From d72eb081b1eba3783fe85e1c9ed604539db41355 Mon Sep 17 00:00:00 2001 From: streamnativebot Date: Sun, 8 Oct 2023 02:38:16 +0000 Subject: [PATCH] operator sn-operator (0.3.0-rc1) Signed-off-by: streamnativebot --- .../sn-operator/0.3.0-rc1/bundle.Dockerfile | 21 + .../k8s.streamnative.io_apikeys.yaml | 350 +++++++ ...k8s.streamnative.io_connectorcatalogs.yaml | 140 +++ .../k8s.streamnative.io_oxiaclusters.yaml | 158 +++ .../k8s.streamnative.io_pfsqlclusters.yaml | 352 +++++++ ...8s.streamnative.io_pulsarcoordinators.yaml | 264 +++++ .../k8s.streamnative.io_snconsoles.yaml | 113 ++ ...er-manager-metrics-service_v1_service.yaml | 18 + ...n-operator-global-config_v1_configmap.yaml | 19 + ...-operator-manager-config_v1_configmap.yaml | 17 + ...c.authorization.k8s.io_v1_clusterrole.yaml | 10 + ...bleshooting-template-jvm_v1_configmap.yaml | 18 + ...shooting-template-pulsar_v1_configmap.yaml | 11 + ...shooting-template-system_v1_configmap.yaml | 12 + ...n-operator-webhook-service_v1_service.yaml | 16 + .../sn-operator.clusterserviceversion.yaml | 964 ++++++++++++++++++ .../0.3.0-rc1/metadata/annotations.yaml | 17 + .../0.3.0-rc1/tests/scorecard/config.yaml | 70 ++ 18 files changed, 2570 insertions(+) create mode 100644 operators/sn-operator/0.3.0-rc1/bundle.Dockerfile create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_apikeys.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_connectorcatalogs.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_oxiaclusters.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pfsqlclusters.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pulsarcoordinators.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_snconsoles.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-controller-manager-metrics-service_v1_service.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-global-config_v1_configmap.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-manager-config_v1_configmap.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-jvm_v1_configmap.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-pulsar_v1_configmap.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-system_v1_configmap.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator-webhook-service_v1_service.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/manifests/sn-operator.clusterserviceversion.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/metadata/annotations.yaml create mode 100644 operators/sn-operator/0.3.0-rc1/tests/scorecard/config.yaml diff --git a/operators/sn-operator/0.3.0-rc1/bundle.Dockerfile b/operators/sn-operator/0.3.0-rc1/bundle.Dockerfile new file mode 100644 index 00000000000..30fa5bb6b3e --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/bundle.Dockerfile @@ -0,0 +1,21 @@ +FROM scratch + +# Core bundle labels. +LABEL operators.operatorframework.io.bundle.mediatype.v1=registry+v1 +LABEL operators.operatorframework.io.bundle.manifests.v1=manifests/ +LABEL operators.operatorframework.io.bundle.metadata.v1=metadata/ +LABEL operators.operatorframework.io.bundle.package.v1=sn-operator +LABEL operators.operatorframework.io.bundle.channels.v1=alpha,beta,stable +LABEL operators.operatorframework.io.bundle.channel.default.v1=alpha +LABEL operators.operatorframework.io.metrics.builder=operator-sdk-v1.31.0 +LABEL operators.operatorframework.io.metrics.mediatype.v1=metrics+v1 +LABEL operators.operatorframework.io.metrics.project_layout=go.kubebuilder.io/v3 + +# Labels for testing. +LABEL operators.operatorframework.io.test.mediatype.v1=scorecard+v1 +LABEL operators.operatorframework.io.test.config.v1=tests/scorecard/ + +# Copy files to locations specified by labels. +COPY bundle/manifests /manifests/ +COPY bundle/metadata /metadata/ +COPY bundle/tests/scorecard /tests/scorecard/ diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_apikeys.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_apikeys.yaml new file mode 100644 index 00000000000..4a555381dbf --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_apikeys.yaml @@ -0,0 +1,350 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: apikeys.k8s.streamnative.io +spec: + group: k8s.streamnative.io + names: + kind: ApiKeys + listKind: ApiKeysList + plural: apikeys + singular: apikeys + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: ApiKeys is the Schema for the apikeys API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: ApiKeysSpec defines the desired state of ApiKeys + properties: + brokerServiceUrl: + description: brokerServiceUrl defines the service url of pulsar cluster. + type: string + config: + description: Config is the configuration of the api keys svc + properties: + authenticator: + description: Authenticator is the configuration of the api keys + authenticator + properties: + acceptedAudience: + description: AcceptedAudience Only tokens with aud to this + value would be authenticated to this service. + type: string + enabled: + description: Enabled is the enable of the authenticator. + type: boolean + issuers: + description: Issuers only tokens with such issuers will be + authenticated to this service. + items: + type: string + type: array + jwksFetchInterval: + description: JwksFetchInterval is the interval of the jwks + fetch, unit is second. + format: int64 + type: integer + type: object + backend: + description: Backend is the configuration of the api keys backend + properties: + pulsarClient: + additionalProperties: + type: string + description: PulsarClient is the client of the pulsar. + type: object + pulsarTopic: + default: api_keys_api.example + description: PulsarTopic is the topic of the pulsar. + type: string + retryInterval: + description: RetryInterval is the retry interval of the backend, + unit is second. + format: int64 + type: integer + type: object + server: + description: Server is the configuration of the api keys server + properties: + audience: + description: Audience aud the token issued for. Should be + the pulsar instance id. + type: string + claimsToCopy: + description: ClaimsToCopy These claims from the request token + would be copied to the issued tokens. + items: + type: string + type: array + currentKid: + description: CurrentKid is the current kid of the server. + type: string + logLevel: + description: LogLevel is the log level of the server. + enum: + - panic + - fatal + - error + - warn + - info + - debug + - trace + type: string + maxKeys: + default: 10000 + description: MaxKeys is the max keys of the server. + type: integer + maxRevoked: + default: 10000 + description: MaxRevoked is the max revoked of the server. + type: integer + type: object + type: object + hostname: + description: The external host exposed by istio or ingress + type: string + image: + description: Image is the container image used to run api keys pods. + default is docker.cloudsmith.io/streamnative/sn-api-keys-svc:latest + type: string + imagePullPolicy: + description: Image pull policy, one of Always, Never, IfNotPresent, + default to Always. + type: string + istio: + description: Istio defines Istio configuration of components + properties: + authRules: + description: AuthRules define the AuthorzationPolicies + items: + properties: + fromSource: + items: + properties: + principals: + items: + type: string + type: array + type: object + type: array + type: object + type: array + enabled: + description: Enabled defines whether to enable Istio + type: boolean + gateway: + description: Gateway defines the gateway configuration The operator + could either create a gateway automatically or use an existing + one + properties: + create: + description: Create defines whether to create a gateway + type: boolean + gateways: + description: Gateways defines a list of existing gateways + items: + type: string + nullable: true + type: array + selector: + additionalProperties: + type: string + description: Selector defines the selector for the gateway + to create + nullable: true + type: object + tls: + properties: + certSecretName: + description: 'SIMPLE mode: CertSecretName defines the + name of the secret that contains the certificate to + use in Istio Ingress Gateway. The value should be name + of the secret in the gateway workload namespace. PASSTHROUGH + mode: CertSecretName defines the name of the secret + that contains the certificate to use in Broker. The + value should be name of the secret name of the secret + in the Broker workload namespace. Required in both SIMPLE + and PASSTHROUGH mode.' + type: string + mode: + description: 'Optional: Indicates whether connections + to this port should be secured using TLS. The value + of this field determines how TLS is enforced.' + type: string + trustCertsEnabled: + description: TrustCertsEnabled defines whether to enable + trust store + type: boolean + type: object + type: object + mtls: + description: Mtls defines the mTLS configuration + properties: + mode: + default: strict + type: string + type: object + revision: + default: default + description: Revision defines which Istio control plane inject + sidecar + type: string + trustDomain: + description: TrustDomain corresponds to the trust root of a system + and is part of a workload identity + type: string + type: object + pod: + description: Pod defines the policy for creating api key pod for the + cluster + properties: + resources: + description: Resources is the resource requirement of api key + service + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Limits describes the maximum amount of compute + resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Requests describes the minimum amount of compute + resources required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, otherwise + to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + type: object + required: + - resources + type: object + replicas: + default: 2 + description: Replicas is the expected size of the api keys svc If + unspecified, defaults to 2. + format: int32 + minimum: 0 + type: integer + required: + - brokerServiceUrl + type: object + status: + description: ApiKeysStatus defines the observed state of ApiKeys + properties: + conditions: + description: Conditions is an array of current observed conditions. + items: + description: "Condition contains details for one aspect of the current + state of this API Resource. --- This struct is intended for direct + use as an array at the field path .status.conditions. For example, + type FooStatus struct{ // Represents the observations of a foo's + current state. // Known .status.conditions.type are: \"Available\", + \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge + // +listType=map // +listMapKey=type Conditions []metav1.Condition + `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" + protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }" + properties: + lastTransitionTime: + description: lastTransitionTime is the last time the condition + transitioned from one status to another. This should be when + the underlying condition changed. If that is not known, then + using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: message is a human readable message indicating + details about the transition. This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: observedGeneration represents the .metadata.generation + that the condition was set based upon. For instance, if .metadata.generation + is currently 12, but the .status.conditions[x].observedGeneration + is 9, the condition is out of date with respect to the current + state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: reason contains a programmatic identifier indicating + the reason for the condition's last transition. Producers + of specific condition types may define expected values and + meanings for this field, and whether the values are considered + a guaranteed API. The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + --- Many .condition.type values are consistent across resources + like Available, but because arbitrary conditions can be useful + (see .node.status.conditions), the ability to deconflict is + important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + x-kubernetes-list-map-keys: + - type + x-kubernetes-list-type: map + observedGeneration: + description: ObservedGeneration is the most recent generation observed + for this api keys service. + format: int64 + type: integer + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_connectorcatalogs.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_connectorcatalogs.yaml new file mode 100644 index 00000000000..ff1ef970cc0 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_connectorcatalogs.yaml @@ -0,0 +1,140 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cert-manager.io/inject-ca-from: sn-operator-system/sn-operator-serving-cert + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: connectorcatalogs.k8s.streamnative.io +spec: + conversion: + strategy: Webhook + webhook: + clientConfig: + service: + name: sn-operator-webhook-service + namespace: sn-operator-system + path: /convert + conversionReviewVersions: + - v1 + group: k8s.streamnative.io + names: + kind: ConnectorCatalog + listKind: ConnectorCatalogList + plural: connectorcatalogs + singular: connectorcatalog + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: ConnectorCatalog is the Schema for the connectorcatalogs API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: ConnectorCatalogSpec defines the desired state of ConnectorCatalog + properties: + connectorDefinitions: + items: + properties: + defaultSchemaType: + type: string + defaultSerdeClassName: + type: string + description: + type: string + id: + type: string + imageRegistry: + type: string + imageRepository: + type: string + imageTag: + type: string + jarFullName: + type: string + name: + type: string + sinkClass: + type: string + sinkConfigClass: + type: string + sinkConfigFieldDefinitions: + items: + properties: + attributes: + additionalProperties: + type: string + type: object + fieldName: + type: string + typeName: + type: string + required: + - fieldName + - typeName + type: object + type: array + sinkTypeClassName: + type: string + sourceClass: + type: string + sourceConfigClass: + type: string + sourceConfigFieldDefinitions: + items: + properties: + attributes: + additionalProperties: + type: string + type: object + fieldName: + type: string + typeName: + type: string + required: + - fieldName + - typeName + type: object + type: array + sourceTypeClassName: + type: string + typeClassName: + type: string + version: + type: string + required: + - id + type: object + type: array + x-kubernetes-list-map-keys: + - id + x-kubernetes-list-type: map + required: + - connectorDefinitions + type: object + status: + description: ConnectorCatalogStatus defines the observed state of ConnectorCatalog + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_oxiaclusters.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_oxiaclusters.yaml new file mode 100644 index 00000000000..93580bce3fb --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_oxiaclusters.yaml @@ -0,0 +1,158 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: oxiaclusters.k8s.streamnative.io +spec: + group: k8s.streamnative.io + names: + kind: OxiaCluster + listKind: OxiaClusterList + plural: oxiaclusters + singular: oxiacluster + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: OxiaCluster is the Schema for the oxiaclusters API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: OxiaClusterSpec defines the desired state of OxiaCluster + properties: + coordinator: + description: Coordinator contains configuration specific to the coordinator + component + properties: + resources: + description: Resources is the resource requirement of coordinator + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Limits describes the maximum amount of compute + resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Requests describes the minimum amount of compute + resources required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, otherwise + to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + type: object + required: + - resources + type: object + image: + description: Image contains configuration specific to the image being + used + type: string + imagePullPolicy: + description: Image pull policy, one of Always, Never, IfNotPresent, + default to Always. + type: string + monitoringEnabled: + description: MonitoringEnabled determines whether a Prometheus ServiceMonitor + should be created + type: boolean + namespaces: + description: Namespaces contains namespace configuration list + items: + properties: + initialShardCount: + format: int32 + type: integer + name: + type: string + replicationFactor: + format: int32 + type: integer + required: + - name + type: object + type: array + pprofEnabled: + description: PprofEnabled determines whether the pprof HTTP service + will be enabled + type: boolean + server: + description: Server contains configuration specific to the server + component + properties: + replicas: + description: Replicas is the number of server pods that should + be running + format: int32 + type: integer + resources: + description: Resources is the resource requirement of coordinator + properties: + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Limits describes the maximum amount of compute + resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Requests describes the minimum amount of compute + resources required. If Requests is omitted for a container, + it defaults to Limits if that is explicitly specified, otherwise + to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + type: object + type: object + storageClassName: + description: StorageClassName is the name of StorageClass to which + the persistent volume belongs + type: string + required: + - resources + type: object + type: object + status: + description: OxiaClusterStatus defines the observed state of OxiaCluster + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pfsqlclusters.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pfsqlclusters.yaml new file mode 100644 index 00000000000..41b1ced1c34 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pfsqlclusters.yaml @@ -0,0 +1,352 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: pfsqlclusters.k8s.streamnative.io +spec: + group: k8s.streamnative.io + names: + kind: PFSQLCluster + listKind: PFSQLClusterList + plural: pfsqlclusters + singular: pfsqlcluster + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: PFSQLCluster is the Schema for the pfsqlclusters API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: PFSQLClusterSpec defines the desired state of PFSQLCluster + properties: + gateway: + properties: + auth: + properties: + oauth2: + properties: + audience: + type: string + authURL: + type: string + issuerUrl: + type: string + subjectClaim: + type: string + required: + - audience + - authURL + - issuerUrl + - subjectClaim + type: object + provider: + type: string + required: + - provider + type: object + image: + type: string + imagePullPolicy: + type: string + type: object + hostname: + description: The external host exposed by istio or ingress + type: string + ingressConfig: + properties: + path: + type: string + tls: + properties: + enabled: + type: boolean + secretName: + type: string + required: + - enabled + - secretName + type: object + type: object + istio: + properties: + authRules: + description: AuthRules define the AuthorzationPolicies + items: + properties: + fromSource: + items: + properties: + principals: + items: + type: string + type: array + type: object + type: array + type: object + type: array + enabled: + description: Enabled defines whether to enable Istio + type: boolean + gateway: + description: Gateway defines the gateway configuration The operator + could either create a gateway automatically or use an existing + one + properties: + create: + description: Create defines whether to create a gateway + type: boolean + gateways: + description: Gateways defines a list of existing gateways + items: + type: string + nullable: true + type: array + selector: + additionalProperties: + type: string + description: Selector defines the selector for the gateway + to create + nullable: true + type: object + tls: + properties: + certSecretName: + description: 'SIMPLE mode: CertSecretName defines the + name of the secret that contains the certificate to + use in Istio Ingress Gateway. The value should be name + of the secret in the gateway workload namespace. PASSTHROUGH + mode: CertSecretName defines the name of the secret + that contains the certificate to use in Broker. The + value should be name of the secret name of the secret + in the Broker workload namespace. Required in both SIMPLE + and PASSTHROUGH mode.' + type: string + mode: + description: 'Optional: Indicates whether connections + to this port should be secured using TLS. The value + of this field determines how TLS is enforced.' + type: string + trustCertsEnabled: + description: TrustCertsEnabled defines whether to enable + trust store + type: boolean + type: object + type: object + mtls: + description: Mtls defines the mTLS configuration + properties: + mode: + default: strict + type: string + type: object + revision: + default: default + description: Revision defines which Istio control plane inject + sidecar + type: string + trustDomain: + description: TrustDomain corresponds to the trust root of a system + and is part of a workload identity + type: string + type: object + labels: + additionalProperties: + type: string + type: object + pulsarClusterConfig: + properties: + auth: + properties: + oauth2: + properties: + audience: + type: string + issuerUrl: + type: string + keySecretName: + type: string + scope: + type: string + required: + - audience + - issuerUrl + - keySecretName + - scope + type: object + provider: + type: string + required: + - provider + type: object + builtinFunctions: + items: + properties: + bindStatements: + items: + type: string + type: array + className: + type: string + customRuntimeOptions: + additionalProperties: + type: string + type: object + description: + type: string + filename: + type: string + managed: + type: boolean + name: + type: string + packageFileUrl: + type: string + packageUrl: + type: string + required: + - bindStatements + - className + - filename + - name + - packageUrl + type: object + type: array + metadataTopic: + type: string + serviceUrl: + type: string + tls: + properties: + tlsAllowInsecureConnection: + type: boolean + tlsCertificateFilePath: + type: string + tlsEnableHostnameVerification: + type: boolean + tlsKeyFilePath: + type: string + tlsRequireTrustedClientCertOnConnect: + type: boolean + type: object + webServiceUrl: + type: string + required: + - serviceUrl + - webServiceUrl + type: object + replicas: + default: 1 + format: int32 + type: integer + serviceAccountName: + description: ServiceAccountName The service account assigned to Gateway + Pod. If empty, the default service account in the namespace will + be used. + type: string + type: object + status: + description: PFSQLClusterStatus defines the observed state of PFSQLCluster + properties: + conditions: + description: 'INSERT ADDITIONAL STATUS FIELD - define observed state + of cluster Important: Run "make" to reSqlGatewayComponentgenerate + code after modifying this file' + items: + description: "Condition contains details for one aspect of the current + state of this API Resource. --- This struct is intended for direct + use as an array at the field path .status.conditions. For example, + type FooStatus struct{ // Represents the observations of a foo's + current state. // Known .status.conditions.type are: \"Available\", + \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge + // +listType=map // +listMapKey=type Conditions []metav1.Condition + `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" + protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }" + properties: + lastTransitionTime: + description: lastTransitionTime is the last time the condition + transitioned from one status to another. This should be when + the underlying condition changed. If that is not known, then + using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: message is a human readable message indicating + details about the transition. This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: observedGeneration represents the .metadata.generation + that the condition was set based upon. For instance, if .metadata.generation + is currently 12, but the .status.conditions[x].observedGeneration + is 9, the condition is out of date with respect to the current + state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: reason contains a programmatic identifier indicating + the reason for the condition's last transition. Producers + of specific condition types may define expected values and + meanings for this field, and whether the values are considered + a guaranteed API. The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + --- Many .condition.type values are consistent across resources + like Available, but because arbitrary conditions can be useful + (see .node.status.conditions), the ability to deconflict is + important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + observedGeneration: + format: int64 + type: integer + required: + - observedGeneration + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pulsarcoordinators.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pulsarcoordinators.yaml new file mode 100644 index 00000000000..e002c188d19 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_pulsarcoordinators.yaml @@ -0,0 +1,264 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cert-manager.io/inject-ca-from: sn-operator-system/sn-operator-serving-cert + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: pulsarcoordinators.k8s.streamnative.io +spec: + conversion: + strategy: Webhook + webhook: + clientConfig: + service: + name: sn-operator-webhook-service + namespace: sn-operator-system + path: /convert + conversionReviewVersions: + - v1 + group: k8s.streamnative.io + names: + categories: + - pulsar + kind: PulsarCoordinator + listKind: PulsarCoordinatorList + plural: pulsarcoordinators + shortNames: + - pcoord + singular: pulsarcoordinator + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .spec.image + name: IMAGE + type: string + - jsonPath: .spec.placement.availabilityPolicy + name: AVAILABILITY_POLICY + type: string + - jsonPath: .status.conditions[?(@.type=="Ready")].status + name: READY + type: string + name: v1alpha1 + schema: + openAPIV3Schema: + description: PulsarCoordinator is the Schema for the pulsarcoordinators API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: PulsarCoordinatorSpec defines the desired state of PulsarCoordinator + properties: + auditLog: + description: AuditLog is the custom configuration of audit log. + properties: + categories: + default: + - Management + description: Categories indicate the captured categories of audit + log events. Default is [Management] More details in https://github.com/streamnative/sn-pulsar-plugins/tree/master/pulsar-audit-log#pulsar-audit-log + items: + type: string + type: array + type: object + autoScalingPolicy: + description: AutoScalingPolicy is simply a flag for now indicating + if sn-operator manages hpa on components. + type: object + detector: + description: Detector defines the configuration of SLA detector Detector + will be enabled when the field is not nil + properties: + serviceEndpoint: + description: ServiceEndpoint represents custom service endpoint + for pulsar service and web service If it is specified, it will + override the service endpoint from pulsarbroker + properties: + pulsarServiceURL: + type: string + webServiceURL: + type: string + type: object + type: object + image: + description: Image is the container image used to run pods in the + pulsar cluster. + type: string + istio: + description: Istio defines Istio configuration of components + properties: + revision: + type: string + trustDomain: + description: TrustDomain corresponds to the trust root of a system + and is part of a workload identity + type: string + type: object + pfsql: + description: Pfsql defines the configuration of PFSQLCluster + properties: + labels: + additionalProperties: + type: string + description: Labels is a set of key/value pairs that will be added + to the pfsql cluster pods. + type: object + metadataTopicName: + description: MetadataTopicName is the name of the metadata topic. + type: string + serviceAccountName: + description: ServiceAccountName is the name of the ServiceAccount + to use to run the pfsql cluster. + type: string + type: object + placement: + description: Placement determines the distribution of pods and data. + properties: + availabilityPolicy: + description: AvailabilityPolicy determines the distribution of + pods and data. + enum: + - Zonal + - Regional + type: string + type: object + pod: + description: Pod defines the common metadata of the pod that will + be used on components + properties: + labels: + additionalProperties: + type: string + type: object + type: object + toolSet: + description: ToolSet defines the configuration of the tool set pod + ToolSet is enabled by default when the field is defined even if + it is empty + properties: + enabled: + description: Enabled defines whether toolset is enabled + type: boolean + replicas: + description: Replicas is the desired replicas of the toolset. + format: int32 + minimum: 0 + type: integer + type: object + type: object + status: + description: PulsarCoordinatorStatus defines the observed state of PulsarCoordinator + properties: + computeUnit: + anyOf: + - type: integer + - type: string + description: ComputeUnit defines all compute units under this coordinator + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + conditions: + items: + description: "Condition contains details for one aspect of the current + state of this API Resource. --- This struct is intended for direct + use as an array at the field path .status.conditions. For example, + type FooStatus struct{ // Represents the observations of a foo's + current state. // Known .status.conditions.type are: \"Available\", + \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge + // +listType=map // +listMapKey=type Conditions []metav1.Condition + `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" + protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }" + properties: + lastTransitionTime: + description: lastTransitionTime is the last time the condition + transitioned from one status to another. This should be when + the underlying condition changed. If that is not known, then + using the time when the API field changed is acceptable. + format: date-time + type: string + message: + description: message is a human readable message indicating + details about the transition. This may be an empty string. + maxLength: 32768 + type: string + observedGeneration: + description: observedGeneration represents the .metadata.generation + that the condition was set based upon. For instance, if .metadata.generation + is currently 12, but the .status.conditions[x].observedGeneration + is 9, the condition is out of date with respect to the current + state of the instance. + format: int64 + minimum: 0 + type: integer + reason: + description: reason contains a programmatic identifier indicating + the reason for the condition's last transition. Producers + of specific condition types may define expected values and + meanings for this field, and whether the values are considered + a guaranteed API. The value should be a CamelCase string. + This field may not be empty. + maxLength: 1024 + minLength: 1 + pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ + type: string + status: + description: status of the condition, one of True, False, Unknown. + enum: + - "True" + - "False" + - Unknown + type: string + type: + description: type of condition in CamelCase or in foo.example.com/CamelCase. + --- Many .condition.type values are consistent across resources + like Available, but because arbitrary conditions can be useful + (see .node.status.conditions), the ability to deconflict is + important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) + maxLength: 316 + pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ + type: string + required: + - lastTransitionTime + - message + - reason + - status + - type + type: object + type: array + x-kubernetes-list-map-keys: + - type + x-kubernetes-list-type: map + observedGeneration: + description: ObservedGeneration is the most recent generation observed + for this cluster. It corresponds to the metadata generation, which + is updated on mutation by the API Server. + format: int64 + type: integer + storageUnit: + anyOf: + - type: integer + - type: string + description: StorageUnit defines all storage units under this coordinator + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_snconsoles.yaml b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_snconsoles.yaml new file mode 100644 index 00000000000..a436065e018 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/k8s.streamnative.io_snconsoles.yaml @@ -0,0 +1,113 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.10.0 + creationTimestamp: null + name: snconsoles.k8s.streamnative.io +spec: + group: k8s.streamnative.io + names: + kind: SNConsole + listKind: SNConsoleList + plural: snconsoles + singular: snconsole + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: SNConsole is the Schema for the snconsoles API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: SNConsoleSpec defines the desired state of SNConsole + properties: + customization: + description: Customization allows the desired manifests of operator + managed resources to be customized. + items: + properties: + manifest: + description: Manifest defines the patch to apply to customize + the desired resource + type: string + match: + description: Match defines what resource should be customized + by this customization layer + nullable: true + properties: + groupVersionKinds: + description: Matches the group, version, and kind of the + resource. + items: + properties: + group: + description: Group is the group of the resource. Matches + all groups if it's empty or `*`. + type: string + kind: + description: Kind is the kind of the resource. Matches + all kinds if it's `*`. + type: string + version: + description: Version is the version of the resource. + Matches all versions if it's empty or `*`. + type: string + required: + - kind + type: object + nullable: true + type: array + name: + description: Name matches the resource name defined in the + metadata. It could be defined as a Regex pattern, like + `^.*-bk$`. + type: string + type: object + required: + - manifest + type: object + nullable: true + type: array + image: + description: Image is the container image used to run sn console pods. + type: string + imagePullPolicy: + description: Image pull policy, one of Always, Never, IfNotPresent, + default to Always. + type: string + kopServiceUrl: + description: KopServiceUrl defines the kop service url of pulsar cluster, + type: string + webServiceUrl: + description: WebServiceUrl defines the web service url of pulsar cluster, + type: string + required: + - webServiceUrl + type: object + status: + description: SNConsoleStatus defines the observed state of SNConsole + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-controller-manager-metrics-service_v1_service.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-controller-manager-metrics-service_v1_service.yaml new file mode 100644 index 00000000000..3ba92b4ae63 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-controller-manager-metrics-service_v1_service.yaml @@ -0,0 +1,18 @@ +apiVersion: v1 +kind: Service +metadata: + creationTimestamp: null + labels: + app: sn-operator + control-plane: controller-manager + name: sn-operator-controller-manager-metrics-service +spec: + ports: + - name: https + port: 8443 + protocol: TCP + targetPort: https + selector: + control-plane: controller-manager +status: + loadBalancer: {} diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-global-config_v1_configmap.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-global-config_v1_configmap.yaml new file mode 100644 index 00000000000..da607ec2a2d --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-global-config_v1_configmap.yaml @@ -0,0 +1,19 @@ +apiVersion: v1 +data: + imageCapabilities: "runAsNonRoot:\n imagePatterns:\n # all 2.x versions starting + from 2.10\n - '.*?:2\\.1[0-9]\\..*'\n # all versions starting from 3.0\n - + '.*?:([3-9]|[1-9][0-9]+)\\..*'\nrestMessageAPI:\n imagePatterns:\n # all 2.9 + versions starting from 2.9.3.21\n - '.*?:2\\.9\\.(3\\.(2[1-9]|[3-9][0-9])|[4-9]\\..*)'\n + \ # all 2.10 versions starting from 2.10.2.1\n - '.*?:2\\.10\\.[2-9]\\..*'\n + \ # all 2.x versions starting from 2.11\n - '.*?:2\\.1[1-9]\\..*'\n # all versions + starting from 3.0\n - '.*?:([3-9]|[1-9][0-9]+)\\..*'\nkopSchemaRegistry:\n imagePatterns:\n + \ # all 2.11 versions starting from 2.11.0.5\n - '.*?:2\\.11\\.(0\\.([5-9]|[1-9][0-9])|[1-9]\\..*)'\n + \ # all versions starting from 3.0\n - '.*?:([3-9]|[1-9][0-9]+)\\..*'\nnewLoadBalancer:\n + \ imagePatterns: []\nnewDelayedMessage:\n imagePatterns: []\ndirectIO:\n imagePatterns: + [] \nprivateCloudConsole:\n imagePatterns:\n # all versions starting from + 2.1.1\n - '.*?:v2\\.([1-9]|[1-9][0-9])\\.([1-9]|[1-9][0-9]).*'\n # all versions + starting from 2.2.0\n - '.*?:v2\\.([2-9]|[1-9][0-9])\\.([0-9]|[1-9][0-9]).*'\n + \ # all versions starting from 3.0\n - '.*?:v([3-9]|[1-9][0-9]+)\\..*'\n" +kind: ConfigMap +metadata: + name: sn-operator-global-config diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-manager-config_v1_configmap.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-manager-config_v1_configmap.yaml new file mode 100644 index 00000000000..7a7da369166 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-manager-config_v1_configmap.yaml @@ -0,0 +1,17 @@ +apiVersion: v1 +data: + controller_manager_config.yaml: | + apiVersion: controller-runtime.sigs.k8s.io/v1alpha1 + kind: ControllerManagerConfig + health: + healthProbeBindAddress: :8081 + metrics: + bindAddress: 127.0.0.1:8080 + webhook: + port: 9443 + leaderElection: + leaderElect: true + resourceName: fba09392.streamnative.io +kind: ConfigMap +metadata: + name: sn-operator-manager-config diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml new file mode 100644 index 00000000000..9dee88a732b --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml @@ -0,0 +1,10 @@ +apiVersion: rbac.authorization.k8s.io/v1 +kind: ClusterRole +metadata: + creationTimestamp: null + name: sn-operator-metrics-reader +rules: +- nonResourceURLs: + - /metrics + verbs: + - get diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-jvm_v1_configmap.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-jvm_v1_configmap.yaml new file mode 100644 index 00000000000..64da6a4b24a --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-jvm_v1_configmap.yaml @@ -0,0 +1,18 @@ +apiVersion: v1 +data: + heapDump: | + command: jmap -dump:live,format=b,file={{.logPath}} {{.process}} + inputs: + - name: process + value: 1 + - name: logPath + threadDump: | + command: jstack -l -e {{.process}} + inputs: + - name: process + value: 1 +kind: ConfigMap +metadata: + labels: + cloud.streamnative.io/troubleshooting-template: "" + name: sn-operator-troubleshooting-template-jvm diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-pulsar_v1_configmap.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-pulsar_v1_configmap.yaml new file mode 100644 index 00000000000..69bf3020dbb --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-pulsar_v1_configmap.yaml @@ -0,0 +1,11 @@ +apiVersion: v1 +data: + topicStats: | + command: pulsar-admin topics stats-internal {{.topic}} + inputs: + - name: topic +kind: ConfigMap +metadata: + labels: + cloud.streamnative.io/troubleshooting-template: "" + name: sn-operator-troubleshooting-template-pulsar diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-system_v1_configmap.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-system_v1_configmap.yaml new file mode 100644 index 00000000000..e8c6b19584a --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-troubleshooting-template-system_v1_configmap.yaml @@ -0,0 +1,12 @@ +apiVersion: v1 +data: + hotThread: | + command: top -Hp {{.process}} + inputs: + - name: process + value: 1 +kind: ConfigMap +metadata: + labels: + cloud.streamnative.io/troubleshooting-template: "" + name: sn-operator-troubleshooting-template-system diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-webhook-service_v1_service.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-webhook-service_v1_service.yaml new file mode 100644 index 00000000000..888d0d33581 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator-webhook-service_v1_service.yaml @@ -0,0 +1,16 @@ +apiVersion: v1 +kind: Service +metadata: + creationTimestamp: null + name: sn-operator-webhook-service +spec: + ports: + - port: 443 + protocol: TCP + targetPort: 9443 + selector: + app: sn-operator + control-plane: controller-manager + service.istio.io/canonical-name: sn-operator +status: + loadBalancer: {} diff --git a/operators/sn-operator/0.3.0-rc1/manifests/sn-operator.clusterserviceversion.yaml b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator.clusterserviceversion.yaml new file mode 100644 index 00000000000..10f0cd2f316 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/manifests/sn-operator.clusterserviceversion.yaml @@ -0,0 +1,964 @@ +apiVersion: operators.coreos.com/v1alpha1 +kind: ClusterServiceVersion +metadata: + annotations: + alm-examples: |- + [ + { + "apiVersion": "k8s.streamnative.io/v1alpha1", + "kind": "ApiKeys", + "metadata": { + "labels": { + "cloud.streamnative.io/app": "pulsar", + "cloud.streamnative.io/cluster": "apikeys", + "cloud.streamnative.io/component": "apikeys", + "cloud.streamnative.io/location": "us-central1", + "cloud.streamnative.io/poolmember-name": "gcp-shared-gcp-usce1-whale-snc", + "cloud.streamnative.io/poolmember-namespace": "streamnative", + "cloud.streamnative.io/pulsar-cluster": "apikeys", + "cloud.streamnative.io/pulsar-instance": "apikeys", + "cloud.streamnative.io/role": "apikeys", + "istio.io/rev": "sn-stable", + "k8s.streamnative.io/coordinator-name": "apikeys" + }, + "name": "apikeys", + "namespace": "guangning" + }, + "spec": { + "brokerServiceUrl": "pulsar://apikeys-broker.guangning.svc.cluster.local:6650", + "config": { + "authenticator": { + "acceptedAudience": "urn:sn:pulsar:guangning:apikeys", + "enabled": true, + "issuers": [ + "https://auth.streamnative.cloud/", + "https://auth.sncloud-stg.dev/", + "https://auth.test.cloud.gcp.streamnative.dev/" + ] + }, + "backend": { + "pulsarTopic": "api_keys_api.example" + }, + "server": { + "audience": "urn:sn:pulsar:guangning:apikeys", + "claimsToCopy": [ + "sub", + "permissions", + "aud", + "scope", + "https://streamnative.io/username" + ], + "currentKid": "7007ddf9-beac-4e74-8e32-f03453fea3e0" + } + }, + "hostname": "apikeys-49c084ec-dfaa-4aed-a879-68ae5c2d1b30.usce1-whale.test.g.sn2.dev", + "image": "docker.cloudsmith.io/streamnative/sn-api-keys-svc/sn-api-keys-svc:latest", + "istio": { + "enabled": true, + "gateway": { + "gateways": [ + "apikeys-gateway" + ] + } + }, + "replicas": 1 + } + }, + { + "apiVersion": "k8s.streamnative.io/v1alpha1", + "kind": "ConnectorCatalog", + "metadata": { + "labels": { + "app.kubernetes.io/created-by": "sn-operator", + "app.kubernetes.io/instance": "connectorcatalog-sample", + "app.kubernetes.io/managed-by": "kustomize", + "app.kubernetes.io/name": "connectorcatalog", + "app.kubernetes.io/part-of": "sn-operator" + }, + "name": "connectorcatalog-sample" + }, + "spec": { + "connectorDefinitions": [ + { + "description": "Test data generator connector", + "id": "pulsar-io-data-generator", + "imageRepository": "streamnative/pulsar-io-data-generator", + "imageTag": "2.9.2.17", + "name": "data-generator", + "sinkClass": "org.apache.pulsar.io.datagenerator.DataGeneratorPrintSink", + "sourceClass": "org.apache.pulsar.io.datagenerator.DataGeneratorSource", + "sourceConfigClass": "org.apache.pulsar.io.datagenerator.DataGeneratorSourceConfig", + "sourceConfigFieldDefinitions": [ + { + "attributes": { + "defaultValue": "50", + "help": "How long to sleep between emitting messages", + "required": "true", + "sensitive": "false" + }, + "fieldName": "sleepBetweenMessages", + "typeName": "long" + } + ], + "typeClassName": "org.apache.pulsar.io.datagenerator.Person", + "version": "2.9.2.17" + }, + { + "description": "Kafka Source", + "id": "pulsar-io-kafka", + "imageRepository": "streamnative/pulsar-io-kafka", + "imageTag": "2.9.2.17", + "name": "kafka", + "sourceClass": "org.apache.pulsar.io.kafka.KafkaBytesSource", + "sourceConfigClass": "org.apache.pulsar.io.kafka.KafkaSourceConfig", + "sourceTypeClassName": "java.nio.ByteBuffer", + "version": "2.9.2.17" + }, + { + "description": "Cloud storage Sink", + "id": "pulsar-io-cloud-storage", + "imageRepository": "streamnative/pulsar-io-cloud-storage", + "imageTag": "2.9.2.17", + "name": "cloud-storage", + "sinkClass": "org.apache.pulsar.io.jcloud.sink.CloudStorageGenericRecordSink", + "sinkConfigClass": "org.apache.pulsar.io.jcloud.sink.CloudStorageSinkConfig", + "typeClassName": "org.apache.pulsar.client.api.schema.GenericRecord", + "version": "2.9.2.17" + } + ] + } + }, + { + "apiVersion": "k8s.streamnative.io/v1alpha1", + "kind": "OxiaCluster", + "metadata": { + "labels": { + "app.kubernetes.io/created-by": "sn-operator", + "app.kubernetes.io/instance": "oxiacluster-sample", + "app.kubernetes.io/managed-by": "kustomize", + "app.kubernetes.io/name": "oxiacluster", + "app.kubernetes.io/part-of": "sn-operator" + }, + "name": "oxiacluster-sample" + }, + "spec": null + }, + { + "apiVersion": "k8s.streamnative.io/v1alpha1", + "kind": "PulsarCoordinator", + "metadata": { + "name": "pulsarcoordinator-sample" + }, + "spec": { + "foo": "bar" + } + }, + { + "apiVersion": "k8s.streamnative.io/v1alpha1", + "kind": "SNConsole", + "metadata": { + "name": "ra-sn-platform", + "namespace": "nsa" + }, + "spec": { + "image": "streamnative/sn-platform-console:v1.14.3", + "imagePullPolicy": "IfNotPresent", + "webServiceUrl": "http://ra-sn-platform-broker.nsa.svc.cluster.local:8080" + } + } + ] + capabilities: Full Lifecycle + categories: Streaming & Messaging + containerImage: olm.streamnative.io/streamnativeio/sn-operator:v0.3.0-rc1 + createdAt: "2023-10-08T02:38:14Z" + description: The StreamNative Operator is a commercial operator built for managing + StreamNative Private Cloud commercial components and enterprise features. + operators.operatorframework.io/builder: operator-sdk-v1.31.0 + operators.operatorframework.io/project_layout: go.kubebuilder.io/v3 + support: StreamNative + name: sn-operator.v0.3.0-rc1 + namespace: placeholder +spec: + apiservicedefinitions: {} + customresourcedefinitions: + owned: + - kind: ApiKeys + name: apikeys.k8s.streamnative.io + version: v1alpha1 + - description: ConnectorCatalog is the Schema for the connectorcatalogs API + displayName: ConnectorCatalog + kind: ConnectorCatalog + name: connectorcatalogs.k8s.streamnative.io + version: v1alpha1 + - kind: OxiaCluster + name: oxiaclusters.k8s.streamnative.io + version: v1alpha1 + - kind: PFSQLCluster + name: pfsqlclusters.k8s.streamnative.io + version: v1alpha1 + - description: PulsarCoordinator is the Schema for the pulsarcoordinators API + displayName: Pulsar Coordinator + kind: PulsarCoordinator + name: pulsarcoordinators.k8s.streamnative.io + version: v1alpha1 + - kind: SNConsole + name: snconsoles.k8s.streamnative.io + version: v1alpha1 + description: StreamNative Operator + displayName: StreamNative Operator + icon: + - base64data: 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 + mediatype: image/svg+xml + install: + spec: + clusterPermissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - services + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - apps + resources: + - deployments + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - apps + resources: + - statefulsets + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - autoscaling + resources: + - horizontalpodautoscalers + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - batch + resources: + - jobs + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - bookkeeper.streamnative.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - cert-manager.io + resources: + - certificates + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - compute.functionmesh.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - create + - get + - list + - update + - apiGroups: + - "" + resources: + - configmaps + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - persistentvolumeclaims + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - pods + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - pods/exec + verbs: + - create + - apiGroups: + - "" + resources: + - secrets + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - serviceaccounts + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - services + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - apikeys + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - apikeys/finalizers + verbs: + - update + - apiGroups: + - k8s.streamnative.io + resources: + - apikeys/status + verbs: + - get + - patch + - update + - apiGroups: + - k8s.streamnative.io + resources: + - oxiaclusters + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - oxiaclusters/finalizers + verbs: + - update + - apiGroups: + - k8s.streamnative.io + resources: + - oxiaclusters/status + verbs: + - get + - patch + - update + - apiGroups: + - k8s.streamnative.io + resources: + - pfsqlclusters + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - pfsqlclusters/finalizers + verbs: + - update + - apiGroups: + - k8s.streamnative.io + resources: + - pfsqlclusters/status + verbs: + - get + - patch + - update + - apiGroups: + - k8s.streamnative.io + resources: + - pulsarcoordinators + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - pulsarcoordinators/finalizers + verbs: + - update + - apiGroups: + - k8s.streamnative.io + resources: + - pulsarcoordinators/status + verbs: + - get + - patch + - update + - apiGroups: + - k8s.streamnative.io + resources: + - snconsoles + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - k8s.streamnative.io + resources: + - snconsoles/finalizers + verbs: + - update + - apiGroups: + - k8s.streamnative.io + resources: + - snconsoles/status + verbs: + - get + - patch + - update + - apiGroups: + - networking.istio.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - networking.k8s.io + resources: + - ingresses + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - policy + resources: + - poddisruptionbudgets + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - pulsar.streamnative.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - rbac.authorization.k8s.io + resources: + - rolebindings + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - security.istio.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - storage.k8s.io + resources: + - storageclasses + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - zookeeper.streamnative.io + resources: + - '*' + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - authentication.k8s.io + resources: + - tokenreviews + verbs: + - create + - apiGroups: + - authorization.k8s.io + resources: + - subjectaccessreviews + verbs: + - create + serviceAccountName: sn-operator-controller-manager + deployments: + - label: + app: sn-operator + control-plane: controller-manager + name: sn-operator-controller-manager + spec: + replicas: 1 + selector: + matchLabels: + app: sn-operator + control-plane: controller-manager + strategy: {} + template: + metadata: + annotations: + traffic.sidecar.istio.io/excludeInboundPorts: "9443" + labels: + app: sn-operator + control-plane: controller-manager + service.istio.io/canonical-name: sn-operator + service.istio.io/canonical-revision: 0.3.0-rc1 + spec: + containers: + - args: + - --secure-listen-address=0.0.0.0:8443 + - --upstream=http://127.0.0.1:8080/ + - --logtostderr=true + - --v=10 + image: gcr.io/kubebuilder/kube-rbac-proxy:v0.8.0 + imagePullPolicy: IfNotPresent + name: kube-rbac-proxy + ports: + - containerPort: 8443 + name: https + protocol: TCP + resources: {} + - args: + - --health-probe-bind-address=:8081 + - --metrics-bind-address=127.0.0.1:8080 + - --leader-elect + command: + - /manager + env: + - name: OPERATOR_NAMESPACE + valueFrom: + fieldRef: + apiVersion: v1 + fieldPath: metadata.namespace + image: olm.streamnative.io/streamnativeio/sn-operator:v0.3.0-rc1 + imagePullPolicy: IfNotPresent + livenessProbe: + httpGet: + path: /healthz + port: 8081 + initialDelaySeconds: 15 + periodSeconds: 20 + name: manager + ports: + - containerPort: 9443 + name: webhook-server + protocol: TCP + readinessProbe: + httpGet: + path: /readyz + port: 8081 + initialDelaySeconds: 5 + periodSeconds: 10 + resources: + limits: + cpu: 200m + memory: 300Mi + requests: + cpu: 100m + memory: 100Mi + securityContext: + allowPrivilegeEscalation: false + securityContext: + runAsNonRoot: true + serviceAccountName: sn-operator-controller-manager + terminationGracePeriodSeconds: 10 + permissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - "" + resources: + - events + verbs: + - create + - patch + serviceAccountName: sn-operator-controller-manager + strategy: deployment + installModes: + - supported: false + type: OwnNamespace + - supported: false + type: SingleNamespace + - supported: false + type: MultiNamespace + - supported: true + type: AllNamespaces + keywords: + - streamnative + - pulsar + links: + - name: Home Page + url: https://streamnative.io + - name: Documentation + url: https://docs.streamnative.io + maintainers: + - email: cloud@streamnative.io + name: StreamNative Cloud + maturity: alpha + provider: + name: StreamNative + url: https://streamnative.io + version: 0.3.0-rc1 + webhookdefinitions: + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: bookkeepercluster.kb.io + rules: + - apiGroups: + - bookkeeper.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + resources: + - bookkeeperclusters + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-bookkeeper-streamnative-io-v1alpha1-bookkeepercluster + - admissionReviewVersions: + - v1 + containerPort: 443 + conversionCRDs: + - connectorcatalogs.k8s.streamnative.io + - pulsarcoordinators.k8s.streamnative.io + deploymentName: sn-operator-controller-manager + generateName: cconnectorcatalogspulsarcoordinators.kb.io + sideEffects: None + targetPort: 9443 + type: ConversionWebhook + webhookPath: /convert + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: mconnectorcatalog.kb.io + rules: + - apiGroups: + - k8s.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - connectorcatalogs + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-k8s-streamnative-io-v1alpha1-connectorcatalog + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: mpulsarbroker.kb.io + rules: + - apiGroups: + - pulsar.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + resources: + - pulsarbrokers + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-pulsar-streamnative-io-v1alpha1-pulsarbroker + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: mpulsarcoordinator.kb.io + rules: + - apiGroups: + - k8s.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - pulsarcoordinators + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-k8s-streamnative-io-v1alpha1-pulsarcoordinator + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: mpulsarproxy.kb.io + rules: + - apiGroups: + - pulsar.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + resources: + - pulsarproxies + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-pulsar-streamnative-io-v1alpha1-pulsarproxy + - admissionReviewVersions: + - v1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: vconnectorcatalog.kb.io + rules: + - apiGroups: + - k8s.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - connectorcatalogs + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-streamnative-io-v1alpha1-connectorcatalog + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: vpulsarcoordinator.kb.io + rules: + - apiGroups: + - k8s.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + - UPDATE + resources: + - pulsarcoordinators + sideEffects: None + targetPort: 9443 + type: ValidatingAdmissionWebhook + webhookPath: /validate-k8s-streamnative-io-v1alpha1-pulsarcoordinator + - admissionReviewVersions: + - v1 + - v1beta1 + containerPort: 443 + deploymentName: sn-operator-controller-manager + failurePolicy: Fail + generateName: zookeepercluster.kb.io + rules: + - apiGroups: + - zookeeper.streamnative.io + apiVersions: + - v1alpha1 + operations: + - CREATE + resources: + - zookeeperclusters + sideEffects: None + targetPort: 9443 + type: MutatingAdmissionWebhook + webhookPath: /mutate-zookeeper-streamnative-io-v1alpha1-zookeepercluster diff --git a/operators/sn-operator/0.3.0-rc1/metadata/annotations.yaml b/operators/sn-operator/0.3.0-rc1/metadata/annotations.yaml new file mode 100644 index 00000000000..bb9a68197dc --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/metadata/annotations.yaml @@ -0,0 +1,17 @@ +annotations: + # Core bundle annotations. + operators.operatorframework.io.bundle.mediatype.v1: registry+v1 + operators.operatorframework.io.bundle.manifests.v1: manifests/ + operators.operatorframework.io.bundle.metadata.v1: metadata/ + operators.operatorframework.io.bundle.package.v1: sn-operator + operators.operatorframework.io.bundle.channels.v1: alpha,beta,stable + operators.operatorframework.io.bundle.channel.default.v1: alpha + operators.operatorframework.io.metrics.builder: operator-sdk-v1.31.0 + operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 + operators.operatorframework.io.metrics.project_layout: go.kubebuilder.io/v3 + + # Annotations for testing. + operators.operatorframework.io.test.mediatype.v1: scorecard+v1 + operators.operatorframework.io.test.config.v1: tests/scorecard/ + # OpenShift annotations. + com.redhat.openshift.versions: v4.6-v4.12 diff --git a/operators/sn-operator/0.3.0-rc1/tests/scorecard/config.yaml b/operators/sn-operator/0.3.0-rc1/tests/scorecard/config.yaml new file mode 100644 index 00000000000..89bdfbe4df9 --- /dev/null +++ b/operators/sn-operator/0.3.0-rc1/tests/scorecard/config.yaml @@ -0,0 +1,70 @@ +apiVersion: scorecard.operatorframework.io/v1alpha3 +kind: Configuration +metadata: + name: config +stages: +- parallel: true + tests: + - entrypoint: + - scorecard-test + - basic-check-spec + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: basic + test: basic-check-spec-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-bundle-validation + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: olm + test: olm-bundle-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-crds-have-validation + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: olm + test: olm-crds-have-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-crds-have-resources + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: olm + test: olm-crds-have-resources-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-spec-descriptors + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: olm + test: olm-spec-descriptors-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-status-descriptors + image: quay.io/operator-framework/scorecard-test:v1.12.0 + labels: + suite: olm + test: olm-status-descriptors-test + storage: + spec: + mountPath: {} +storage: + spec: + mountPath: {}