* Release 0.5.1
This also adds an integration test which actually hits the API and experimental support for unprivileged container images
* Add debug statement
* Add debug statement
* Bump Qdrant to 1.5.1
* Try to fix tests
* Add comment and remove duplicated test
* Make the qdrant api key easily configurable
This adds a new `apiKey` value.
If `true` it generates a random apiKey, stores it in a secret and ensures that it stays the same during upgrades.
If a string is passed, this string is used as the api key.
The secret is mounted as a `local.yaml` config into the container. See also https://qdrant.tech/documentation/guides/configuration/#order-and-priority.
Alternatively, there are two new values `additionalVolumes` and `additionalVolumeMounts` which allow to mount additional existing volumes, such as pre-existing secrets into the qdrant container.
This also adds bats-core based integration tests to test the correct api key handling
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix bats integration tests
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix bats integration tests
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix bats integration tests
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix bats integration tests
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix statefulset
* doc: fix typo
---------
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
Co-authored-by: Tim Eggert <tim@elbart.com>
This also ensures that the pre-existing files in the volume are owned by the right user and group.
This is why the default podSecurityContext allows running as root for the init containers that change the permissions and only the container is restricted by default.
* Support configuring additional labels on resources and add ServiceAccount
Fixes https://github.com/qdrant/qdrant-helm/issues/55
This adds a ServiceAccount for the Statefulset. This errors if a namespace has no default ServiceAccount and prevents accidentally using a default namespace ServiceAccount with elevated permissions.
This also introduces terratest as a way to do unit tests on the rendered helm chart.
* Fix setup-go cache-dependency-path for faster executions
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
---------
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Re-structure git repo and improve qdrant chart
This allows us to host multiple helm charts in the future and to use the standard helm/chart-releaser-action and helm/chart-testing-action.
Additional changes:
* Fixed typos in README
* Added helm tests
* Change to use more standard ingress.tls values structure
* Use fixed versioning
* Added chart metadata
* Improve install notes
* Add LICENSE information
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Bump version
* Bump version
* Update Chart.yaml
* Add necessary permissions to flow
* Skip existing helm releases
* Remove Skip existing helm releases
* Update Chart.yaml
* Reset chart version for merge
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Remove BC break in .Values.image.tag
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
* Fix change detection for chart-releaser and chart-testing
---------
Signed-off-by: Bastian Hofmann <mail@bastianhofmann.de>
