- braces
- brackets
- colons
- commas
- comments
- hyphens
- indentation
- key-duplicates
with corresponding code changes.
Also disable enforcement for document-(start|end) rules and
disables warnings to increase readability.
* Unrestrict octal values rule since benefits of file modes readability
exceed possible issues with yaml 1.2 adoption in future k8s versions.
These issues will be addressed when/if they occur.
Change-Id: Ic5e327cf40c4b09c90738baff56419a6cef132da
Signed-off-by: Andrii Ostapenko <andrii.ostapenko@att.com>
This updates the Keystone chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true.
Change-Id: I2ac3a4efa6798e263de19f0db444f37c5236d121
This change moves the tungsten fabric check down to the periodic
checks with the other feature overrides, removes several duplicate
checks that are currently non-functional, and moves the rest to
experimental.
Also moves the compute-kit jobs back to using the default
single-node nodeset due to cloudedge going down and not
enough available 32gb nodes as a result
Change-Id: Ib4f314d5246af8756611346ed4919492d98510a5
When introduces extra panels in horizon, eg. ironic-ui, it could
not achieve internationalization. This commit hope to achieve
internationalization.
Related bug: #1886396
Change-Id: Ic4b89d14ee27bb6c70e792193cbf23de1ae553a4
This updates the Cinder chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true
Change-Id: If17af3e3dba188a43ed11a0d5757fcae9f5358e8
This updates the Neutron chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true
Change-Id: I50ccec785eb3b18d6c00df2ad5f566a72db4604d
This updates the Glance chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true
Change-Id: I49ac688fa9cb73ddbc215198c74fae26f503cb51
This updates the Nova chart to include the pod
security context on the pod template.
This also adds the container security context to set
readOnlyRootFilesystem flag to true
Change-Id: I3ba6fcf0cc6ff97a306866f2d2b408635519ff02
- This is to make use of loopback devices for ceph osds since
support for directory backed osds going to depricate.
- Move to bluestore from filestore for ceph-osds.
Change-Id: Ia95c9ceb81f7d253dd582a2e753a6ed8fe60a04d
The current overrides do not function correctly, and should have
been setup with a multistring. This change corrects this to
deploy right in nova.
Change-Id: If709ea5d18399dc0d135351c2bdcdbd324663ad7
The charts changes are required for deployment
of various clouds based on Tungsten Fabric SDN.
Right now it's tested for Airship-in-a-bottle.
The code cannot be tested currently in
OpenStack Helm project because of absence of
tests and platform for that.
This patchset doesn't have Heat-related changes,
they'll be added later.
Change-Id: I73f2ced2b09dbb93146334b59fe4571fa13dbfb0
Depends-On: https://review.opendev.org/#/c/734635/
ironic conductor does not allow to have the enabled_drivers
configuration value from stein version.
If we set values for enabled_drivers, the service raised errors.
Change-Id: I5b299ab691013836d5eb2169f95b12805a27b4e8
Release overrides are not applied in component script if invoked from
developer ceph one because OSH_EXTRA_HELM_ARGS_NOVA is not empty.
Change-Id: Ic4eb1cf6115b740b59922272a789e37b683cb44e
Signed-off-by: Andrii Ostapenko <andrii.ostapenko@att.com>
We're running compute kit jobs on the edge of current flavor
capabilities and actually exceeding it with TLS enabled.
With this change compute kit TLS commit successfully pass check
jobs.
Change-Id: Ide1a1600f2e19fcb91ec7d90c8f316283b2d9697
Signed-off-by: Andrii Ostapenko <andrii.ostapenko@att.com>
OSH requires pip3 to install the openstackclient, and a recent
change in infra made the images no longer contain
pip by default. This change adds python3-pip in order to address
this.
Change-Id: I32febc7194ced6ab88794c6ac9fa2aa373909827
This patch set updates some default horizon settings to be more secured.
Change-Id: I7849cb0e9819d9e5cf4e149634e2bebee75a1c7f
Signed-off-by: Tin Lam <tin@irrational.io>
If the test pod still exists, then the new test run
fails with ERROR: pods "abc-test" already exists
So, Removing remaining test pods before new test run
Change-Id: I447d2b56b1419086b99df47b6605d0a95e1a9239
Closes-Bug: #1882030
Replace user with desginate as this key is explicitly used by
helm-toolkit functions.
Update more places that were not touched by [0]
[0] https: //review.opendev.org/#/c/715146/
Change-Id: Id8daba95e51fe97222b94eba95944856b7f5dd5a
This patch set adds in two additional parameters to:
a. establish ownership between certificate and secret so secrets can be
cleaned up when the certificate is deleted as part of a helm release
b. add the ability to always issue new tls.key as part of the key
rotation when the secret gets regenerated for any reason.
This also adds linebreaks for readability.
Change-Id: Id40d504251bbd98c32a7d9baa3dbe9858ad495cb
Signed-off-by: Tin Lam <tin@irrational.io>
