prometheus.io/path: /q/metrics + prometheus.io/port: '8080' + prometheus.io/scheme: http + labels: + app.kubernetes.io/managed-by: quarkus + app.kubernetes.io/version: 0.1.0-alpha.8 + app.kubernetes.io/name: trustify-operator + spec: + containers: + - env: + - name: KUBERNETES_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: RELATED_IMAGE_TRUSTIFY_SERVER + value: ghcr.io/trustification/trustd:0.1.0-alpha.14 + - name: RELATED_IMAGE_DB + value: quay.io/sclorg/postgresql-15-c9s:latest + - name: QUARKUS_OPERATOR_SDK_CONTROLLERS_TRUSTIFY_NAMESPACES + valueFrom: + fieldRef: + fieldPath: metadata.annotations['olm.targetNamespaces'] + image: ghcr.io/trustification/trustify-operator:v0.1.0-alpha.8 + imagePullPolicy: Always + livenessProbe: + failureThreshold: 3 + httpGet: + path: /q/health/live + port: 8080 + scheme: HTTP + initialDelaySeconds: 5 + periodSeconds: 10 + successThreshold: 1 + timeoutSeconds: 10 + name: trustify-operator + ports: + - containerPort: 8080 + name: http + protocol: TCP + readinessProbe: + failureThreshold: 3 + httpGet: + path: /q/health/ready + port: 8080 + scheme: HTTP + initialDelaySeconds: 5 + periodSeconds: 10 + successThreshold: 1 + timeoutSeconds: 10 + resources: + limits: + cpu: 250m + memory: 256Mi + requests: + cpu: 50m + memory: 64Mi + startupProbe: + failureThreshold: 3 + httpGet: + path: /q/health/started + port: 8080 + scheme: HTTP + initialDelaySeconds: 5 + periodSeconds: 10 + successThreshold: 1 + timeoutSeconds: 10 + serviceAccountName: trustify-operator + permissions: + - rules: + - apiGroups: + - org.trustify + resources: + - trustifies + - trustifies/status + - trustifies/finalizers + verbs: + - get + - list + - watch + - patch + - update + - create + - delete + - apiGroups: + - apps + resources: + - deployments + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - apps + resources: + - deployments + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - '' + resources: + - secrets + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - '' + resources: + - services + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - '' + resources: + - persistentvolumeclaims + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - '' + resources: + - services + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - networking.k8s.io + resources: + - ingresses + verbs: + - get + - list + - watch + - patch + - update + - delete + - create + - apiGroups: + - '' + resources: + - pods + - persistentvolumeclaims + - services + - configmaps + - secrets + verbs: + - '*' + - apiGroups: + - route.openshift.io + resources: + - routes + verbs: + - '*' + - apiGroups: + - networking.k8s.io + resources: + - ingresses + verbs: + - '*' + - apiGroups: + - apps + - extensions + resources: + - deployments + verbs: + - '*' + - apiGroups: + - config.openshift.io + resources: + - ingresses + verbs: + - get + - list + - apiGroups: + - '' + resources: + - '*' + verbs: + - '*' + - apiGroups: + - security.openshift.io + resourceNames: + - anyuid + resources: + - securitycontextconstraints + verbs: + - use + serviceAccountName: trustify-operator + strategy: deployment + installModes: + - supported: true + type: OwnNamespace + - supported: false + type: SingleNamespace + - supported: false + type: MultiNamespace + - supported: false + type: AllNamespaces + keywords: + - trust + links: + - name: Website + url: https://trustification.io/ + - name: Github + url: https://github.com/trustification/trustify + maintainers: + - email: trustification@googlegroups.com + name: Trustification + maturity: alpha + minKubeVersion: 1.23.0 + nativeAPIs: + - kind: PersistentVolumeClaim + group: '' + version: v1 + - kind: Secret + group: '' + version: v1 + - kind: Service + group: '' + version: v1 + - kind: Service + group: '' + version: v1 + - kind: Deployment + group: apps + version: v1 + - kind: Deployment + group: apps + version: v1 + - kind: Ingress + group: networking.k8s.io + version: v1 + provider: + name: Trustification + version: 0.1.0-alpha.8 diff --git a/operators/trustify-operator/0.1.0-alpha.8/metadata/annotations.yaml b/operators/trustify-operator/0.1.0-alpha.8/metadata/annotations.yaml new file mode 100644 index 00000000000..ca948303688 --- /dev/null +++ b/operators/trustify-operator/0.1.0-alpha.8/metadata/annotations.yaml @@ -0,0 +1,11 @@ +annotations: + operators.operatorframework.io.bundle.channel.default.v1: alpha + operators.operatorframework.io.bundle.channels.v1: alpha + operators.operatorframework.io.bundle.manifests.v1: manifests/ + operators.operatorframework.io.bundle.mediatype.v1: registry+v1 + operators.operatorframework.io.bundle.metadata.v1: metadata/ + operators.operatorframework.io.bundle.package.v1: trustify-operator + operators.operatorframework.io.metrics.builder: qosdk-bundle-generator/6.7.1+c259e4c + operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 + operators.operatorframework.io.metrics.project_layout: quarkus.javaoperatorsdk.io/v1-alpha + com.redhat.openshift.versions: "v4.10"