Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release 1.0.gamma #191

Closed
wants to merge 67 commits into from
Closed

Release 1.0.gamma #191

wants to merge 67 commits into from

Conversation

Gregory-Pereira
Copy link
Contributor

/cc @sallyom force push rejected for protected branch

bouskaJ and others added 30 commits November 10, 2023 10:38
@bouskaJ
Release 1.0.beta (#84)
f588baf 
* Update resources to work with image SHAs

* Use final image names

* Update images
@lance @bouskaJ
@tommyd450 @Gregory-Pereira
Adds monitoring to release-1.0.beta (#86)
943b843 
* Update resources to work with image SHAs (#85)

* Nightly metrics (#81)

* Added nightly cronjob template
Updated templates based on the segment-backup-job repo

* adding job for post-install and moving job to cronjob for nightly metrics

* chore: update segment-backup-job sha

Signed-off-by: Lance Ball <[email protected]>

* adding job for post-install and moving job to cronjob for nightly metrics

---------

Signed-off-by: Lance Ball <[email protected]>
Co-authored-by: greg pereira <[email protected]>
Co-authored-by: Lance Ball <[email protected]>

---------

Signed-off-by: Lance Ball <[email protected]>
Co-authored-by: Jan Bouska <[email protected]>
Co-authored-by: Tommy Dalton <[email protected]>
Co-authored-by: greg pereira <[email protected]>
@bouskaJ
Update segment image (#87)
1dd9892
@red-hat-konflux
Red Hat Trusted App Pipeline update client-server-1-0-gamma (#90)
8d99111 
Co-authored-by: red-hat-trusted-app-pipeline <[email protected]>
@red-hat-konflux
chore(deps): update rhtap references (#93)
9ec3871 
Co-authored-by: red-hat-trusted-app-pipeline <123456+red-hat-trusted-app-pipeline[bot]@users.noreply.github.com>
@Gregory-Pereira
enabling prefetched deps and hermetic builds (#92)
cf0f8c4
@StinkyBenji
fix: add the missing metadata field to the example-user for keycloak (#…
473721e 
…89)
@Gregory-Pereira
bumping image for httpd for CVE (#95)
4a2de3c 
EC failures are unrelated. Merging.
@Gregory-Pereira
enabling source builds in client-server-1-0-gamma component (#91)
2ec2bf1 
EC failures are unrelated. Merging.
@red-hat-konflux
chore(deps): update rhtap references (#100)
d7aeff6 
Co-authored-by: red-hat-trusted-app-pipeline <123456+red-hat-trusted-app-pipeline[bot]@users.noreply.github.com>
@sallyom
update sigstore-monitoring -> tas-monitoring (#110)
9ef3507 
Signed-off-by: Sally O'Malley <[email protected]>

rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@Gregory-Pereira
TAS initialize job to generate fulcio and rekor certs (#103)
a87f5c0 
* implementing the tas-intializer job
@Gregory-Pereira
Revert "TAS initialize job to generate fulcio and rekor certs (#103)" (
60b16a2 
…#115)

This reverts commit a87f5c0.
@cooktheryan
Capabilities to provide values for a managed database (#117)
e86fb7d 
* Allow for database credentials to be provided
* default values chart that shows more options avail
---------

Signed-off-by: Ryan Cook <[email protected]>
@red-hat-konflux
chore(deps): update rhtap references (#112)
b8a0cb6 
Co-authored-by: red-hat-trusted-app-pipeline <123456+red-hat-trusted-app-pipeline[bot]@users.noreply.github.com>
@sallyom
SECURESIGN-276 | Install helm charts with a binary CLI (#94)
2524f99 
* enable keycloak install with binary
* enable cert setup
* configure pull secret
* update pull secret logic, add rekor/fulcio secret
* add helm installation
* handle backup segment job
@osmman @sallyom
Use standart crypto library to generate certificates (#101)
ed7d31d
@sallyom
add uninstall cmd to tas-installer
f64df08 
Signed-off-by: Sally O'Malley <[email protected]>

rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
remove keycloak install
9f70767 
rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
update default OIDC issuer url in cosign deployment
db79f5d 
rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
log if namespace is deleted
2955a97 
rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
add uninstall cmd and other installer updated
09d4293 
rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
bump version
6649887 
rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@sallyom
add keycloak back to kind setup
6a42ea7 
Signed-off-by: Sally O'Malley <[email protected]>

rh-pre-commit.version: 2.0.3
rh-pre-commit.check-secrets: ENABLED
@osmman @sallyom
RoleBinding will not be genereted if component is dissabled
17a263f
@osmman @sallyom
Agregate documentations files into docs folder
22d327e
@osmman @sallyom
change target branch in ct-install.yaml
bf16675
@sallyom
allow for oidc configuration
76f7b6b
@red-hat-konflux
chore(deps): update rhtap references (#126)
5ed1d4e 
Co-authored-by: red-hat-trusted-app-pipeline <123456+red-hat-trusted-app-pipeline[bot]@users.noreply.github.com>
@tommyd450
Updating CLI Server to have more architectures (#129)
a2d866d 
* Updating CLI Server to have more architectures

* Fixing cli donload for cosign
JasonPowr and others added 24 commits January 24, 2024 10:55
@JasonPowr
fix-cosign-amd64.gz-image (#154)
2b01047 
Co-authored-by: JasonPowr <[email protected]>
@JasonPowr
update gitsign image (#156)
cd36f30 
Co-authored-by: JasonPowr <[email protected]>
@tommyd450
Rekor-UI Optional (#155)
47d4373 
* Adding the ability to opt in or out of using Rekor-Search-Ui

* Small Adjustments for Rekor-Search

* Chart Version Bump

* Remove Ingress

* Removing Extra references to ingress present in other files

* Updating Missing Image

* Final Teaks to ci

---------

Co-authored-by: tommyd450 <[email protected]>
@simonbaird
Add ec cli binaries to the cli download image (#153)
07e9860 
Ref: https://issues.redhat.com/browse/EC-292
@tommyd450
Ec download templates (#157)
9024422 
* Updating ClientServer Cosign Linux Name for more unified naming standard

* Adding Cli Download Entries for the Enterprise Contracts

* Changing ec name to lowercase

* Chart Bump

* Removing Extra Line

* Updating Ec description and name

---------

Co-authored-by: tommyd450 <[email protected]>
@simonbaird
Disable hermetic builds for cli image workaround (#162)
4bc2901 
In the #160 PR the binary cli tools are fetched using `ec image
extract`, hence we'll need the buildah task to allow network access.

This should be reverted once we have a better solution for the "too
many base images overflow tekton task result" problem.
@simonbaird
Use oc image extract when building cli image (#160)
894bb98 
This avoids the BASE_IMAGE_DIGESTS Tekton task result in the Konflux
build pipeline result exceeding the maximum size and causing the
build to fail.
@simonbaird
Add explanatory comments about source containers (#166)
0157c84 
Since the `oc image extract` technique introduced in #160 has the
side-effect of making the automatically generated source container
images not include all the sources for each binary, lets add some
commentary to the Dockerfile to explain where to look for those
additional source containers.
@JasonPowr
add cert check (#164)
538bfb3
@tommyd450
Clients sha updates (#168)
15ee9fe 
* Updating ClientServer Cosign Linux Name for more unified naming standard

* Updating CLI Images to that of the Candidates

* Updating mv command

* Removing duplicate cosign entry

---------

Co-authored-by: tommyd450 <[email protected]>
@simonbaird
Remove extra mv commands building client server (#167)
f017812 
Rather than copy the files and then move them, we can copy them
directly to their required location and filename.

Also add some vertical alignment to the long commands for improved
readability.
@tommyd450 @Gregory-Pereira
Updating with Current Snapshots (#159)
6484470 
* Updating with Current Snapshots

* bumping chart version to resolve linting

* Updating with Registry Coordinates

* Final Registry Image Updates

* Chart Bump

---------

Co-authored-by: tommyd450 <[email protected]>
Co-authored-by: greg pereira <[email protected]>
@tommyd450
Fixing typo (#169)
81224de 
Co-authored-by: tommyd450 <[email protected]>
@Gregory-Pereira
swapping in productized version of redis (#137)
b5002f0 
* swapping in productized version of redis

* update redis image

* bump chart version

---------
@tommyd450
Trillian Image Updates (#172)
6dfa52f 
Co-authored-by: tommyd450 <[email protected]>
@tommyd450
[SECURESIGN-442] | Updating Tuf Roots (#171)
9baaad4 
* Updating Tuf Roots

* Chart Bump

---------

Co-authored-by: tommyd450 <[email protected]>
@JasonPowr
add new curl image (#173)
d170c9a
@JasonPowr
update env var scripts (#174)
b035669 
Co-authored-by: JasonPowr <[email protected]>
@tommyd450
Updating cli images (#176)
b140795 
Co-authored-by: tommyd450 <[email protected]>
@sallyom
update sigstore/scaffold version & chart version (#175)
ded4260 
* update sigstore/scaffold version, chart version and  images in values.yaml

Signed-off-by: sallyom <[email protected]>
@Gregory-Pereira
release plan for gamma access (#178)
1120c1f
@lance @tommyd450
chore: update chart w/SHAs from release snapshots (#179)
62f23f8 
* chore: update chart w/SHAs from release snapshots

Uses release snapshot SHAs from TP2

Signed-off-by: Lance Ball <[email protected]>

* Removing Typo from chart.yaml

* Chart Bump

---------

Signed-off-by: Lance Ball <[email protected]>
Co-authored-by: Tommy Dalton <[email protected]>
Co-authored-by: tommyd450 <[email protected]>
@petrpinkas
Generate script without escape characters and indentation (#177)
8997844
@Gregory-Pereira
bring tas-env-generate script into single source of truth (#182)
8144042
@openshift-ci openshift-ci bot requested a review from sallyom February 26, 2024 22:35
@openshift-merge-robot
Copy link

PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Feb 26, 2024

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Gregory-Pereira
Once this PR has been reviewed and has the lgtm label, please assign jasonpowr for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Feb 26, 2024

@Gregory-Pereira: GitHub didn't allow me to request PR reviews from the following users: rejected, for, protected, branch, force, push.

Note that only securesign members and repo collaborators can review this PR, and authors cannot review their own PRs.

In response to this:

/cc @sallyom force push rejected for protected branch

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sallyom sallyom Awaiting requested review from sallyom

Assignees
No one assigned
Labels
needs-rebase
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.