* Back off openshift oauth, when oauth can't be used
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Use freezed go modules.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Add newer olm bundle.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Move image related default variables to the operator env.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Fix tests.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Use the same env name for CRW and Upstream Che
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Clean up.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Improve most che-operator env names
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Use cheImage instead of repo only in the envs. Rename cheImageTag to cheVersion.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Add forgotten che-image tag to IMAGE_default_che_server
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Add some logic for back compatibilty with Che 7.8.0
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Handle one of the realese scripts.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Fix GetFullCheServerImageLink
Signed-off-by: Anatoliy Bazko <abazko@redhat.com>
* Remove extra_images.go
Signed-off-by: Anatoliy Bazko <abazko@redhat.com>
* Fix tests
Signed-off-by: Anatoliy Bazko <abazko@redhat.com>
* Improve release scripts.
Signed-off-by: Oleksandr Andriienko <oandriie@redhat.com>
* Add docker images env to operator-local.yaml
Signed-off-by: flacatus <flacatus@redhat.com>
* Che 15874 - fix wrong docker images and update olm files (#174)
* Fix wrong docker images values
The docker images set in this GH repo should be the upstream ones,
not the CRW ones
Signed-off-by: David Festal <dfestal@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Flavius Lacatusu <59865209+flacatus@users.noreply.github.com>
Co-authored-by: David Festal <dfestal@redhat.com>
Add new boolean property gitSelfSignedCertthat applies environment variables that contain SSL certificate and git host written from che-git-self-signed-cert config map.
The same logic is applied for the helm deployment: eclipse/che#15218fixeseclipse/che#15285
Docs PR: eclipse/che-docs#1001
Signed-off-by: Igor Vinokur <ivinokur@redhat.com>
* Fix the oauth_provision file for CRW
- Replaces `jq` tool calls by equivalent `sed` calls
- Moves the `xxx_provision` files out of `deploy` (more for yamls) (should fix new issue https://issues.jboss.org/browse/CRW-482 at the same time)
- Replace a hard-coded value of the clientId (`che-public`) in the `token-exchange` feature on CRW
- Correctly enables the RHSSO preview features required for `token-exchange` (the way to activate them slightly differs from the upstream Che case)
Signed-off-by: David Festal <dfestal@redhat.com>
* Add openapi gen flags
* Get code to compile with new OpenApi field names
Signed-off-by: Tom George <tg82490@gmail.com>
* Complete the doc & fix optional management
* Rename the CRD to the initial name.
* Correctly update the CRD file
* remove unused and error-prone CRD file
* Update OLM packages with new OpenApi defs
Signed-off-by: David Festal <dfestal@redhat.com>
* Enable the `token-exchange` preview KC feature
* Add what should be done on the Che side
* Automatic token-exchange permissions config
* fix oauth provision script
* Fail-safe removal of the `openshift` id provider
* Fix possible inconsistencies in OS OAuth status
* Update README.md according to suggestion
Co-Authored-By: Robert Krátký <rkratky@redhat.com>
Signed-off-by: David Festal <dfestal@redhat.com>
* First round of impl in the Go code
* Correct management of the status
* Add `users` permisions in cluster role
* Upgrade `operator-sdk` CLI pre-req to `v0.10.0`
* Produce a CSV diff to help reviews
* fix trailing spaces that break `gen-csv` desc mgt
* Update nightly CSVs
* Add the new OLM descriptors in the new nightly CSVs
Signed-off-by: David Festal <dfestal@redhat.com>
* Make the example CR consistent with OLM files
* Add nighty registry images in the last nightly CSV for the `nightly` channel of the openshift preview OLM package
Signed-off-by: David Festal <dfestal@redhat.com>
Implementation of issue https://github.com/eclipse/che/issues/13780
* complete cluster role
* update operator.yaml
* Add OLM files for openshift in beta-5 state
* Add RC 2 release CSV
* Reordered beta 5 csv in alphabetic order
* Add first bits of OLM files management
* lowercase `RC` and remove readiness probe
* pre-release (with `rc-2.0`) and nightly channels
* Add the kubernetes version of the OLM package
* Adding operator sources
* `OperatorSource`s should be in distinct namespaces
* Change proposed by @l0rd
* scripts to update nightly CSVs
* script to release OLM files
* Add the script to push OLM files as Quay apps
* Add script to prepare `community-operators` PRs
* script to release the operator Go code
* Rename `*-test-*` to `*-preview-*` and rename the `pre-releases` channel to `stable`
* `9.9.9` as semver-compliant prefix for nightlies
Signed-off-by: David Festal <dfestal@redhat.com>
* Support the new `openshift-v4` identity provider
* Add permissions for the Openshift v4 provider and reduce
the requested permissions to manage the OAuth client
* Add field for workspace cluster role to operator
* Update Che controller test to verify custom role.
Signed-off-by: John Collier <John.J.Collier@ibm.com>
* Use `7.0.0-beta-5.0` Keycloak docker image
* use `/scripts` as home dir for `kcadm`
* Add `runAsUser` on Postgres for k8s
* Update k8s security context from upstream
* update the CR with security context settings
* Fix a bug with `openshiftoAuth: true` on K8S
Signed-off-by: David Festal <dfestal@redhat.com>
Anatoliy Bazko