mirror of
https://github.com/outbackdingo/cozystack.git
synced 2026-01-27 10:18:39 +00:00
744a0f3ca6
## What this PR does Some k8s secrets created when deploying managed applications are unhelpful to the end user or are outright not meant to be shown, because they contain internal credentials not meant to be presented to the user. This patch adds an `apps.cozystack.io/tenantresource=false` label to such resources which will be later used to filter out such secrets in the web UI. ### Release note ```release-note [platform] Mark non-user-facing secrets as such to avoid clutter in the dashboard and leaking internal credentials. ``` <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **New Features** * Automatic creation of a ServiceAccount token Secret via the Info add-on. * **Improvements** * VPN TLS Secret CA field standardized to ca.crt for consistency. * **Removals** * Removed the explicit ServiceAccount token Secret from the Tenant app (token now managed by Info). * **Chores** * Added non-functional metadata labels to several Secrets. * Bumped chart/package metadata versions and updated version mappings. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
How to test packages local
cd packages/core/installer
make image-cozystack REGISTRY=YOUR_CUSTOM_REGISTRY
make apply
kubectl delete po -l app=source-controller -n cozy-fluxcd