Add staging directory for kms #111980
Add staging directory for kms #111980
Conversation
|
Skipping CI for Draft Pull Request. |
k8s-ci-robot
added
do-not-merge/work-in-progress
k8s-ci-robot
added
kind/feature
|
Please note that we're already in Test Freeze for the Fast forwards are scheduled to happen every 6 hours, whereas the most recent run was: Tue Aug 23 19:46:32 UTC 2022. |
k8s-ci-robot
added
cncf-cla: yes
k8s-ci-robot
added
the
sig/release
k8s-ci-robot
added
area/apiserver
area/cloudprovider
area/dependency
k8s-ci-robot
removed
the
do-not-merge/work-in-progress
thanks @liggitt, that resolved the issue. The PR is ready for review. @ameukam could we change the default branch name to |
|
publishing-bot has @aramase can you please create an issue in the k/org repo to get the kms repo ready for publishing and assign it to me? We'll need a few more changes -- like ensuring that the repo has an initial empty commit, etc. |
|
I added a comment to the KEP for master->main for this repo, it's probably best to switch staging repos to main as part of that KEP rather than ahead of Kubernetes, so the branches continue to align closely: kubernetes/enhancements#2853 |
| # DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE | ||
| # INSTRUCTIONS AT https://kubernetes.io/security/ | ||
|
|
||
| aramase |
There was a problem hiding this comment.
Pretty sure this is supposed to be match OWNERS, i.e. sig-auth-encryption-at-rest-approvers.
There was a problem hiding this comment.
AFAIK, sig-auth-encryption-at-rest-approvers is only relevant in k/k because the alias is defined here. If this alias is repo specific, we need to re define the alias in the staging dir, so the staging github repo has it or else the staging github repo will reference an alias that needs to be looked up in k/k.
| limitations under the License. | ||
| */ | ||
|
|
||
| // Package kms contains the proto definitions for the kms API. |
There was a problem hiding this comment.
I suppose this is true right now but it will change in the future?
There was a problem hiding this comment.
that's right! I was thinking we can keep the comment relevant, so we can update this comment as we add more to this. WDYT?
@nikhita The kms repo issue is still open in |
aramase
requested review from
enj
and removed request for
lavalamp,
ameukam,
caesarxuchao,
cpanato and
aojea
|
/lgtm |
k8s-ci-robot
added
the
lgtm
|
replicate the content of staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/v2alpha1/OWNERS to staging/src/k8s.io/kms/apis/OWNERS to make sure these packages show up as packages needing API review lgtm otherwise (once the publishing bot CI is green) |
- Moves kms proto apis to the staging repo - Updates generate and verify kms proto scripts to check staging repo Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
k8s-ci-robot
removed
the
lgtm
Added the OWNERS file for api reviews. @liggitt publishing bot CI failure is because there is no I0923 16:09:47.572947 152 validate.go:37] validating directories exist in the kubernetes branch
E0923 16:09:48.196706 152 main.go:46] Error : kms not found in branch master
E0923 16:09:48.197253 152 main.go:46] Error : kms not found in branch masterWould the tests pass until we merge this PR? |
|
@aramase: The following test failed, say
Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
hmm, I don't know if it's because
will defer to folks who know the publishing bot better than me to answer that /lgtm |
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: aramase, enj, liggitt The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
Signed-off-by: Anish Ramasekar anish.ramasekar@gmail.com
What type of PR is this?
/kind feature
What this PR does / why we need it:
Add the staging directory for the kms repo. See kubernetes/org#3630 for details.
Which issue(s) this PR fixes:
part of kubernetes/org#3630
Fixes #111921
Special notes for your reviewer:
I used #102153 as a template to make these changes.
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:
/sig auth
/assign @enj @ritazh