Add new boolean property gitSelfSignedCertthat applies environment variables that contain SSL certificate and git host written from che-git-self-signed-cert config map.
The same logic is applied for the helm deployment: eclipse/che#15218fixeseclipse/che#15285
Docs PR: eclipse/che-docs#1001
Signed-off-by: Igor Vinokur <ivinokur@redhat.com>
* Fix the oauth_provision file for CRW
- Replaces `jq` tool calls by equivalent `sed` calls
- Moves the `xxx_provision` files out of `deploy` (more for yamls) (should fix new issue https://issues.jboss.org/browse/CRW-482 at the same time)
- Replace a hard-coded value of the clientId (`che-public`) in the `token-exchange` feature on CRW
- Correctly enables the RHSSO preview features required for `token-exchange` (the way to activate them slightly differs from the upstream Che case)
Signed-off-by: David Festal <dfestal@redhat.com>
* put back `che` as default for consistency with doc
* Fix https://issues.jboss.org/browse/CRW-455
* Complete the cleaning correctly.
Signed-off-by: David Festal <dfestal@redhat.com>
Conflicts:
pkg/deploy/defaults.go
The default is still the current namespace if there is no oauth in the infra
With Openshift OAuth, the namespace is now "<username>-che" or
"<username>-codeready" depending on the che flavor.
* Set CHE_DEVFILE_HTTPS_ENDPOINT and react to changes on it
* Change HTTPS_ENDPOINT to REGISTRY_URL
* Only set the devfile registry URL to the autogenerated one when we are not using an external devfile registry
Signed-off-by: Tom George <tg82490@gmail.com>
* Add a script to generate extra_images.go, only add the extra images data to che configmap if we are in airgap mode
* Initial implementation of adding configmaps to registries
* Add owner reference to the configmap
* Update plugin and devfile registries when a change to either airgap property occurs
Signed-off-by: Tom George <tg82490@gmail.com>
* Add openapi gen flags
* Get code to compile with new OpenApi field names
Signed-off-by: Tom George <tg82490@gmail.com>
* Complete the doc & fix optional management
* Rename the CRD to the initial name.
* Correctly update the CRD file
* remove unused and error-prone CRD file
* Update OLM packages with new OpenApi defs
Signed-off-by: David Festal <dfestal@redhat.com>
* Determine if we are in airgap mode and patch the images appropriately
* Do the rest of the images in the che deployment
* Add map of extra images for airgap
* Add a script to generate extra_images.go, only add the extra images data to che configmap if we are in airgap mode
* Download the release version of che.properties
* Remove unnecessary properties
* Remove airGapMode boolean, make it so that setting either the airGapHostname/Organization will start the deployment in airgap mode
Signed-off-by: Tom George <tg82490@gmail.com>
* Fix a linter error
* Fix a couple of tests that assume openshift v3 APIs
* Add overrideCheProperties to allow custom properties in the che config map
- If the custom configmap exists for some reason, merge it with the che configmap, and then delete it
- Rename GetCustomConfigMapData to GetPredefinedConfigMapData since we are not using the custom config map anymore
* Merge custom configmap into overrideCheProperties and delete it if it exists
* change OverrideCheProperties to CustomCheProperties, make it a type of map[string]string
* Correct error handling of custom config map and move it up higher in the reconciliation function
* Add serviceaccountname to Che configmap, remove GetPredefinedConfigMapData()
* Update CR then delete configmap
* Add license back
* Format license block
Signed-off-by: Tom George <tg82490@gmail.com>
Removed some defaults to be closer to upstream configuration
CHE_PREDEFINED_STACKS_RELOAD__ON__START - not used in Che 7
CHE_WORKSPACE_AUTO_START - wrong parameter, has to be CHE_WORKSPACE_AUTO__START, upstream default value - true
CHE_INFRA_KUBERNETES_WORKSPACE__UNRECOVERABLE__EVENTS - upstream value FailedMount,FailedScheduling,MountVolume.SetUp failed,Failed to pull image,FailedCreate
CHE_LIMITS_WORKSPACE_IDLE_TIMEOUT - upstream value 1800000
CHE_INFRA_KUBERNETES_SERVICE__ACCOUNT__NAME - Not changed since it has NULL value in upstream. To remove it we need to investigate if it's safe to do or not.
* Enable the `token-exchange` preview KC feature
* Add what should be done on the Che side
* Automatic token-exchange permissions config
* fix oauth provision script
* Fail-safe removal of the `openshift` id provider
* Fix possible inconsistencies in OS OAuth status
* Update README.md according to suggestion
Co-Authored-By: Robert Krátký <rkratky@redhat.com>
Signed-off-by: David Festal <dfestal@redhat.com>
* Fix the release script
* Update default tags to `7.1.0`
* Slightly fix the OLM release script to produce meaningful diffs
* Release OLM files to `7.1.0`
Signed-off-by: David Festal <dfestal@redhat.com>
* Refactor defaults mgt for flavor-related props
* Don't update the CR with effective docker images
* Also redeploy Postgres when image changes
* Now correctly manage upgrade from 7.0.0 GA
* Wait for rolling update of secondary deployments
Signed-off-by: David Festal <dfestal@redhat.com>
* Update default tags to `7.0.0`
* Release OLM files to `7.0.0`
* Channel was renamed to `stable` at `7.0.0` release
Signed-off-by: David Festal <dfestal@redhat.com>
Nick Boldt