redhat-cop · sabre1041 · May 13, 2019 · May 12, 2019 · May 12, 2019 · May 12, 2019
diff --git a/README.md b/README.md
@@ -11,7 +11,7 @@ Dev teams may of may not be granted permissions to create these objects. In case
 A `NamespaceConfig` CRD looks as follows:
 
 ```yaml
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: small-size
@@ -50,7 +50,7 @@ oc new-project test-namespace-config
 During the provisioning of the projects to dev teams some, organizations start with T-shirt sized quotas. Here is an example of how this can be done with the Namespace Configuration Controller
 
 ```yaml
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: small-size
@@ -68,7 +68,7 @@ spec:
         requests.cpu: "4"
         requests.memory: "2Gi"
 ---
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: large-size
@@ -104,7 +104,7 @@ In most cases isolating one project from other projects is a good way to start.
 The configuration would look as follows:
 
 ```yaml
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: multitenant
@@ -150,7 +150,7 @@ That said limit range can still be useful to define the ratio between request an
 Here is how it can be done:
 
 ```yaml
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: overcommit-limitrange
@@ -184,7 +184,7 @@ oc label namespace overcommit-project overcommit=limited
 Another scenario is an application needs to talk to the master API and needs to specific permissions to do that. As an example, we are creating a service account with the `registry-viewer` and `registry-editor` accounts. Here is what we can do:
 
 ```yaml
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: special-sa
@@ -266,7 +266,7 @@ rules:
   resourceNames:
   - forbid-privileged-pods
 ---  
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: unprivileged-pods

diff --git a/deploy/crds/redhatcop_v1alpha1_namespaceconfig_cr.yaml b/deploy/crds/redhatcop_v1alpha1_namespaceconfig_cr.yaml
@@ -1,4 +1,4 @@
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: example-namespaceconfig

diff --git a/deploy/crds/redhatcop_v1alpha1_namespaceconfig_crd.yaml b/deploy/crds/redhatcop_v1alpha1_namespaceconfig_crd.yaml
@@ -10,6 +10,8 @@ spec:
     plural: namespaceconfigs
     singular: namespaceconfig
   scope: Namespaced
+  subresources:
+    status: {}
   validation:
     openAPIV3Schema:
       properties:
@@ -32,13 +34,20 @@ spec:
                 type: object
               type: array
             selector:
-              description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
-                Important: Run "operator-sdk generate k8s" to regenerate code after
-                modifying this file Add custom validation using kubebuilder tags:
-                https://book.kubebuilder.io/beyond_basics/generating_crd.html'
               type: object
           type: object
         status:
+          properties:
+            lastUpdate:
+              format: date-time
+              type: string
+            reason:
+              type: string
+            status:
+              enum:
+              - Success
+              - Failure
+              type: string
           type: object
   version: v1alpha1
   versions:

diff --git a/examples/multitenant-networkpolicy.yaml b/examples/multitenant-networkpolicy.yaml
@@ -1,4 +1,4 @@
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: multitenant

diff --git a/examples/overcommit-limitrange.yaml b/examples/overcommit-limitrange.yaml
@@ -1,4 +1,4 @@
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: overcommit-limitrange

diff --git a/examples/serviceaccount-permissions.yaml b/examples/serviceaccount-permissions.yaml
@@ -1,4 +1,4 @@
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: special-sa

diff --git a/examples/special-pod.yaml b/examples/special-pod.yaml
@@ -26,7 +26,7 @@ rules:
   resourceNames:
   - forbid-privileged-pods
 ---  
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: unprivileged-pods

diff --git a/examples/tshirt-quotas.yaml b/examples/tshirt-quotas.yaml
@@ -1,4 +1,4 @@
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: small-size
@@ -16,7 +16,7 @@ spec:
         requests.cpu: "4" 
         requests.memory: "2Gi" 
 ---
-apiVersion: redhat-cop.redhat.io/v1alpha1
+apiVersion: redhatcop.redhat.io/v1alpha1
 kind: NamespaceConfig
 metadata:
   name: large-size

diff --git a/pkg/apis/redhatcop/v1alpha1/doc.go b/pkg/apis/redhatcop/v1alpha1/doc.go
@@ -1,4 +1,4 @@
 // Package v1alpha1 contains API Schema definitions for the redhat-cop v1alpha1 API group
 // +k8s:deepcopy-gen=package,register
-// +groupName=redhat-cop.redhat.io
+// +groupName=redhatcop.redhat.io
 package v1alpha1
diff --git a/pkg/apis/redhatcop/v1alpha1/namespaceconfig_types.go b/pkg/apis/redhatcop/v1alpha1/namespaceconfig_types.go
@@ -14,6 +14,7 @@ type NamespaceConfigSpec struct {
 	// INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
 	// Important: Run "operator-sdk generate k8s" to regenerate code after modifying this file
 	// Add custom validation using kubebuilder tags: https://book.kubebuilder.io/beyond_basics/generating_crd.html
+
 	Selector  metav1.LabelSelector   `json:"selector,omitempty"`
 	Resources []runtime.RawExtension `json:"resources,omitempty"`
 }
@@ -24,12 +25,18 @@ type NamespaceConfigStatus struct {
 	// INSERT ADDITIONAL STATUS FIELD - define observed state of cluster
 	// Important: Run "operator-sdk generate k8s" to regenerate code after modifying this file
 	// Add custom validation using kubebuilder tags: https://book.kubebuilder.io/beyond_basics/generating_crd.html
+
+	// +kubebuilder:validation:Enum=Success,Failure
+	Status     string      `json:"status,omitempty"`
+	LastUpdate metav1.Time `json:"lastUpdate,omitempty"`
+	Reason     string      `json:"reason,omitempty"`
 }
 
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
 
 // NamespaceConfig is the Schema for the namespaceconfigs API
 // +k8s:openapi-gen=true
+// +kubebuilder:subresource:status
 type NamespaceConfig struct {
 	metav1.TypeMeta   `json:",inline"`
 	metav1.ObjectMeta `json:"metadata,omitempty"`

diff --git a/pkg/apis/redhatcop/v1alpha1/register.go b/pkg/apis/redhatcop/v1alpha1/register.go
@@ -2,7 +2,7 @@
 
 // Package v1alpha1 contains API Schema definitions for the redhat-cop v1alpha1 API group
 // +k8s:deepcopy-gen=package,register
-// +groupName=redhat-cop.redhat.io
+// +groupName=redhatcop.redhat.io
 package v1alpha1
 
 import (
@@ -12,7 +12,7 @@ import (
 
 var (
 	// SchemeGroupVersion is group version used to register these objects
-	SchemeGroupVersion = schema.GroupVersion{Group: "redhat-cop.redhat.io", Version: "v1alpha1"}
+	SchemeGroupVersion = schema.GroupVersion{Group: "redhatcop.redhat.io", Version: "v1alpha1"}
 
 	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
 	SchemeBuilder = &scheme.Builder{GroupVersion: SchemeGroupVersion}

diff --git a/pkg/apis/redhatcop/v1alpha1/zz_generated.deepcopy.go b/pkg/apis/redhatcop/v1alpha1/zz_generated.deepcopy.go
diff --git a/pkg/apis/redhatcop/v1alpha1/zz_generated.openapi.go b/pkg/apis/redhatcop/v1alpha1/zz_generated.openapi.go