fix/homogenize external service TLS Secret management

François-Régis Menguyrequested to merge
1906-fix-homogenize-external-service-tls-secret-management into main

What does this MR do and why?

Persistence of unused files following the !1480 (diffs) merge request.

The existence of these files in the codebase can lead to errors in development and create the impression that certificates are being created, even though this code is no longer in use.

Cleanup is required for some units (harbor, neuvector ...).

find kustomize-units -type f -name "*tls*"

kustomize-units/harbor-init/harbor-tls.yaml
kustomize-units/neuvector-init/neuvector-tls.yaml

Some units does not use tls-components and certificate definition is in the code base:

find kustomize-units -type f -name "*certificate*"

kustomize-units/grafana-init/grafana-certificate.yaml
kustomize-units/keycloak/keycloak-internal-certificate.yaml
kustomize-units/kubevirt-manager/kubevirt-manager-certificate.yaml
kustomize-units/thanos-init/thanos-certificate.yaml
kustomize-units/tls-components/tls-certificate/certificate.yaml
kustomize-units/vault/vault-internal-certificate.yaml

Related reference(s)

Test coverage

CI configuration

Below you can choose test deployment variants to run in this MR's CI.

Click to open to CI configuration

Legend:

Icon Meaning Available values
☁️ Infra Provider capd, capo, capm3
🚀 Bootstrap Provider kubeadm (alias kadm), rke2
🐧 Node OS ubuntu, suse
🛠️ Deployment Options light-deploy, oci, ha, misc
🎬 Pipeline Scenarios rolling-update, mgmt-rolling-update, k8s-upgrade, sylva-upgrade, sylva-upgrade-from-x.x.X, simple-update, preview, nightly

  • 🎬preview ☁️capd 🚀kadm 🐧ubuntu 🛠️oci

  • 🎬preview ☁️capo 🚀rke2 🐧suse

  • 🎬preview ☁️capm3 🚀rke2 🐧ubuntu

  • ☁️capd 🚀kubeadm 🛠️light-deploy 🐧ubuntu

  • ☁️capd 🚀rke2 🛠️oci,light-deploy 🐧suse

  • ☁️capo 🚀rke2 🛠️oci 🐧suse

  • ☁️capo 🚀kadm 🛠️oci 🐧ubuntu

  • ☁️capo 🚀rke2 🎬rolling-update 🛠️ha 🐧ubuntu

  • ☁️capo 🚀kadm 🎬k8s-upgrade 🐧ubuntu

  • ☁️capo 🚀rke2 🎬mgmt-rolling-update 🛠️ha,misc 🐧suse

  • ☁️capo 🚀rke2 🎬sylva-upgrade 🛠️misc 🐧ubuntu

  • ☁️capm3 🚀rke2 🐧suse

  • ☁️capm3 🚀kadm 🛠️oci 🐧ubuntu

  • ☁️capm3 🚀kadm 🎬mgmt-rolling-update 🛠️ha,misc 🐧ubuntu

  • ☁️capm3 🚀rke2 🎬k8s-upgrade 🐧suse

  • ☁️capm3 🚀kadm 🎬rolling-update 🛠️ha 🐧ubuntu

  • ☁️capm3 🚀rke2 🎬sylva-upgrade 🛠️misc,ha 🐧suse

  • ☁️capm3 🚀kadm 🎬rolling-update 🛠️ha 🐧suse

Be aware: after configuration change, pipeline is not triggered automatically. Please run it manually (by clicking the run pipeline button in Pipelines tab) or push new code.

Closes #1906 (closed)

Edited by François-Régis Menguy

Merge request reports