Michal.Wrobel/openbao-helm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
575 commits 11 branches 48 tags 1.4 MiB
Commit graph

575 commits

This branch
This branch
All branches
Author SHA1 Message Date
Darren Clark
ba6cfe675e Statefulset Liveness Probe failing on standby nodes due to SSL, initial delay and 429 response #137 (#138) 
livenessProbe

 * Set the scheme for vault.scheme to ensure that the check works if tls enabled or not

 * Allow a configurable value initialDelaySeconds rather than the set 5 seconds

 * Set the default initialDelaySeconds to 60 seconds before the probe starts to allow for vault unsealing

 * Set the path to /v1/sys/health?standbyok=true to ensure a 200 response on standbys

readinessProbe

 * Set the path comment to /v1/sys/health?standbyok=true to ensure a 200 response on standbys

 * Set the scheme for vault.scheme to ensure that the check works if tls enabled or not

 * Statefulset liveness probe path check set to /v1/sys/health?standbyok=true

 * Server Statefulset test added for livenessProbe.initialDelaySeconds
 2019-12-16 18:07:23 -05:00
Michael Golowka OR 1=1); DROP TABLE users; --
35f198f35f
Update CHANGELOG.md 2019-12-11 14:07:44 -07:00
Michael Golowka OR 1=1); DROP TABLE users; --
c390b3f6df Fix typo: serviceaccount -> serviceAccount (#147) 
* Fix typo: serviceaccount -> serviceAccount

* Fix typo in test
 2019-12-11 16:04:57 -05:00
Jason O'Donnell
e1ecb0d8ad
Update CHANGELOG.md 2019-12-09 16:52:23 -05:00
Daniel Mittelman
4a743f655e Promote Docker image version to 1.3.0 (#136) 2019-12-06 09:38:49 -05:00
Jason O'Donnell
37e92331b9
Add publishNotReadyAddresses to UI service (#131) 2019-12-03 14:55:33 -05:00
Jason O'Donnell
938c874e77
Update CHANGELOG.md 2019-12-02 17:22:15 -05:00
Jason O'Donnell
1c9c64c8f8
Remove chart from labels (#128) 2019-12-02 17:14:59 -05:00
Jason O'Donnell
8eac1ed98e
Update CHANGELOG.md 2019-11-28 19:09:42 -05:00
Holden Omans
a0325cfd14 Configure pod probes (#104) 
* Added option for enabling a livenessprobe

* added option for using http for readinessProbe

* added tests
 2019-11-28 18:24:41 -05:00
Janusz Bialy
2ff7d47c07 Use a standard way to define the container image (#103) 
* use a standard way to define image repo and tag

Signed-off-by: Janusz Bialy <jbialy@gmail.com>

* add tests

Signed-off-by: Janusz Bialy <jbialy@gmail.com>

* bump chart version

Signed-off-by: Janusz Bialy <jbialy@gmail.com>

* Revert "bump chart version"

This reverts commit 74cbc984a7d4cf9098acf78977cdc8598c557550.

Signed-off-by: Janusz Bialy <jbialy@gmail.com>

* nest image block inside server

Signed-off-by: Janusz Bialy <jbialy@gmail.com>
 2019-11-28 17:39:28 -05:00
Jason O'Donnell
52f3686c12
Update CHANGELOG.md 2019-11-21 14:21:23 -05:00
Shahbaz Nazir
faf5a84c5e Add possibility to run sidecars with vault (#87) 
* Add extra containers

* fix template

* add unit tests

* resolve conflicts

* remove duplicate docs

* fix unit tests
 2019-11-21 14:07:41 -05:00
Ivan Aracki
6bef1e19df Fix server.dataStorage explanation link (#115) 2019-11-18 11:59:15 -05:00
Jason O'Donnell
fbe3c154a5
Update to 0.2.1 (#111) 2019-11-12 19:59:31 -05:00
Jason O'Donnell
3fbbf7b8df
Remove readOnlyRootFilesystem configurable (#110) 2019-11-12 19:55:31 -05:00
Jason O'Donnell
a5331f5b38
Update for 0.2.0 release (#102) 2019-11-11 10:51:00 -05:00
Sergii
ea0e66760f Add extra label to Ingress (#108) 2019-11-07 11:23:56 -05:00
Jason O'Donnell
50addb76c5
changelog++ 2019-11-06 11:08:28 -05:00
Jason O'Donnell
a9e6a0a938
Add preStop lifecycle hook (#105) 
* Add preStop lifecycle hook

* Fix typo in comment
 2019-11-06 11:06:57 -05:00
Jason O'Donnell
e3c771a467
changelog++ 2019-10-29 11:19:37 -04:00
Luke Barton
04303baa5f Fix bad GCP environment variable example (#101) 2019-10-28 11:56:29 -04:00
Janusz Bialy
a2b2d32e92 Add support for image pull policy and secrets (#92) 
* add image pull policy and pull secrets

Signed-off-by: Janusz Bialy <jbialy@gmail.com>

* add unit tests

Signed-off-by: Janusz Bialy <jbialy@gmail.com>
 2019-10-24 12:58:32 -04:00
Jason O'Donnell
e1b89d6396
Make readOnlyRootFilesystem configurable (#93) 2019-10-24 12:40:19 -04:00
Jason O'Donnell
2ca3fd2214
changelog++ (#94) 2019-10-21 17:08:42 -04:00
Yves Blusseau
75ceb1af5a Fix PodDisruptionBudget template (#88) 
* Fix bad selectors.
* Fix bad calculation of maxUnavailable.

Signed-off-by: JrCs <90z7oey02@sneakemail.com>
 2019-10-21 09:51:02 -04:00
Jason O'Donnell
b41d36c621
Require vault to run as non root (#80) 
* Require vault to run as non root

* Fix unit tests

* Make uid/gid configurable, remove home emptydir
 2019-10-18 12:42:25 -04:00
savagete2860
f7aa2576d0 Add load balancer source range for UI service (#83) 
* add load balancer source range for UI service

* add load balancer source range for UI service

* adding unit test

* adding unit test
 2019-10-18 12:41:53 -04:00
Jason O'Donnell
9fd0ad6e20
Fix audit storage mount in HA mode (#79) 
* Fix audit storage mount in HA mode

* Add explicit fsgroup
 2019-10-10 10:03:44 -04:00
Jason O'Donnell
789a806485
Fix affinity labels in values (#74) 2019-10-07 12:55:52 -04:00
Ryan Wholey
f957c52acc Add support for setting service type (#65) 2019-10-06 16:06:45 -04:00
Alejandro Garrido Mota
b52b0d3c15 Added unit tests for generic annotations (#64) 2019-10-06 15:58:49 -04:00
StupidScience
c6adb89d4b added possibility to add extraLabels for server pod (#59) 2019-10-06 15:50:48 -04:00
Jason O'Donnell
d696408fae Allow annotations on ui dev service 2019-09-27 09:20:30 -07:00
Alejandro Garrido Mota
9dd6bad741 Support for ingress (#48) 
* Added ingress support

* Added small header with documentation about ingress

* Added unit tests
 2019-09-27 10:42:24 -05:00
malnick
b1e4660555 build: add circleci config for executing bats unit tests 2019-09-26 20:22:44 -07:00
malnick
5cb28fbc95 test: add test targets for running bats via docker to Makefile 2019-09-26 20:00:57 -07:00
Jeff Malnick
1773a5759d
Merge pull request #52 from mogaal/service-annotations 
Service annotations support
 2019-09-26 19:45:51 -07:00
Jason O'Donnell
09f56da548
Remove privileged, add mlock configurable (#50) 2019-09-23 01:11:04 -04:00
Jason O'Donnell
8f382aab65
Fix ui annotation test (#57) 2019-09-23 00:44:25 -04:00
Alejandro Garrido Mota
865b98f55d Added support for service annotations 2019-09-11 16:39:25 +01:00
Arun Kumar
3f5b0b7b7e Changed vault service port and targetPort to values file (#43) 
* Changed vault service port and targetPort to values file

* Fixed typo in vaules, adding server-service changes and tests

* Changed port and targetPort to server.service
 2019-09-06 11:13:23 -04:00
Vincent Desjardins
2852fbba9b annotation configuration on service account (#47) 
Signed-off-by: Vincent Desjardins <vdesjardins@gmail.com>
 2019-09-06 10:48:12 -04:00
Alexander Schramm
5a64f9cc9e feat: allow setting loadBalancerIP and externalPort for service-ui (#44) 
* feat: allow setting loadBalancerIP and externalPort for service-ui

* test: remove tests with wrong value

There is no `ui.service.enabled` field, `ui.enabled` is used to create
the service and that is tested in line 29.

* test: loadBalancerIP is used if set.
 2019-09-06 10:27:31 -04:00
Sophian Mehboub
bb7ce9409b add namespace in vault manifest definition (#38) 2019-08-28 09:58:48 -04:00
Jason O'Donnell
0c86c6420a
Add privileged for mlock requirements (#35) 
* Add privilged for mlock requirements

* Update Chart version
 2019-08-22 16:32:30 -04:00
Miroslav E. Hadzhiev
4b12c39099 Address K8s Deprecation of Kubelet security controls. Remove Whitespaces. (#24) 2019-08-22 11:05:31 -04:00
Jason O'Donnell
10046f8886
Update changelog for 0.1.2 (#34) 2019-08-22 10:53:22 -04:00
Jason O'Donnell
a6c17ed48a
Remove step-down preStop (#31) 2019-08-21 17:34:31 -04:00
Sri Hari Vignesh
e99b03855c Correct volume indents (#28) 2019-08-21 11:15:47 -04:00