diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 5ad14f1..8b8da34 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -3,10 +3,9 @@ on: - workflow_dispatch env: - COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.5 + VERSION: 0.8.0-RC1 jobs: build: @@ -28,7 +27,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} - name: Log into container registry - uses: redhat-actions/podman-login@v1.5 + uses: redhat-actions/podman-login@v1.6 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -88,10 +87,10 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v2.8.1 + uses: sigstore/cosign-installer@v3.0.1 - name: Log into container registry - uses: redhat-actions/podman-login@v1.5 + uses: redhat-actions/podman-login@v1.6 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -99,7 +98,7 @@ jobs: - name: Sign image run: | - cosign sign "${IMAGE_NAME}@${IMAGE_DIGEST}" + cosign sign --yes "${IMAGE_NAME}@${IMAGE_DIGEST}" provenance: needs: [build,sign] @@ -107,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.4.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.5.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} diff --git a/README.md b/README.md index 0598623..b8ed066 100644 --- a/README.md +++ b/README.md @@ -13,7 +13,7 @@ This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated collection of packages to build an application platform or internal developer platform (IDP) on Kubernetes. | +| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | | [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | @@ -57,8 +57,6 @@ Install the Kadras package repository in a dedicated namespace using `kctrl`: ```
Installation via CRDs -The recommended way of installing the Cert Manager package is via the Kadras package repository. Instead of installing the , you can add the package definition directly using kapp or kubectl. - Instead of installing the Kadras package repository with `kctrl`, you can apply the necessary Carvel CRDs directly using [`kapp`](https://carvel.dev/kapp/docs/latest/install), `kubectl` or a GitOps operator. ```shell diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..8c5e3af --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-03-19T19:35:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:de2b5c420187564a7bf85dfed086bd6d90830c2d3e7807422864956ffd57079c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + type: object + version: 0.4.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml index 5de6e3b..709582d 100644 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml @@ -5,13 +5,15 @@ metadata: name: cartographer-blueprints.packages.kadras.io spec: categories: - - developer experience - ci/cd - - platform engineering + - golden paths + - developer experience displayName: cartographer-blueprints - longDescription: A set of reusable blueprints for Cartographer, a Kubernetes-native - framework to build paved paths to production. + longDescription: A set of reusable blueprints to build paved paths to production + on Kubernetes using Cartographer. maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: A set of reusable blueprints for Cartographer. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cartographer-blueprints + for community support. diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..b22b6cb --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.4.0 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-03-19T21:13:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:53e3f7c26b0b391bb87568025c4d803fff97331b47e3d94626214afa16e9a6fb + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: 'The type of delivery chain to use when deploying workloads. + Options: `basic`.' + type: string + git_access_secret: + default: git-secret + description: The Secret containing authentication credentials for the Git + repository. + type: string + service_account: + default: default + description: The default `ServiceAccount` used by the delivery chain. + type: string + type: object + version: 0.4.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..52b24a9 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-03-19T20:31:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:86ae09290c73e960df769e3c004b78c7b59c96d74fc5f5d25b6067c90227d713 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + git_access_secret: + default: git-secret + description: The Secret containing authentication credentials for the Git + repository. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data for the OCI Registry where + the supply chain will publish and consume OCI images. + type: string + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.4.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml index 7177747..538cf6f 100644 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml @@ -7,11 +7,14 @@ spec: categories: - ci/cd - golden paths - - platform engineering + - developer experience displayName: cartographer-supply-chains - longDescription: Cartographer supply chains used to build golden paths to production - for applications and functions. + longDescription: Cartographer supply chains to build golden paths to production + for applications and functions, from source code to deployment in a Kubernetes + cluster. maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: Supply chains for applications and functions. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cartographer-supply-chains + for community support. diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..356e378 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.7.1.yml @@ -0,0 +1,146 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: cartographer.packages.kadras.io.0.7.1 +spec: + refName: cartographer.packages.kadras.io + version: 0.7.1 + releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.7.1 + releasedAt: "2023-03-10T18:38:54Z" + valuesSchema: + openAPIv3: + title: cartographer.packages.kadras.io.0.7.1 values schema + properties: + ca_cert_data: + type: string + description: 'Optional: PEM Encoded certificate data for image registries with private CA.' + default: "" + excluded_components: + type: array + items: + type: string + default: [] + description: 'Optional: List of components to exclude from installation (e.g. [conventions])' + aws_iam_role_arn: + type: string + description: 'Optional: Arn role that has access to pull images from ECR container registry' + default: "" + cartographer: + type: object + properties: + concurrency: + type: object + properties: + max_workloads: + type: integer + description: 'Optional: maximum number of Workloads to process concurrently.' + default: 2 + max_deliveries: + type: integer + description: 'Optional: maximum number of Deliverables to process concurrently.' + default: 2 + max_runnables: + type: integer + description: 'Optional: maximum number of Runnables to process concurrently.' + default: 2 + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + conventions: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + template: + spec: + fetch: + - imgpkgBundle: + image: index.docker.io/projectcartographer/package-for-cartographer@sha256:e39f96dc9b778f81a83e55dd5f30eb38d3f92469787b9152fc1190e1e5de9050 + template: + - ytt: + ignoreUnknownComments: true + paths: + - config + - kbld: + paths: + - .imgpkg/images.yml + - '-' + deploy: + - kapp: {} diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml new file mode 100644 index 0000000..22c4d97 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2023-03-15T17:05:22Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:c11543ec814053b5c3ca124a6378800c8d37e4c9da560aba7defffee21bc322f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_ca: + additionalProperties: false + description: Settings for configuring a private CA out-of-the-box. + properties: + enable: + default: true + description: Whether to bootstrap a private CA. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.11.0+kadras.2 diff --git a/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml new file mode 100644 index 0000000..52a59cf --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2023-03-09T22:49:42Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:1e72127ae7a1d81b4d0fb38f6fae22c76c6b5616bd090f0caa8bb1912864cdcc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.1+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.24.2.yml b/repo/packages/contour.packages.kadras.io/1.24.2.yml new file mode 100644 index 0000000..bc98f44 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.2.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.2 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-03-15T20:44:23Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:063d1da1a72087be3e8519e4063f4d5c1308e201963238072d8619bfe8926e3a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.2 diff --git a/repo/packages/contour.packages.kadras.io/metadata.yml b/repo/packages/contour.packages.kadras.io/metadata.yml index 8174169..34fcf44 100644 --- a/repo/packages/contour.packages.kadras.io/metadata.yml +++ b/repo/packages/contour.packages.kadras.io/metadata.yml @@ -10,9 +10,12 @@ spec: - gateway displayName: contour iconSVGBase64: PHN2ZyBpZD0iTGF5ZXJfMSIgZGF0YS1uYW1lPSJMYXllciAxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZpZXdCb3g9IjAgMCAzNjAgMzYwIj48ZGVmcz48c3R5bGU+LmNscy0xe2ZpbGw6IzAwOWNkYzt9PC9zdHlsZT48L2RlZnM+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMjMzLjQ5MzU0LDEzLjYwNzQyQTE3Mi41NDE2NiwxNzIuNTQxNjYsMCwwLDAsMTg5LjYwMSw1LjQzODE0Yy0xOC4xMDk1OSw5OS44NzYtNjguMDE5MzUsMTY5Ljc2MzQyLTExMS4yOTYzNCwyMTMuNTM4QTQzMC42MDM4OCw0MzAuNjAzODgsMCwwLDEsMjcuOTk3LDI2Mi40ODQzN2ExNzQuMTU5ODMsMTc0LjE1OTgzLDAsMCwwLDEzLjk4MDY2LDIxLjQwNzc1YzI3LjIyMi0xNy4yMzI0Niw1Mi4xNzU4Mi0zNi44MDY1OCw3MS42ODAzLTU1LjM4NTc3QzE2MC4yODkzNiwxODQuMDg3NTgsMjE0LjA3NzQ2LDExMy40OTg1NSwyMzMuNDkzNTQsMTMuNjA3NDJaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMjkxLjg4OTM3LDEyMy45NDY3QTM3Mi41NDI4OSwzNzIuNTQyODksMCwwLDAsMzE1LjI5NjE5LDcwLjAzOSwxNzUuMTA3NzIsMTc1LjEwNzcyLDAsMCwwLDI4NC42NjU3Nyw0MC4zMDMyYy0yMy44NDQxMiw5NC4xNzk4Ny03OS40NDQ1NywxNjIuMTA2MTMtMTI3Ljk3OTI4LDIwNS45MDM1OWE0OTcuNjM2NjIsNDk3LjYzNjYyLDAsMCwxLTg5LjYyNDgyLDY0LjI1NDI5LDE3NC43NzM3MywxNzQuNzczNzMsMCwwLDAsMTQuNzE4NywxMS4zNzIzN0E1MTcuMTc5NDksNTE3LjE3OTQ5LDAsMCwwLDE4OC4yNzg2NSwyNTEuMTM2QzIzMi4xOTIxLDIxMy40MDI2NywyNjcuMDUyMTIsMTcwLjYwOTcxLDI5MS44ODkzNywxMjMuOTQ2N1oiLz48cGF0aCBjbGFzcz0iY2xzLTEiIGQ9Ik0yNzcuMTUwODIsMzQuODk4ODFBMTczLjI0MjA2LDE3My4yNDIwNiwwLDAsMCwyMzguODU1OSwxNS40MjU3MkMyMTkuMDU2MSwxMTYuMzIxLDE2NC42ODA0MiwxODcuNjQ2MjUsMTE3LjUyMzI4LDIzMi41NjUxYTQ2NC4xMzgyNyw0NjQuMTM4MjcsMCwwLDEtNzEuODE3NzcsNTYuMDY4MDYsMTc1LjAzNSwxNzUuMDM1LDAsMCwwLDE0LjYyNDM1LDE1LjcyODI1LDQ4NS4yMjExNyw0ODUuMjIxMTcsMCwwLDAsOTAuNjEzMjYtNjQuNTE4OTVDMTk5LjA2NTQyLDE5Ni40MTY4MiwyNTQuMjY4MjYsMTI4Ljc5ODg3LDI3Ny4xNTA4MiwzNC44OTg4MVoiLz48cGF0aCBjbGFzcz0iY2xzLTEiIGQ9Ik0zMzYuMTM0MDUsMTMzLjIwMDIxYzIuNTE3MzctNC40ODYxMyw0Ljg5Mjc2LTkuMDA2MTcsNy4yMDMtMTMuNTQxMzdBMTczLjI1NTE3LDE3My4yNTUxNywwLDAsMCwzMjMuNjQxNTQsODEuMjQ4MSwzODYuMDQ3MywzODYuMDQ3MywwLDAsMSwzMDIuMDc2NjYsMTI5LjM2OWMtMjUuNTEzNzgsNDcuOTM0ODctNjEuMjcxMyw5MS44NDgzMi0xMDYuMjc3MTEsMTMwLjUyMDgzQTUzMy40ODk2Niw1MzMuNDg5NjYsMCwwLDEsOTMuMTcyLDMyOS4wMzE2MXE3LjA2MTUxLDQuMTAxNiwxNC41MjQ1OCw3LjU0NGE1NTAuMDcyMDUsNTUwLjA3MjA1LDAsMCwwLDExNy45Ni03NC4xNzkyN0MyNzIuNDI3MSwyMjMuOTYzNTgsMzA5LjU5NjMsMTgwLjQ5NTU0LDMzNi4xMzQwNSwxMzMuMjAwMjFaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMTg2LjkzNzg4LDUuMzQwMzZjLTIuMjc3MDctLjA4OTEyLTQuNTU1NDEtLjE3MzkxLTYuODUzOTUtLjE3MzkxLTk1Ljc0NDcsMC0xNzMuNjM5NTksNzcuODk3MDYtMTczLjYzOTU5LDE3My42Mzk2YTE3Mi41MzM5NCwxNzIuNTMzOTQsMCwwLDAsMjAuMjg4MzQsODEuMzMzMjMsNDI3Ljk2NDczLDQyNy45NjQ3MywwLDAsMCw0OS42OTY1MS00My4wMTc5MkMxMTkuMzY5NzMsMTczLjY4Njg4LDE2OC44ODQzOSwxMDQuMzc1MjksMTg2LjkzNzg4LDUuMzQwMzZaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMzQ4Ljc4NjU3LDE0MC4yOTk4N2MtMjcuNDIyNDYsNDguODczMzMtNjUuNzQ5ODUsOTMuNzI0NTMtMTEzLjkxNzgsMTMzLjMwNjQ2QTU3MS4zMjU2Niw1NzEuMzI1NjYsMCwwLDEsMTI2LjExOSwzNDMuODE2NTJhMTcyLjg4MDA3LDE3Mi44ODAwNywwLDAsMCw1My45NjQ4OSw4LjYyOTEzYzk1Ljc0NDM1LDAsMTczLjYzOTYtNzcuODk2ODgsMTczLjYzOTYtMTczLjYzOTZBMTczLjM3NTE4LDE3My4zNzUxOCwwLDAsMCwzNDkuMTkxLDEzOS41NDJDMzQ5LjA1MDg2LDEzOS43OTMyOSwzNDguOTI3NDcsMTQwLjA0ODc1LDM0OC43ODY1NywxNDAuMjk5ODdaIi8+PC9zdmc+ - longDescription: An Envoy-based ingress controller that supports dynamic configuration - updates and multi-team ingress delegation. + longDescription: Kubernetes ingress controller providing the control plane for the + Envoy edge and service proxy. Contour supports dynamic configuration updates and + multi-team ingress delegation out of the box while maintaining a lightweight profile. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: An Envoy-based ingress controller + shortDescription: High performance ingress controller using Envoy. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-contour + for community support. diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml new file mode 100644 index 0000000..353f91a --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml @@ -0,0 +1,77 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.36.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-03-18T23:06:51Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:24aa6509b06f16bb1ad67e62013af2e781c1ee57e5342c4537ba32493bc1ec7e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller. + type: string + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 0.36.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml index ff00d7f..825628f 100644 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml @@ -7,13 +7,16 @@ spec: categories: - gitops displayName: fluxcd-source-controller - longDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + iconSVGBase64: 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 + longDescription: The FluxCD Source Controller is a Kubernetes operator specialised in artifacts acquisition from external sources such as Git, Helm repositories and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component of the GitOps toolkit. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + shortDescription: The FluxCD Source Controller is a Kubernetes operator specialised in artifacts acquisition from external sources such as Git, Helm repositories and S3 buckets. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-fluxcd-source-controller + for community support. diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml new file mode 100644 index 0000000..d60c29c --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml @@ -0,0 +1,234 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.2+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-03-15T20:10:57Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:862e3592fef2047812978c348a20ad1d019061f11e949a6af6c30513f3408b7b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + domain: + additionalProperties: false + description: Domain configuration stored in the `config-domain` ConfigMap. + properties: + name: + default: 127.0.0.1.sslip.io + description: Domain name for Knative Services. It must be a valid + DNS name. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.2+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml new file mode 100644 index 0000000..39ef3db --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml @@ -0,0 +1,234 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.2 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-03-14T21:35:13Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:c0a353ed0fe63e09627cc59b2fbbc91b77efd978d5a081dba991ba3dde2957ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + domain: + additionalProperties: false + description: Domain configuration stored in the `config-domain` ConfigMap. + properties: + name: + default: 127.0.0.1.sslip.io + description: Domain name for Knative Services. It must be a valid + DNS name. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/metadata.yml b/repo/packages/knative-serving.packages.kadras.io/metadata.yml index f91dbff..09d0f87 100644 --- a/repo/packages/knative-serving.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-serving.packages.kadras.io/metadata.yml @@ -8,9 +8,11 @@ spec: - serverless - deployment displayName: knative-serving - longDescription: Knative Serving builds on Kubernetes to support deploying and serving - of applications and functions as serverless containers + longDescription: Knative Serving builds on Kubernetes to define and control the + deployment of applications and functions as serverless containers. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: Serverless platform on Kubernetes + shortDescription: Solution for running serverless deployments on Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-knative-serving + for community support. diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml new file mode 100644 index 0000000..7864bd9 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.4 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2023-03-06T21:31:58Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:e1e4147f4cd9b020dc0e785e9e516435e295ed78a0a190425840ec488b3b1f77 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.4 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..588a876 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-18T19:33:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml new file mode 100644 index 0000000..6eb52b0 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T10:28:35Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:4dfee58e34f34404b233abb5e2f60243cc4da61d84e63e7ed7ab0fd33b2c8264 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.1 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml new file mode 100644 index 0000000..5eb88f2 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.2 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T10:39:03Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.2 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml new file mode 100644 index 0000000..d2d01b6 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.3 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T21:05:21Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:07e61701ab12e33d84658dd531ba0fc27ecd1a948d2d827ac904f0ddaa846cec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.3 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml index ea58417..0a1b400 100644 --- a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml @@ -14,3 +14,5 @@ spec: - name: Thomas Vitale providerName: Kadras shortDescription: A set of buildpacks, stacks, and builders to use with kpack. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kpack-dependencies + for community support. diff --git a/repo/packages/kpack.packages.kadras.io/0.10.1.yml b/repo/packages/kpack.packages.kadras.io/0.10.1.yml new file mode 100644 index 0000000..7f3b6b7 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.10.1.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.10.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-03-18T17:13:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:ad95f95ced2a4311c32bed590eb6207baf8cf240137ae292dc0ef0baa214b68b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.10.1 diff --git a/repo/packages/kpack.packages.kadras.io/metadata.yml b/repo/packages/kpack.packages.kadras.io/metadata.yml index da7d5e3..a7bc199 100644 --- a/repo/packages/kpack.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack.packages.kadras.io/metadata.yml @@ -7,11 +7,13 @@ spec: categories: - build displayName: kpack - longDescription: kpack extends Kubernetes and utilizes unprivileged Kubernetes primitives + longDescription: kpack extends Kubernetes and utilizes unprivileged kubernetes primitives to provide builds of OCI images as a platform implementation of Cloud Native Buildpacks - (CNB) + (CNB). maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: kpack builds application source code into OCI compliant images - using Cloud Native Buildpacks + using Cloud Native Buildpacks. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-kpack + for community support. diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml new file mode 100644 index 0000000..e01a950 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.2+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2023-03-19T08:53:06Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:c401d928cf929e8d3307c82103b0fddbd9dca2126e988a49acab719be5c7ae2f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.2+kadras.2 diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 2e32734..4a43b39 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -16,3 +16,5 @@ spec: providerName: Kadras shortDescription: Scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-metrics-server + for community support. diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml new file mode 100644 index 0000000..9373bd5 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml @@ -0,0 +1,66 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.14.2 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releasedAt: "2023-03-09T08:21:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:2ad6dca5a96ac317c01b05d2e62c3c45370888a75f9ba2b7ab946bc53bb38634 + template: + - ytt: + paths: + - config/package-bundle/config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + create_namespace: + default: true + description: Whether to create namespace specified for secretgen-controller + type: boolean + deployment: + additionalProperties: false + description: Configuration for secretgen-controller deployment + properties: + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: 0 + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + type: integer + maxUnavailable: + default: 1 + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + type: integer + type: object + updateStrategy: + default: "" + description: Update strategy of deployments, empty uses default strategy + type: string + type: object + namespace: + default: secretgen-controller + description: The namespace in which to deploy secretgen-controller + type: string + type: object + version: 0.14.2 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..785e00b --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-03-19T10:32:02Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:bc1375f0429edb32a79f0687c87734153220ceea66f937ec1c4fc47e494022ac + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.2.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml index c8804f4..d4b5549 100644 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml @@ -15,3 +15,5 @@ spec: - name: Thomas Vitale providerName: Kadras shortDescription: Spring Boot Convention Server for Cartographer. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-spring-boot-conventions + for community support. diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml new file mode 100644 index 0000000..371f900 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml @@ -0,0 +1,518 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.45.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-03-15T17:44:31Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:7a4cfa6bc0bedd1d73eeb3db3a637716ffa839fd35adc44769bd14dd6b67a2bc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom-task-version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource-verification-mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.45.0+kadras.1