634c6228bb
feat: Create editors definitions configmaps ( #1838 )
...
* feat: Create editors definitions configmaps
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2024-05-20 14:20:59 +02:00
d4d21a2535
chore: operator roles sanitizing ( #1814 )
...
* chore: che-operator roles sanitizing
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2024-03-07 11:01:30 +01:00
504f01e2d0
feat: sync Secrets, ConfigMaps and PersistentVolumesClaims to users n… ( #1799 )
...
* feat: sync Secrets, ConfigMaps and PersistentVolumesClaims to users namespaces
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2024-01-24 12:12:52 +01:00
67fd655d9f
fix: Removing '-Dcom.redhat.fips=false' from the default JAVA_OPTS
...
Signed-off-by: Ilya Buziuk <ibuziuk@redhat.com>
2023-11-22 19:07:09 +01:00
a4e19ead9d
chore: Update dev resources ( #1774 )
...
* chore: Update dev resources
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-11-02 15:16:31 +01:00
95351dfad4
Updating go (to match Dockerfile) and golang.org/x/net ( #1772 )
...
* Updating go and golang.org/x/net
* Add vendor updates
* Reverting change of go version since tidy only supports 1.18
* Update additional files to use go 1.19.13
* ran update-go-dependencies
* run 'make fmt' to fix formatting issues
Change-Id: I6280c8b6851d83ec69d7d9898ae48ae583dc2dfe
Signed-off-by: Nick Boldt <nboldt@redhat.com>
---------
Signed-off-by: Nick Boldt <nboldt@redhat.com>
Co-authored-by: Nick Boldt <nboldt@redhat.com>
2023-10-31 16:48:38 +01:00
bdfe80f843
feat: Allow to configure 2 github providers simultaneously ( #1773 )
...
* feat: Allow to configure 2 github providers simultaneously
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
---------
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-10-30 09:31:50 +01:00
a75d1857cc
feat: Allow to configure CookieExpire timeframe ( #1760 )
...
* feat: Allow to configure CookieExpire timeframe
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-09-29 16:19:31 +02:00
328a2dff18
Add attributes to set gateway container log level in Che CR ( #1748 )
...
feat: set traefik and kube-rbac-proxy log level in CR
Signed-off-by: dkwon17 <dakwon@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2023-09-13 15:43:42 -04:00
ea78a2ceb7
chore: operator should not revert readiness and liveness prob configurations ( #1743 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-08-16 08:08:45 +02:00
1bd44bdb28
add pod & container security context Che Cluster Fields ( #1729 )
...
* feat: add Che Cluster CR fields for pod & container security context
Also modify devEnvironments.disableContainerBuildCapabilities field documentation
to mention it overrides devEnvironments.security.containerSecurityContext
when set to false.
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* feat: configure DWOC pod & container security context from Che Cluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: Add tests for DWOC pod & security context configuration
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: update dev resources for Che Cluster CR devEnvironments.security field
Also updates dev resources for devEnvironments.disableContainerBuildCapabilities
field documentation.
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: split DevWorkspaceConfig tests into seperate functions
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: clean up DevWorkspaceConfig container builds tests
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: clean up unused error in DevWorkspaceOperatorConfig reconciler
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
---------
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
2023-08-10 16:54:52 +02:00
17ea193f27
feat: allow configuring persistent workspace home directory
...
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
2023-07-27 15:35:10 +02:00
b31b92b137
feat: Allow to configure OpenShift OAuth scope ( #1685 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-05-24 10:17:31 +03:00
0c1eed6b78
Update Che Gateway default resources to match previous values
...
Signed-off-by: Angel Misevski <amisevsk@redhat.com>
2023-05-04 16:50:24 -04:00
b9d8ce34b5
feat: add ability to override Gateway container in devEnvironments ( #1639 )
...
Signed-off-by: Mykhailo Kuznietsov <mkuznets@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Angel Misevski <amisevsk@redhat.com>
---------
Signed-off-by: Mykhailo Kuznietsov <mkuznets@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Angel Misevski <amisevsk@redhat.com>
2023-04-25 17:18:38 +03:00
a98d18233e
feat: configure workspace deployment strategy with CheCluster CR ( #1666 )
...
* feat: configure workspace deployment strategy with CheCluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: add tests for configuring workspace deployment strategy
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: update dev resources for devEnvironments.DeploymentStrategy
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
---------
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
2023-04-25 08:43:55 +03:00
4bcc78a27a
feat: Allow to configure user custom roles ( #1663 )
...
* feat: Allow to configure user custom roles without duplicating default ones
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-04-21 14:52:05 +03:00
3a61595a99
chore: Adapt tests for downstream ( #1652 )
...
* chore: Adapt tests for downstream
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* make fmt
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
---------
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-04-04 08:58:40 +03:00
c1ec947acd
feat: Move some defaults out of CheCluster to env variables ( #1642 )
...
* feat: Move some defaults out of CheCluster to env variables
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-03-29 09:09:46 +03:00
239b5362ae
feat: Propagate kubernetes root certificate to che components ( #1637 )
...
* feat: Propagate kubernetes root certificate to che components
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-03-14 07:45:27 +02:00
12169def8b
feat: Remove PostgreSQL component ( #1630 )
...
* feat: Remove PostgreSQL component
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-02-28 15:42:22 +02:00
8d0ee22923
feat: Support Azure DevOps Service OAuth ( #1622 )
...
* feat: Support Azure DevOps Service OAuth2 config
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-02-27 18:09:40 +02:00
8f5c3b41fa
feat: Configure disable subdomain isolation via secret ( #1613 )
...
* feat: Configre disable subdomin isolation via secet
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* Deprecate Enpoints
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-02-09 12:43:56 +02:00
4e75590a11
chore: Refactor Kubernetes Image Puller ( #1598 )
...
* chore: Refactor Kubernetes Image Puller
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-01-12 12:25:05 +02:00
3d07ff759a
Set SCC allowPrivilegeEscalation to true when container build enabled ( #1596 )
...
* Set SCC allowPrivilegeEscalation to true when container build enabled
Running Podman inside a container in OpenShift requires the pod to have
allowPrivilegeEscalation: true in its security context.
* Fix tests
Signed-off-by: Angel Misevski <amisevsk@redhat.com>
2023-01-11 10:39:23 -05:00
6110221447
chore: Allow to run che-server on OpenShift with FIPS enabled ( #1597 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-01-11 14:59:57 +02:00
571cd1e329
feat: configure workspace start timeout from Che Cluster CR ( #1576 )
...
* feat: configure workspace security context for container builds
Fix eclipse/che#21770
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* feat: add spec.devEnvironments.startTimeout to Che Cluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: add tests for configuring DWO progressTimeout with Che Cluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: update deployment, bundle, CSV and CRD
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Update resources
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-12-28 10:20:12 +02:00
d8e1be1948
fix(utils): whitelist should not cut off second-level domain ( #1588 )
2022-12-23 15:10:36 +02:00
bd74906edc
feat: Support ephemeral pvc strategy ( #1580 )
...
* feat: Support ephemeral pvc strategy
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-12-21 09:24:19 +02:00
775a979a05
chore: Do not set default openVSXURL if operator is being deployed in… ( #1544 )
...
* chore: Do not set default openVSXURL if operator is being deployed in airgap environment
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-26 10:00:37 +03:00
17dfedb4df
feat: Automatically add the container build SCC to users if containerBuildCapability is enabled ( #1543 )
...
* feat: Automatically add the container build SCC to users if containerBuildCapability is enabled
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-20 10:28:07 +03:00
21b652e2c4
feat: Automatically create the container build SCC if containerBuildC… ( #1542 )
...
* feat: Automatically create the container build SCC if containerBuildCapability is enabled
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-18 10:07:01 +03:00
8e631f5d42
chore: increase default memory limit for embedded openvsx registry to 4Gi ( #1534 )
...
Signed-off-by: Valerii Svydenko <vsvydenk@redhat.com>
Signed-off-by: Valerii Svydenko <vsvydenk@redhat.com>
2022-10-11 10:58:35 +03:00
5373f5320d
feat: Move handling DevWorkspace operator resources out of Che Operator ( #1520 )
...
* feat: Remove managing Dev Workspace resources from operator codebase
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-22 12:23:54 +03:00
1505555e0e
fix: Ensure only one CheCluster is created ( #1517 )
...
* fix: Ensure only one CheCluster is created
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-16 13:41:34 +03:00
bbec58649b
feat: Add new fields in CheCluster CR to configure Git Services ( #1457 )
...
* feat: Add new fields in CheCluster CR to configure Git Services
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-08 16:53:20 +03:00
24f0db2417
feat: Add a CheCluster property to avoid automatic creation of users … ( #1508 )
...
* feat: Add a CheCluster property to avoid automatic creation of users namespaces
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-05 15:02:58 +03:00
75a31c3bb3
feat: configure DWOC from che-operator CR ( #1494 )
...
* feat: configure DWOC from che-operator CR
Currently, only the following fields from the checluster custom resource
are propagated to the DevWorkspace-Operator Configuration:
- `checluster.spec.devEnvironments.Storage.pvcStrategy`
- `checluster.spec.devEnvironments.Storage.perUserStrategyPvcConfig.ClaimSize`
- `checluster.spec.devEnvironments.Storage.perUserStrategyPvcConfig.StorageClass`
- `checluster.spec.devEnvironments.Storage.perWorkspaceStrategyPvcConfig.ClaimSize`
- `checluster.spec.devEnvironments.Storage.perWorkspaceStrategyPvcConfig.StorageClass`
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Update CSV and autogenerated apiv2 deepcopy
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Refactoring
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* make fmt
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-09-02 19:50:35 +03:00
bb7dd51325
feat: Adjust memory of plug-in registry container based on openVSXURL settings ( #1485 )
2022-08-17 15:34:54 +03:00
a3d6f70fe6
fix: Don't set runAsNonRoot=true for Eclipse Che operands ( #1477 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-10 19:11:28 +03:00
defec6763e
feat: Allow to set environment variables into Eclipse Che containers ( #1468 )
...
* feat: Allow to set environment variables into Eclipse Che containers
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-06 16:13:11 +03:00
954e5a64f6
fix: Improve a way to check if DevWorkspace resources must be managed… ( #1467 )
...
* fix: Improve a way to check if DevWorkspace resources must be managed by Che Operator
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-05 17:06:18 +03:00
7c97fd5fc3
feat: Update memory for Plugin-Registry to 1536Mi
...
Change-Id: I125f1cbb5f6974f23d3b1942c3581f6a8d986046
Signed-off-by: Florent Benoit <fbenoit@redhat.com>
2022-08-01 15:40:02 +02:00
152c8211a6
chore: declare pod securityContext explicitly ( #1458 )
...
* feat: ensure pod security standard
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-01 10:00:42 +03:00
43f1d3f732
feat: Increase default memory limit for plug-in registry ( #1459 )
...
When OpenVSX will be included in the plug-in registry
It'll require more memory to start.
With 256Mi, container is killed with OOM error
Change-Id: I2ae148f858550f92d64c41d6fa81af826624b377
Signed-off-by: Florent Benoit <fbenoit@redhat.com>
2022-07-28 09:31:45 +03:00
452b0789ff
chore: Propagate Bitbucket SAAS Oauth secret properties ( #1445 )
...
Add Bitbucket Oauth2 properties support. Propagate Bitbucket SAAS client id and client secret Oauth2 properties as workpsace environment variables.
2022-07-27 12:24:09 +03:00
9ea20f5868
fix: Take into account given `OAuthSecret` and `OAuthClientName` fields while deploying Eclipse Che on OpenShift ( #1412 )
...
* fix: Take into account given OAuthSecret and OAuthClientName fields while deploying Eclipse Che on OpenShift
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-27 16:47:53 +03:00
71a5ba500c
fix: sync ConsoleLink ( #1410 )
...
* fix: sync ConsoleLink
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-23 14:17:00 +03:00
38f6cb6381
feat: CheCluster defaults ( #1407 )
...
* feat: CheCluster defaults
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-22 11:02:08 +03:00
c364ba4e93
feat(oauth-proxy): configuration enhancements for k8s config ( #1400 )
...
* feat(oauth-proxy): configuration enhancements for k8s config
2022-06-22 09:51:43 +03:00
Anatolii Bazko