forked from openshift/ansible-service-broker
-
Notifications
You must be signed in to change notification settings - Fork 0
/
ansible-service-broker.spec
721 lines (647 loc) · 31.9 KB
/
ansible-service-broker.spec
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
%if 0%{?fedora} || 0%{?rhel} >= 6
%global with_devel 1
# TODO: package new deps
%global with_bundled 0
%global with_debug 0
%global with_check 0
%global with_unit_test 0
%else
%global with_devel 0
%global with_bundled 0
%global with_debug 0
%global with_check 0
%global with_unit_test 0
%endif
%if 0%{?with_debug}
%global _dwz_low_mem_die_limit 0
%else
%global debug_package %{nil}
%endif
%global provider github
%global provider_tld com
%global project openshift
%global repo ansible-service-broker
%global provider_prefix %{provider}.%{provider_tld}/%{project}/%{repo}
%global import_path %{provider_prefix}
%if 0%{?copr}
%define build_timestamp .%(date +"%Y%m%d%H%M%%S")
%else
%define build_timestamp %{nil}
%endif
%define selinux_variants targeted
%define moduletype apps
%define modulename ansible-service-broker
Name: %{repo}
Version: 1.1.2
Release: 1%{build_timestamp}%{?dist}
Summary: Ansible Service Broker
License: ASL 2.0
URL: https://%{provider_prefix}
Source0: %{name}-%{version}.tar.gz
# e.g. el6 has ppc64 arch without gcc-go, so EA tag is required
#ExclusiveArch: %%{?go_arches:%%{go_arches}}%%{!?go_arches:%%{ix86} x86_64 %{arm}}
ExclusiveArch: %{ix86} x86_64 %{arm} aarch64 ppc64le %{mips} s390x
# If go_compiler is not set to 1, there is no virtual provide. Use golang instead.
BuildRequires: %{?go_compiler:compiler(go-compiler)}%{!?go_compiler:golang}
Requires(pre): shadow-utils
Requires: %{name}-selinux
BuildRequires: device-mapper-devel
BuildRequires: btrfs-progs-devel
%if ! 0%{?with_bundled}
%endif
%description
%{summary}
%package container-scripts
Summary: scripts required for running ansible-service-broker in a container
BuildArch: noarch
%description container-scripts
containers scripts for ansible-service-broker
%package selinux
Summary: selinux policy module for %{name}
BuildRequires: checkpolicy, selinux-policy-devel, hardlink, policycoreutils
BuildRequires: /usr/bin/pod2man
Requires(post): /usr/sbin/semodule, /sbin/restorecon, /usr/sbin/setsebool, /usr/sbin/selinuxenabled, /usr/sbin/semanage
Requires(post): policycoreutils-python
Requires(post): selinux-policy-targeted
Requires(postun): /usr/sbin/semodule, /sbin/restorecon
BuildArch: noarch
%description selinux
selinux policy module for %{name}
%post selinux
for selinuxvariant in %{selinux_variants}
do
/usr/sbin/semodule -s ${selinuxvariant} -i \
%{_datadir}/selinux/${selinuxvariant}/%{modulename}.pp.bz2 > /dev/null
done
%postun selinux
if [ $1 -eq 0 ] ; then
for selinuxvariant in %{selinux_variants}
do
/usr/sbin/semodule -s ${selinuxvariant} -r %{modulename} > /dev/null
done
fi
%pre
getent group ansibleservicebroker || groupadd -r ansibleservicebroker
getent passwd ansibleservicebroker || \
useradd -r -g ansibleservicebroker -d /var/lib/ansibleservicebroker -s /sbin/nologin \
ansibleservicebroker
exit 0
%post
%systemd_post %{name}.service
%postun
%systemd_postun
%if 0%{?with_devel}
%package devel
Summary: %{summary}
BuildArch: noarch
Requires: %{?go_compiler:compiler(go-compiler)}%{!?go_compiler:golang}
Requires: device-mapper-devel
Requires: btrfs-progs-devel
%description devel
devel for %{name}
%{import_path} prefix.
%endif
%if 0%{?with_unit_test} && 0%{?with_devel}
%package unit-test
Summary: Unit tests for %{name} package
# If go_compiler is not set to 1, there is no virtual provide. Use golang instead.
BuildRequires: %{?go_compiler:compiler(go-compiler)}%{!?go_compiler:golang}
%if 0%{?with_check}
#Here comes all BuildRequires: PACKAGE the unit tests
#in %%check section need for running
%endif
# test subpackage tests code from devel subpackage
Requires: %{name}-devel = %{version}-%{release}
%description unit-test
unit-test for %{name}
%endif
%prep
%setup -q -n %{repo}-%{version}
ln -sf vendor src
mkdir -p src/github.com/openshift/ansible-service-broker
cp -r pkg src/github.com/openshift/ansible-service-broker
%build
export GOPATH=$(pwd):%{gopath}
go build -tags "seccomp selinux" -ldflags "-s -w" ./cmd/broker
#Build selinux modules
# create selinux-friendly version from VR and replace it inplace
perl -i -pe 'BEGIN { $VER = join ".", grep /^\d+$/, split /\./, "%{version}.%{release}"; } s!\@\@VERSION\@\@!$VER!g;' extras/%{modulename}.te
%if 0%{?rhel} >= 6
distver=rhel%{rhel}
%endif
%if 0%{?fedora} >= 18
distver=fedora%{fedora}
%endif
for selinuxvariant in %{selinux_variants}
do
pushd extras
make NAME=${selinuxvariant} -f /usr/share/selinux/devel/Makefile DISTRO=${distver}
bzip2 -9 %{modulename}.pp
mv %{modulename}.pp.bz2 %{modulename}.ppbz2.${selinuxvariant}
make NAME=${selinuxvariant} -f /usr/share/selinux/devel/Makefile clean DISTRO=${distver}
popd
done
rm -rf src
%install
install -d -p %{buildroot}%{_bindir}
install -p -m 755 broker %{buildroot}%{_bindir}/asbd
install -p -m 755 build/entrypoint.sh %{buildroot}%{_bindir}/entrypoint.sh
install -d -p %{buildroot}%{_sysconfdir}/%{name}
install -p -m 644 etc/example-config.yaml %{buildroot}%{_sysconfdir}/%{name}/config.yaml
install -d -p %{buildroot}%{_libexecdir}/%{name}
cp -r scripts/* %{buildroot}%{_libexecdir}/%{name}
install -d -p %{buildroot}%{_unitdir}
install -p extras/%{name}.service %{buildroot}%{_unitdir}/%{name}.service
install -d -p %{buildroot}%{_var}/log/%{name}
touch %{buildroot}%{_var}/log/%{name}/asb.log
# install selinux policy modules
for selinuxvariant in %{selinux_variants}
do
install -d %{buildroot}%{_datadir}/selinux/${selinuxvariant}
install -p -m 644 extras/%{modulename}.ppbz2.${selinuxvariant} \
%{buildroot}%{_datadir}/selinux/${selinuxvariant}/%{modulename}.pp.bz2
done
# install interfaces
install -d %{buildroot}%{_datadir}/selinux/devel/include/%{moduletype}
install -p -m 644 extras/%{modulename}.if %{buildroot}%{_datadir}/selinux/devel/include/%{moduletype}/%{modulename}.if
# hardlink identical policy module packages together
/usr/sbin/hardlink -cv %{buildroot}%{_datadir}/selinux
# source codes for building projects
%if 0%{?with_devel}
install -d -p %{buildroot}/%{gopath}/src/%{import_path}/
# find all *.go but no *_test.go files and generate devel.file-list
for file in $(find . -iname "*.go" \! -iname "*_test.go" | grep -v "^./Godeps") ; do
echo "%%dir %%{gopath}/src/%%{import_path}/$(dirname $file)" >> devel.file-list
install -d -p %{buildroot}/%{gopath}/src/%{import_path}/$(dirname $file)
cp -pav $file %{buildroot}/%{gopath}/src/%{import_path}/$file
echo "%%{gopath}/src/%%{import_path}/$file" >> devel.file-list
done
for file in $(find . -iname "*.proto" | grep -v "^./Godeps") ; do
echo "%%dir %%{gopath}/src/%%{import_path}/$(dirname $file)" >> devel.file-list
install -d -p %{buildroot}/%{gopath}/src/%{import_path}/$(dirname $file)
cp -pav $file %{buildroot}/%{gopath}/src/%{import_path}/$file
echo "%%{gopath}/src/%%{import_path}/$file" >> devel.file-list
done
%endif
# testing files for this project
%if 0%{?with_unit_test} && 0%{?with_devel}
install -d -p %{buildroot}/%{gopath}/src/%{import_path}/
# find all *_test.go files and generate unit-test.file-list
for file in $(find . -iname "*_test.go" | grep -v "^./Godeps"); do
echo "%%dir %%{gopath}/src/%%{import_path}/$(dirname $file)" >> devel.file-list
install -d -p %{buildroot}/%{gopath}/src/%{import_path}/$(dirname $file)
cp -pav $file %{buildroot}/%{gopath}/src/%{import_path}/$file
echo "%%{gopath}/src/%%{import_path}/$file" >> unit-test.file-list
done
%endif
%if 0%{?with_devel}
sort -u -o devel.file-list devel.file-list
%endif
%check
%if 0%{?with_check} && 0%{?with_unit_test} && 0%{?with_devel}
%if ! 0%{?with_bundled}
export GOPATH=%{buildroot}/%{gopath}:%{gopath}
%else
export GOPATH=%{buildroot}/%{gopath}:$(pwd)/Godeps/_workspace:%{gopath}
%endif
%if ! 0%{?gotest:1}
%global gotest go test
%endif
# FAIL: TestFactoryNewTmpfs (0.00s), factory_linux_test.go:59: operation not permitted
#%%gotest %%{import_path}/libcontainer
%gotest %{import_path}/libcontainer/cgroups
# --- FAIL: TestInvalidCgroupPath (0.00s)
# apply_raw_test.go:16: couldn't get cgroup root: mountpoint for cgroup not found
# apply_raw_test.go:25: couldn't get cgroup data: mountpoint for cgroup not found
#%%gotest %%{import_path}/libcontainer/cgroups/fs
%gotest %{import_path}/libcontainer/configs
%gotest %{import_path}/libcontainer/devices
# undefined reference to `nsexec'
#%%gotest %%{import_path}/libcontainer/integration
%gotest %{import_path}/libcontainer/label
# Unable to create tstEth link: operation not permitted
#%%gotest %%{import_path}/libcontainer/netlink
# undefined reference to `nsexec'
#%%gotest %%{import_path}/libcontainer/nsenter
%gotest %{import_path}/libcontainer/selinux
%gotest %{import_path}/libcontainer/stacktrace
#constant 2147483648 overflows int
#%%gotest %%{import_path}/libcontainer/user
#%%gotest %%{import_path}/libcontainer/utils
#%%gotest %%{import_path}/libcontainer/xattr
%endif
#define license tag if not already defined
%{!?_licensedir:%global license %doc}
%files
%license LICENSE
%{_bindir}/asbd
%attr(750, ansibleservicebroker, ansibleservicebroker) %dir %{_sysconfdir}/%{name}
%attr(640, ansibleservicebroker, ansibleservicebroker) %config %{_sysconfdir}/%{name}/config.yaml
%{_unitdir}/%{name}.service
%{_libexecdir}/%{name}
%attr(750, ansibleservicebroker, ansibleservicebroker) %dir %{_var}/log/%{name}
%attr(640, ansibleservicebroker, ansibleservicebroker) %{_var}/log/%{name}/asb.log
%files container-scripts
%{_bindir}/entrypoint.sh
%files selinux
%attr(0600,root,root) %{_datadir}/selinux/*/%{modulename}.pp.bz2
%{_datadir}/selinux/devel/include/%{moduletype}/%{modulename}.if
%if 0%{?with_devel}
%files devel -f devel.file-list
%license LICENSE
%dir %{gopath}/src/%{provider}.%{provider_tld}/%{project}
%dir %{gopath}/src/%{import_path}
%endif
%if 0%{?with_unit_test} && 0%{?with_devel}
%files unit-test -f unit-test.file-list
%license LICENSE
%endif
%changelog
* Mon Dec 04 2017 Jason Montleon <jmontleo@redhat.com> 1.1.2-1
- Broker should extract credentials from secret (#555)
(david.j.zager@gmail.com)
* Mon Dec 04 2017 Jason Montleon <jmontleo@redhat.com> 1.1.1-1
- docs and ci template updates for apb name changes (#573)
(jmontleo@redhat.com)
- Use the rbac API when creating and deleting policy (#556)
(rhallise@redhat.com)
- Few fixes to the local deploy templates (#568) (rhallise@redhat.com)
- Give cluster client the log object (#565) (rhallise@redhat.com)
- Rebase k8s templates to pickup etcd name change (#563) (rhallise@redhat.com)
- Create a Kubernetes Client struct (#561) (rhallise@redhat.com)
- Update vendor directory (#562) (rhallise@redhat.com)
- First pass at last_operation description proposal (#537)
(maleck13@users.noreply.github.com)
- Pull apb templates from their respective git repos (#560)
(rhallise@redhat.com)
- adding ability to connnect over SSL w/o authentication. (#558)
(Shawn.Hurley21@gmail.com)
- Update copr link in Makefile comments (#559) (jmontleo@redhat.com)
- Integrate a new ci framework for travis (#463) (rhallise@redhat.com)
- Use the Kubernetes API for namespaces check (#552) (rhallise@redhat.com)
- using table driven testing (#551) (jmrodri@gmail.com)
- Setup tls support for k8s deployments (#496) (rhallise@redhat.com)
- Proposal to improve bind credential extraction (#550)
(david.j.zager@gmail.com)
- Expose the pod name/namespace to APB (#546) (david.j.zager@gmail.com)
- remove unneeded paragraph from license header (#549) (jmrodri@gmail.com)
- Integrate with coveralls for code coverage (#548) (jmrodri@gmail.com)
- Create release notes script to grab changes (#545) (david.j.zager@gmail.com)
- bump version for next release (#547) (jmrodri@gmail.com)
* Tue Nov 07 2017 David Zager <david.j.zager@gmail.com> 1.0.19-1
- Bug 1507111 - Do not force image tag to be IP + Port (#540)
(dymurray@redhat.com)
* Mon Nov 06 2017 jesus m. rodriguez <jesusr@redhat.com> 1.0.18-1
- Bug 1507111 - Update docs and example configs for local openshift adapter (#538) (dymurray@redhat.com)
- Improve logging for missing tags (#536) (rhallise@redhat.com)
* Mon Nov 06 2017 Jason Montleon <jmontleo@redhat.com> 1.0.17-1
- Attempting fix for image name. (#539) (Shawn.Hurley21@gmail.com)
* Mon Nov 06 2017 Jason Montleon <jmontleo@redhat.com>
- Attempting fix for image name. (#539) (Shawn.Hurley21@gmail.com)
* Fri Nov 03 2017 jesus m. rodriguez <jesusr@redhat.com> 1.0.15-1
- Bug 1504927 - if apbs fail, mark them as failed. (#534) (jmrodri@gmail.com)
- Bug 1507111 - Add support for a local OpenShift Registry adapter (#527) (dymurray@redhat.com)
- Bug 1476173 - Cleanup deleting namespaces (#529) (cchase@redhat.com)
- Bug 1501523 - Add spec plan to image during apb push (#533) (dymurray@redhat.com)
- Look for the url in the proper place (#535) (rhallise@redhat.com)
- Setting generated local dev template to autoescalate: false (#532) (cchase@redhat.com)
- setting default value for the deployment template. (#528) (Shawn.Hurley21@gmail.com)
* Thu Nov 02 2017 Shawn Hurley <shurley@redhat.com> 1.0.14-1
- Bug 1507617 - Adding SSL and Authentication to etcd (#522)
(Shawn.Hurley21@gmail.com)
- grep for correct asb-token for local dev. (#526) (cchase@redhat.com)
- Changing the default for auto escalate to false (#503)
(Shawn.Hurley21@gmail.com)
- Bug 1502044 - add buffer size and work_engine test (#510) (jmrodri@gmail.com)
- add ServiceClassID and ServiceInstanceID parameters during provision and bind
(#515) (maleck13@users.noreply.github.com)
- when building the broker for image also build for linux OS. (#525)
(Shawn.Hurley21@gmail.com)
- Call the correct service-catalog namespace (#524) (rhallise@redhat.com)
- Remove checks for DOCKER_USER and DOCKER_PASSWORD (#523)
(rhallise@redhat.com)
* Mon Oct 30 2017 Jason Montleon <jmontleo@redhat.com> 1.0.13-1
- Bug 1503289 - Move registry credentials to a secret (#502)
(dymurray@redhat.com)
* Mon Oct 30 2017 Jason Montleon <jmontleo@redhat.com> 1.0.12-1
- Bug 1476173 - Skip deprovision if the namespace is being deleted since we
(#520) (cchase@redhat.com)
- Bug 1506713 - handle updatable enum parameters properly in schema output
(#517) (jmontleo@redhat.com)
- Bug 1504250 - Keep listening for deprovision messages (#508)
(david.j.zager@gmail.com)
- Bug 1504957 - Broker should use recreate strategy (#511)
(david.j.zager@gmail.com)
- Bug 1504729 - Log job state when getting last op (#505)
(david.j.zager@gmail.com)
- update resource field names (#519) (jmontleo@redhat.com)
- Adding docs for prometheus. (#507) (Shawn.Hurley21@gmail.com)
- accept update with bad params and log warnings instead of erroring (#516)
(jmontleo@redhat.com)
- Fix gate for Openshift 3.7 (#513) (jmontleo@redhat.com)
* Mon Oct 23 2017 Jason Montleon <jmontleo@redhat.com> 1.0.11-1
- Update schema for instance-update (#444) (jmontleo@redhat.com)
- remove trailing spaces from supporting files (#493) (jmrodri@gmail.com)
- Look at the apbs in the catalog for a matching name when creating a secret
(#438) (fabian@fabianism.us)
- Adding prometheus metrics for ASB (#497) (Shawn.Hurley21@gmail.com)
- Bug 1499622 - Return 202 if provisioning job is in progress (#498)
(dymurray@redhat.com)
- Bug 1503233 - Add liveness and readiness checks to ASB dc (#500)
(dymurray@redhat.com)
- Bug 1502044 - deprovision fixes (#494) (david.j.zager@gmail.com)
- Bug 1501523 - Set plan name for APB push sourced specs (#495)
(dymurray@redhat.com)
- Bug 1497839 - copy secrets to transient namespace and always run (#473)
(Shawn.Hurley21@gmail.com)
- Fix api auth for ci test (#492) (jmontleo@redhat.com)
* Fri Oct 13 2017 Jason Montleon <jmontleo@redhat.com> 1.0.10-1
- Move the gate to 3.7 (#489) (rhallise@redhat.com)
- Bug 1497766 - Adding ablity to specify keeping namespace alive (#474)
(Shawn.Hurley21@gmail.com)
- Bug 1496572 - Clean up error message for invalid registry credentials. (#490)
(Shawn.Hurley21@gmail.com)
- Update secrets docs to account for new fqname. (#487) (fabian@fabianism.us)
* Thu Oct 12 2017 jesus m. rodriguez <jmrodri@gmail.com> 1.0.9-1
- Bug 1500930 - Prevent multiple deprovision pods from spawning (#488) (ernelson@redhat.com)
- Bug 1501512 - bind issue when multiple calls to create the same binding (#486) (Shawn.Hurley21@gmail.com)
- Update deployment template to match latest service-catalog in origin (#485) (jwmatthews@gmail.com)
* Wed Oct 11 2017 jesus m. rodriguez <jmrodri@gmail.com> 1.0.8-1
- Bug 1500934 - Dynamic broker ns for secrets (#482) (ernelson@redhat.com)
- Bug 1500048 - make plan ids globally unique (#480) (jmrodri@gmail.com)
- Add troubleshooting documentation to the broker (#479) (david.j.zager@gmail.com)
- Bug 1498954 - Broker in developer mode must support apb push (#476) (david.j.zager@gmail.com)
- Bug 1498933 - Do not delete apb-push sourced specs when bootstrapping (#477) (dymurray@redhat.com)
- Bug 1498992 - Ansible Service Broker template should default (#478) (david.j.zager@gmail.com)
- Bug 1498618 - Support bind parameters. (#467) (cchase@redhat.com)
- Update run_latest_build w/ origin latest default (#471) (david.j.zager@gmail.com)
- Creating proposals for keeping transient namespace alive (#464) (Shawn.Hurley21@gmail.com)
* Wed Oct 04 2017 Jason Montleon <jmontleo@redhat.com> 1.0.7-1
- Bug 1498185 - Adjust versioning check so that it is done in the registry
package (#468) (dymurray@redhat.com)
* Wed Oct 04 2017 Jason Montleon <jmontleo@redhat.com> 1.0.6-1
- Bug 1497819 - Broker should not rely on image field of APB yaml (#433)
(david.j.zager@gmail.com)
- Bug 1498203 - Extracted Credentials were leaking into new bindings (#469)
(Shawn.Hurley21@gmail.com)
- add 3.7 releaser to releasers.conf (#465) (jmrodri@gmail.com)
- Provide an environment variable to deploy latest with run_latest_build (#466)
(karimboumedhel@gmail.com)
- Pass in args to the deploy scripts (#462) (rhallise@redhat.com)
- Make the prep_local_devel_env script work for Kubernetes & Openshift (#434)
(rhallise@redhat.com)
- Bearer auth documentation (#460) (Shawn.Hurley21@gmail.com)
- Split the deploy.sh script to work with both kube & openshift (#432)
(rhallise@redhat.com)
- Bump wait times (#461) (rhallise@redhat.com)
- changing default for 3.6 run_latest_build to function correctly (#458)
(Shawn.Hurley21@gmail.com)
- Added versioning check to Broker on bootstrap (#457) (dymurray@redhat.com)
- fix asbcli to work with bearer auth (#455) (jmontleo@redhat.com)
- User Impersonation Implementation (#428) (Shawn.Hurley21@gmail.com)
- Remove provision parameters from being reused as binding parameters. (#456)
(cfc@chasenc.com)
* Tue Sep 26 2017 Jason Montleon <jmontleo@redhat.com> 1.0.5-1
- removing proposal that never happened (#450) (jmrodri@gmail.com)
- Bearer Token Auth via kubernetes Apiserver (#445) (Shawn.Hurley21@gmail.com)
- allowing the user to authenticate to retrieve private repos (#449)
(Shawn.Hurley21@gmail.com)
- Some of the 3.6 & 3.7 gate changes are causing issues (#453)
(rhallise@redhat.com)
- The run_latest_build script is missing an auth param (#451)
(rhallise@redhat.com)
- Make the gate use 3.6 defaults (#446) (rhallise@redhat.com)
- The docker organization name was changed in catasb (#447)
(rhallise@redhat.com)
- first pass at administration documentation (#430) (Shawn.Hurley21@gmail.com)
- adding ability to pass in the CA Bundle for ServiceBroker (#441)
(Shawn.Hurley21@gmail.com)
* Tue Sep 19 2017 Jason Montleon <jmontleo@redhat.com> 1.0.4-1
- Update broker defaults for current service-catalog version (#437)
(jmontleo@redhat.com)
- fix asbcli provision (#440) (jmontleo@redhat.com)
- pass in BROKER_KIND (#436) (jmrodri@gmail.com)
- Proposal to host static assets for APBs (#423) (cfc@chasenc.com)
- Remove image field from APB spec (#431) (david.j.zager@gmail.com)
- updating irc links to go to asbroker channel (#435)
(Shawn.Hurley21@gmail.com)
- Default for no filter mode is to not contain a single APB. (#411)
(Shawn.Hurley21@gmail.com)
- Kube template (#412) (rhallise@redhat.com)
- update template to support newer service-catalogs (#422)
(jmontleo@redhat.com)
- User Impersonation (#418) (Shawn.Hurley21@gmail.com)
- Update updates-first-pass.md (#426) (ernelson@redhat.com)
- updating default values for configuration values needed. (#419)
(Shawn.Hurley21@gmail.com)
- Force delete the mediawiki pod (#420) (rhallise@redhat.com)
- add docs for secrets (#421) (fabian@fabianism.us)
- Move variable assignment for clarity in script (#416)
(david.j.zager@gmail.com)
- Proposal: CI Framework (#413) (rhallise@redhat.com)
- Add secret support to the Broker (#345) (fabian@fabianism.us)
- Update build to also work with Fedora 27 (#414) (jmontleo@redhat.com)
- Put the broker creation inside deploy template (#410)
(david.j.zager@gmail.com)
- Proposals to make configuration easier to use. (#407)
(Shawn.Hurley21@gmail.com)
- Add group titles for forms in OpenShift UI. (#409) (cfc@chasenc.com)
* Tue Aug 29 2017 Jason Montleon <jmontleo@redhat.com> 1.0.3-1
- 399 - APB Sandbox Role should be configurable (#403)
(david.j.zager@gmail.com)
- 82 - add copyright headers to each file (#402) (jmrodri@gmail.com)
- delete line (#406) (jmrodri@gmail.com)
- make comments consistent '// ' (#405) (jmrodri@gmail.com)
- ignore the broker only at the root (#404) (jmrodri@gmail.com)
- 377 - The service name returned by asb is invalid (#380)
(Shawn.Hurley21@gmail.com)
- Improve CONTRIBUTING guide (#389) (david.j.zager@gmail.com)
- add unbind and deprovision checks (#384) (jmontleo@redhat.com)
- Add proposal for logging changes (#381) (Shawn.Hurley21@gmail.com)
- Fixed duplicate parameter after group. (#398) (cfc@chasenc.com)
- Fix spelling in logs (#397) (david.j.zager@gmail.com)
* Thu Aug 24 2017 Jason Montleon <jmontleo@redhat.com> 1.0.2-1
- Reduce broker/apb sandbox permissions (#393) (david.j.zager@gmail.com)
- Added UI form information to metadata fields for parsing by OpenShift (#386)
(cfc@chasenc.com)
- adding broker build to build of image. (#396) (Shawn.Hurley21@gmail.com)
- Updates first-pass proposal (#368) (ernelson@redhat.com)
- Update Dockerfile names (#382) (jmontleo@redhat.com)
- Allow dockerhub credentials to be specified as env variables without being
written directly in the script (#392) (jason.dobies@redhat.com)
- Label APBs with their FQNames (#390) (ernelson@redhat.com)
- Added documentation update for openshift registry (#383)
(dymurray@redhat.com)
- Form metadata proposal. (#376) (cfc@chasenc.com)
- Move the client calls to the runtime pkg (#362) (rhallise@redhat.com)
* Fri Aug 18 2017 Jason Montleon <jmontleo@redhat.com> 1.0.1-1
- rename Dockerfiles to reflect the tags being used for (#375)
(jmontleo@redhat.com)
- bearer token proposal (#373) (jmrodri@gmail.com)
- Use origin-ansible-service-broker docker image (#371)
(david.j.zager@gmail.com)
- Point doc readers to subscribe to mailing list (#374)
(david.j.zager@gmail.com)
- Update version to the release instead of RC (#370) (jason.dobies@redhat.com)
- Allow PUBLIC_IP to be overridden without editing the script (#369)
(jason.dobies@redhat.com)
- Allow specifying a tag for apbs (#357) (jmontleo@redhat.com)
- Improve user facing documentation for broker (#367) (david.j.zager@gmail.com)
- document auth configuration (#363) (jmrodri@gmail.com)
- Update Copr Releasers (#365) (jmontleo@redhat.com)
- move specs to proposals (#366) (jmrodri@gmail.com)
- Update ssl doc (#361) (jmrodri@gmail.com)
- Spell check docs (#364) (jmrodri@gmail.com)
- Fix rebase mistake (#360) (rhallise@redhat.com)
- Prevent CI failures when building the broker (#348) (rhallise@redhat.com)
- Adding documentation for ssl and tls with openshift. (#359)
(Shawn.Hurley21@gmail.com)
- Work Topics and Deprovision Fixes (#358) (ernelson@redhat.com)
- Give make more targets for the project (#350) (david.j.zager@gmail.com)
- Fixed a few typos in docs (#356) (jwmatthews@gmail.com)
- Add basic auth switch (default off) to run_latest_build.sh (#355)
(derekwhatley@gmail.com)
- Add local etcd support for local env (#354) (ernelson@redhat.com)
- Match template registry name (#353) (ernelson@redhat.com)
- Add an insecure option to the openshift template (#334) (rhallise@redhat.com)
- Allow the local broker to run in insecure mode (#346) (rhallise@redhat.com)
- Spec: Kubernetes and COE agnostic support (#329) (rhallise@redhat.com)
- Added openshift registry adapter (#280) (dymurray@redhat.com)
- Explicitly use project name for ASB secrets (#349) (dymurray@redhat.com)
- Handle err when generating Dockerhub token (#339) (david.j.zager@gmail.com)
- Improve CI logging (#344) (rhallise@redhat.com)
- Retry pod preset check instead of sleeping (#343) (rhallise@redhat.com)
- Updated deployment template to use string substitution when applicable (#340)
(dymurray@redhat.com)
- Accept ints from exported credentials (#337) (ernelson@redhat.com)
- Update AddApb to use FQNames (#336) (ernelson@redhat.com)
- Adding ability to pass credentials to bind and unbind actions. (#302)
(Shawn.Hurley21@gmail.com)
- remove trailing slash (#332) (jmrodri@gmail.com)
- Introduce authentication to the broker (#308) (jmrodri@gmail.com)
- Move travis to using make ci (#331) (rhallise@redhat.com)
- Configurable refresh interval of Broker updating specs (#326)
(rhallise@redhat.com)
- Run the CI test locally (#317) (rhallise@redhat.com)
- updating handler to use FormValue call to retrieve data from query param
(#327) (Shawn.Hurley21@gmail.com)
- fusor test will now print out details on the actual file that caused the
issue. (#328) (Shawn.Hurley21@gmail.com)
- Zero param fix (#325) (ernelson@redhat.com)
- readme formatting (#323) (ttomecek@redhat.com)
- Fix the plan name in broker ci object (#321) (jmontleo@redhat.com)
- get both tls.key AND tls.crt not two tls.keys (#316) (jmrodri@gmail.com)
- Multi-plan support (#298) (ernelson@redhat.com)
- reformat the comments to be readable. (#315) (jmrodri@gmail.com)
- Contributing doc (#313) (rhallise@redhat.com)
- Add a PR and Issues template (#314) (rhallise@redhat.com)
- The broker now has two container in a single pod (#310) (rhallise@redhat.com)
- Create a spec template (#312) (rhallise@redhat.com)
- Remove bogus selinux requires in rpm spec (#311) (jmontleo@redhat.com)
- Update local scripts to run etcd with a local broker (#309)
(dymurray@redhat.com)
- [Proposal]: New Bind and Unbind Workflow (#293) (Shawn.Hurley21@gmail.com)
- Change deployment to deploymentconfig in prep script (#307)
(dymurray@redhat.com)
- Broker CI with Travis (#291) (rhallise@redhat.com)
- Added deployment config to broker template (#304) (dymurray@redhat.com)
- Remove usage of jq dependency (#305) (andy.block@gmail.com)
- Update the broker-ci spec to include jenkins and travis (#292)
(rhallise@redhat.com)
- 1468173- Error out when bootstrap fails (#301)
(fabianvf@users.noreply.github.com)
- [Proposal] Plan support (#294) (ernelson@redhat.com)
- Increase bind timeout to 2 hours (#284) (rhallise@redhat.com)
- Added a minimal run_latest_build.sh with instructions (#296)
(jwmatthews@gmail.com)
- Updated template default values (#295) (jwmatthews@gmail.com)
- Improve the broker bind output by using error returned from RunCommand (#276)
(rhallise@redhat.com)
- Document Image Tags in the README (#282) (rhallise@redhat.com)
- add tls files to really-clean (#290) (jmrodri@gmail.com)
- Update my_local_dev_vars.example (#289) (ernelson@redhat.com)
- HTTPS for asb route (#281) (Shawn.Hurley21@gmail.com)
- Broker CI spec (#277) (rhallise@redhat.com)
- Filtering documentation (#279) (ernelson@redhat.com)
- Downgrade ext_cred retry logs to Info (#278) (ernelson@redhat.com)
- Asbcli bind (#262) (rhallise@redhat.com)
- White/Black List Filtering and Multiple Registries Refactor (#271)
(Shawn.Hurley21@gmail.com)
- 1470860 - Remove broker project creation (#275) (ernelson@redhat.com)
- SPEC: broker authentication spec (#260) (jmrodri@gmail.com)
- Fix lint problems (#272) (ernelson@redhat.com)
- Broker bind output rework (#124) (rhallise@redhat.com)
- 1467852 - add ENV HOME to Dockerfile#263) (#268) (jmontleo@redhat.com)
- Add bootstrap_on_startup feature (#267) (ernelson@redhat.com)
- Only print out error messages only once (#266) (rhallise@redhat.com)
- 1467905 - Added error handling for images with improper APB Spec (#259)
(dymurray@redhat.com)
- technical debt: make scripts run from anywhere (#252) (jmrodri@gmail.com)
- 201 - remove ProjectRoot (#255) (jmrodri@gmail.com)
- Fix typos found by goreportcard. (#254) (jmrodri@gmail.com)
- Adding go report card and updating a go vet problem (#253)
(Shawn.Hurley21@gmail.com)
- remove unused template file (#251) (jmrodri@gmail.com)
- Configurable, external broker auth support (#249) (ernelson@redhat.com)
- techdebt: fix Makefile deploy (#250) (jmrodri@gmail.com)
- Add IMAGE_PULL_POLICY to broker template (#247) (ernelson@redhat.com)
- With a newer Etcd, we can use the GetVersion function (#223)
(rhallise@redhat.com)
- Fixes BZ#1466031 add Accept header with application/json to RHCC get (#243)
(#246) (cfc@chasenc.com)
- Make the ImagePullPolicy Configurable (#237) (rhallise@redhat.com)
- Only Extract the Credentials once (#242) (rhallise@redhat.com)
- Automated builds from Dockerhub (#240) (rhallise@redhat.com)
- Refactor apb/client contents (#238) (ernelson@redhat.com)
- Makefile technical debt (#239) (jmrodri@gmail.com)
- Asbcli was using the wrong var name in bind (#241) (rhallise@redhat.com)
- Golint fixes (#225) (Shawn.Hurley21@gmail.com)
- removing go-dockerclient (#232) (Shawn.Hurley21@gmail.com)
- Breakup all the Broker Clients into a clients pkg (#222)
(rhallise@redhat.com)
- remove mockregistry (#236) (jmrodri@gmail.com)
- techdebt: speed up builds (#234) (jmrodri@gmail.com)
- Cleanup local pod split (#208) (rhallise@redhat.com)
- Remove refresh login function (#197) (rhallise@redhat.com)
- * adding ability for development brokers to delete specs (#209)
(Shawn.Hurley21@gmail.com)
- remove trailing whitespace (#226) (jmrodri@gmail.com)
- removing unnecessary function that just add's indirection. (#200)
(Shawn.Hurley21@gmail.com)
- bump version, prepare for GA work (#224) (jmrodri@gmail.com)
* Thu Jun 22 2017 jesus m. rodriguez <jesusr@redhat.com> 0.9.4-1
- 1463798 - Fix stale APBs present in ASB after bootstrap (#221) (Shawn.Hurley21@gmail.com)
- use the correct source name in the rpm spec (#220) (jmontleo@redhat.com)
* Thu Jun 22 2017 jesus m. rodriguez <jesusr@redhat.com> 0.9.3-1
- Fixing builds and standardize on a config file name (#218) (Shawn.Hurley21@gmail.com)
- strip makefile whitespace (#210) (ernelson@redhat.com)
* Wed Jun 21 2017 jesus m. rodriguez <jesusr@redhat.com> 0.9.2-1
- use a different source url for copr (#216) (jmrodri@gmail.com)
- Expect a config file to be mounted (#211) (fabianvf@users.noreply.github.com)
* Wed Jun 21 2017 jesus m. rodriguez <jesusr@redhat.com> 0.9.1-1
- new package built with tito (jesusr@redhat.com)
- bump version (jesusr@redhat.com)
- add version template to keep in sync with tito (#212) (jmrodri@gmail.com)
- Prepare repo for use with tito (#204) (jmrodri@gmail.com)
- Starting point for running broker local to simulate InCluster (#192) (jwmatthews@gmail.com)
- Check for empty spec dir when querying for catalog. (#195) (cfc@chasenc.com)
- Packaging fix for #171 (#191) (jmontleo@redhat.com)
- Recover jobs when broker restarted (#131) (jmrodri@gmail.com)
- implement deprovision (#172) (fabianvf@users.noreply.github.com)
- Run as arbitrary user (#146) (fabianvf@users.noreply.github.com)
- add selinux policy and update rpm spec to build the sub package (#160) (jmontleo@redhat.com)
- Updated to create/use service account for broker (#165) (jwmatthews@gmail.com)
- Add namespace parameter from service context. (#161) (cfc@chasenc.com)
- Add parameter schema support (#156) (jmrodri@gmail.com)
- Fix the APB repo url. (#163) (warmchang@outlook.com)
- Deprovison spec compliance (#117) (Shawn.Hurley21@gmail.com)
- log in with serviceaccount certs and token (#154) (fabianvf@users.noreply.github.com)
- Add Endpoint for ABP Tool to push Specs (#152) (Shawn.Hurley21@gmail.com)
- fixing bug where we attempt to deference nil parameters. (#149) (Shawn.Hurley21@gmail.com)
- Get all images (#132) (Shawn.Hurley21@gmail.com)
- better facilitate automate copr and manual brew builds (#145) (jmontleo@redhat.com)
- Added new registry adapter for RHCC (#135) (dymurray@redhat.com)
- Remove jq since PR#121 merged (#141) (rhallise@redhat.com)
- Rename fusor to openshift (#133) (jmrodri@gmail.com)
- Replace get_images_from_org (#121) (rhallise@redhat.com)
- Kubernetes client object (#115) (rhallise@redhat.com)