From 14fd1cab331564945247c643e2206f8f524fa218 Mon Sep 17 00:00:00 2001 From: David Campbell Date: Thu, 2 Nov 2023 15:53:13 -0700 Subject: [PATCH] operator oracle-oci-ccm-operator (0.0.10) --- .../ccm.oraclecloud.com_ocicloudmanagers.yaml | 100 ++++ .../ccm.oraclecloud.com_ocicsidrivers.yaml | 68 +++ ...er-manager-metrics-service_v1_service.yaml | 23 + ...c.authorization.k8s.io_v1_clusterrole.yaml | 17 + ...ci-ccm-operator.clusterserviceversion.yaml | 435 ++++++++++++++++++ .../0.0.10/metadata/annotations.yaml | 14 + operators/oracle-oci-ccm-operator/ci.yaml | 1 + 7 files changed, 658 insertions(+) create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator.clusterserviceversion.yaml create mode 100644 operators/oracle-oci-ccm-operator/0.0.10/metadata/annotations.yaml create mode 100644 operators/oracle-oci-ccm-operator/ci.yaml diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml new file mode 100644 index 00000000000..3e8b8e6c3af --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml @@ -0,0 +1,100 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + creationTimestamp: null + name: ocicloudmanagers.ccm.oraclecloud.com +spec: + group: ccm.oraclecloud.com + names: + kind: OCICloudManager + listKind: OCICloudManagerList + plural: ocicloudmanagers + singular: ocicloudmanager + scope: Cluster + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: OCICloudManager is the Schema for the ocicloudmanagers API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: Spec defines the desired state of OCICloudManager + properties: + compartment: + description: Compartment configures Compartment within which the cluster + resides. + type: string + driverNamespace: + description: Namespace to isntall drivers + type: string + loadBalancer: + properties: + securityList: + description: Specification of which security lists to modify per + subnet. This does not apply if security list management is off. + type: string + securityListManagementMode: + description: |- + SecurityListManagementMode configures how security lists are managed by the CCM. + If you choose to have security lists managed by the CCM, ensure you have setup the following additional OCI policy: + Allow dynamic-group [your dynamic group name] to manage security-lists in compartment [your compartment name] + + "All" (default): Manage all required security list rules for load balancer services. + "Frontend": Manage only security list rules for ingress to the load + balancer. Requires that the user has setup a rule that + allows inbound traffic to the appropriate ports for kube + proxy health port, node port ranges, and health check port ranges. + E.g. 10.82.0.0/16 30000-32000. + "None": Disables all security list management. Requires that the + user has setup a rule that allows inbound traffic to the + appropriate ports for kube proxy health port, node port + anges, and health check port ranges. E.g. 10.82.0.0/16 30000-32000. + Additionally requires the user to mange rules to allow + inbound traffic to load balancers. + type: string + subnet: + type: string + required: + - subnet + - securityListManagementMode + type: object + vcn: + description: Vcn configures the Virtual Cloud Network (VCN) within + which the cluster resides. + type: string + required: + - compartment + - vcn + - loadBalancer + - driverNamespace + type: object + status: + description: Status defines the observed state of OCICloudManager + type: object + x-kubernetes-preserve-unknown-fields: true + type: object + x-kubernetes-validations: + - rule: has(self.metadata.name) + - rule: self.metadata.name == 'ocicloudmanager' + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml new file mode 100644 index 00000000000..d5ab858d288 --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml @@ -0,0 +1,68 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + creationTimestamp: null + name: ocicsidrivers.ccm.oraclecloud.com +spec: + group: ccm.oraclecloud.com + names: + kind: OCICsiDriver + listKind: OCICsiDriverList + plural: ocicsidrivers + singular: ocicsidriver + scope: Cluster + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: OCICsiDriver is the Schema for the ocicsidrivers API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: Spec defines the desired state of OCICloudManager + properties: + compartment: + description: Compartment configures Compartment within which the cluster + resides. + type: string + driverNamespace: + description: Namespace to isntall drivers + type: string + vcn: + description: Vcn configures the Virtual Cloud Network (VCN) within + which the cluster resides. + type: string + required: + - compartment + - vcn + - driverNamespace + type: object + status: + description: Status defines the observed state of OCICsiDriver + type: object + x-kubernetes-preserve-unknown-fields: true + type: object + x-kubernetes-validations: + - rule: has(self.metadata.name) + - rule: self.metadata.name == 'ocicsidriver' + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml new file mode 100644 index 00000000000..a845ce15bfc --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: Service +metadata: + creationTimestamp: null + labels: + app.kubernetes.io/component: kube-rbac-proxy + app.kubernetes.io/created-by: oci-ccm-operator + app.kubernetes.io/instance: controller-manager-metrics-service + app.kubernetes.io/managed-by: kustomize + app.kubernetes.io/name: service + app.kubernetes.io/part-of: oci-ccm-operator + control-plane: controller-manager + name: oci-ccm-operator-controller-manager-metrics-service +spec: + ports: + - name: https + port: 8443 + protocol: TCP + targetPort: https + selector: + control-plane: controller-manager +status: + loadBalancer: {} diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml new file mode 100644 index 00000000000..d70b5020d91 --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml @@ -0,0 +1,17 @@ +apiVersion: rbac.authorization.k8s.io/v1 +kind: ClusterRole +metadata: + creationTimestamp: null + labels: + app.kubernetes.io/component: kube-rbac-proxy + app.kubernetes.io/created-by: oci-ccm-operator + app.kubernetes.io/instance: metrics-reader + app.kubernetes.io/managed-by: kustomize + app.kubernetes.io/name: clusterrole + app.kubernetes.io/part-of: oci-ccm-operator + name: oci-ccm-operator-metrics-reader +rules: +- nonResourceURLs: + - /metrics + verbs: + - get diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator.clusterserviceversion.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator.clusterserviceversion.yaml new file mode 100644 index 00000000000..1cc1d445799 --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/manifests/oci-ccm-operator.clusterserviceversion.yaml @@ -0,0 +1,435 @@ +apiVersion: operators.coreos.com/v1alpha1 +kind: ClusterServiceVersion +metadata: + annotations: + alm-examples: |- + [ + { + "apiVersion": "ccm.oraclecloud.com/v1alpha1", + "kind": "OCICloudManager", + "metadata": { + "labels": { + "app.kubernetes.io/created-by": "oci-ccm-operator", + "app.kubernetes.io/instance": "ocicloudmanager", + "app.kubernetes.io/managed-by": "kustomize", + "app.kubernetes.io/name": "ocicloudmanager", + "app.kubernetes.io/part-of": "oci-ccm-operator" + }, + "name": "ocicloudmanager" + }, + "spec": { + "compartment": "CompartmentId", + "driverNamespace": "kube-system", + "loadBalancer": { + "securityList": "SecurityListId", + "securityListManagementMode": "Frontend", + "subnet": "SubnetId" + }, + "vcn": "VcnId" + } + }, + { + "apiVersion": "ccm.oraclecloud.com/v1alpha1", + "kind": "OCICsiDriver", + "metadata": { + "labels": { + "app.kubernetes.io/created-by": "oci-ccm-operator", + "app.kubernetes.io/instance": "ocicsidriver", + "app.kubernetes.io/managed-by": "kustomize", + "app.kubernetes.io/name": "ocicsidriver", + "app.kubernetes.io/part-of": "oci-ccm-operator" + }, + "name": "ocicsidriver" + }, + "spec": { + "compartment": "CompartmentId", + "driverNamespace": "kube-system", + "vcn": "VcnId" + } + } + ] + capabilities: Basic Install + categories: Cloud Provider, Storage + containerImage: ghcr.io/davidcampbellatoracle/oracle-oci-ccm-operator:0.0.10 + createdAt: "2023-07-28T23:42:18Z" + operators.openshift.io/infrastructure-features: '["csi"]' + operators.openshift.io/valid-subscription: '[]' + operators.operatorframework.io/builder: operator-sdk-v1.30.0 + operators.operatorframework.io/project_layout: ansible.sdk.operatorframework.io/v1 + support: Oracle + marketplace.openshift.io/remote-workflow: https://marketplace.redhat.com/en-us/operators/oracle-oci-ccm-operator/pricing?utm_source=openshift_console + marketplace.openshift.io/support-workflow: https://marketplace.redhat.com/en-us/operators/oracle-oci-ccm-operator/support?utm_source=openshift_console + name: oci-ccm-operator.v0.0.10 + namespace: placeholder +spec: + apiservicedefinitions: {} + customresourcedefinitions: + owned: + - kind: OCICloudManager + name: ocicloudmanagers.ccm.oraclecloud.com + version: v1alpha1 + - kind: OCICsiDriver + name: ocicsidrivers.ccm.oraclecloud.com + version: v1alpha1 + description: OCI Kubernetes Cloud Controller Manager implementation (or out-of-tree + cloud-provider) for Oracle Cloud Infrastructure (OCI). + displayName: oci-ccm-operator + icon: + - base64data: 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 + mediatype: image/svg+xml + install: + spec: + clusterPermissions: + - rules: + - apiGroups: + - "" + resources: + - nodes + verbs: + - '*' + - apiGroups: + - "" + resources: + - secrets + - configmaps + - pods + - pods/exec + - pods/log + - serviceaccounts + - nodes + - events + - persistentvolumes + - persistentvolumeclaims + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - "" + resources: + - nodes/status + verbs: + - patch + - apiGroups: + - "" + resources: + - services + verbs: + - list + - watch + - patch + - apiGroups: + - "" + resources: + - services/status + verbs: + - patch + - get + - update + - apiGroups: + - "" + resources: + - endpoints + verbs: + - create + - get + - watch + - update + - list + - apiGroups: + - rbac.authorization.k8s.io + resources: + - clusterrolebindings + - clusterroles + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - apps + resources: + - deployments + - daemonsets + - replicasets + - statefulsets + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - machineconfiguration.openshift.io + resources: + - machineconfigs + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - storage.k8s.io + resources: + - csidrivers + - storageclasses + - volumeattachments + - volumeattachments/status + - csinodes + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - volume.oci.oracle.com + resources: + - blockscsiinfos + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - get + - create + - update + - delete + - patch + - watch + - apiGroups: + - "" + resources: + - persistentvolumeclaims/status + verbs: + - patch + - apiGroups: + - ccm.oraclecloud.com + resources: + - ocicloudmanagers + - ocicloudmanagers/status + - ocicloudmanagers/finalizers + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - ccm.oraclecloud.com + resources: + - ocicsidrivers + - ocicsidrivers/status + - ocicsidrivers/finalizers + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - authentication.k8s.io + resources: + - tokenreviews + verbs: + - create + - apiGroups: + - authorization.k8s.io + resources: + - subjectaccessreviews + verbs: + - create + serviceAccountName: oci-ccm-operator-controller-manager + deployments: + - label: + app.kubernetes.io/component: manager + app.kubernetes.io/created-by: oci-ccm-operator + app.kubernetes.io/instance: controller-manager + app.kubernetes.io/managed-by: kustomize + app.kubernetes.io/name: deployment + app.kubernetes.io/part-of: oci-ccm-operator + control-plane: controller-manager + name: oci-ccm-operator-controller-manager + spec: + replicas: 1 + selector: + matchLabels: + control-plane: controller-manager + strategy: {} + template: + metadata: + annotations: + kubectl.kubernetes.io/default-container: manager + labels: + control-plane: controller-manager + spec: + affinity: + nodeAffinity: + requiredDuringSchedulingIgnoredDuringExecution: + nodeSelectorTerms: + - matchExpressions: + - key: kubernetes.io/arch + operator: In + values: + - amd64 + - arm64 + - ppc64le + - s390x + - key: kubernetes.io/os + operator: In + values: + - linux + containers: + - args: + - --secure-listen-address=0.0.0.0:8443 + - --upstream=http://127.0.0.1:8080/ + - --logtostderr=true + - --v=0 + image: gcr.io/kubebuilder/kube-rbac-proxy:v0.13.1 + name: kube-rbac-proxy + ports: + - containerPort: 8443 + name: https + protocol: TCP + resources: + limits: + cpu: 500m + memory: 128Mi + requests: + cpu: 5m + memory: 64Mi + securityContext: + allowPrivilegeEscalation: false + capabilities: + drop: + - ALL + - args: + - --health-probe-bind-address=:6789 + - --metrics-bind-address=127.0.0.1:8080 + - --leader-elect + - --leader-election-id=oci-ccm-operator + env: + - name: ANSIBLE_GATHERING + value: explicit + image: ghcr.io/davidcampbellatoracle/oracle-oci-ccm-operator:0.0.10 + livenessProbe: + httpGet: + path: /healthz + port: 6789 + initialDelaySeconds: 15 + periodSeconds: 20 + name: manager + readinessProbe: + httpGet: + path: /readyz + port: 6789 + initialDelaySeconds: 5 + periodSeconds: 10 + resources: + limits: + cpu: 500m + memory: 768Mi + requests: + cpu: 10m + memory: 256Mi + securityContext: + allowPrivilegeEscalation: false + capabilities: + drop: + - ALL + securityContext: + runAsNonRoot: true + serviceAccountName: oci-ccm-operator-controller-manager + terminationGracePeriodSeconds: 10 + permissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - "" + resources: + - events + verbs: + - create + - patch + serviceAccountName: oci-ccm-operator-controller-manager + strategy: deployment + installModes: + - supported: false + type: OwnNamespace + - supported: false + type: SingleNamespace + - supported: false + type: MultiNamespace + - supported: true + type: AllNamespaces + keywords: + - OCI + - CCM + - OpenShift + - Kubernetes + links: + - name: Oracle + url: https://www.oracle.com/cloud/ + - name: OCI Cloud Controller Manager (CCM) + url: https://github.com/oracle/oci-cloud-controller-manager + maturity: alpha + provider: + name: Oracle + url: https://www.oracle.com/cloud/ + maintainers: + - name: David Campbell + email: david.d.campbell@oracle.com + - name: Alex Blinov + email: alex.blinov@oracle.com + - name: Eric Tang + email: hao.t.tang@oracle.com + version: 0.0.10 diff --git a/operators/oracle-oci-ccm-operator/0.0.10/metadata/annotations.yaml b/operators/oracle-oci-ccm-operator/0.0.10/metadata/annotations.yaml new file mode 100644 index 00000000000..cfd00cbcec5 --- /dev/null +++ b/operators/oracle-oci-ccm-operator/0.0.10/metadata/annotations.yaml @@ -0,0 +1,14 @@ +annotations: + # Core bundle annotations. + operators.operatorframework.io.bundle.mediatype.v1: registry+v1 + operators.operatorframework.io.bundle.manifests.v1: manifests/ + operators.operatorframework.io.bundle.metadata.v1: metadata/ + operators.operatorframework.io.bundle.package.v1: oracle-oci-ccm-operator + operators.operatorframework.io.bundle.channels.v1: alpha + operators.operatorframework.io.metrics.builder: operator-sdk-v1.30.0 + operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 + operators.operatorframework.io.metrics.project_layout: ansible.sdk.operatorframework.io/v1 + + # Annotations for testing. + operators.operatorframework.io.test.mediatype.v1: scorecard+v1 + operators.operatorframework.io.test.config.v1: tests/scorecard/ diff --git a/operators/oracle-oci-ccm-operator/ci.yaml b/operators/oracle-oci-ccm-operator/ci.yaml new file mode 100644 index 00000000000..141a2fb61d4 --- /dev/null +++ b/operators/oracle-oci-ccm-operator/ci.yaml @@ -0,0 +1 @@ +cert_project_id: "65305639f3b965f95a3b4f0b" \ No newline at end of file