1. 15 Apr, 2019 1 commit
  2. 12 Apr, 2019 1 commit
    • Jason Plum's avatar
      checkConfig: add methods to test for known errors · c3cac664
      Jason Plum authored
      This behaves _exactly_ like deprecations, but provides a method
      strictly for warning about known configuration errors.
      
      Included with this, is 'redis.both', where a user has both redis and
      redis-ha charts enabled.
      c3cac664
  3. 03 Apr, 2019 1 commit
  4. 28 Mar, 2019 1 commit
  5. 27 Feb, 2019 1 commit
  6. 20 Feb, 2019 1 commit
  7. 18 Jan, 2019 1 commit
  8. 17 Jan, 2019 1 commit
    • Jason Plum's avatar
      Doc: quote jsonpath strings · 10f85ddb
      Jason Plum authored
      Several jsonpath strings were not quoted. Due to the selector
      syntax, this caused problems with some shells. This quotes those
      that remained.
      
      Closes #384
      [ci skip]
      10f85ddb
  9. 16 Jan, 2019 1 commit
  10. 30 Dec, 2018 1 commit
  11. 20 Dec, 2018 1 commit
  12. 28 Nov, 2018 1 commit
  13. 15 Nov, 2018 1 commit
  14. 14 Nov, 2018 1 commit
  15. 18 Oct, 2018 1 commit
    • Robert Marshall's avatar
      Skip custom CA mounts when unnecessary · 5cd96166
      Robert Marshall authored
      - Received a report that when cert-manager is selected to
        manage all certificates that gitlab-runner nodes do not
        work due to a template issue. Could not replicate this
        issue locally for testing.
      - Verified behavior in template that creates a mount for
        custom-ca-certificates when it should not be there. Added
        a guard to prevent this behavior.
      - Initial reporter states this patch resolved issue with
        certmanager and gitlab-runner nodes.
      
      Resolves #806Signed-off-by: Robert Marshall's avatarRobert Marshall <rmarshall@gitlab.com>
      5cd96166
  16. 16 Oct, 2018 1 commit
  17. 27 Sep, 2018 1 commit
  18. 25 Sep, 2018 1 commit
    • Jason Plum's avatar
      shared-secrets: Allow disabling all of shared-secrets · 20dbf1e9
      Jason Plum authored
      Allow the disabling of `shared-secrets` sub-chart.
      
      - Add `enabled` flag to `shared-secrets` chart, default `true`
      - Add documentation of `enabled` flag, and warnings of need to manually create.
      - Add notice to `NOTES.txt` when `shared-secrets.enabled: false`
      
      Closes #661
      20dbf1e9
  19. 18 Sep, 2018 2 commits
  20. 06 Sep, 2018 1 commit
  21. 20 Aug, 2018 1 commit
  22. 17 Aug, 2018 1 commit
  23. 16 Aug, 2018 1 commit
  24. 15 Aug, 2018 1 commit
  25. 09 Aug, 2018 1 commit
    • Jason Plum's avatar
      Support custom root CAs: introduce templates/_certificates.tpl · 91e6ec33
      Jason Plum authored
      Introduce `template/_certificates.tpl` for population of certificates to various containers that may require the insertion of custom certificate authority root certificates.
      
      This is implemented as a small set of changes to each affected Chart, and the addition of a template that provides the content that these charts will use. The use of template provides DRY development patterns, we all as simplifying any future alterations.
      
      This MR relies on gitlab-org/build/CNG!133, which introduces `alpine-certificates` container that is used by the injected `initContainer`.
      
      How it works:
      - Adds 2 volumes:
          - etc-ssl-certs is a shared `emptyDir` volume, mounted to `/etc/ssl/certs` in all application containers
          - custom-ca-certificates is a projected volume, mounting all keys of secrets provided to `global.certificates.customCAs` to `/usr/local/share/ca-certificates` into the `initContainer`
      - alpine-certificates container builds a complete system CA bundle into `/etc/ssl/certs`, dereferencing symlinks to ensure that volume's contents are portable. This pulls in `/usr/share/ca-certificates` from the `ca-certificates` package, and the contents of `/usr/local/share/ca-certificates` as provided by the `custom-ca-certificates` volume.
      - application containers mount etc-ssl-certs, now including custom CAs
      
      Closes #255  directly
      
      Closes #254  indirectly, as we're now injecting updated `ca-certificates` bundle as a part of `alpine-certificates` container operation.
      91e6ec33
  26. 23 Jul, 2018 2 commits
  27. 19 Jul, 2018 3 commits
  28. 18 Jul, 2018 2 commits
    • Jason Plum's avatar
      Minio: move all `enabled` configuration to global · fc2bef12
      Jason Plum authored
      Move the configuration of `x.minio.enabled` to `global.minio.enabled`.
      
      - All charts now use `.Values.global.minio.enabled`
      - Remove all chart-local `minio.enabled`
      - Add deprecation handling (via detect & `fail` messages) to `NOTES.txt`
      
      Relates to #502
      fc2bef12
    • Jason Plum's avatar
      registry: move `storage` contents to secret · b21eda47
      Jason Plum authored
      Move `registry.storage` to provide a secret instead of a block to be mapped directly into a ConfigMap, thus providing a safe way to provide sensitive information for external storage.
      
      This adds the following acceptable properties:
      ```
      storage:
        secret:   # name of secret
        key:      # name of key, default `storage`
        extraKey: # name of supplemental key, that will be mounted under the same name.
                  #   This is designed for mounting things like GCP credential JSON keys.
      ```
      
      Additions made to `templates/NOTES.txt` to notify of the deprecation / change in behavior.
      
      Closes #548
      b21eda47
  29. 06 Jul, 2018 1 commit
  30. 04 Jul, 2018 1 commit
  31. 21 Jun, 2018 1 commit
  32. 18 Jun, 2018 1 commit
  33. 15 Jun, 2018 1 commit
  34. 08 Jun, 2018 1 commit
  35. 05 Jun, 2018 1 commit