diff --git a/bundle/manifests/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml b/bundle/manifests/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml index 868fbbc967..39173fefad 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasbackuppolicies.yaml b/bundle/manifests/atlas.mongodb.com_atlasbackuppolicies.yaml index 985907742b..1d2a220622 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasbackuppolicies.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasbackuppolicies.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasbackupschedules.yaml b/bundle/manifests/atlas.mongodb.com_atlasbackupschedules.yaml index 22ed85e574..f6fd4fe96e 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasbackupschedules.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasbackupschedules.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasdatabaseusers.yaml b/bundle/manifests/atlas.mongodb.com_atlasdatabaseusers.yaml index 9a09a8794a..7a73c9c87a 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasdatabaseusers.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasdatabaseusers.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller @@ -70,6 +70,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -80,6 +92,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -204,10 +226,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: diff --git a/bundle/manifests/atlas.mongodb.com_atlasdatafederations.yaml b/bundle/manifests/atlas.mongodb.com_atlasdatafederations.yaml index 84141161a2..8aca6ad46e 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasdatafederations.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasdatafederations.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasdeployments.yaml b/bundle/manifests/atlas.mongodb.com_atlasdeployments.yaml index 2f5ff94029..6d66f01d79 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasdeployments.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasdeployments.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller @@ -71,6 +71,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -517,6 +529,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -531,11 +544,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -602,6 +618,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -820,9 +848,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -909,17 +944,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object diff --git a/bundle/manifests/atlas.mongodb.com_atlasfederatedauths.yaml b/bundle/manifests/atlas.mongodb.com_atlasfederatedauths.yaml index a0f38e9090..f4ee62ae92 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasfederatedauths.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasfederatedauths.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasprojects.yaml b/bundle/manifests/atlas.mongodb.com_atlasprojects.yaml index 77c8ac8a27..953835a907 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasprojects.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasprojects.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlassearchindexconfigs.yaml b/bundle/manifests/atlas.mongodb.com_atlassearchindexconfigs.yaml index 470bdbfff2..2e65904525 100644 --- a/bundle/manifests/atlas.mongodb.com_atlassearchindexconfigs.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlassearchindexconfigs.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller @@ -168,6 +168,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name diff --git a/bundle/manifests/atlas.mongodb.com_atlasstreamconnections.yaml b/bundle/manifests/atlas.mongodb.com_atlasstreamconnections.yaml index 458d1c816e..b28c8f3164 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasstreamconnections.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasstreamconnections.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasstreaminstances.yaml b/bundle/manifests/atlas.mongodb.com_atlasstreaminstances.yaml index df07c57a78..c505075fa2 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasstreaminstances.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasstreaminstances.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/atlas.mongodb.com_atlasteams.yaml b/bundle/manifests/atlas.mongodb.com_atlasteams.yaml index c1683d2ca7..70d3b8c692 100644 --- a/bundle/manifests/atlas.mongodb.com_atlasteams.yaml +++ b/bundle/manifests/atlas.mongodb.com_atlasteams.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 creationTimestamp: null labels: app.kubernetes.io/component: controller diff --git a/bundle/manifests/mongodb-atlas-kubernetes.clusterserviceversion.yaml b/bundle/manifests/mongodb-atlas-kubernetes.clusterserviceversion.yaml index 74c62cbd6a..0d5051abd5 100644 --- a/bundle/manifests/mongodb-atlas-kubernetes.clusterserviceversion.yaml +++ b/bundle/manifests/mongodb-atlas-kubernetes.clusterserviceversion.yaml @@ -168,7 +168,7 @@ metadata: ] capabilities: Full Lifecycle categories: Database - createdAt: "2024-07-31T14:49:43Z" + createdAt: "2024-10-28T14:23:29Z" description: The MongoDB Atlas Kubernetes Operator enables easy management of Clusters in MongoDB Atlas features.operators.openshift.io/disconnected: "false" features.operators.openshift.io/fips-compliant: "false" @@ -179,12 +179,12 @@ metadata: features.operators.openshift.io/token-auth-gcp: "false" operators.operatorframework.io/builder: operator-sdk-v1.34.1 operators.operatorframework.io/project_layout: go.kubebuilder.io/v4 - containerImage: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + containerImage: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 labels: operatorframework.io/arch.amd64: supported operatorframework.io/arch.arm64: supported operatorframework.io/os.linux: supported - name: mongodb-atlas-kubernetes.v2.4.1 + name: mongodb-atlas-kubernetes.v2.5.0 namespace: placeholder spec: apiservicedefinitions: {} @@ -304,225 +304,16 @@ spec: - atlas.mongodb.com resources: - atlasbackupcompliancepolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupcompliancepolicies/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasbackuppolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasbackuppolicies/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasbackupschedules - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupschedules/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasdatabaseusers - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasdatabaseusers/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasdatafederations - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasdatafederations/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasdeployments - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasdeployments/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasfederatedauths - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasfederatedauths/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasprojects - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasprojects/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlassearchindexconfigs - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlassearchindexconfigs/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasstreamconnections - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasstreamconnections/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasstreaminstances - verbs: - - create - - delete - - get - - list - - patch - - update - - watch - - apiGroups: - - atlas.mongodb.com - resources: - - atlasstreaminstances/status - verbs: - - get - - patch - - update - - apiGroups: - - atlas.mongodb.com - resources: - atlasteams verbs: - create @@ -535,6 +326,17 @@ spec: - apiGroups: - atlas.mongodb.com resources: + - atlasbackupcompliancepolicies/status + - atlasbackuppolicies/status + - atlasbackupschedules/status + - atlasdatabaseusers/status + - atlasdatafederations/status + - atlasdeployments/status + - atlasfederatedauths/status + - atlasprojects/status + - atlassearchindexconfigs/status + - atlasstreamconnections/status + - atlasstreaminstances/status - atlasteams/status verbs: - get @@ -585,7 +387,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.annotations['olm.targetNamespaces'] - image: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + image: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 imagePullPolicy: Always livenessProbe: httpGet: @@ -669,5 +471,5 @@ spec: maturity: beta provider: name: MongoDB, Inc - version: 2.4.1 - replaces: mongodb-atlas-kubernetes.v2.4.0 + version: 2.5.0 + replaces: mongodb-atlas-kubernetes.v2.4.1 diff --git a/deploy/all-in-one.yaml b/deploy/all-in-one.yaml index 2a2f1da361..1a6c225204 100644 --- a/deploy/all-in-one.yaml +++ b/deploy/all-in-one.yaml @@ -11,7 +11,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -240,7 +240,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -417,7 +417,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -623,7 +623,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -690,6 +690,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -700,6 +712,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -824,10 +846,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: @@ -887,7 +917,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -1153,7 +1183,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -1221,6 +1251,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -1667,6 +1709,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -1681,11 +1724,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -1752,6 +1798,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -1970,9 +2028,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -2059,17 +2124,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object @@ -2233,7 +2297,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -2421,7 +2485,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -3973,7 +4037,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -4138,6 +4202,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name @@ -4252,7 +4318,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -4488,7 +4554,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -4695,7 +4761,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 labels: app.kubernetes.io/component: controller app.kubernetes.io/instance: mongodb-atlas-kubernetes-operator @@ -4913,225 +4979,16 @@ rules: - atlas.mongodb.com resources: - atlasbackupcompliancepolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupcompliancepolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackuppolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackuppolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackupschedules - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupschedules/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatabaseusers - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatabaseusers/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatafederations - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatafederations/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdeployments - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdeployments/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasfederatedauths - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasfederatedauths/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasprojects - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasprojects/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlassearchindexconfigs - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlassearchindexconfigs/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreamconnections - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreamconnections/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreaminstances - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreaminstances/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasteams verbs: - create @@ -5144,6 +5001,17 @@ rules: - apiGroups: - atlas.mongodb.com resources: + - atlasbackupcompliancepolicies/status + - atlasbackuppolicies/status + - atlasbackupschedules/status + - atlasdatabaseusers/status + - atlasdatafederations/status + - atlasdeployments/status + - atlasfederatedauths/status + - atlasprojects/status + - atlassearchindexconfigs/status + - atlasstreamconnections/status + - atlasstreaminstances/status - atlasteams/status verbs: - get @@ -5227,7 +5095,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + image: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 imagePullPolicy: Always livenessProbe: httpGet: diff --git a/deploy/clusterwide/clusterwide-config.yaml b/deploy/clusterwide/clusterwide-config.yaml index a461b3fc9c..a9ef8a4142 100644 --- a/deploy/clusterwide/clusterwide-config.yaml +++ b/deploy/clusterwide/clusterwide-config.yaml @@ -91,225 +91,16 @@ rules: - atlas.mongodb.com resources: - atlasbackupcompliancepolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupcompliancepolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackuppolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackuppolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackupschedules - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupschedules/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatabaseusers - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatabaseusers/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatafederations - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatafederations/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdeployments - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdeployments/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasfederatedauths - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasfederatedauths/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasprojects - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasprojects/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlassearchindexconfigs - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlassearchindexconfigs/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreamconnections - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreamconnections/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreaminstances - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreaminstances/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasteams verbs: - create @@ -322,6 +113,17 @@ rules: - apiGroups: - atlas.mongodb.com resources: + - atlasbackupcompliancepolicies/status + - atlasbackuppolicies/status + - atlasbackupschedules/status + - atlasdatabaseusers/status + - atlasdatafederations/status + - atlasdeployments/status + - atlasfederatedauths/status + - atlasprojects/status + - atlassearchindexconfigs/status + - atlasstreamconnections/status + - atlasstreaminstances/status - atlasteams/status verbs: - get @@ -405,7 +207,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + image: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 imagePullPolicy: Always livenessProbe: httpGet: diff --git a/deploy/clusterwide/crds.yaml b/deploy/clusterwide/crds.yaml index c940bb7e11..1770c36dc1 100644 --- a/deploy/clusterwide/crds.yaml +++ b/deploy/clusterwide/crds.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupcompliancepolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -227,7 +227,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackuppolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -400,7 +400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupschedules.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -602,7 +602,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatabaseusers.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -665,6 +665,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -675,6 +687,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -799,10 +821,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: @@ -862,7 +892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatafederations.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1124,7 +1154,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdeployments.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1188,6 +1218,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -1634,6 +1676,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -1648,11 +1691,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -1719,6 +1765,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -1937,9 +1995,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -2026,17 +2091,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object @@ -2200,7 +2264,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasfederatedauths.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -2384,7 +2448,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasprojects.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -3932,7 +3996,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlassearchindexconfigs.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4093,6 +4157,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name @@ -4207,7 +4273,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreamconnections.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4439,7 +4505,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreaminstances.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4642,7 +4708,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasteams.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml b/deploy/crds/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml index efe92096cd..e1b371fee5 100644 --- a/deploy/crds/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasbackupcompliancepolicies.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupcompliancepolicies.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasbackuppolicies.yaml b/deploy/crds/atlas.mongodb.com_atlasbackuppolicies.yaml index 69fecba858..40d621a9e5 100644 --- a/deploy/crds/atlas.mongodb.com_atlasbackuppolicies.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasbackuppolicies.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackuppolicies.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasbackupschedules.yaml b/deploy/crds/atlas.mongodb.com_atlasbackupschedules.yaml index 0ffedf09b6..0b4ba98dbd 100644 --- a/deploy/crds/atlas.mongodb.com_atlasbackupschedules.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasbackupschedules.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupschedules.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasdatabaseusers.yaml b/deploy/crds/atlas.mongodb.com_atlasdatabaseusers.yaml index d1aa39b6a3..b7de9bf3dd 100644 --- a/deploy/crds/atlas.mongodb.com_atlasdatabaseusers.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasdatabaseusers.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatabaseusers.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -66,6 +66,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -76,6 +88,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -200,10 +222,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: diff --git a/deploy/crds/atlas.mongodb.com_atlasdatafederations.yaml b/deploy/crds/atlas.mongodb.com_atlasdatafederations.yaml index 0e2251b89a..cbc30186df 100644 --- a/deploy/crds/atlas.mongodb.com_atlasdatafederations.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasdatafederations.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatafederations.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasdeployments.yaml b/deploy/crds/atlas.mongodb.com_atlasdeployments.yaml index ef44f00d18..5d5b6a9621 100644 --- a/deploy/crds/atlas.mongodb.com_atlasdeployments.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasdeployments.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdeployments.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -67,6 +67,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -513,6 +525,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -527,11 +540,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -598,6 +614,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -816,9 +844,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -905,17 +940,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object diff --git a/deploy/crds/atlas.mongodb.com_atlasfederatedauths.yaml b/deploy/crds/atlas.mongodb.com_atlasfederatedauths.yaml index a3d2237b1b..3c6cafaf52 100644 --- a/deploy/crds/atlas.mongodb.com_atlasfederatedauths.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasfederatedauths.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasfederatedauths.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasprojects.yaml b/deploy/crds/atlas.mongodb.com_atlasprojects.yaml index 11cd7f52c2..0590c85b96 100644 --- a/deploy/crds/atlas.mongodb.com_atlasprojects.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasprojects.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasprojects.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlassearchindexconfigs.yaml b/deploy/crds/atlas.mongodb.com_atlassearchindexconfigs.yaml index 9be7bae1f0..23d26181c4 100644 --- a/deploy/crds/atlas.mongodb.com_atlassearchindexconfigs.yaml +++ b/deploy/crds/atlas.mongodb.com_atlassearchindexconfigs.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlassearchindexconfigs.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -164,6 +164,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name diff --git a/deploy/crds/atlas.mongodb.com_atlasstreamconnections.yaml b/deploy/crds/atlas.mongodb.com_atlasstreamconnections.yaml index 13bfe51c35..f9f8c3b57a 100644 --- a/deploy/crds/atlas.mongodb.com_atlasstreamconnections.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasstreamconnections.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreamconnections.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasstreaminstances.yaml b/deploy/crds/atlas.mongodb.com_atlasstreaminstances.yaml index 997804a022..b01b2dbc90 100644 --- a/deploy/crds/atlas.mongodb.com_atlasstreaminstances.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasstreaminstances.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreaminstances.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/crds/atlas.mongodb.com_atlasteams.yaml b/deploy/crds/atlas.mongodb.com_atlasteams.yaml index abc1c60487..1fd48a17a3 100644 --- a/deploy/crds/atlas.mongodb.com_atlasteams.yaml +++ b/deploy/crds/atlas.mongodb.com_atlasteams.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasteams.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/namespaced/crds.yaml b/deploy/namespaced/crds.yaml index c940bb7e11..1770c36dc1 100644 --- a/deploy/namespaced/crds.yaml +++ b/deploy/namespaced/crds.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupcompliancepolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -227,7 +227,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackuppolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -400,7 +400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupschedules.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -602,7 +602,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatabaseusers.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -665,6 +665,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -675,6 +687,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -799,10 +821,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: @@ -862,7 +892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatafederations.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1124,7 +1154,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdeployments.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1188,6 +1218,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -1634,6 +1676,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -1648,11 +1691,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -1719,6 +1765,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -1937,9 +1995,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -2026,17 +2091,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object @@ -2200,7 +2264,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasfederatedauths.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -2384,7 +2448,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasprojects.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -3932,7 +3996,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlassearchindexconfigs.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4093,6 +4157,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name @@ -4207,7 +4273,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreamconnections.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4439,7 +4505,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreaminstances.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4642,7 +4708,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasteams.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/namespaced/namespaced-config.yaml b/deploy/namespaced/namespaced-config.yaml index a1e0bc9ed3..f1597917ab 100644 --- a/deploy/namespaced/namespaced-config.yaml +++ b/deploy/namespaced/namespaced-config.yaml @@ -92,217 +92,16 @@ rules: - atlas.mongodb.com resources: - atlasbackupcompliancepolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackuppolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackuppolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackupschedules - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupschedules/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatabaseusers - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatabaseusers/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatafederations - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatafederations/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdeployments - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdeployments/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasfederatedauths - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasfederatedauths/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasprojects - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasprojects/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlassearchindexconfigs - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlassearchindexconfigs/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreamconnections - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreamconnections/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreaminstances - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreaminstances/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasteams verbs: - create @@ -315,6 +114,16 @@ rules: - apiGroups: - atlas.mongodb.com resources: + - atlasbackuppolicies/status + - atlasbackupschedules/status + - atlasdatabaseusers/status + - atlasdatafederations/status + - atlasdeployments/status + - atlasfederatedauths/status + - atlasprojects/status + - atlassearchindexconfigs/status + - atlasstreamconnections/status + - atlasstreaminstances/status - atlasteams/status verbs: - get @@ -403,7 +212,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + image: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 imagePullPolicy: Always livenessProbe: httpGet: diff --git a/deploy/openshift/crds.yaml b/deploy/openshift/crds.yaml index c940bb7e11..1770c36dc1 100644 --- a/deploy/openshift/crds.yaml +++ b/deploy/openshift/crds.yaml @@ -2,7 +2,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupcompliancepolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -227,7 +227,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackuppolicies.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -400,7 +400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasbackupschedules.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -602,7 +602,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatabaseusers.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -665,6 +665,18 @@ spec: - USER - ROLE type: string + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object databaseName: default: admin description: DatabaseName is a Database against which Atlas authenticates @@ -675,6 +687,16 @@ spec: DeleteAfterDate is a timestamp in ISO 8601 date and time format in UTC after which Atlas deletes the user. The specified date must be in the future and within one week. type: string + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id + type: object labels: description: |- Labels is an array containing key-value pairs that tag and categorize the database user. @@ -799,10 +821,18 @@ spec: - CUSTOMER type: string required: - - projectRef - roles - username type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDatabaseUserStatus defines the observed state of AtlasProject properties: @@ -862,7 +892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdatafederations.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1124,7 +1154,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasdeployments.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -1188,6 +1218,18 @@ spec: required: - name type: object + connectionSecret: + description: LocalObjectReference is a reference to an object in the + same namespace as the referent + properties: + name: + description: |- + Name of the resource being referred to + More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names + type: string + required: + - name + type: object deploymentSpec: description: Configuration for the advanced (v1.5) deployment API https://www.mongodb.com/docs/atlas/reference/api/clusters/ @@ -1634,6 +1676,7 @@ spec: type: object type: array required: + - mappings - searchConfigurationRef type: object type: @@ -1648,11 +1691,14 @@ spec: fields: description: Array of JSON objects. See examples https://dochub.mongodb.org/core/avs-vector-type x-kubernetes-preserve-unknown-fields: true + required: + - fields type: object required: - DBName - collectionName - name + - type type: object type: array searchNodes: @@ -1719,6 +1765,18 @@ spec: type: boolean versionReleaseSystem: type: string + required: + - name + type: object + externalProjectRef: + description: ExternalProjectRef holds the Atlas project ID the user + belongs to + properties: + id: + description: ID is the Atlas project ID + type: string + required: + - id type: object processArgs: description: ProcessArgs allows to modify Advanced Configuration Options @@ -1937,9 +1995,16 @@ spec: - name - providerSettings type: object - required: - - projectRef type: object + x-kubernetes-validations: + - message: must define only one project reference through externalProjectRef + or projectRef + rule: (has(self.externalProjectRef) && !has(self.projectRef)) || (!has(self.externalProjectRef) + && has(self.projectRef)) + - message: must define a local connection secret when referencing an external + project + rule: (has(self.externalProjectRef) && has(self.connectionSecret)) || + !has(self.externalProjectRef) status: description: AtlasDeploymentStatus defines the observed state of AtlasDeployment. properties: @@ -2026,17 +2091,16 @@ spec: description: Private-endpoint-aware mongodb+srv:// connection string for this private endpoint. type: string + srvShardOptimizedConnectionString: + type: string type: description: |- Type of MongoDB process that you connect to with the connection strings - Atlas returns: - • MONGOD for replica sets, or - • MONGOS for sharded clusters type: string type: object @@ -2200,7 +2264,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasfederatedauths.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -2384,7 +2448,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasprojects.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -3932,7 +3996,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlassearchindexconfigs.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4093,6 +4157,8 @@ spec: - keyword - edgeGram type: string + required: + - type type: object required: - name @@ -4207,7 +4273,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreamconnections.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4439,7 +4505,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasstreaminstances.atlas.mongodb.com spec: group: atlas.mongodb.com @@ -4642,7 +4708,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.14.0 + controller-gen.kubebuilder.io/version: v0.16.1 name: atlasteams.atlas.mongodb.com spec: group: atlas.mongodb.com diff --git a/deploy/openshift/openshift.yaml b/deploy/openshift/openshift.yaml index 7df7dd6f42..e4e2defa68 100644 --- a/deploy/openshift/openshift.yaml +++ b/deploy/openshift/openshift.yaml @@ -92,217 +92,16 @@ rules: - atlas.mongodb.com resources: - atlasbackupcompliancepolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackuppolicies - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackuppolicies/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasbackupschedules - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasbackupschedules/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatabaseusers - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatabaseusers/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdatafederations - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdatafederations/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasdeployments - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasdeployments/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasfederatedauths - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasfederatedauths/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasprojects - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasprojects/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlassearchindexconfigs - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlassearchindexconfigs/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreamconnections - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreamconnections/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasstreaminstances - verbs: - - create - - delete - - get - - list - - patch - - update - - watch -- apiGroups: - - atlas.mongodb.com - resources: - - atlasstreaminstances/status - verbs: - - get - - patch - - update -- apiGroups: - - atlas.mongodb.com - resources: - atlasteams verbs: - create @@ -315,6 +114,16 @@ rules: - apiGroups: - atlas.mongodb.com resources: + - atlasbackuppolicies/status + - atlasbackupschedules/status + - atlasdatabaseusers/status + - atlasdatafederations/status + - atlasdeployments/status + - atlasfederatedauths/status + - atlasprojects/status + - atlassearchindexconfigs/status + - atlasstreamconnections/status + - atlasstreaminstances/status - atlasteams/status verbs: - get @@ -402,7 +211,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: mongodb/mongodb-atlas-kubernetes-operator:2.4.1 + image: mongodb/mongodb-atlas-kubernetes-operator:2.5.0 imagePullPolicy: Always livenessProbe: httpGet: diff --git a/docs/releases/v2.5.0/sdlc-compliance.md b/docs/releases/v2.5.0/sdlc-compliance.md new file mode 100644 index 0000000000..a1e678a51d --- /dev/null +++ b/docs/releases/v2.5.0/sdlc-compliance.md @@ -0,0 +1,45 @@ +SSDLC Compliance Report: Atlas Kubernetes Operator Manager v2.5.0 +================================================================= + +- Release Creators: jose.vazquez@mongodb.com +- Created On: 2024-10-28 + +Overview: + +- **Product and Release Name** + + - Atlas Kubernetes Operator v2.5.0, 2024-10-28. + +- **Process Document** + - http://go/how-we-develop-software-doc + +- **Tool used to track third party vulnerabilities** + - [Silk](https://www.silk.security/) + +- **Dependency Information** + - See SBOMS Lite manifests (CycloneDX in JSON format) for `Intel` and `ARM` are to be found [here](.) + - See [instructions on how the SBOMs are generated or how to generate them manually](../../dev/image-sboms.md) + +- **Static Analysis Report** + - No SAST findings. Our CI system blocks merges on any SAST findings. + - No vulnerabilities were ignored for this release. + +- **Release Signature Report** + - Image signatures enforced by CI pipeline. + - See [Signature verification instructions here](../../dev/signed-images.md) + - Self-verification shortcut: + ```shell + make verify IMG=mongodb/mongodb-atlas-kubernetes-operator:2.5.0 SIGNATURE_REPO=mongodb/signatures + ``` + +- **Security Testing Report** + - Available as needed from Cloud Security. + +- **Security Assessment Report** + - Available as needed from Cloud Security. + +Assumptions and attestations: + +- Internal processes are used to ensure CVEs are identified and mitigated within SLAs. + +- All Operator images are signed by MongoDB, with signatures stored at `docker.io/mongodb/signatures`.