d3fdf2476b
Support Bitbucket-server oAuth2 secret config ( #1618 )
...
Add an ability to configure bitbucket-server oAuth secret for the factory flow.
2023-02-15 16:41:16 +02:00
8f5c3b41fa
feat: Configure disable subdomain isolation via secret ( #1613 )
...
* feat: Configre disable subdomin isolation via secet
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* Deprecate Enpoints
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-02-09 12:43:56 +02:00
978a2d39a0
fix: set scc priority to null ( #1606 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-01-30 07:52:06 +02:00
4e75590a11
chore: Refactor Kubernetes Image Puller ( #1598 )
...
* chore: Refactor Kubernetes Image Puller
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2023-01-12 12:25:05 +02:00
3d07ff759a
Set SCC allowPrivilegeEscalation to true when container build enabled ( #1596 )
...
* Set SCC allowPrivilegeEscalation to true when container build enabled
Running Podman inside a container in OpenShift requires the pod to have
allowPrivilegeEscalation: true in its security context.
* Fix tests
Signed-off-by: Angel Misevski <amisevsk@redhat.com>
2023-01-11 10:39:23 -05:00
571cd1e329
feat: configure workspace start timeout from Che Cluster CR ( #1576 )
...
* feat: configure workspace security context for container builds
Fix eclipse/che#21770
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* feat: add spec.devEnvironments.startTimeout to Che Cluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: add tests for configuring DWO progressTimeout with Che Cluster CR
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* chore: update deployment, bundle, CSV and CRD
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Update resources
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-12-28 10:20:12 +02:00
4774568459
feat: spec.devEnvironments.podSchedulerName in CR ( #1587 )
...
* feat: spec.devEnvironments.podSchedulerName in CR
Signed-off-by: David Kwon <dakwon@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-12-23 11:18:34 -05:00
bd74906edc
feat: Support ephemeral pvc strategy ( #1580 )
...
* feat: Support ephemeral pvc strategy
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-12-21 09:24:19 +02:00
e9e578ab15
Add retry middleware to retry connecting to mainurl if connection failed ( #1579 )
...
Signed-off-by: David Kwon <dakwon@redhat.com>
2022-12-16 10:22:28 -05:00
79d470a61a
chore: Adding the 'get' verb to OpenShift route permissions ( #1577 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-12-08 11:27:17 +02:00
783d35046c
feat: Use a pre-created ServiceAccount for workspace Pods ( #1569 )
...
* feat: Use a pre-created ServiceAccount for workspace Pods
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-12-07 15:25:01 +02:00
04e016fa7b
chore: Add permissions to watch events ( #1573 )
...
* chore: Add permissions to watch events
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-12-06 15:07:45 +02:00
1865d4728c
Add 'use' permission for DWO SA when container build is enabled ( #1558 )
...
Add 'use' permissions in addition to 'get' and 'update' to be added to
the DevWorkspace Operator ServiceAccount when container build
functionality is enabled. This is required due to changes in the
DevWorkspace Operator in https://github.com/devfile/devworkspace-operator/pull/954
Signed-off-by: Angel Misevski <amisevsk@redhat.com>
2022-11-10 16:57:30 -05:00
4832094fd4
ci: Copy 7.56.0 csv to main ( #1557 )
...
* ci: Copy 7.56.0 csv to main
Signed-off-by: Mykhailo Kuznietsov <mkuznets@redhat.com>
* fix: imagepuller_test.go
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Mykhailo Kuznietsov <mkuznets@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Mykhailo Kuznietsov <mkuznets@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-11-04 11:34:32 +02:00
6057486aa0
fix: ImagePuller should not set any target namespaces for OperatorGroup ( #1546 )
...
* fix: ImagePuller should not set any target namespaces for OperatorGroup
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-11-01 08:52:24 +02:00
775a979a05
chore: Do not set default openVSXURL if operator is being deployed in… ( #1544 )
...
* chore: Do not set default openVSXURL if operator is being deployed in airgap environment
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-26 10:00:37 +03:00
17dfedb4df
feat: Automatically add the container build SCC to users if containerBuildCapability is enabled ( #1543 )
...
* feat: Automatically add the container build SCC to users if containerBuildCapability is enabled
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-20 10:28:07 +03:00
21b652e2c4
feat: Automatically create the container build SCC if containerBuildC… ( #1542 )
...
* feat: Automatically create the container build SCC if containerBuildCapability is enabled
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-18 10:07:01 +03:00
e198287093
feat: Reduce steps which requires adding a certificate to work with git repositories with self-signed certificates ( #1535 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-07 15:59:51 +03:00
03723338d9
chore: Add missed user roles ( #1532 )
...
* chore: Add missed user's roles
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-10-06 09:50:28 +03:00
2c7637d468
feat: Allow to configure subdomain isolation for GitHub ( #1528 )
...
* feat: Allow to configure subdomain isolation for GitHub
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-28 09:49:36 +03:00
757cc2efbe
fix: Avoid mounting bitbucket id if OAuth 1 is used ( #1527 )
...
* fix: Avoid mounting bitbucket id if OAuth 1 is used
Signed-off-by: Igor Vinokur <ivinokur@redhat.com>
2022-09-27 22:03:00 +03:00
5373f5320d
feat: Move handling DevWorkspace operator resources out of Che Operator ( #1520 )
...
* feat: Remove managing Dev Workspace resources from operator codebase
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-22 12:23:54 +03:00
0bafc5ec5c
chore: Update RELATED_IMAGE regexes for che/devspaces ( #1515 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-09 22:42:58 +03:00
53354c9004
chore: make Eclipse Che compatible with OCP 4.12 instance without the… ( #1514 )
...
* chore: make Eclipse Che compatible with OCP 4.12 instance without the Console
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-07 17:53:44 +03:00
24f0db2417
feat: Add a CheCluster property to avoid automatic creation of users … ( #1508 )
...
* feat: Add a CheCluster property to avoid automatic creation of users namespaces
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-05 15:02:58 +03:00
75a31c3bb3
feat: configure DWOC from che-operator CR ( #1494 )
...
* feat: configure DWOC from che-operator CR
Currently, only the following fields from the checluster custom resource
are propagated to the DevWorkspace-Operator Configuration:
- `checluster.spec.devEnvironments.Storage.pvcStrategy`
- `checluster.spec.devEnvironments.Storage.perUserStrategyPvcConfig.ClaimSize`
- `checluster.spec.devEnvironments.Storage.perUserStrategyPvcConfig.StorageClass`
- `checluster.spec.devEnvironments.Storage.perWorkspaceStrategyPvcConfig.ClaimSize`
- `checluster.spec.devEnvironments.Storage.perWorkspaceStrategyPvcConfig.StorageClass`
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Update CSV and autogenerated apiv2 deepcopy
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
* Refactoring
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* make fmt
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-09-02 19:50:35 +03:00
c67e776f56
fix: Update based on field ( #1506 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-02 14:34:29 +03:00
ae0f6c87c3
fix: Set default openVSXURL if Che updated from 7.52.0 version or ear… ( #1502 )
...
* fix: Set default openVSXURL if Che updated from 7.52.0 version or earlier
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-09-02 10:59:47 +03:00
aa27398e5b
update Che CRD for DWO per-user strategy storage configuration ( #1442 )
...
* update Che CRD for DWO per-user strategy storage configuration
Signed-off-by: Andrew Obuchowicz <aobuchow@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-08-30 11:44:53 +03:00
76751f4613
fix: Limit che resources to run minikube tests ( #1488 )
...
* fix: Limit che resources to run minikube tests
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
* Increase plugin registry LivenessProbe.InitialDelaySeconds
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-26 15:11:52 +03:00
61a89f7670
chore: default VSX registry should be open-vsx.org ( #1484 )
...
* chore: default VSX registry should be openvsx.org
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-17 15:44:35 +03:00
bb7dd51325
feat: Adjust memory of plug-in registry container based on openVSXURL settings ( #1485 )
2022-08-17 15:34:54 +03:00
12dd3625b7
chore: OLM must be the only one way to deploy Eclipse Che on OpenShift ( #1474 )
...
* chore: OLM must be the only one way to deploy Eclipse Che on OpenShift
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-12 13:08:45 +03:00
a3d6f70fe6
fix: Don't set runAsNonRoot=true for Eclipse Che operands ( #1477 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-10 19:11:28 +03:00
defec6763e
feat: Allow to set environment variables into Eclipse Che containers ( #1468 )
...
* feat: Allow to set environment variables into Eclipse Che containers
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-06 16:13:11 +03:00
954e5a64f6
fix: Improve a way to check if DevWorkspace resources must be managed… ( #1467 )
...
* fix: Improve a way to check if DevWorkspace resources must be managed by Che Operator
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-05 17:06:18 +03:00
0d79ca94b0
chore: Propagte START_OPENVSX env var to plugin registry ( #1469 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-05 11:47:35 +03:00
152c8211a6
chore: declare pod securityContext explicitly ( #1458 )
...
* feat: ensure pod security standard
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-08-01 10:00:42 +03:00
452b0789ff
chore: Propagate Bitbucket SAAS Oauth secret properties ( #1445 )
...
Add Bitbucket Oauth2 properties support. Propagate Bitbucket SAAS client id and client secret Oauth2 properties as workpsace environment variables.
2022-07-27 12:24:09 +03:00
7e63fdb7cf
fix: workspaces policies ( #1429 )
...
* fix: workspaces policies
Signed-off-by: Oleksii Orel <oorel@redhat.com>
* Update dev resources
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
Co-authored-by: Anatolii Bazko <abazko@redhat.com>
2022-07-04 14:56:45 +03:00
b363587f45
fix: Get OAuthClient by its name instead of label selector ( #1428 )
...
* fix: Get OAuthClient
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-07-02 14:08:02 +03:00
885d623258
feat: Configure the access token timeouts ( #1418 )
...
* feat: Configure the OAuthClient token configuration
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-29 09:47:41 +03:00
9ea20f5868
fix: Take into account given `OAuthSecret` and `OAuthClientName` fields while deploying Eclipse Che on OpenShift ( #1412 )
...
* fix: Take into account given OAuthSecret and OAuthClientName fields while deploying Eclipse Che on OpenShift
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-27 16:47:53 +03:00
aa0806fde4
chore: Refactoring ( #1411 )
...
* chore: Refactoring
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-24 19:34:27 +03:00
71a5ba500c
fix: sync ConsoleLink ( #1410 )
...
* fix: sync ConsoleLink
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-23 14:17:00 +03:00
c364ba4e93
feat(oauth-proxy): configuration enhancements for k8s config ( #1400 )
...
* feat(oauth-proxy): configuration enhancements for k8s config
2022-06-22 09:51:43 +03:00
c87253d34e
Use errors middleware to redirect workspace url to dashboard on 5xx error code ( #1392 )
...
* Use errors middleware to redirect workspace url to dashboard on 5xx error code
Signed-off-by: David Kwon <dakwon@redhat.com>
2022-06-16 09:44:28 -04:00
00809bd036
fix: TestRouteSpec test ( #1402 )
...
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-13 12:10:03 +03:00
0bc1049017
feat: CheCluster API v2 ( #1324 )
...
* feat: CheCluster API v2
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
2022-06-09 11:35:01 +03:00
Igor Vinokur