From dd1f420fb2e1870cdbf7ee6024e6de8412bfaf86 Mon Sep 17 00:00:00 2001 From: Rodrigo Valin Date: Thu, 16 Dec 2021 12:57:48 +0000 Subject: [PATCH] Updates yaml files for release 1.14.0. --- crds.yaml | 59 ++ .../4.2.24/ubi/Dockerfile | 66 -- .../4.2.24/ubuntu/Dockerfile | 73 -- .../4.2.25/ubi/Dockerfile | 66 -- .../4.2.25/ubuntu/Dockerfile | 73 -- helm_chart/Chart.yaml | 12 - helm_chart/crds/mongodb.com_mongodb.yaml | 788 ---------------- helm_chart/crds/mongodb.com_mongodbmulti.yaml | 517 ---------- helm_chart/crds/mongodb.com_mongodbusers.yaml | 166 ---- helm_chart/crds/mongodb.com_opsmanagers.yaml | 891 ------------------ helm_chart/crds/webhook-cluster-role.yaml | 27 - helm_chart/templates/database-roles.yaml | 83 -- helm_chart/templates/operator-roles.yaml | 150 --- helm_chart/templates/operator.yaml | 143 --- helm_chart/values-openshift.yaml | 76 -- helm_chart/values.yaml | 88 -- mongodb-enterprise-openshift.yaml | 4 +- mongodb-enterprise.yaml | 4 +- 18 files changed, 63 insertions(+), 3223 deletions(-) delete mode 100644 dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubi/Dockerfile delete mode 100644 dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubuntu/Dockerfile delete mode 100644 dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubi/Dockerfile delete mode 100644 dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubuntu/Dockerfile delete mode 100644 helm_chart/Chart.yaml delete mode 100644 helm_chart/crds/mongodb.com_mongodb.yaml delete mode 100644 helm_chart/crds/mongodb.com_mongodbmulti.yaml delete mode 100644 helm_chart/crds/mongodb.com_mongodbusers.yaml delete mode 100644 helm_chart/crds/mongodb.com_opsmanagers.yaml delete mode 100644 helm_chart/crds/webhook-cluster-role.yaml delete mode 100644 helm_chart/templates/database-roles.yaml delete mode 100644 helm_chart/templates/operator-roles.yaml delete mode 100644 helm_chart/templates/operator.yaml delete mode 100644 helm_chart/values-openshift.yaml delete mode 100644 helm_chart/values.yaml diff --git a/crds.yaml b/crds.yaml index 39fd21b..aa3b1bf 100644 --- a/crds.yaml +++ b/crds.yaml @@ -71,6 +71,11 @@ spec: description: Backup contains configuration options for configuring backup for this MongoDB resource properties: + autoTerminateOnDeletion: + description: AutoTerminateOnDeletion indicates if the Operator + should stop and terminate the Backup before the cleanup, when + the MongoDB CR is deleted + type: boolean mode: enum: - enabled @@ -850,6 +855,11 @@ spec: description: Backup contains configuration options for configuring backup for this MongoDB resource properties: + autoTerminateOnDeletion: + description: AutoTerminateOnDeletion indicates if the Operator + should stop and terminate the Backup before the cleanup, when + the MongoDB CR is deleted + type: boolean mode: enum: - enabled @@ -2028,6 +2038,55 @@ spec: - name type: object type: array + s3OpLogStores: + description: S3OplogStoreConfigs describes the list of s3 oplog + store configs used for backup. + items: + properties: + irsaEnabled: + description: 'This is only set to "true" when user is running + in EKS and is using AWS IRSA to configure S3 snapshot + store. For more details refer this: https://aws.amazon.com/blogs/opensource/introducing-fine-grained-iam-roles-service-accounts/' + type: boolean + mongodbResourceRef: + properties: + name: + type: string + namespace: + type: string + required: + - name + type: object + mongodbUserRef: + properties: + name: + type: string + required: + - name + type: object + name: + type: string + pathStyleAccessEnabled: + type: boolean + s3BucketEndpoint: + type: string + s3BucketName: + type: string + s3SecretRef: + properties: + name: + type: string + required: + - name + type: object + required: + - name + - pathStyleAccessEnabled + - s3BucketEndpoint + - s3BucketName + - s3SecretRef + type: object + type: array s3Stores: items: properties: diff --git a/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubi/Dockerfile b/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubi/Dockerfile deleted file mode 100644 index c853346..0000000 --- a/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubi/Dockerfile +++ /dev/null @@ -1,66 +0,0 @@ -ARG imagebase -FROM ${imagebase} as base - -FROM registry.access.redhat.com/ubi8/ubi - - -LABEL name="MongoDB Enterprise Ops Manager" \ - maintainer="support@mongodb.com" \ - vendor="MongoDB" \ - version="4.2.24" \ - release="1" \ - summary="MongoDB Enterprise Ops Manager Image" \ - description="MongoDB Enterprise Ops Manager" - - -ENV MMS_HOME /mongodb-ops-manager -ENV MMS_PROP_FILE ${MMS_HOME}/conf/conf-mms.properties -ENV MMS_CONF_FILE ${MMS_HOME}/conf/mms.conf -ENV MMS_LOG_DIR ${MMS_HOME}/logs - -EXPOSE 8080 - -# OpsManager docker image needs to have the MongoDB dependencies because the -# backup daemon is running its database locally - -RUN yum install --disableplugin=subscription-manager -y \ - cyrus-sasl \ - cyrus-sasl-gssapi \ - cyrus-sasl-plain \ - krb5-libs \ - libcurl \ - libpcap \ - lm_sensors-libs \ - net-snmp \ - net-snmp-agent-libs \ - openldap \ - openssl \ - rpm-libs \ - net-tools \ - procps-ng \ - ncurses - - -COPY --from=base /data/licenses /licenses/ - - - -RUN curl --fail -L -o ops_manager.tar.gz https://downloads.mongodb.com/on-prem-mms/tar/mongodb-mms-4.2.24.57112.20210430T1522Z-1.x86_64.tar.gz \ - && tar -xzf ops_manager.tar.gz \ - && rm ops_manager.tar.gz \ - && mv mongodb-mms-* "${MMS_HOME}" - - -# permissions -RUN chmod -R 0775 "${MMS_LOG_DIR}" \ - && chmod -R 0775 "${MMS_HOME}/conf" \ - && chmod -R 0775 "${MMS_HOME}/tmp" \ - && mkdir "${MMS_HOME}/mongodb-releases/" \ - && chmod -R 0775 "${MMS_HOME}/mongodb-releases" - -USER 2000 - -# operator to change the entrypoint to: /mongodb-ops-manager/bin/mongodb-mms start_mms (or a wrapper around this) -ENTRYPOINT [ "sleep infinity" ] - - diff --git a/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubuntu/Dockerfile b/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubuntu/Dockerfile deleted file mode 100644 index 1b2588c..0000000 --- a/dockerfiles/mongodb-enterprise-ops-manager/4.2.24/ubuntu/Dockerfile +++ /dev/null @@ -1,73 +0,0 @@ -ARG imagebase -FROM ${imagebase} as base - -FROM ubuntu:16.04 - - -LABEL name="MongoDB Enterprise Ops Manager" \ - maintainer="support@mongodb.com" \ - vendor="MongoDB" \ - version="4.2.24" \ - release="1" \ - summary="MongoDB Enterprise Ops Manager Image" \ - description="MongoDB Enterprise Ops Manager" - - -ENV MMS_HOME /mongodb-ops-manager -ENV MMS_PROP_FILE ${MMS_HOME}/conf/conf-mms.properties -ENV MMS_CONF_FILE ${MMS_HOME}/conf/mms.conf -ENV MMS_LOG_DIR ${MMS_HOME}/logs - -EXPOSE 8080 - -# OpsManager docker image needs to have the MongoDB dependencies because the -# backup daemon is running its database locally - -RUN apt-get -qq update \ - && apt-get -y -qq install \ - apt-utils \ - ca-certificates \ - curl \ - libsasl2-2 \ - net-tools \ - netcat \ - procps \ - libcurl3 \ - libgssapi-krb5-2 \ - libkrb5-dbg \ - libldap-2.4-2 \ - libpcap0.8 \ - libpci3 \ - libsasl2-2 \ - libsensors4 \ - libsnmp30 \ - libssl1.0.0 \ - libwrap0 \ - && apt-get upgrade -y -qq \ - && apt-get dist-upgrade -y -qq \ - && rm -rf /var/lib/apt/lists/* - - -COPY --from=base /data/licenses /licenses/ - - - -RUN curl --fail -L -o ops_manager.tar.gz https://downloads.mongodb.com/on-prem-mms/tar/mongodb-mms-4.2.24.57112.20210430T1522Z-1.x86_64.tar.gz \ - && tar -xzf ops_manager.tar.gz \ - && rm ops_manager.tar.gz \ - && mv mongodb-mms-* "${MMS_HOME}" - - -# permissions -RUN chmod -R 0775 "${MMS_LOG_DIR}" \ - && chmod -R 0775 "${MMS_HOME}/conf" \ - && chmod -R 0775 "${MMS_HOME}/tmp" \ - && mkdir "${MMS_HOME}/mongodb-releases/" \ - && chmod -R 0775 "${MMS_HOME}/mongodb-releases" - -USER 2000 - -# operator to change the entrypoint to: /mongodb-ops-manager/bin/mongodb-mms start_mms (or a wrapper around this) -ENTRYPOINT [ "sleep infinity" ] - - diff --git a/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubi/Dockerfile b/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubi/Dockerfile deleted file mode 100644 index 83cc37f..0000000 --- a/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubi/Dockerfile +++ /dev/null @@ -1,66 +0,0 @@ -ARG imagebase -FROM ${imagebase} as base - -FROM registry.access.redhat.com/ubi8/ubi - - -LABEL name="MongoDB Enterprise Ops Manager" \ - maintainer="support@mongodb.com" \ - vendor="MongoDB" \ - version="4.2.25" \ - release="1" \ - summary="MongoDB Enterprise Ops Manager Image" \ - description="MongoDB Enterprise Ops Manager" - - -ENV MMS_HOME /mongodb-ops-manager -ENV MMS_PROP_FILE ${MMS_HOME}/conf/conf-mms.properties -ENV MMS_CONF_FILE ${MMS_HOME}/conf/mms.conf -ENV MMS_LOG_DIR ${MMS_HOME}/logs - -EXPOSE 8080 - -# OpsManager docker image needs to have the MongoDB dependencies because the -# backup daemon is running its database locally - -RUN yum install --disableplugin=subscription-manager -y \ - cyrus-sasl \ - cyrus-sasl-gssapi \ - cyrus-sasl-plain \ - krb5-libs \ - libcurl \ - libpcap \ - lm_sensors-libs \ - net-snmp \ - net-snmp-agent-libs \ - openldap \ - openssl \ - rpm-libs \ - net-tools \ - procps-ng \ - ncurses - - -COPY --from=base /data/licenses /licenses/ - - - -RUN curl --fail -L -o ops_manager.tar.gz https://downloads.mongodb.com/on-prem-mms/tar/mongodb-mms-4.2.25.57122.20210602T1303Z-1.x86_64.tar.gz \ - && tar -xzf ops_manager.tar.gz \ - && rm ops_manager.tar.gz \ - && mv mongodb-mms-* "${MMS_HOME}" - - -# permissions -RUN chmod -R 0775 "${MMS_LOG_DIR}" \ - && chmod -R 0775 "${MMS_HOME}/conf" \ - && chmod -R 0775 "${MMS_HOME}/tmp" \ - && mkdir "${MMS_HOME}/mongodb-releases/" \ - && chmod -R 0775 "${MMS_HOME}/mongodb-releases" - -USER 2000 - -# operator to change the entrypoint to: /mongodb-ops-manager/bin/mongodb-mms start_mms (or a wrapper around this) -ENTRYPOINT [ "sleep infinity" ] - - diff --git a/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubuntu/Dockerfile b/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubuntu/Dockerfile deleted file mode 100644 index b9ff18c..0000000 --- a/dockerfiles/mongodb-enterprise-ops-manager/4.2.25/ubuntu/Dockerfile +++ /dev/null @@ -1,73 +0,0 @@ -ARG imagebase -FROM ${imagebase} as base - -FROM ubuntu:16.04 - - -LABEL name="MongoDB Enterprise Ops Manager" \ - maintainer="support@mongodb.com" \ - vendor="MongoDB" \ - version="4.2.25" \ - release="1" \ - summary="MongoDB Enterprise Ops Manager Image" \ - description="MongoDB Enterprise Ops Manager" - - -ENV MMS_HOME /mongodb-ops-manager -ENV MMS_PROP_FILE ${MMS_HOME}/conf/conf-mms.properties -ENV MMS_CONF_FILE ${MMS_HOME}/conf/mms.conf -ENV MMS_LOG_DIR ${MMS_HOME}/logs - -EXPOSE 8080 - -# OpsManager docker image needs to have the MongoDB dependencies because the -# backup daemon is running its database locally - -RUN apt-get -qq update \ - && apt-get -y -qq install \ - apt-utils \ - ca-certificates \ - curl \ - libsasl2-2 \ - net-tools \ - netcat \ - procps \ - libcurl3 \ - libgssapi-krb5-2 \ - libkrb5-dbg \ - libldap-2.4-2 \ - libpcap0.8 \ - libpci3 \ - libsasl2-2 \ - libsensors4 \ - libsnmp30 \ - libssl1.0.0 \ - libwrap0 \ - && apt-get upgrade -y -qq \ - && apt-get dist-upgrade -y -qq \ - && rm -rf /var/lib/apt/lists/* - - -COPY --from=base /data/licenses /licenses/ - - - -RUN curl --fail -L -o ops_manager.tar.gz https://downloads.mongodb.com/on-prem-mms/tar/mongodb-mms-4.2.25.57122.20210602T1303Z-1.x86_64.tar.gz \ - && tar -xzf ops_manager.tar.gz \ - && rm ops_manager.tar.gz \ - && mv mongodb-mms-* "${MMS_HOME}" - - -# permissions -RUN chmod -R 0775 "${MMS_LOG_DIR}" \ - && chmod -R 0775 "${MMS_HOME}/conf" \ - && chmod -R 0775 "${MMS_HOME}/tmp" \ - && mkdir "${MMS_HOME}/mongodb-releases/" \ - && chmod -R 0775 "${MMS_HOME}/mongodb-releases" - -USER 2000 - -# operator to change the entrypoint to: /mongodb-ops-manager/bin/mongodb-mms start_mms (or a wrapper around this) -ENTRYPOINT [ "sleep infinity" ] - - diff --git a/helm_chart/Chart.yaml b/helm_chart/Chart.yaml deleted file mode 100644 index cc13a63..0000000 --- a/helm_chart/Chart.yaml +++ /dev/null @@ -1,12 +0,0 @@ -apiVersion: v2 -name: mongodb-enterprise-operator -description: MongoDB Kubernetes Enterprise Operator -version: 1.13.0 -kubeVersion: '>=1.16-0' -keywords: -- mongodb -- database -- nosql -home: https://github.com/mongodb/mongodb-enterprise-kubernetes -maintainers: -- name: Cloud Team diff --git a/helm_chart/crds/mongodb.com_mongodb.yaml b/helm_chart/crds/mongodb.com_mongodb.yaml deleted file mode 100644 index 2f5880e..0000000 --- a/helm_chart/crds/mongodb.com_mongodb.yaml +++ /dev/null @@ -1,788 +0,0 @@ - ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - controller-gen.kubebuilder.io/version: v0.4.1 - creationTimestamp: null - name: mongodb.mongodb.com -spec: - group: mongodb.com - names: - kind: MongoDB - listKind: MongoDBList - plural: mongodb - shortNames: - - mdb - singular: mongodb - scope: Namespaced - versions: - - additionalPrinterColumns: - - description: Current state of the MongoDB deployment. - jsonPath: .status.phase - name: Phase - type: string - - description: Version of MongoDB server. - jsonPath: .status.version - name: Version - type: string - - description: The type of MongoDB deployment. One of 'ReplicaSet', 'ShardedCluster' - and 'Standalone'. - jsonPath: .spec.type - name: Type - type: string - - description: The time since the MongoDB resource was created. - jsonPath: .metadata.creationTimestamp - name: Age - type: date - name: v1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - additionalMongodConfig: - description: 'AdditionalMongodConfig is additional configuration that - can be passed to each data-bearing mongod at runtime. Uses the same - structure as the mongod configuration file: https://docs.mongodb.com/manual/reference/configuration-options/' - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - backup: - description: Backup contains configuration options for configuring - backup for this MongoDB resource - properties: - mode: - enum: - - enabled - - disabled - - terminated - type: string - type: object - cloudManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - clusterDomain: - format: hostname - type: string - configServerCount: - type: integer - configSrv: - properties: - additionalMongodConfig: - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - type: object - x-kubernetes-preserve-unknown-fields: true - configSrvPodSpec: - properties: - cpu: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - cpuRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memory: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memoryRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - nodeAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - persistence: - properties: - multiple: - properties: - data: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - journal: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - logs: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - single: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - podAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - podAntiAffinityTopologyKey: - type: string - podTemplate: - type: object - x-kubernetes-preserve-unknown-fields: true - type: object - connectivity: - properties: - replicaSetHorizons: - items: - additionalProperties: - type: string - description: 'MongoDBHorizonConfig holds a map of horizon names - to the node addresses, e.g. { "internal": "my-rs-2.my-internal-domain.com:31843", "external": - "my-rs-2.my-external-domain.com:21467" } The key of each item - in the map is an arbitrary, user-chosen string that represents - the name of the horizon. The value of the item is the host - and, optionally, the port that this mongod node will be connected - to from.' - type: object - type: array - type: object - credentials: - description: Name of the Secret holding credentials information - type: string - exposedExternally: - description: ExposedExternally determines whether a NodePort service - should be created for the resource - type: boolean - featureCompatibilityVersion: - type: string - logLevel: - enum: - - DEBUG - - INFO - - WARN - - ERROR - - FATAL - type: string - members: - description: Amount of members for this MongoDB Replica Set - type: integer - mongodsPerShardCount: - type: integer - mongos: - properties: - additionalMongodConfig: - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - type: object - x-kubernetes-preserve-unknown-fields: true - mongosCount: - type: integer - mongosPodSpec: - properties: - cpu: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - cpuRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memory: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memoryRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - nodeAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - persistence: - properties: - multiple: - properties: - data: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - journal: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - logs: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - single: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - podAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - podAntiAffinityTopologyKey: - type: string - podTemplate: - type: object - x-kubernetes-preserve-unknown-fields: true - type: object - opsManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - persistent: - type: boolean - podSpec: - properties: - cpu: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - cpuRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memory: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memoryRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - nodeAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - persistence: - properties: - multiple: - properties: - data: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - journal: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - logs: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - single: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - podAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - podAntiAffinityTopologyKey: - type: string - podTemplate: - type: object - x-kubernetes-preserve-unknown-fields: true - type: object - security: - properties: - authentication: - description: Authentication holds various authentication related - settings that affect this MongoDB resource. - properties: - agents: - description: Agents contains authentication configuration - properties for the agents - properties: - automationLdapGroupDN: - type: string - automationPasswordSecretRef: - description: SecretKeySelector selects a key of a Secret. - properties: - key: - description: The key of the secret to select from. Must - be a valid secret key. - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the Secret or its key - must be defined - type: boolean - required: - - key - type: object - automationUserName: - type: string - clientCertificateSecretRef: - type: object - x-kubernetes-preserve-unknown-fields: true - mode: - description: Mode is the desired Authentication mode that - the agents will use - type: string - required: - - mode - type: object - enabled: - type: boolean - ignoreUnknownUsers: - description: IgnoreUnknownUsers maps to the inverse of auth.authoritativeSet - type: boolean - internalCluster: - type: string - ldap: - description: LDAP Configuration - properties: - authzQueryTemplate: - type: string - bindQueryPasswordSecretRef: - properties: - name: - type: string - required: - - name - type: object - bindQueryUser: - type: string - caConfigMapRef: - description: Allows to point at a ConfigMap/key with a - CA file to mount on the Pod - properties: - key: - description: The key to select. - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the ConfigMap or its - key must be defined - type: boolean - required: - - key - type: object - servers: - items: - type: string - type: array - transportSecurity: - enum: - - tls - - none - type: string - userToDNMapping: - type: string - validateLDAPServerConfig: - type: boolean - type: object - modes: - items: - type: string - type: array - requireClientTLSAuthentication: - description: Clients should present valid TLS certificates - type: boolean - required: - - enabled - type: object - certsSecretPrefix: - type: string - roles: - items: - properties: - authenticationRestrictions: - items: - properties: - clientSource: - items: - type: string - type: array - serverAddress: - items: - type: string - type: array - type: object - type: array - db: - type: string - privileges: - items: - properties: - actions: - items: - type: string - type: array - resource: - properties: - cluster: - type: boolean - collection: - type: string - db: - type: string - type: object - required: - - actions - - resource - type: object - type: array - role: - type: string - roles: - items: - properties: - db: - type: string - role: - type: string - required: - - db - - role - type: object - type: array - required: - - db - - role - type: object - type: array - tls: - properties: - additionalCertificateDomains: - items: - type: string - type: array - ca: - description: CA corresponds to a ConfigMap containing an entry - for the CA certificate (ca.pem) used to validate the certificates - created already. - type: string - enabled: - description: Enables TLS for this resource. This will make - the operator try to mount a Secret with a defined name (-cert). - This is only used when enabling TLS on a MongoDB resource, - and not on the AppDB, where TLS is configured by setting - `secretRef.Name`. - type: boolean - secretRef: - description: SecretRef points to a Secret object containing - the certificates to use when enabling TLS. - properties: - name: - description: DEPRECATED please use security.tls.secretRef.prefix - instead - type: string - prefix: - type: string - type: object - type: object - type: object - service: - description: this is an optional service, it will get the name "-service" - in case not provided - type: string - shard: - properties: - additionalMongodConfig: - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - type: object - x-kubernetes-preserve-unknown-fields: true - shardCount: - type: integer - shardPodSpec: - properties: - cpu: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - cpuRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memory: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memoryRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - nodeAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - persistence: - properties: - multiple: - properties: - data: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - journal: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - logs: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - single: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - podAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - podAntiAffinityTopologyKey: - type: string - podTemplate: - type: object - x-kubernetes-preserve-unknown-fields: true - type: object - type: - enum: - - Standalone - - ReplicaSet - - ShardedCluster - type: string - version: - pattern: ^[0-9]+.[0-9]+.[0-9]+(-.+)?$|^$ - type: string - required: - - credentials - - type - - version - type: object - x-kubernetes-preserve-unknown-fields: true - status: - properties: - backup: - properties: - statusName: - type: string - required: - - statusName - type: object - configServerCount: - type: integer - lastTransition: - type: string - link: - type: string - members: - type: integer - message: - type: string - mongodsPerShardCount: - type: integer - mongosCount: - type: integer - observedGeneration: - format: int64 - type: integer - phase: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource which - is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes resource. - Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - shardCount: - type: integer - version: - type: string - warnings: - items: - type: string - type: array - required: - - phase - - version - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/helm_chart/crds/mongodb.com_mongodbmulti.yaml b/helm_chart/crds/mongodb.com_mongodbmulti.yaml deleted file mode 100644 index 18f4685..0000000 --- a/helm_chart/crds/mongodb.com_mongodbmulti.yaml +++ /dev/null @@ -1,517 +0,0 @@ - ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - controller-gen.kubebuilder.io/version: v0.4.1 - creationTimestamp: null - name: mongodbmulti.mongodb.com -spec: - group: mongodb.com - names: - kind: MongoDBMulti - listKind: MongoDBMultiList - plural: mongodbmulti - shortNames: - - mdbm - singular: mongodbmulti - scope: Namespaced - versions: - - additionalPrinterColumns: - - description: Current state of the MongoDB deployment. - jsonPath: .status.phase - name: Phase - type: string - - description: The time since the MongoDBMulti resource was created. - jsonPath: .metadata.creationTimestamp - name: Age - type: date - name: v1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - additionalMongodConfig: - description: 'AdditionalMongodConfig is additional configuration that - can be passed to each data-bearing mongod at runtime. Uses the same - structure as the mongod configuration file: https://docs.mongodb.com/manual/reference/configuration-options/' - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - backup: - description: Backup contains configuration options for configuring - backup for this MongoDB resource - properties: - mode: - enum: - - enabled - - disabled - - terminated - type: string - type: object - cloudManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - clusterDomain: - format: hostname - type: string - clusterSpecList: - description: ClusterSpecList holds a list with a clusterSpec corresponding - to each cluster - properties: - clusterSpecs: - items: - description: ClusterSpecItem is the mongodb multi-cluster spec - that is specific to a particular Kubernetes cluster, this - maps to the statefulset created in each cluster - properties: - clusterName: - description: ClusterName is name of the cluster where the - MongoDB Statefulset will be scheduled, the name should - have a one on one mapping with the service-account created - in the central cluster to talk to the workload clusters. - type: string - exposedExternally: - description: ExposedExternally determines whether a NodePort - service should be created for the resource - type: boolean - members: - description: Amount of members for this MongoDB Replica - Set - type: integer - service: - description: this is an optional service, it will get the - name "-service" in case not provided - type: string - statefulSet: - description: StatefulSetConfiguration holds the optional - custom StatefulSet that should be merged into the operator - created one. - properties: - spec: - type: object - x-kubernetes-preserve-unknown-fields: true - required: - - spec - type: object - type: object - type: array - type: object - connectivity: - properties: - replicaSetHorizons: - items: - additionalProperties: - type: string - description: 'MongoDBHorizonConfig holds a map of horizon names - to the node addresses, e.g. { "internal": "my-rs-2.my-internal-domain.com:31843", "external": - "my-rs-2.my-external-domain.com:21467" } The key of each item - in the map is an arbitrary, user-chosen string that represents - the name of the horizon. The value of the item is the host - and, optionally, the port that this mongod node will be connected - to from.' - type: object - type: array - type: object - credentials: - description: Name of the Secret holding credentials information - type: string - duplicateServiceObjects: - description: 'In few service mesh options for ex: Istio, by default - we would need to duplicate the service objects created per pod in - all the clusters to enable DNS resolution. Users can however configure - their ServiceMesh with DNS proxy(https://istio.io/latest/docs/ops/configuration/traffic-management/dns-proxy/) - enabled in which case the operator doesn''t need to create the service - objects per cluster. This options tells the operator whether it - should create the service objects in all the clusters or not. By - default, if not specified the operator would create the duplicate - svc objects.' - type: boolean - featureCompatibilityVersion: - type: string - logLevel: - enum: - - DEBUG - - INFO - - WARN - - ERROR - - FATAL - type: string - opsManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - persistent: - type: boolean - security: - properties: - authentication: - description: Authentication holds various authentication related - settings that affect this MongoDB resource. - properties: - agents: - description: Agents contains authentication configuration - properties for the agents - properties: - automationLdapGroupDN: - type: string - automationPasswordSecretRef: - description: SecretKeySelector selects a key of a Secret. - properties: - key: - description: The key of the secret to select from. Must - be a valid secret key. - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the Secret or its key - must be defined - type: boolean - required: - - key - type: object - automationUserName: - type: string - clientCertificateSecretRef: - type: object - x-kubernetes-preserve-unknown-fields: true - mode: - description: Mode is the desired Authentication mode that - the agents will use - type: string - required: - - mode - type: object - enabled: - type: boolean - ignoreUnknownUsers: - description: IgnoreUnknownUsers maps to the inverse of auth.authoritativeSet - type: boolean - internalCluster: - type: string - ldap: - description: LDAP Configuration - properties: - authzQueryTemplate: - type: string - bindQueryPasswordSecretRef: - properties: - name: - type: string - required: - - name - type: object - bindQueryUser: - type: string - caConfigMapRef: - description: Allows to point at a ConfigMap/key with a - CA file to mount on the Pod - properties: - key: - description: The key to select. - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the ConfigMap or its - key must be defined - type: boolean - required: - - key - type: object - servers: - items: - type: string - type: array - transportSecurity: - enum: - - tls - - none - type: string - userToDNMapping: - type: string - validateLDAPServerConfig: - type: boolean - type: object - modes: - items: - type: string - type: array - requireClientTLSAuthentication: - description: Clients should present valid TLS certificates - type: boolean - required: - - enabled - type: object - certsSecretPrefix: - type: string - roles: - items: - properties: - authenticationRestrictions: - items: - properties: - clientSource: - items: - type: string - type: array - serverAddress: - items: - type: string - type: array - type: object - type: array - db: - type: string - privileges: - items: - properties: - actions: - items: - type: string - type: array - resource: - properties: - cluster: - type: boolean - collection: - type: string - db: - type: string - type: object - required: - - actions - - resource - type: object - type: array - role: - type: string - roles: - items: - properties: - db: - type: string - role: - type: string - required: - - db - - role - type: object - type: array - required: - - db - - role - type: object - type: array - tls: - properties: - additionalCertificateDomains: - items: - type: string - type: array - ca: - description: CA corresponds to a ConfigMap containing an entry - for the CA certificate (ca.pem) used to validate the certificates - created already. - type: string - enabled: - description: Enables TLS for this resource. This will make - the operator try to mount a Secret with a defined name (-cert). - This is only used when enabling TLS on a MongoDB resource, - and not on the AppDB, where TLS is configured by setting - `secretRef.Name`. - type: boolean - secretRef: - description: SecretRef points to a Secret object containing - the certificates to use when enabling TLS. - properties: - name: - description: DEPRECATED please use security.tls.secretRef.prefix - instead - type: string - prefix: - type: string - type: object - type: object - type: object - type: - enum: - - ReplicaSet - type: string - version: - pattern: ^[0-9]+.[0-9]+.[0-9]+(-.+)?$|^$ - type: string - required: - - credentials - - type - - version - type: object - status: - properties: - backup: - properties: - statusName: - type: string - required: - - statusName - type: object - clusterStatusList: - description: ClusterStatusList holds a list of clusterStatuses corresponding - to each cluster - properties: - clusterStatuses: - items: - description: ClusterStatusItem is the mongodb multi-cluster - spec that is specific to a particular Kubernetes cluster, - this maps to the statefulset created in each cluster - properties: - clusterName: - description: ClusterName is name of the cluster where the - MongoDB Statefulset will be scheduled, the name should - have a one on one mapping with the service-account created - in the central cluster to talk to the workload clusters. - type: string - lastTransition: - type: string - members: - type: integer - message: - type: string - observedGeneration: - format: int64 - type: integer - phase: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent - resource which is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes - resource. Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - warnings: - items: - type: string - type: array - required: - - phase - type: object - type: array - type: object - lastTransition: - type: string - link: - type: string - message: - type: string - observedGeneration: - format: int64 - type: integer - phase: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource which - is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes resource. - Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - version: - type: string - warnings: - items: - type: string - type: array - required: - - phase - - version - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/helm_chart/crds/mongodb.com_mongodbusers.yaml b/helm_chart/crds/mongodb.com_mongodbusers.yaml deleted file mode 100644 index 7c16f95..0000000 --- a/helm_chart/crds/mongodb.com_mongodbusers.yaml +++ /dev/null @@ -1,166 +0,0 @@ - ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - controller-gen.kubebuilder.io/version: v0.4.1 - creationTimestamp: null - name: mongodbusers.mongodb.com -spec: - group: mongodb.com - names: - kind: MongoDBUser - listKind: MongoDBUserList - plural: mongodbusers - shortNames: - - mdbu - singular: mongodbuser - scope: Namespaced - versions: - - additionalPrinterColumns: - - description: The current state of the MongoDB User. - jsonPath: .status.phase - name: Phase - type: string - - description: The time since the MongoDB User resource was created. - jsonPath: .metadata.creationTimestamp - name: Age - type: date - name: v1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - db: - type: string - mongodbResourceRef: - properties: - name: - type: string - namespace: - type: string - required: - - name - type: object - passwordSecretKeyRef: - description: 'SecretKeyRef is a reference to a value in a given secret - in the same namespace. Based on: https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.15/#secretkeyselector-v1-core' - properties: - key: - type: string - name: - type: string - required: - - name - type: object - roles: - items: - properties: - db: - type: string - name: - type: string - required: - - db - - name - type: object - type: array - username: - type: string - required: - - db - - username - type: object - status: - properties: - db: - type: string - lastTransition: - type: string - message: - type: string - observedGeneration: - format: int64 - type: integer - phase: - type: string - project: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource which - is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes resource. - Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - roles: - items: - properties: - db: - type: string - name: - type: string - required: - - db - - name - type: object - type: array - username: - type: string - warnings: - items: - type: string - type: array - required: - - db - - phase - - project - - username - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/helm_chart/crds/mongodb.com_opsmanagers.yaml b/helm_chart/crds/mongodb.com_opsmanagers.yaml deleted file mode 100644 index b299793..0000000 --- a/helm_chart/crds/mongodb.com_opsmanagers.yaml +++ /dev/null @@ -1,891 +0,0 @@ - ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - controller-gen.kubebuilder.io/version: v0.4.1 - creationTimestamp: null - name: opsmanagers.mongodb.com -spec: - group: mongodb.com - names: - kind: MongoDBOpsManager - listKind: MongoDBOpsManagerList - plural: opsmanagers - shortNames: - - om - singular: opsmanager - scope: Namespaced - versions: - - additionalPrinterColumns: - - description: The number of replicas of MongoDBOpsManager. - jsonPath: .spec.replicas - name: Replicas - type: integer - - description: The version of MongoDBOpsManager. - jsonPath: .spec.version - name: Version - type: string - - description: The current state of the MongoDBOpsManager. - jsonPath: .status.opsManager.phase - name: State (OpsManager) - type: string - - description: The current state of the MongoDBOpsManager Application Database. - jsonPath: .status.applicationDatabase.phase - name: State (AppDB) - type: string - - description: The current state of the MongoDBOpsManager Backup Daemon. - jsonPath: .status.backup.phase - name: State (Backup) - type: string - - description: The time since the MongoDBOpsManager resource was created. - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: Warnings. - jsonPath: .status.warnings - name: Warnings - type: string - name: v1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - adminCredentials: - description: 'AdminSecret is the secret for the first admin user to - create has the fields: "Username", "Password", "FirstName", "LastName"' - type: string - applicationDatabase: - properties: - additionalMongodConfig: - description: 'AdditionalMongodConfig is additional configuration - that can be passed to each data-bearing mongod at runtime. Uses - the same structure as the mongod configuration file: https://docs.mongodb.com/manual/reference/configuration-options/' - type: object - x-kubernetes-preserve-unknown-fields: true - agent: - description: specify startup flags for the AutomationAgent and - MonitoringAgent - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - cloudManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - clusterDomain: - type: string - connectivity: - properties: - replicaSetHorizons: - items: - additionalProperties: - type: string - description: 'MongoDBHorizonConfig holds a map of horizon - names to the node addresses, e.g. { "internal": "my-rs-2.my-internal-domain.com:31843", "external": - "my-rs-2.my-external-domain.com:21467" } The key of each - item in the map is an arbitrary, user-chosen string that - represents the name of the horizon. The value of the item - is the host and, optionally, the port that this mongod - node will be connected to from.' - type: object - type: array - type: object - credentials: - description: Name of the Secret holding credentials information - type: string - featureCompatibilityVersion: - type: string - logLevel: - enum: - - DEBUG - - INFO - - WARN - - ERROR - - FATAL - type: string - members: - description: Amount of members for this MongoDB Replica Set - maximum: 50 - minimum: 3 - type: integer - monitoringAgent: - description: specify startup flags for just the MonitoringAgent. - These take precedence over the flags set in AutomationAgent - properties: - startupOptions: - additionalProperties: - type: string - type: object - type: object - opsManager: - properties: - configMapRef: - properties: - name: - type: string - type: object - type: object - passwordSecretKeyRef: - description: PasswordSecretKeyRef contains a reference to the - secret which contains the password for the mongodb-ops-manager - SCRAM-SHA user - properties: - key: - type: string - name: - type: string - required: - - name - type: object - podSpec: - properties: - cpu: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - cpuRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memory: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - memoryRequests: - description: DEPRECATED. Please set this value using `spec.podTemplate` - instead. - type: string - nodeAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - persistence: - properties: - multiple: - properties: - data: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - journal: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - logs: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - single: - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - type: object - podAffinity: - type: object - x-kubernetes-preserve-unknown-fields: true - podAntiAffinityTopologyKey: - type: string - podTemplate: - type: object - x-kubernetes-preserve-unknown-fields: true - type: object - project: - description: 'Deprecated: This has been replaced by the PrivateCloudConfig - which should be used instead' - type: string - security: - properties: - authentication: - description: Authentication holds various authentication related - settings that affect this MongoDB resource. - properties: - agents: - description: Agents contains authentication configuration - properties for the agents - properties: - automationLdapGroupDN: - type: string - automationPasswordSecretRef: - description: SecretKeySelector selects a key of a - Secret. - properties: - key: - description: The key of the secret to select from. Must - be a valid secret key. - type: string - name: - description: 'Name of the referent. More info: - https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the Secret or its - key must be defined - type: boolean - required: - - key - type: object - automationUserName: - type: string - clientCertificateSecretRef: - type: object - x-kubernetes-preserve-unknown-fields: true - mode: - description: Mode is the desired Authentication mode - that the agents will use - type: string - required: - - mode - type: object - enabled: - type: boolean - ignoreUnknownUsers: - description: IgnoreUnknownUsers maps to the inverse of - auth.authoritativeSet - type: boolean - internalCluster: - type: string - ldap: - description: LDAP Configuration - properties: - authzQueryTemplate: - type: string - bindQueryPasswordSecretRef: - properties: - name: - type: string - required: - - name - type: object - bindQueryUser: - type: string - caConfigMapRef: - description: Allows to point at a ConfigMap/key with - a CA file to mount on the Pod - properties: - key: - description: The key to select. - type: string - name: - description: 'Name of the referent. More info: - https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names - TODO: Add other useful fields. apiVersion, kind, - uid?' - type: string - optional: - description: Specify whether the ConfigMap or - its key must be defined - type: boolean - required: - - key - type: object - servers: - items: - type: string - type: array - transportSecurity: - enum: - - tls - - none - type: string - userToDNMapping: - type: string - validateLDAPServerConfig: - type: boolean - type: object - modes: - items: - type: string - type: array - requireClientTLSAuthentication: - description: Clients should present valid TLS certificates - type: boolean - required: - - enabled - type: object - certsSecretPrefix: - type: string - roles: - items: - properties: - authenticationRestrictions: - items: - properties: - clientSource: - items: - type: string - type: array - serverAddress: - items: - type: string - type: array - type: object - type: array - db: - type: string - privileges: - items: - properties: - actions: - items: - type: string - type: array - resource: - properties: - cluster: - type: boolean - collection: - type: string - db: - type: string - type: object - required: - - actions - - resource - type: object - type: array - role: - type: string - roles: - items: - properties: - db: - type: string - role: - type: string - required: - - db - - role - type: object - type: array - required: - - db - - role - type: object - type: array - tls: - properties: - additionalCertificateDomains: - items: - type: string - type: array - ca: - description: CA corresponds to a ConfigMap containing - an entry for the CA certificate (ca.pem) used to validate - the certificates created already. - type: string - enabled: - description: Enables TLS for this resource. This will - make the operator try to mount a Secret with a defined - name (-cert). This is only used when - enabling TLS on a MongoDB resource, and not on the AppDB, - where TLS is configured by setting `secretRef.Name`. - type: boolean - secretRef: - description: SecretRef points to a Secret object containing - the certificates to use when enabling TLS. - properties: - name: - description: DEPRECATED please use security.tls.secretRef.prefix - instead - type: string - prefix: - type: string - type: object - type: object - type: object - service: - description: this is an optional service, it will get the name - "-service" in case not provided - type: string - type: - enum: - - Standalone - - ReplicaSet - - ShardedCluster - type: string - version: - pattern: ^[0-9]+.[0-9]+.[0-9]+(-.+)?$|^$ - type: string - required: - - version - type: object - backup: - description: Backup - properties: - blockStores: - items: - description: DataStoreConfig is the description of the config - used to reference to database. Reused by Oplog and Block stores - Optionally references the user if the Mongodb is configured - with authentication - properties: - mongodbResourceRef: - properties: - name: - type: string - namespace: - type: string - required: - - name - type: object - mongodbUserRef: - properties: - name: - type: string - required: - - name - type: object - name: - type: string - required: - - mongodbResourceRef - - name - type: object - type: array - enabled: - description: Enabled indicates if Backups will be enabled for - this Ops Manager. - type: boolean - externalServiceEnabled: - type: boolean - fileSystemStores: - items: - properties: - name: - type: string - required: - - name - type: object - type: array - headDB: - description: HeadDB specifies configuration options for the HeadDB - properties: - labelSelector: - type: object - x-kubernetes-preserve-unknown-fields: true - storage: - type: string - storageClass: - type: string - type: object - jvmParameters: - items: - type: string - type: array - members: - description: Members indicate the number of backup daemon pods - to create. - minimum: 1 - type: integer - opLogStores: - description: OplogStoreConfigs describes the list of oplog store - configs used for backup - items: - description: DataStoreConfig is the description of the config - used to reference to database. Reused by Oplog and Block stores - Optionally references the user if the Mongodb is configured - with authentication - properties: - mongodbResourceRef: - properties: - name: - type: string - namespace: - type: string - required: - - name - type: object - mongodbUserRef: - properties: - name: - type: string - required: - - name - type: object - name: - type: string - required: - - mongodbResourceRef - - name - type: object - type: array - s3Stores: - items: - properties: - irsaEnabled: - description: 'This is only set to "true" when user is running - in EKS and is using AWS IRSA to configure S3 snapshot - store. For more details refer this: https://aws.amazon.com/blogs/opensource/introducing-fine-grained-iam-roles-service-accounts/' - type: boolean - mongodbResourceRef: - properties: - name: - type: string - namespace: - type: string - required: - - name - type: object - mongodbUserRef: - properties: - name: - type: string - required: - - name - type: object - name: - type: string - pathStyleAccessEnabled: - type: boolean - s3BucketEndpoint: - type: string - s3BucketName: - type: string - s3SecretRef: - properties: - name: - type: string - required: - - name - type: object - required: - - name - - pathStyleAccessEnabled - - s3BucketEndpoint - - s3BucketName - - s3SecretRef - type: object - type: array - statefulSet: - description: StatefulSetConfiguration holds the optional custom - StatefulSet that should be merged into the operator created - one. - properties: - spec: - type: object - x-kubernetes-preserve-unknown-fields: true - required: - - spec - type: object - required: - - enabled - type: object - clusterDomain: - format: hostname - type: string - clusterName: - description: 'Deprecated: This has been replaced by the ClusterDomain - which should be used instead' - format: hostname - type: string - configuration: - additionalProperties: - type: string - description: The configuration properties passed to Ops Manager/Backup - Daemon - type: object - externalConnectivity: - description: MongoDBOpsManagerExternalConnectivity if sets allows - for the creation of a Service for accessing this Ops Manager resource - from outside the Kubernetes cluster. - properties: - annotations: - additionalProperties: - type: string - description: Annotations is a list of annotations to be directly - passed to the Service object. - type: object - externalTrafficPolicy: - description: ExternalTrafficPolicy mechanism to preserve the client - source IP. Only supported on GCE and Google Kubernetes Engine. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - description: LoadBalancerIP IP that will be assigned to this LoadBalancer. - type: string - port: - description: Port in which this `Service` will listen to, this - applies to `NodePort`. - format: int32 - type: integer - type: - description: Type of the `Service` to be created. - enum: - - LoadBalancer - - NodePort - type: string - required: - - type - type: object - jvmParameters: - description: Custom JVM parameters passed to the Ops Manager JVM - items: - type: string - type: array - replicas: - minimum: 1 - type: integer - security: - description: Configure HTTPS. - properties: - certsSecretPrefix: - type: string - tls: - properties: - ca: - type: string - secretRef: - properties: - name: - type: string - required: - - name - type: object - type: object - type: object - statefulSet: - description: Configure custom StatefulSet configuration - properties: - spec: - type: object - x-kubernetes-preserve-unknown-fields: true - required: - - spec - type: object - version: - type: string - required: - - applicationDatabase - - version - type: object - status: - properties: - applicationDatabase: - properties: - backup: - properties: - statusName: - type: string - required: - - statusName - type: object - configServerCount: - type: integer - lastTransition: - type: string - link: - type: string - members: - type: integer - message: - type: string - mongodsPerShardCount: - type: integer - mongosCount: - type: integer - observedGeneration: - format: int64 - type: integer - phase: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource - which is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes - resource. Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - shardCount: - type: integer - version: - type: string - warnings: - items: - type: string - type: array - required: - - phase - - version - type: object - backup: - properties: - lastTransition: - type: string - message: - type: string - observedGeneration: - format: int64 - type: integer - phase: - type: string - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource - which is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes - resource. Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - version: - type: string - warnings: - items: - type: string - type: array - required: - - phase - type: object - opsManager: - properties: - lastTransition: - type: string - message: - type: string - observedGeneration: - format: int64 - type: integer - phase: - type: string - replicas: - type: integer - resourcesNotReady: - items: - description: ResourceNotReady describes the dependent resource - which is not ready yet - properties: - errors: - items: - properties: - message: - type: string - reason: - type: string - type: object - type: array - kind: - description: ResourceKind specifies a kind of a Kubernetes - resource. Used in status of a Custom Resource - type: string - message: - type: string - name: - type: string - required: - - kind - - name - type: object - type: array - url: - type: string - version: - type: string - warnings: - items: - type: string - type: array - required: - - phase - type: object - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/helm_chart/crds/webhook-cluster-role.yaml b/helm_chart/crds/webhook-cluster-role.yaml deleted file mode 100644 index 6931b3e..0000000 --- a/helm_chart/crds/webhook-cluster-role.yaml +++ /dev/null @@ -1,27 +0,0 @@ ---- -kind: ClusterRole -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: mongodb-enterprise-operator-mongodb-webhook -rules: - - apiGroups: - - "admissionregistration.k8s.io" - resources: - - validatingwebhookconfigurations - verbs: - - get - - create - - update - - delete - - - apiGroups: - - "" - resources: - - services - verbs: - - get - - list - - watch - - create - - update - - delete diff --git a/helm_chart/templates/database-roles.yaml b/helm_chart/templates/database-roles.yaml deleted file mode 100644 index 5763b10..0000000 --- a/helm_chart/templates/database-roles.yaml +++ /dev/null @@ -1,83 +0,0 @@ -{{- $watchNamespace := list .Values.namespace }} -{{- if .Values.operator.watchNamespace }} -{{- $watchNamespace = regexSplit "," .Values.operator.watchNamespace -1 }} -{{- end }} - - -{{- range $idx, $namespace := $watchNamespace }} - -{{- $namespaceBlock := printf "namespace: %s" $namespace }} -{{- if eq $namespace "*" }} -{{- $namespaceBlock = printf "namespace: %s" $.Values.namespace }} -{{- end }} ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - name: mongodb-enterprise-appdb - {{ $namespaceBlock }} -{{- if $.Values.registry.imagePullSecrets}} -imagePullSecrets: - - name: {{ $.Values.registry.imagePullSecrets }} -{{- end }} - ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - name: mongodb-enterprise-database-pods - {{ $namespaceBlock }} -{{- if $.Values.registry.imagePullSecrets}} -imagePullSecrets: - - name: {{ $.Values.registry.imagePullSecrets }} -{{- end }} - ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - name: mongodb-enterprise-ops-manager - {{ $namespaceBlock }} -{{- if $.Values.registry.imagePullSecrets}} -imagePullSecrets: - - name: {{ $.Values.registry.imagePullSecrets }} -{{- end }} - ---- -kind: Role -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: mongodb-enterprise-appdb - {{ $namespaceBlock }} -rules: - - apiGroups: - - "" - resources: - - secrets - verbs: - - get - - apiGroups: - - "" - resources: - - pods - verbs: - - patch - - delete - - get - ---- -kind: RoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: mongodb-enterprise-appdb - {{ $namespaceBlock }} -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: Role - name: mongodb-enterprise-appdb -subjects: - - kind: ServiceAccount - name: mongodb-enterprise-appdb - {{ $namespaceBlock }} - -{{- end }} diff --git a/helm_chart/templates/operator-roles.yaml b/helm_chart/templates/operator-roles.yaml deleted file mode 100644 index ba7bc63..0000000 --- a/helm_chart/templates/operator-roles.yaml +++ /dev/null @@ -1,150 +0,0 @@ -{{ if .Values.operator.createOperatorServiceAccount }} ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - name: {{ .Values.operator.name }} - namespace: {{ .Values.namespace }} -{{- if .Values.registry.imagePullSecrets}} -imagePullSecrets: - - name: {{ .Values.registry.imagePullSecrets }} -{{- end }} - -{{- end }} - -{{- $watchNamespace := list .Values.namespace }} -{{- if .Values.operator.watchNamespace }} -{{- $watchNamespace = regexSplit "," .Values.operator.watchNamespace -1 }} -{{- $watchNamespace = concat $watchNamespace (list .Values.namespace) }} -{{- end }} - -{{- $roleScope := "Role" -}} -{{- if or (gt (len $watchNamespace) 1) (eq (first $watchNamespace) "*") }} -{{- $roleScope = "ClusterRole" }} -{{- end }} - ---- -kind: {{ $roleScope }} -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Values.operator.name }} -{{- if eq $roleScope "Role" }} - namespace: {{ .Values.namespace }} -{{- end }} -rules: -- apiGroups: - - "" - resources: - - services - verbs: - - get - - list - - watch - - create - - update - - delete -- apiGroups: - - "" - resources: - - secrets - - configmaps - verbs: - - get - - list - - create - - update - - delete - - watch -- apiGroups: - - apps - resources: - - statefulsets - verbs: - - create - - get - - list - - watch - - delete - - update -- apiGroups: - - "" - resources: - - pods - verbs: - - get - - list - - watch - - delete - - deletecollection -- apiGroups: - - mongodb.com - verbs: - - "*" - resources: - - mongodb - - mongodb/finalizers - - mongodbusers - - opsmanagers - - opsmanagers/finalizers - - mongodbmulti - - mongodbmulti/finalizers -{{- if .Values.subresourceEnabled }} - - mongodb/status - - mongodbusers/status - - opsmanagers/status - - mongodbmulti/status -{{- end }} -{{- if eq $roleScope "ClusterRole" }} -- apiGroups: - - "" - resources: - - namespaces - verbs: - - list - - watch -{{- end}} - -# This ClusterRoleBinding is necessary in order to use validating -# webhooks—these will prevent you from applying a variety of invalid resource -# definitions. The validating webhooks are optional so this can be removed if -# necessary. ---- -kind: ClusterRoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Values.operator.name }}-{{ .Values.namespace }}-webhook-binding -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: ClusterRole - name: mongodb-enterprise-operator-mongodb-webhook -subjects: -- kind: ServiceAccount - name: {{ .Values.operator.name }} - namespace: {{ .Values.namespace }} - -{{- range $idx, $namespace := $watchNamespace }} - -{{- $namespaceBlock := "" }} -{{- if not (eq $namespace "*") }} -{{- $namespaceBlock = printf "namespace: %s" $namespace }} -{{- end }} - ---- -{{- if eq $namespace "*" }} -kind: ClusterRoleBinding -{{- else }} -kind: RoleBinding -{{- end }} -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ $.Values.operator.name }} - {{ $namespaceBlock }} -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: {{ $roleScope }} - name: {{ $.Values.operator.name }} -subjects: -- kind: ServiceAccount - name: {{ $.Values.operator.name }} - namespace: {{ $.Values.namespace }} -{{- end }} diff --git a/helm_chart/templates/operator.yaml b/helm_chart/templates/operator.yaml deleted file mode 100644 index 5d89f83..0000000 --- a/helm_chart/templates/operator.yaml +++ /dev/null @@ -1,143 +0,0 @@ ---- -apiVersion: apps/v1 -kind: Deployment -metadata: - name: {{ .Values.operator.name }} -{{- if .Values.namespace }} - namespace: {{ .Values.namespace }} -{{- end }} -spec: - replicas: 1 - selector: - matchLabels: - app.kubernetes.io/component: controller - app.kubernetes.io/name: {{ .Values.operator.name }} - app.kubernetes.io/instance: {{ .Values.operator.name }} - template: - metadata: - labels: - app.kubernetes.io/component: controller - app.kubernetes.io/name: {{ .Values.operator.name }} - app.kubernetes.io/instance: {{ .Values.operator.name }} - spec: - serviceAccountName: {{ .Values.operator.name }} -{{- if not .Values.managedSecurityContext }} - securityContext: - runAsNonRoot: true - runAsUser: 2000 -{{- end }} -{{- if .Values.registry.imagePullSecrets}} - imagePullSecrets: - - name: {{ .Values.registry.imagePullSecrets }} -{{- end }} - containers: - - name: {{ .Values.operator.deployment_name }} - image: {{ .Values.registry.operator }}/{{ .Values.operator.operator_image_name }}:{{ .Values.operator.version }}{{ .Values.build }} - imagePullPolicy: {{ .Values.registry.pullPolicy }} - {{- if .Values.operator.watchedResources }} - args: - {{- range .Values.operator.watchedResources }} - - "-watch-resource={{ . }}" - {{- end }} - {{- if .Values.multiCluster.clusters }} - - "-watch-resource=mongodbmulti" - - '-cluster-names={{ join "," .Values.multiCluster.clusters }}' - {{- end }} - command: - - "/usr/local/bin/mongodb-enterprise-operator" - {{- end }} - {{- if .Values.multiCluster.clusters }} - volumeMounts: - - mountPath: /etc/config/kubeconfig - name: kube-config-volume - {{- end }} - resources: - limits: - cpu: 1100m - memory: 1Gi - requests: - cpu: 500m - memory: 200Mi - env: - - name: OPERATOR_ENV - value: {{ .Values.operator.env }} - - name: WATCH_NAMESPACE -{{- if .Values.operator.watchNamespace }} - value: "{{ .Values.operator.watchNamespace }}" -{{- else }} - valueFrom: - fieldRef: - fieldPath: metadata.namespace -{{- end }} - - name: CURRENT_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace -{{- if eq .Values.managedSecurityContext true }} - - name: MANAGED_SECURITY_CONTEXT - value: 'true' -{{- end }} - - name: IMAGE_PULL_POLICY - value: {{ .Values.registry.pullPolicy }} - # Database - - name: MONGODB_ENTERPRISE_DATABASE_IMAGE - value: {{ .Values.registry.database }}/{{ .Values.database.name }} - - name: INIT_DATABASE_IMAGE_REPOSITORY - value: {{ .Values.registry.initDatabase }}/{{ .Values.initDatabase.name }} - - name: INIT_DATABASE_VERSION - value: {{ .Values.initDatabase.version }}{{ .Values.build }} - - name: DATABASE_VERSION - value: {{ .Values.database.version }}{{ .Values.build }} - # Ops Manager - - name: OPS_MANAGER_IMAGE_REPOSITORY - value: {{ .Values.registry.opsManager }}/{{ .Values.opsManager.name }} - - name: INIT_OPS_MANAGER_IMAGE_REPOSITORY - value: {{ .Values.registry.initOpsManager }}/{{ .Values.initOpsManager.name }} - - name: INIT_OPS_MANAGER_VERSION - value: {{ .Values.initOpsManager.version }}{{ .Values.build }} - # AppDB - - name: INIT_APPDB_IMAGE_REPOSITORY - value: {{ .Values.registry.initAppDb }}/{{ .Values.initAppDb.name }} - - name: INIT_APPDB_VERSION - value: {{ .Values.initAppDb.version }}{{ .Values.build }} - - name: OPS_MANAGER_IMAGE_PULL_POLICY - value: {{ .Values.registry.pullPolicy }} - - name: AGENT_IMAGE - value: "{{ .Values.registry.agent }}/{{ .Values.agent.name }}:{{ .Values.agent.version }}" - - name: MONGODB_IMAGE - value: {{ .Values.mongodb.name }} - - name: MONGODB_REPO_URL - value: {{ .Values.mongodb.repo }} - -{{- if .Values.registry.imagePullSecrets }} - - name: IMAGE_PULL_SECRETS - value: {{ .Values.registry.imagePullSecrets }} -{{- end }} -{{- if .Values.customEnvVars }} - {{- range split "&" .Values.customEnvVars }} - - name: {{ (split "=" .)._0 }} - value: '{{ (split "=" .)._1 }}' - {{- end }} -{{- end }} -{{- if .Values.multiCluster.clusters }} - volumes: - - name: kube-config-volume - secret: - defaultMode: 420 - secretName: {{ .Values.multiCluster.kubeConfigSecretName }} -{{- end }} -{{- if .Values.debug }} ---- -apiVersion: v1 -kind: Service -metadata: - name: debug-svc -spec: - type: NodePort - ports: - - nodePort: {{ .Values.debugPort }} - port: 40000 - protocol: TCP - selector: - app.kubernetes.io/name: {{ .Values.operator.name }} -{{- end }} diff --git a/helm_chart/values-openshift.yaml b/helm_chart/values-openshift.yaml deleted file mode 100644 index 7cf0833..0000000 --- a/helm_chart/values-openshift.yaml +++ /dev/null @@ -1,76 +0,0 @@ -# Name of the Namespace to use -namespace: mongodb - -# OpenShift manages security context on its own -managedSecurityContext: true - -operator: - # Execution environment for the operator, dev or prod. Use dev for more verbose logging - env: prod - - # Name that will be assigned to most of internal Kubernetes objects like ServiceAccount, Role etc. - name: mongodb-enterprise-operator - - # Name of the operator image - operator_image_name: enterprise-operator - - # Name of the deployment of the operator pod - deployment_name: mongodb-enterprise-operator - - # Version of mongodb-enterprise-operator - version: 1.13.0 - - # The Custom Resources that will be watched by the Operator. Needs to be changed if only some of the CRDs are installed - watchedResources: - - mongodb - - opsmanagers - - mongodbusers - -## Database -database: - name: enterprise-database - version: 2.0.2 - -initDatabase: - name: mongodb-enterprise-init-database - version: 1.0.5 - -## Ops Manager -opsManager: - name: mongodb-enterprise-ops-manager - -initOpsManager: - name: mongodb-enterprise-init-ops-manager - version: 1.0.5 - -initAppDb: - name: mongodb-enterprise-init-appdb - version: 1.0.8 - -agent: - name: mongodb-agent - version: 11.0.5.6963-1 - -mongodb: - name: mongodb-enterprise-appdb-database - repo: quay.io/mongodb - - -## Registry -registry: - # The pull secret must be specified - imagePullSecrets: - pullPolicy: Always - database: registry.connect.redhat.com/mongodb - operator: registry.connect.redhat.com/mongodb - initDatabase: registry.connect.redhat.com/mongodb - initOpsManager: registry.connect.redhat.com/mongodb - opsManager: registry.connect.redhat.com/mongodb - initAppDb: registry.connect.redhat.com/mongodb - appDb: registry.connect.redhat.com/mongodb - agent: registry.connect.redhat.com/mongodb - - -# Set this to false to disable subresource utilization -# It might be required on some versions of Openshift -subresourceEnabled: true diff --git a/helm_chart/values.yaml b/helm_chart/values.yaml deleted file mode 100644 index 5d15c07..0000000 --- a/helm_chart/values.yaml +++ /dev/null @@ -1,88 +0,0 @@ -# Name of the Namespace to use -namespace: mongodb - -## Operator - -# Set this to true if your cluster is managing SecurityContext for you. -# If running OpenShift (Cloud, Minishift, etc.), set this to true. -managedSecurityContext: false - -operator: - # Execution environment for the operator, dev or prod. Use dev for more verbose logging - env: prod - - # Name that will be assigned to most of internal Kubernetes objects like Deployment, ServiceAccount, Role etc. - name: mongodb-enterprise-operator - - # Name of the operator image - operator_image_name: mongodb-enterprise-operator - - # Name of the deployment of the operator pod - deployment_name: mongodb-enterprise-operator - - # Version of mongodb-enterprise-operator - version: 1.14.0 - - # The Custom Resources that will be watched by the Operator. Needs to be changed if only some of the CRDs are installed - watchedResources: - - mongodb - - opsmanagers - - mongodbusers - - # Create operator-service account - createOperatorServiceAccount: true - -## Database -database: - name: mongodb-enterprise-database - version: 2.0.2 - -initDatabase: - name: mongodb-enterprise-init-database - version: 1.0.5 - -## Ops Manager -opsManager: - name: mongodb-enterprise-ops-manager - -initOpsManager: - name: mongodb-enterprise-init-ops-manager - version: 1.0.5 - -## Application Database -initAppDb: - name: mongodb-enterprise-init-appdb - version: 1.0.8 - -agent: - name: mongodb-agent - version: 11.0.5.6963-1 - -mongodb: - name: mongodb-enterprise-appdb-database - repo: quay.io/mongodb - - -## Registry -registry: - imagePullSecrets: - # TODO: specify for each image and move there? - pullPolicy: Always - # Specify if images are pulled from private registry - operator: quay.io/mongodb - database: quay.io/mongodb - initDatabase: quay.io/mongodb - initOpsManager: quay.io/mongodb - opsManager: quay.io/mongodb - initAppDb: quay.io/mongodb - appDb: quay.io/mongodb - agent: quay.io/mongodb - -multiCluster: - clusters: [] - kubeConfigSecretName: mongodb-enterprise-operator-multi-cluster-kubeconfig - - -# Set this to false to disable subresource utilization -# It might be required on some versions of Openshift -subresourceEnabled: true diff --git a/mongodb-enterprise-openshift.yaml b/mongodb-enterprise-openshift.yaml index 4fec474..1272138 100644 --- a/mongodb-enterprise-openshift.yaml +++ b/mongodb-enterprise-openshift.yaml @@ -190,7 +190,7 @@ spec: serviceAccountName: mongodb-enterprise-operator containers: - name: mongodb-enterprise-operator - image: registry.connect.redhat.com/mongodb/enterprise-operator:1.13.0 + image: registry.connect.redhat.com/mongodb/enterprise-operator:1.14.0 imagePullPolicy: Always args: - "-watch-resource=mongodb" @@ -226,7 +226,7 @@ spec: - name: INIT_DATABASE_IMAGE_REPOSITORY value: registry.connect.redhat.com/mongodb/mongodb-enterprise-init-database - name: INIT_DATABASE_VERSION - value: 1.0.5 + value: 1.0.6 - name: DATABASE_VERSION value: 2.0.2 # Ops Manager diff --git a/mongodb-enterprise.yaml b/mongodb-enterprise.yaml index 1fefc78..58bda5a 100644 --- a/mongodb-enterprise.yaml +++ b/mongodb-enterprise.yaml @@ -193,7 +193,7 @@ spec: runAsUser: 2000 containers: - name: mongodb-enterprise-operator - image: quay.io/mongodb/mongodb-enterprise-operator:1.13.0 + image: quay.io/mongodb/mongodb-enterprise-operator:1.14.0 imagePullPolicy: Always args: - "-watch-resource=mongodb" @@ -227,7 +227,7 @@ spec: - name: INIT_DATABASE_IMAGE_REPOSITORY value: quay.io/mongodb/mongodb-enterprise-init-database - name: INIT_DATABASE_VERSION - value: 1.0.5 + value: 1.0.6 - name: DATABASE_VERSION value: 2.0.2 # Ops Manager