profile
viewpoint
Tobias Brunner tobru @vshn Zurich, Switzerland https://tobru.ch VSHNeer, APPUiO Member, RelaxOps, CommunityRack.org, Kubernetes nerd, Project Syn member

tobru/bupper 20

bupper - a bup backup profile manager

tobru/check-mk-checks 4

Additional checks for Check_MK

tobru/drupal-openshift 3

Drupal 8 on OpenShift v3 example

arska/vagrant-puppet-template 2

Basic, empty Vagrantfile for local puppet apply

tobru/collabora-openshift 2

Collabora Dockerfiles and OpenShift Templates

tobru/amon 1

Amon is a modern server monitoring platform.

tobru/appuioli-ansible 1

Ansible Playbooks and Roles and Shell Scripts for APPUiOli

tobru/dotfiles 1

dotfiles used to configure tobru's environment

abacusresearch/abasky-auth-addons 0

KeyCloak on OpenShift

abacusresearch/s2i-java 0

OpenShift's Java S2I Builder image. Suitable for java (fatjar) types of applications, microservices, springboot, vert.x, wildfly swarm, dropwizard,...

delete branch projectsyn/documentation

delete branch : syntroduction_2

delete time in 13 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha aa491ca838086627f0c29a317ea5d4e3d36ff6ff

Enhance Getting Started Guide with Deep Dive (#79) * wip * Some rewording * Add and fix links * Describe component implementation * Fix link format * build slides Co-authored-by: Simon Rüegg <simon@rueggs.ch>

view details

push time in 13 days

PR merged projectsyn/documentation

Enhance Getting Started Guide with Deep Dive

<!-- Thank you for your pull request. Please provide a description above and review the checklist below.

Contributors guide: ./CONTRIBUTING.md -->

Checklist

<!-- Remove items that do not apply. For completed items, change [ ] to [x]. -->

  • [ ] Keep pull requests small so they can be easily reviewed.
  • [ ] Update the documentation.
  • [ ] Update the ./CHANGELOG.md.
  • [ ] Link this PR to related issues.

<!-- NOTE: these things are not required to open a PR and can be done afterwards, while the PR is open. -->

+131 -23

0 comment

7 changed files

tobru

pr closed time in 13 days

push eventprojectsyn/documentation

Simon Rüegg

commit sha b5e167647cdec1f5ba9731e4feec214ca7c93e3e

Fix broken references They were missed in the reorganisation of [1]. [1] https://github.com/projectsyn/documentation/pull/77

view details

Simon Rüegg

commit sha c13954a65d6757e050f31c2434f567bf4a084830

Merge pull request #78 from projectsyn/fix-links Fix broken references

view details

Tobias Brunner

commit sha f86d6a9dc023e412ff393c3f3193b76a40b28473

Merge branch 'master' into syntroduction_2

view details

push time in 13 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha dd23867b180be4f6ab20afe97c381d2ebe8f9a3e

build slides

view details

push time in 13 days

PR opened projectsyn/documentation

Enhance Getting Started Guide with Deep Dive

<!-- Thank you for your pull request. Please provide a description above and review the checklist below.

Contributors guide: ./CONTRIBUTING.md -->

Checklist

<!-- Remove items that do not apply. For completed items, change [ ] to [x]. -->

  • [ ] Keep pull requests small so they can be easily reviewed.
  • [ ] Update the documentation.
  • [ ] Update the ./CHANGELOG.md.
  • [ ] Link this PR to related issues.

<!-- NOTE: these things are not required to open a PR and can be done afterwards, while the PR is open. -->

+109 -2

0 comment

7 changed files

pr created time in 13 days

create barnchprojectsyn/documentation

branch : syntroduction_2

created branch time in 13 days

push eventappuio/openshift4-docs

Simon Rüegg

commit sha efb4be7f12a5d035df6f5c19b301c5d2fd29a382

Reorganise file structure (#29) To group how-tos by cloud provider.

view details

push time in 14 days

delete branch appuio/openshift4-docs

delete branch : reorg

delete time in 14 days

PR merged appuio/openshift4-docs

Reviewers
Reorganise file structure

To group how-tos by cloud provider.

+6 -6

0 comment

6 changed files

srueg

pr closed time in 14 days

delete branch projectsyn/documentation

delete branch : labels-guide

delete time in 16 days

push eventprojectsyn/documentation

Simon Rüegg

commit sha 1b6b9a75fd13f78103ac364ebda8dfed546b5e07

Organise docs in sub folders

view details

Simon Rüegg

commit sha 3d4d618f0b3c7fbb4d5d44d67798d31393048215

Write labels guide Closes #41

view details

Tobias Brunner

commit sha 8fee6be1048179d49cc3c0e317d7ce4742850b8a

Merge pull request #77 from projectsyn/labels-guide Labels Guide

view details

push time in 16 days

PR merged projectsyn/documentation

Labels Guide

<!-- Thank you for your pull request. Please provide a description above and review the checklist below.

Contributors guide: ./CONTRIBUTING.md -->

Checklist

<!-- Remove items that do not apply. For completed items, change [ ] to [x]. -->

  • [x] Keep pull requests small so they can be easily reviewed.
  • [x] Update the documentation.
  • [x] Link this PR to related issues.

<!-- NOTE: these things are not required to open a PR and can be done afterwards, while the PR is open. -->

Closes #41

+89 -8

0 comment

10 changed files

srueg

pr closed time in 16 days

issue closedprojectsyn/documentation

Labels guide

As an author of Commodore components, operators and others, one easily can get lost when it comes to naming labels and annotations. Having a guide would be of help. It can:

  • speed up the decision process for defining label names.
  • prevent collisions and thus unintended side effects.

None conclusive list to be covered in that guide:

  • labels to be used on different Kubernetes objects (e.g. Deployments, Services, etc.)
  • labels to be used for matchSelectors (e.g. to make Prometheus picking up service monitors or alert rules).

See also https://kubernetes.io/docs/concepts/overview/working-with-objects/common-labels/.

closed time in 16 days

corvus-ch

issue closedprojectsyn/documentation

Getting Started on macOS

The how to "Getting Started with Project Syn" does not work on macOS. Docker is not supported natively so most will use Docker for Mac. The way this is set up, messes up networking for most things that just work ™️ on Linux. So this is what one needs to do differently:

  1. Use Docker for Mac

  2. Enable Kubernetes within its settings

  3. Install Nginx ingress https://kubernetes.github.io/ingress-nginx/deploy/#docker-for-mac

    kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/deploy/static/provider/cloud/deploy.yaml
    

    NOTE: This will not work if you have other services running on port 80 and 443 on your macOS.

  4. Use localhost for the ingress IP

    export K3S_INGRESS_IP=127.0.0.1
    
  5. Use the injected docker service while compiling the cluster catalog

    export COMMODORE_API_URL=http://$LIEUTENANT_API_SERVICE_HOST
    

    NOTE: I was not able to find a way to define COMMODORE_API_URL while starting the Commodore container. So it has to be done once inside the container.

closed time in 16 days

corvus-ch

push eventappuio/openshift4-docs

Simon Rüegg

commit sha 042d62c04da8376e093b9d382e71e2e52c8119a2

Write explanation regarding node groups (#27) * Write explanation regarding node groups * Update docs/modules/ROOT/pages/explanations/node-groups.adoc * Update docs/modules/ROOT/pages/explanations/node-groups.adoc Co-authored-by: Tobias Brunner <tobias@tobru.ch>

view details

push time in 19 days

delete branch appuio/openshift4-docs

delete branch : explanation/node-groups

delete time in 19 days

push eventappuio/openshift4-docs

Tobias Brunner

commit sha 25160d8416a5c1b6f3867871f96aca9026e25369

Update docs/modules/ROOT/pages/explanations/node-groups.adoc

view details

push time in 19 days

push eventappuio/openshift4-docs

Tobias Brunner

commit sha fb005c1e6eda5b35481918cb934a66780f1c680d

Update docs/modules/ROOT/pages/explanations/node-groups.adoc

view details

push time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation regarding node groups

+= Node Groups+:!toc:++[abstract]+.Abstract+This document explains how custom node groups can be created on OpenShift 4.+++In OpenShift 4 the concept of node groups and their lables changed comparing to 3.11.++[quote, 'https://github.com/openshift/machine-config-operator/blob/master/docs/custom-pools.md[machine-config-operator documentation]']+====+Custom pools are pools that inherit from the worker pool.+====++The default group with the role `worker` is the basis for all other node groups.+The https://github.com/openshift/machine-config-operator[machine-config-operator] automatically creates the base `MachineConfig` and `MachineConfigPool` from a set of https://github.com/openshift/machine-config-operator/tree/master/templates[templates].++To create a custom node group, the `worker` role and it's configuration should always be reused.+This is done by including the label selector in the custom MachineConfigPool like this:
This is done by including the label selector in the custom `MachineConfigPool` like this:
srueg

comment created time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation regarding node groups

+= Node Groups+:!toc:++[abstract]+.Abstract+This document explains how custom node groups can be created on OpenShift 4.+++In OpenShift 4 the concept of node groups and their lables changed comparing to 3.11.
In OpenShift 4 the concept of node groups and their labels changed comparing to OpenShift 3.11.
srueg

comment created time in 19 days

push eventprojectsyn/lieutenant-operator

Tobias Brunner

commit sha 02d00c09fa1bf53b42d86f072baeb4807fe18a7f

add diagram for operator design and cleanup description

view details

Tobias Brunner

commit sha ccac83181c9a6a3d61c482ba944d8197999be0f4

correct newline issues

view details

Tobias Brunner

commit sha 62578c476beac2c44b23281192998d5968c49ef0

Merge pull request #91 from projectsyn/operator_diagram Add a diagram for Operator Design

view details

push time in 19 days

delete branch projectsyn/lieutenant-operator

delete branch : operator_diagram

delete time in 19 days

PR merged projectsyn/lieutenant-operator

Add a diagram for Operator Design

... and cleanup description

+46 -18

0 comment

1 changed file

tobru

pr closed time in 19 days

push eventprojectsyn/lieutenant-operator

Tobias Brunner

commit sha ccac83181c9a6a3d61c482ba944d8197999be0f4

correct newline issues

view details

push time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation on Exoscale UPI limitations

+= Limitations on Exoscale++[abstract]+.Abstract+Doing a UPI on Exoscale as xref:how-tos/install/exoscale.adoc[documented here] comes with some limitations which are outlined in this document.+++== Internal API Load Balancer++One of the https://docs.openshift.com/container-platform/4.5/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI is a load balancer which is accessible internally of the cluster.+This Load balancer is used to access both the Kubernetes API and the ignition endpoint.++There are several managed offerings that could be consideren to solve this on Exoscale.++=== Managed Elastic IPs++Using a https://community.exoscale.com/documentation/compute/eip/#managed-eip[managed EIP] would allow to configure health checks and therefore automate the failover of one master to the other.++[quote, 'https://community.exoscale.com/documentation/compute/eip/#limitations[Exoscale documentation]']+____+Instances sharing a common EIP can't communicate with each other by using the EIP address+____++Therefore we can't use them because the master nodes wouldn't be able to communicate via it.++=== Network Load Balancer++Using a https://community.exoscale.com/documentation/compute/network-load-balancer[Network Load Balancer] only allows to https://community.exoscale.com/documentation/compute/network-load-balancer/#limitations_1[target instance pools].+Since during installation, the bootstrap node needs to be included in the load balancing, we can't use an instance pool.++=== Current Workaround++We use DNS round robin to include the public IP of each master node and during installation also the bootstrap node in a DNS name.+This leads to slow and unpredictable failovers.+++== Ingress Router Load Balancer++To bring traffic into the cluster, a load balancer for the ingress router pods is required.+It needs to be accessible both internally and externally of the cluster.+This again prevents us from using a managed EIP as described in <<_managed_elastic_ips>>.++Using an NLB could be a solution here, given that we can use an instance pool for worker nodes.+++== Instance Pools++An https://community.exoscale.com/documentation/compute/instance-pools[instance pool] can only be used if the configuration of all the instances is the same.+Currently we use a custom ignition config for each instance to set the hostname (writing it to `/etc/hostname`).+We therefore can't use instance pools since all the instances would have the same hostname.+++== HTTPS Health Checks++Both managed EIPs and NLBs don't support HTTPS for health checks.+This prevents us from using them for either the K8s API, ignition config or ingress router load balancers.+A feature request was placed and Exoscale is working on it (no ETA).+++== Private Networks++Since https://community.exoscale.com/documentation/compute/private-networks[private networks] can only be configured in **addition** to the public IP, nodes with only a private IP can't be created.

I guess we need a reason why this is an issue for us here.

srueg

comment created time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation on Exoscale UPI limitations

+= Limitations on Exoscale++[abstract]+.Abstract+Doing a UPI on Exoscale as xref:how-tos/install/exoscale.adoc[documented here] comes with some limitations which are outlined in this document.+++== Internal API Load Balancer++One of the https://docs.openshift.com/container-platform/4.5/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI is a load balancer which is accessible internally of the cluster.
One of the https://docs.openshift.com/container-platform/latest/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI installation is a load balancer which is accessible internally of the cluster.
srueg

comment created time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation on Exoscale UPI limitations

+= Limitations on Exoscale++[abstract]+.Abstract+Doing a UPI on Exoscale as xref:how-tos/install/exoscale.adoc[documented here] comes with some limitations which are outlined in this document.+++== Internal API Load Balancer++One of the https://docs.openshift.com/container-platform/4.5/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI is a load balancer which is accessible internally of the cluster.+This Load balancer is used to access both the Kubernetes API and the ignition endpoint.++There are several managed offerings that could be consideren to solve this on Exoscale.++=== Managed Elastic IPs++Using a https://community.exoscale.com/documentation/compute/eip/#managed-eip[managed EIP] would allow to configure health checks and therefore automate the failover of one master to the other.++[quote, 'https://community.exoscale.com/documentation/compute/eip/#limitations[Exoscale documentation]']+____+Instances sharing a common EIP can't communicate with each other by using the EIP address+____++Therefore we can't use them because the master nodes wouldn't be able to communicate via it.++=== Network Load Balancer++Using a https://community.exoscale.com/documentation/compute/network-load-balancer[Network Load Balancer] only allows to https://community.exoscale.com/documentation/compute/network-load-balancer/#limitations_1[target instance pools].+Since during installation, the bootstrap node needs to be included in the load balancing, we can't use an instance pool.

Aren't there more reasons? I thoughts it's also because of masters not being in an instance pools and workers also have issues because of hostname and such...

srueg

comment created time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation on Exoscale UPI limitations

+= Limitations on Exoscale++[abstract]+.Abstract+Doing a UPI on Exoscale as xref:how-tos/install/exoscale.adoc[documented here] comes with some limitations which are outlined in this document.+++== Internal API Load Balancer++One of the https://docs.openshift.com/container-platform/4.5/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI is a load balancer which is accessible internally of the cluster.+This Load balancer is used to access both the Kubernetes API and the ignition endpoint.++There are several managed offerings that could be consideren to solve this on Exoscale.++=== Managed Elastic IPs++Using a https://community.exoscale.com/documentation/compute/eip/#managed-eip[managed EIP] would allow to configure health checks and therefore automate the failover of one master to the other.++[quote, 'https://community.exoscale.com/documentation/compute/eip/#limitations[Exoscale documentation]']+____+Instances sharing a common EIP can't communicate with each other by using the EIP address+____++Therefore we can't use them because the master nodes wouldn't be able to communicate via it.

Can you please be a bit more specific how the traffic flow should be?

srueg

comment created time in 19 days

Pull request review commentappuio/openshift4-docs

Write explanation on Exoscale UPI limitations

+= Limitations on Exoscale++[abstract]+.Abstract+Doing a UPI on Exoscale as xref:how-tos/install/exoscale.adoc[documented here] comes with some limitations which are outlined in this document.+++== Internal API Load Balancer++One of the https://docs.openshift.com/container-platform/4.5/installing/installing_bare_metal/installing-bare-metal.html#installation-network-user-infra_installing-bare-metal[network topology requirements] for a UPI is a load balancer which is accessible internally of the cluster.+This Load balancer is used to access both the Kubernetes API and the ignition endpoint.++There are several managed offerings that could be consideren to solve this on Exoscale.
There are several managed offerings that could be considered to solve this on Exoscale.

And what do you exactly mean by this?

srueg

comment created time in 19 days

PR opened projectsyn/lieutenant-operator

Add a diagram for Operator Design

... and cleanup description

+46 -16

0 comment

1 changed file

pr created time in 19 days

create barnchprojectsyn/lieutenant-operator

branch : operator_diagram

created branch time in 19 days

push eventprojectsyn/lieutenant-operator

Christian Haeusler

commit sha 40b2d8e0ad5e10f590daa5c8a802839938181d41

Add GitHub issue templates

view details

Christian Haeusler

commit sha f27603bff6c3b6a1e7097a55d99723057143aecd

Add Yaml linting

view details

Christian Haeusler

commit sha 562cd2967c88911504a4065f5da39074b0325db0

Fix Yaml indentations

view details

Christian Haeusler

commit sha 4bd103b73e42a6c07c2bb347646bc86a7fecc3cd

Add contribution guide and code of conduct

view details

Christian Haeusler

commit sha b090f1ee7f794926a4c878b40ba7fe10a728fe92

Upate documentation

view details

Christian Haeusler

commit sha 80243de5aa8594502213cde8559542e1e8d8b193

Update change log

view details

Tobias Brunner

commit sha b6cb5444f96fbfbf92c8481f356ef4909cbe180b

Merge pull request #90 from projectsyn/meta Apply the default Syn project meta files

view details

push time in 19 days

delete branch projectsyn/lieutenant-operator

delete branch : meta

delete time in 19 days

delete branch appuio/terraform-openshift4-exoscale

delete branch : init

delete time in 19 days

push eventappuio/terraform-openshift4-exoscale

Simon Rüegg

commit sha 19cbdf4fcab23be447857041e6b5bf60d79b011e

Initial implementation

view details

Tobias Brunner

commit sha b9dc712f89b0efd421b48cbd43394ab11c5c79f2

Merge pull request #1 from appuio/init Initial Implementation

view details

push time in 19 days

PR merged appuio/terraform-openshift4-exoscale

Initial Implementation

See https://github.com/appuio/openshift4-docs/pull/25

+447 -0

0 comment

11 changed files

srueg

pr closed time in 19 days

push eventappuio/openshift4-docs

Simon Rüegg

commit sha 4216b4e708967bd507d45a1af246a53a402d8b26

Write how-to for Exoscale UPI installation

view details

Tobias Brunner

commit sha 03c18c4dfd7351eb5665c689f69dc3c7c9ab6c69

Merge pull request #25 from appuio/howto/install-exoscale Write how-to for Exoscale UPI installation

view details

push time in 19 days

delete branch appuio/openshift4-docs

delete branch : howto/install-exoscale

delete time in 19 days

PR merged appuio/openshift4-docs

Write how-to for Exoscale UPI installation

Uses https://github.com/appuio/terraform-openshift4-exoscale/pull/1

Closes https://ticket.vshn.net/browse/APPU-2777

+242 -0

0 comment

2 changed files

srueg

pr closed time in 19 days

delete branch projectsyn/documentation

delete branch : release_process

delete time in 19 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha a385b40ab08d1dc4205b8a57c816ddb65b7dffc1

how to release project syn tools

view details

Tobias Brunner

commit sha 415f918c5c956b93d8731add5ede26eacd5aae06

Merge pull request #76 from projectsyn/release_process Add a how to release Project Syn tools

view details

push time in 19 days

create barnchprojectsyn/documentation

branch : release_process

created branch time in 19 days

Pull request review commentappuio/openshift4-docs

Write how-to for Exoscale UPI installation

+= Installation on Exoscale++[abstract]+--+Steps to install an OpenShift 4 cluster on https://www.exoscale.com[Exoscale].++These steps follow the https://docs.openshift.com/container-platform/latest/installing/installing_bare_metal/installing-bare-metal.html[Installing a cluster on bare metal] docs to set up a user provisioned installation (UPI).+https://www.terraform.io[Terraform] is used to provision the cloud infrastructure.+--++[NOTE]+--+This how-to guide is still a work in progress and will change.+It's currently very specific to VSHN and needs further changes to be more generic.+--++== Prerequisites+* Exoscale https://community.exoscale.com/documentation/iam/quick-start/#api-keys[API key]+* `terraform`+* `exo` >= v1.14.0 https://community.exoscale.com/documentation/tools/exoscale-command-line-interface[Exoscale CLI]+* `jq`+* `md5sum`+* `virt-edit`+* `cpio`+* Clone of the https://github.com/appuio/terraform-openshift4-exoscale[terraform-openshift4-exoscale] repository+* A DNS domain configured for https://community.exoscale.com/documentation/dns/configuration-examples/#configuring-the-domain-name-at-the-registrar[Exoscale DNS service]+++== Cluster Installation++. Register the new OpenShift 4 cluster in Lieutenant: https://control.vshn.net/syn/lieutenantclusters++. Configure input+++[source,console]+----+export EXOSCALE_ACCOUNT=<exoscale-account>+export EXOSCALE_API_KEY=<exoscale-key>+export EXOSCALE_API_SECRET=<exoscale-secret>+export EXOSCALE_REGION=ch-dk-2+export CLUSTER_ID=<cluster-name>+export BASE_DOMAIN=ocp4-poc.appuio-beta.ch+export PULL_SECRET=<redhat-pull-secret> # From https://cloud.redhat.com/openshift/install/pull-secret++export AWS_ACCESS_KEY_ID=${EXOSCALE_API_KEY}+export AWS_SECRET_ACCESS_KEY=${EXOSCALE_API_SECRET}+export AWS_S3_ENDPOINT="sos-${EXOSCALE_REGION}.exo.io"+----++. Prepare Exoscale CLI+++[source,console]+----+mkdir -p ~/.exoscale+cat <<EOF >> ~/.exoscale/exoscale.toml++[[accounts]]+  account = "${EXOSCALE_ACCOUNT}"+  defaultZone = "${EXOSCALE_REGION}"+  endpoint = "https://api.exoscale.ch/v1"+  name = "${CLUSTER_ID}"+EOF++----++. Create S3 buckets+++[source,console]+----+exo sos create "${CLUSTER_ID}-bootstrap-ignition"+exo sos create "${CLUSTER_ID}-tf-state"+----++. Prepare `install-config.yaml`+++[source,console]+----+mkdir ${CLUSTER_ID}++cat > "${CLUSTER_ID}/install-config.yaml" <<EOF+apiVersion: v1+metadata:+  name: ${CLUSTER_ID}+baseDomain: ${BASE_DOMAIN}+compute:+  - name: worker+    replicas: 3+controlPlane:+  name: master+  replicas: 3+networking:+  clusterNetwork:+    - cidr: 10.128.0.0/14+      hostPrefix: 23+  networkType: OpenShiftSDN+  serviceNetwork:+    - 172.30.0.0/16+platform:+  none: {}+pullSecret: |+  ${PULL_SECRET}+sshKey: "$(cat ~/.ssh/id_ed25519.pub)"+EOF++----++. Prepare install manifests and ignition config+++[source,console]+----+openshift-install --dir ${CLUSTER_ID} \+  create manifests++openshift-install --dir ${CLUSTER_ID} \+  create ignition-configs++for file in bootstrap master worker; do \+  exo sos upload "${CLUSTER_ID}-bootstrap-ignition" "${CLUSTER_ID}/${file}.ign" && \+  exo sos acl add "${CLUSTER_ID}-bootstrap-ignition" "${file}.ign" \+      --public-read ; \+done+----++. Prepare RHCOS images+++[source,console]+----+RHCOS_VERSION="4.5.2"++curl "https://mirror.openshift.com/pub/openshift-v4/dependencies/rhcos/4.5/latest/rhcos-${RHCOS_VERSION}-x86_64-openstack.x86_64.qcow2.gz" | gunzip > rhcos-${RHCOS_VERSION}.qcow2++virt-edit -a rhcos-${RHCOS_VERSION}.qcow2 \+  -m /dev/sda1:/ /loader/entries/ostree-1-rhcos.conf \+  -e 's/openstack/metal ignition.config.url=http://169.254.169.254/1.0/user-data/'++exo sos upload "${CLUSTER_ID}-bootstrap-ignition" rhcos-${RHCOS_VERSION}.qcow2+exo sos acl add "${CLUSTER_ID}-bootstrap-ignition" rhcos-${RHCOS_VERSION}.qcow2 --public-read++exo vm template register \+  --checksum $(md5sum rhcos-${RHCOS_VERSION}.qcow2 | awk '{ print $1 }') \+  --boot-mode uefi \+  --disable-password \+  --username core \+  --description "Red Hat Enterprise Linux CoreOS (RHCOS) ${RHCOS_VERSION}" \+  --name "rhcos-${RHCOS_VERSION}" \+  --url "https://${AWS_S3_ENDPOINT}/${CLUSTER_ID}-bootstrap-ignition/rhcos-${RHCOS_VERSION}.qcow2"++export TF_VAR_rhcos_template="rhcos-${RHCOS_VERSION}"+----++. Initialize Terraform+++[source,console]+----+terraform init \+  -backend-config "bucket=${CLUSTER_ID}-tf-state"++export TF_VAR_cluster_id=$CLUSTER_ID+export TF_VAR_ssh_key="$(cat ~/.ssh/id_rsa.pub)"+----++. Set up DNS NS records on parent zone (see Terraform output `ns_records`)+++[source,console]+----+terraform apply \+  -target exoscale_domain_record.exo_nameservers+----++. Bootstrap cluster+++[source,console]+----+terraform apply \+  -var bootstrap_count=1 \+  -var worker_count=0+----++. Wait for bootstrap to complete+++[source,console]+----+openshift-install --dir ${CLUSTER_ID} \+  wait-for bootstrap-complete+----++. Remove bootstrap node and provision worker nodes+++[source,console]+----+terraform apply+----++. Approve worker certs+++[source,console]+----+export KUBECONFIG=${CLUSTER_ID}/auth/kubeconfig++# Once CSRs in state Pending show up, approve them+# Needs to be run twice, two CSRs for each node need to be approved+kubectl get csr -w+oc get csr -o go-template='{{range .items}}{{if not .status}}{{.metadata.name}}{{"\n"}}{{end}}{{end}}' | \+  xargs oc adm certificate approve++kubectl get nodes++openshift-install --dir ${CLUSTER_ID} \+  wait-for install-complete+----++. Create secret with S3 credentials https://docs.openshift.com/container-platform/4.5/registry/configuring_registry_storage/configuring-registry-storage-aws-user-infrastructure.html#registry-operator-config-resources-secret-aws_configuring-registry-storage-aws-user-infrastructure[for the registry] (will https://ticket.vshn.net/browse/APPU-2790[automated])+++[source,console]+----+oc create secret generic image-registry-private-configuration-user \+--namespace openshift-image-registry \+--from-literal=REGISTRY_STORAGE_S3_ACCESSKEY=${AWS_ACCESS_KEY_ID} \+--from-literal=REGISTRY_STORAGE_S3_SECRETKEY=${AWS_SECRET_ACCESS_KEY}+----++. Crete wildcard cert for router
. Create wildcard cert for router
srueg

comment created time in 19 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 64caae7508f3d6b34da3e091ea1bf8c294173d4f

use release 0.2.0 in getting started guide

view details

Tobias Brunner

commit sha ecd726bc2cb903a59f811de73be46d49699666a2

fix release links for commodore

view details

Tobias Brunner

commit sha 86f8becb649c14377c7164b52df3d06f2304b7cd

update getting started to k3d >= 3.x

view details

Tobias Brunner

commit sha 937f202aa04d8561c0060b87560e867176b6d3be

Merge pull request #75 from projectsyn/pinversion_k3dupd Vacuum PR

view details

push time in 20 days

PR merged projectsyn/documentation

Vacuum PR

Cleaning up dust...

+9 -15

0 comment

2 changed files

tobru

pr closed time in 20 days

delete branch projectsyn/documentation

delete branch : pinversion_k3dupd

delete time in 20 days

PR opened projectsyn/documentation

Vacuum PR

Cleaning up dust...

+9 -15

0 comment

2 changed files

pr created time in 20 days

create barnchprojectsyn/documentation

branch : pinversion_k3dupd

created branch time in 20 days

PR merged projectsyn/documentation

Reviewers
Update Project Syn roadmap and Release 0.2.0

The next step after 0.2.0 will be the one-dot-zero release. We gained a lot of experience using the tools in production and during product engineering, so it's already time to take the step to 1.0.0. There is still a good amount of engineering work to do, but we now know a lot better what's missing.

+44 -14

0 comment

1 changed file

tobru

pr closed time in 20 days

delete branch projectsyn/documentation

delete branch : the_road_to_1

delete time in 20 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha a82fd2842446d5abf1541403105a03e679a0e87f

update roadmap and release 0.2.0

view details

Tobias Brunner

commit sha 17c0bf58dca24055bacfebd1b77a759c77ed7966

Merge branch 'master' into the_road_to_1

view details

Tobias Brunner

commit sha b92d143673441ac53244e47a335e75015a412dbc

Merge pull request #66 from projectsyn/the_road_to_1 Update Project Syn roadmap and Release 0.2.0

view details

push time in 20 days

push eventprojectsyn/documentation

Christian Haeusler

commit sha 8fe27d87487ae2a78b272b4d6634928fb8bce712

Add GitHub issue templates

view details

Christian Haeusler

commit sha 55b16865199d196ea3262023c2fc7c1e44c966a5

Add Yaml linting

view details

Christian Haeusler

commit sha 34e99be4707b1e9512f54c37b86a799ba5d93876

Fix Yaml indendations

view details

Christian Haeusler

commit sha a1a53a9928bfadf53da16c1162bc753265c316a4

Add contribution guide and code of conduct

view details

Christian Häusler

commit sha 919a4dae363295189d0ed203f9b67ba5ec5cbfd4

Merge pull request #73 from projectsyn/meta Apply the Syn default meta files

view details

Tobias Brunner

commit sha 17c0bf58dca24055bacfebd1b77a759c77ed7966

Merge branch 'master' into the_road_to_1

view details

push time in 20 days

Pull request review commentappuio/openshift4-docs

Write how-to for Exoscale UPI installation

 *** xref:how-tos/authentication/sudo.adoc[Sudo] ** cloudscale.ch *** xref:how-tos/install/cloudscale.adoc[Cluster Setup]+** Exoscale+*** xref:how-tos/install/exoscale.adoc[Cluster Set
*** xref:how-tos/install/exoscale.adoc[Cluster Setup]
srueg

comment created time in 20 days

pull request commentprojectsyn/documentation

Configure Renovate

No Renovate on this Repo

renovate[bot]

comment created time in 20 days

PR closed projectsyn/documentation

Configure Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

:vertical_traffic_light: To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.


Detected Package Files

  • slides/syntroduction/docker-compose.yml (docker-compose)
  • slides/syntroduction/Dockerfile (dockerfile)
  • slides/syntroduction/slides.html (html)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Separate major versions of dependencies into individual branches/PRs
  • Do not separate patch and minor upgrades into separate PRs for the same dependency
  • Upgrade to unstable versions only if the existing version is unstable
  • Raise PRs immediately (after branch is created)
  • If semantic commits detected, use semantic commit type <code>fix</code> for dependencies and <code>chore</code> for all others
  • Keep existing branches updated even when not scheduled
  • Disable automerging feature - wait for humans to merge all PRs
  • Ignore node_modules, bower_components, vendor and various test/tests directories
  • Autodetect whether to pin dependencies or maintain ranges
  • Rate limit PR creation to a maximum of two per hour
  • Limit to maximum 20 open PRs at any time
  • Group known monorepo packages together
  • Use curated list of recommended non-monorepo package groupings

:abcd: Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.


What to Expect

With your current configuration, Renovate will create 1 Pull Request:

<details> <summary>Update dependency mathjax to v2.7.7</summary>

  • Schedule: ["at any time"]
  • Branch name: renovate/mathjax-2.x
  • Merge into: master
  • Upgrade mathjax to sha512-Fv0JVzxvrWFLhiUP8wZYR6VwBZQt0XqB9MhHZE+12lObqIDzg3LOJcCCiRy6g4MCX/MlG+R9IRCWZAHjo9iBgw==

</details>


:question: Got questions? Check out Renovate's Docs, particularly the Getting Started section. If you need any further assistance then you can also request help here.


This PR has been generated by WhiteSource Renovate. View repository job log here.

+5 -0

0 comment

1 changed file

renovate[bot]

pr closed time in 20 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha e0e50efd0d863a7ba12471ad0284256c74af374b

add slides to introduce project syn

view details

Tobias Brunner

commit sha 926f4a0a1f454083a71d50d9d72b7ede021baecf

Merge pull request #68 from projectsyn/syntroduction Add slides to introduce Project Syn

view details

Tobias Brunner

commit sha a82fd2842446d5abf1541403105a03e679a0e87f

update roadmap and release 0.2.0

view details

push time in 20 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha e0e50efd0d863a7ba12471ad0284256c74af374b

add slides to introduce project syn

view details

Tobias Brunner

commit sha 926f4a0a1f454083a71d50d9d72b7ede021baecf

Merge pull request #68 from projectsyn/syntroduction Add slides to introduce Project Syn

view details

push time in 20 days

delete branch projectsyn/documentation

delete branch : syntroduction

delete time in 20 days

PR merged projectsyn/documentation

Reviewers
Add slides to introduce Project Syn

This adds some slides to introduce Project Syn. It should be reusable and updated regularly as Project Syn progresses.

It mainly borrows content from:

  • https://syn.tools/syn/getting-started.html
  • https://syn.tools/syn/features.html
  • https://syn.tools/syn/architecture.html
+1645 -0

1 comment

24 changed files

tobru

pr closed time in 20 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha e0e50efd0d863a7ba12471ad0284256c74af374b

add slides to introduce project syn

view details

push time in 20 days

pull request commentprojectsyn/documentation

Apply the Syn default meta files

I'm not sure if a CHANGELOG makes sense here and if we should treat this repo 1:1 like the others. What do other think?

corvus-ch

comment created time in 20 days

PR closed projectsyn/antora-ui-default

Reviewers
Apply the Syn default meta files
+271 -125

2 comments

13 changed files

corvus-ch

pr closed time in 20 days

pull request commentprojectsyn/commodore

Apply component template to commodore itself

Yes, I'd drop DCO.

corvus-ch

comment created time in 20 days

pull request commentprojectsyn/antora-ui-default

Apply the Syn default meta files

I would also say that it doesn't makes sense to add it to this project.

corvus-ch

comment created time in 20 days

push eventprojectsyn/lieutenant-operator

Tobias Brunner

commit sha ad11c7a136cd4684aabf89442ce24a02efcbe870

restructure docs and add deletion info

view details

Tobias Brunner

commit sha 0f3fa77a93b200be60ab4dd2f998cd48046a5e39

Apply suggestions from code review Co-authored-by: Simon Rüegg <simon.ruegg@vshn.ch>

view details

Tobias Brunner

commit sha 6e6776b6182fefde7171d4bb000eebcdab2f8abe

update with suggestions from review

view details

Tobias Brunner

commit sha 218b80be6a32c3314e12e3695af301a41dd246d7

Merge branch 'master' into finetune_docs

view details

Tobias Brunner

commit sha ea14a516e9c2bfef006745bdf102eca515363e6e

Merge pull request #87 from projectsyn/finetune_docs Restructure docs and add deletion info

view details

push time in 21 days

delete branch projectsyn/lieutenant-operator

delete branch : finetune_docs

delete time in 21 days

PR merged projectsyn/lieutenant-operator

Reviewers
Restructure docs and add deletion info

This PR restructures the docs "a bit", cleans up old and wrong stuff and adds some documentation about the deletion stuff.

@srueg and @Kidswiss Please check if I really got this right with the deletion and that the wording is correct. I would also appreciate another look at the docs: Do we cover all aspects of the Operator? Are any important concepts missing which need documentation? I feel we miss some things, but can't currently say what.

+283 -260

0 comment

17 changed files

tobru

pr closed time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 7364edf9b1cda46bf80e3ace5c55ecced0191709

update makefile for Caddy 2+

view details

push time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 9321227eb27a82cc088d4e1b6a988d384885f305

add generated slides

view details

push time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 96c10d93bcebb48ae18766fd4369f9e9d6caf72b

enhance getting started guide with deletion feature

view details

Tobias Brunner

commit sha c8856c98904d43dcefa78623497951d667dd6702

suggestions from review

view details

Tobias Brunner

commit sha 9d28703ab7e793ccf9a21605c7a178862b03348a

Merge pull request #72 from projectsyn/getting_started_objectdel Enhance the Getting Started Guide with the new deletion feature

view details

Tobias Brunner

commit sha 314d2a4746e0862152203a55c41e9e46614c8ffc

Merge branch 'master' into syntroduction

view details

push time in 21 days

pull request commentprojectsyn/documentation

Add slides to introduce Project Syn

@srueg Regarding these ' ... I was too lazy to figure out proper escaping, therefore I left them out. But in the next iteration of these demo scripts I'll add them.

tobru

comment created time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha f475c0b21478da7a9df66dca8af0cd05dae3b547

cleanup files

view details

push time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 7f419a9f3c92269682b1fb00dbdc42d0dd90d6eb

Apply suggestions from code review Co-authored-by: Simon Rüegg <simon.ruegg@vshn.ch>

view details

push time in 21 days

push eventprojectsyn/lieutenant-operator

Simon Beck

commit sha 284680a189aa5ddac606a356cec358016d82ea64

Fix nilpointer with VAULT client

view details

Tobias Brunner

commit sha f0829292e355e4004ea79d2d3b7c152c9ad29668

Merge pull request #85 from projectsyn/vault_client_nilpointer Fix nilpointer with VAULT client

view details

Tobias Brunner

commit sha 218b80be6a32c3314e12e3695af301a41dd246d7

Merge branch 'master' into finetune_docs

view details

push time in 21 days

Pull request review commentprojectsyn/lieutenant-operator

Restructure docs and add deletion info

+= Installation of the Operator++The Operator provides a Kustomize folder which allows for easy installation:++[source,shell]+--+kubectl create namespace lieutenant++# CRDs (global scope)+kubectl apply -k github.com/projectsyn/lieutenant-operator/deploy/crds

That's a good idea, but at the moment we're not yet versioning the documentation and are always pointing to the master branch. This is something we certainly need to do in the future.

tobru

comment created time in 21 days

push eventprojectsyn/lieutenant-operator

Tobias Brunner

commit sha 6e6776b6182fefde7171d4bb000eebcdab2f8abe

update with suggestions from review

view details

push time in 21 days

push eventprojectsyn/lieutenant-operator

Tobias Brunner

commit sha 0f3fa77a93b200be60ab4dd2f998cd48046a5e39

Apply suggestions from code review Co-authored-by: Simon Rüegg <simon.ruegg@vshn.ch>

view details

push time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha b71c6f370620a97aaad8afc869de040e9f77e763

mass accept sdds All these SDDs have been discussed in the PRs and are now in state accepted.

view details

Tobias Brunner

commit sha 6ac4536c290b60f017c714b02f70e423eaba16c7

mark some sdds as implemented

view details

Tobias Brunner

commit sha d6dcbab7cc958d807249fec32db1882289920d58

Merge pull request #67 from projectsyn/sdd_cleanup Mass accept SDDs

view details

Simon Rüegg

commit sha bcde0cd143616049e84f7bd707a6f63be8020181

Update getting started doc

view details

Simon Rüegg

commit sha 46dcd045f142ac732e30f2abd4fc0d47b5c82179

Merge pull request #69 from projectsyn/update-commodore-commands Update getting started doc

view details

Tobias Brunner

commit sha 96c10d93bcebb48ae18766fd4369f9e9d6caf72b

enhance getting started guide with deletion feature

view details

Tobias Brunner

commit sha c8856c98904d43dcefa78623497951d667dd6702

suggestions from review

view details

Tobias Brunner

commit sha 9d28703ab7e793ccf9a21605c7a178862b03348a

Merge pull request #72 from projectsyn/getting_started_objectdel Enhance the Getting Started Guide with the new deletion feature

view details

Tobias Brunner

commit sha ee1e1b164d736c7f6d8db6bd47a3fbe52d0de699

update roadmap and release 0.2.0

view details

Tobias Brunner

commit sha 3d93f50dcf07449b0a260522b0ac7d26f7c78ad4

Update docs/modules/ROOT/pages/roadmap.adoc Co-authored-by: Simon Gerber <simon.gerber@vshn.ch>

view details

Tobias Brunner

commit sha 80af7a498eb0f9aa1dba645659d2388e4b7da63b

add GitOps for apps to 1.0.0

view details

push time in 21 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 96c10d93bcebb48ae18766fd4369f9e9d6caf72b

enhance getting started guide with deletion feature

view details

Tobias Brunner

commit sha c8856c98904d43dcefa78623497951d667dd6702

suggestions from review

view details

Tobias Brunner

commit sha 9d28703ab7e793ccf9a21605c7a178862b03348a

Merge pull request #72 from projectsyn/getting_started_objectdel Enhance the Getting Started Guide with the new deletion feature

view details

push time in 22 days

delete branch projectsyn/documentation

delete branch : getting_started_objectdel

delete time in 22 days

PR merged projectsyn/documentation

Reviewers
Enhance the Getting Started Guide with the new deletion feature

Now that the deletion feature has landed in master of Lieutenant Operator, let's make use of it in the getting started guide.

+31 -6

0 comment

1 changed file

tobru

pr closed time in 22 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha c8856c98904d43dcefa78623497951d667dd6702

suggestions from review

view details

push time in 22 days

create barnchprojectsyn/lieutenant-operator

branch : finetune_docs

created branch time in 22 days

PR opened projectsyn/documentation

Enhance the Getting Started Guide with the new deletion feature

Now that the deletion feature has landed in master of Lieutenant Operator, let's make use of it in the getting started guide.

+31 -8

0 comment

1 changed file

pr created time in 22 days

create barnchprojectsyn/documentation

branch : getting_started_objectdel

created branch time in 22 days

delete branch projectsyn/lieutenant-operator

delete branch : vault_client_nilpointer

delete time in 22 days

push eventprojectsyn/lieutenant-operator

Simon Beck

commit sha 284680a189aa5ddac606a356cec358016d82ea64

Fix nilpointer with VAULT client

view details

Tobias Brunner

commit sha f0829292e355e4004ea79d2d3b7c152c9ad29668

Merge pull request #85 from projectsyn/vault_client_nilpointer Fix nilpointer with VAULT client

view details

push time in 22 days

PR merged projectsyn/lieutenant-operator

Fix nilpointer with VAULT client

If SKIP_VAULT_SETUP is set true and a deletion is triggered the Operator run into a nilpointer.

Resolves: #86

+7 -5

0 comment

2 changed files

Kidswiss

pr closed time in 22 days

issue closedprojectsyn/lieutenant-operator

Debug Issues with Vault on Object Deletion

Fix deletion when Vault is deactivated:

E0721 09:04:34.474812       1 runtime.go:78] Observed a panic: "invalid memory address or nil pointer dereference" (runtime error: invalid memory address or nil pointer dereference)
goroutine 1074 [running]:
k8s.io/apimachinery/pkg/util/runtime.logPanic(0x15db4a0, 0x25a6b40)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:74 +0xa3
k8s.io/apimachinery/pkg/util/runtime.HandleCrash(0x0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:48 +0x82
panic(0x15db4a0, 0x25a6b40)
	/usr/local/go/src/runtime/panic.go:969 +0x166
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).listSecrets(0x0, 0xc0006463f0, 0x26, 0x203000, 0xc000d35640, 0x127a45c, 0xc00003c500, 0xc000798120)
	/app/pkg/vault/client.go:236 +0x37
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).removeSecret(0x0, 0xc0006463f0, 0x26, 0x0, 0x0, 0x20, 0x156a7a0)
	/app/pkg/vault/client.go:157 +0x5a
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).RemoveSecrets(0x0, 0xc000a589c0, 0x1, 0x1, 0x1a436a0, 0xc00053f890)
	/app/pkg/vault/client.go:146 +0x7e
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile.func1(0x0, 0x0)
	/app/pkg/controller/cluster/cluster_reconcile.go:123 +0xcc1
k8s.io/client-go/util/retry.OnError.func1(0x13, 0x0, 0x0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:51 +0x3c
k8s.io/apimachinery/pkg/util/wait.ExponentialBackoff(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0xc000d35bd0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:292 +0x51
k8s.io/client-go/util/retry.OnError(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0x1889db0, 0xc000d35c90, 0x1161bd6, 0xc000270fe0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:50 +0xa6
k8s.io/client-go/util/retry.RetryOnConflict(...)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:104
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile(0xc0004e0140, 0xc0008ae280, 0xa, 0xc000270fe0, 0x12, 0x0, 0xbfbdc9c8981f5bc9, 0xc000bb4d80, 0xc000bb4cf8)
	/app/pkg/controller/cluster/cluster_reconcile.go:45 +0x266
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler(0xc0009d6300, 0x164dcc0, 0xc0009b0080, 0x0)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:256 +0x161
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem(0xc0009d6300, 0xc000f84200)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:232 +0xae
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker(0xc0009d6300)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:211 +0x2b
k8s.io/apimachinery/pkg/util/wait.JitterUntil.func1(0xc0003100b0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:152 +0x5f
k8s.io/apimachinery/pkg/util/wait.JitterUntil(0xc0003100b0, 0x3b9aca00, 0x0, 0x1, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:153 +0xf8
k8s.io/apimachinery/pkg/util/wait.Until(0xc0003100b0, 0x3b9aca00, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:88 +0x4d
created by sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func1
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:193 +0x305
panic: runtime error: invalid memory address or nil pointer dereference [recovered]
	panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x13986e7]

goroutine 1074 [running]:
k8s.io/apimachinery/pkg/util/runtime.HandleCrash(0x0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:55 +0x105
panic(0x15db4a0, 0x25a6b40)
	/usr/local/go/src/runtime/panic.go:969 +0x166
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).listSecrets(0x0, 0xc0006463f0, 0x26, 0x203000, 0xc000d35640, 0x127a45c, 0xc00003c500, 0xc000798120)
	/app/pkg/vault/client.go:236 +0x37
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).removeSecret(0x0, 0xc0006463f0, 0x26, 0x0, 0x0, 0x20, 0x156a7a0)
	/app/pkg/vault/client.go:157 +0x5a
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).RemoveSecrets(0x0, 0xc000a589c0, 0x1, 0x1, 0x1a436a0, 0xc00053f890)
	/app/pkg/vault/client.go:146 +0x7e
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile.func1(0x0, 0x0)
	/app/pkg/controller/cluster/cluster_reconcile.go:123 +0xcc1
k8s.io/client-go/util/retry.OnError.func1(0x13, 0x0, 0x0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:51 +0x3c
k8s.io/apimachinery/pkg/util/wait.ExponentialBackoff(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0xc000d35bd0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:292 +0x51
k8s.io/client-go/util/retry.OnError(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0x1889db0, 0xc000d35c90, 0x1161bd6, 0xc000270fe0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:50 +0xa6
k8s.io/client-go/util/retry.RetryOnConflict(...)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:104
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile(0xc0004e0140, 0xc0008ae280, 0xa, 0xc000270fe0, 0x12, 0x0, 0xbfbdc9c8981f5bc9, 0xc000bb4d80, 0xc000bb4cf8)
	/app/pkg/controller/cluster/cluster_reconcile.go:45 +0x266
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler(0xc0009d6300, 0x164dcc0, 0xc0009b0080, 0x0)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:256 +0x161
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem(0xc0009d6300, 0xc000f84200)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:232 +0xae
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker(0xc0009d6300)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:211 +0x2b
k8s.io/apimachinery/pkg/util/wait.JitterUntil.func1(0xc0003100b0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:152 +0x5f
k8s.io/apimachinery/pkg/util/wait.JitterUntil(0xc0003100b0, 0x3b9aca00, 0x0, 0x1, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:153 +0xf8
k8s.io/apimachinery/pkg/util/wait.Until(0xc0003100b0, 0x3b9aca00, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:88 +0x4d
created by sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func1
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:193 +0x305

closed time in 22 days

tobru

issue openedprojectsyn/lieutenant-operator

Debug Issues with Vault on Object Deletion

Fix deletion when Vault is deactivated:

E0721 09:04:34.474812       1 runtime.go:78] Observed a panic: "invalid memory address or nil pointer dereference" (runtime error: invalid memory address or nil pointer dereference)
goroutine 1074 [running]:
k8s.io/apimachinery/pkg/util/runtime.logPanic(0x15db4a0, 0x25a6b40)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:74 +0xa3
k8s.io/apimachinery/pkg/util/runtime.HandleCrash(0x0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:48 +0x82
panic(0x15db4a0, 0x25a6b40)
	/usr/local/go/src/runtime/panic.go:969 +0x166
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).listSecrets(0x0, 0xc0006463f0, 0x26, 0x203000, 0xc000d35640, 0x127a45c, 0xc00003c500, 0xc000798120)
	/app/pkg/vault/client.go:236 +0x37
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).removeSecret(0x0, 0xc0006463f0, 0x26, 0x0, 0x0, 0x20, 0x156a7a0)
	/app/pkg/vault/client.go:157 +0x5a
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).RemoveSecrets(0x0, 0xc000a589c0, 0x1, 0x1, 0x1a436a0, 0xc00053f890)
	/app/pkg/vault/client.go:146 +0x7e
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile.func1(0x0, 0x0)
	/app/pkg/controller/cluster/cluster_reconcile.go:123 +0xcc1
k8s.io/client-go/util/retry.OnError.func1(0x13, 0x0, 0x0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:51 +0x3c
k8s.io/apimachinery/pkg/util/wait.ExponentialBackoff(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0xc000d35bd0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:292 +0x51
k8s.io/client-go/util/retry.OnError(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0x1889db0, 0xc000d35c90, 0x1161bd6, 0xc000270fe0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:50 +0xa6
k8s.io/client-go/util/retry.RetryOnConflict(...)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:104
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile(0xc0004e0140, 0xc0008ae280, 0xa, 0xc000270fe0, 0x12, 0x0, 0xbfbdc9c8981f5bc9, 0xc000bb4d80, 0xc000bb4cf8)
	/app/pkg/controller/cluster/cluster_reconcile.go:45 +0x266
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler(0xc0009d6300, 0x164dcc0, 0xc0009b0080, 0x0)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:256 +0x161
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem(0xc0009d6300, 0xc000f84200)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:232 +0xae
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker(0xc0009d6300)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:211 +0x2b
k8s.io/apimachinery/pkg/util/wait.JitterUntil.func1(0xc0003100b0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:152 +0x5f
k8s.io/apimachinery/pkg/util/wait.JitterUntil(0xc0003100b0, 0x3b9aca00, 0x0, 0x1, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:153 +0xf8
k8s.io/apimachinery/pkg/util/wait.Until(0xc0003100b0, 0x3b9aca00, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:88 +0x4d
created by sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func1
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:193 +0x305
panic: runtime error: invalid memory address or nil pointer dereference [recovered]
	panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x13986e7]

goroutine 1074 [running]:
k8s.io/apimachinery/pkg/util/runtime.HandleCrash(0x0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/runtime/runtime.go:55 +0x105
panic(0x15db4a0, 0x25a6b40)
	/usr/local/go/src/runtime/panic.go:969 +0x166
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).listSecrets(0x0, 0xc0006463f0, 0x26, 0x203000, 0xc000d35640, 0x127a45c, 0xc00003c500, 0xc000798120)
	/app/pkg/vault/client.go:236 +0x37
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).removeSecret(0x0, 0xc0006463f0, 0x26, 0x0, 0x0, 0x20, 0x156a7a0)
	/app/pkg/vault/client.go:157 +0x5a
github.com/projectsyn/lieutenant-operator/pkg/vault.(*BankVaultClient).RemoveSecrets(0x0, 0xc000a589c0, 0x1, 0x1, 0x1a436a0, 0xc00053f890)
	/app/pkg/vault/client.go:146 +0x7e
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile.func1(0x0, 0x0)
	/app/pkg/controller/cluster/cluster_reconcile.go:123 +0xcc1
k8s.io/client-go/util/retry.OnError.func1(0x13, 0x0, 0x0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:51 +0x3c
k8s.io/apimachinery/pkg/util/wait.ExponentialBackoff(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0xc000d35bd0, 0x0, 0x0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:292 +0x51
k8s.io/client-go/util/retry.OnError(0x989680, 0x3ff0000000000000, 0x3fb999999999999a, 0x5, 0x0, 0x1889db0, 0xc000d35c90, 0x1161bd6, 0xc000270fe0)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:50 +0xa6
k8s.io/client-go/util/retry.RetryOnConflict(...)
	/go/pkg/mod/k8s.io/client-go@v0.17.4/util/retry/util.go:104
github.com/projectsyn/lieutenant-operator/pkg/controller/cluster.(*ReconcileCluster).Reconcile(0xc0004e0140, 0xc0008ae280, 0xa, 0xc000270fe0, 0x12, 0x0, 0xbfbdc9c8981f5bc9, 0xc000bb4d80, 0xc000bb4cf8)
	/app/pkg/controller/cluster/cluster_reconcile.go:45 +0x266
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler(0xc0009d6300, 0x164dcc0, 0xc0009b0080, 0x0)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:256 +0x161
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem(0xc0009d6300, 0xc000f84200)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:232 +0xae
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker(0xc0009d6300)
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:211 +0x2b
k8s.io/apimachinery/pkg/util/wait.JitterUntil.func1(0xc0003100b0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:152 +0x5f
k8s.io/apimachinery/pkg/util/wait.JitterUntil(0xc0003100b0, 0x3b9aca00, 0x0, 0x1, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:153 +0xf8
k8s.io/apimachinery/pkg/util/wait.Until(0xc0003100b0, 0x3b9aca00, 0xc00069a3c0)
	/go/pkg/mod/k8s.io/apimachinery@v0.17.4/pkg/util/wait/wait.go:88 +0x4d
created by sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func1
	/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.5.2/pkg/internal/controller/controller.go:193 +0x305

created time in 22 days

push eventprojectsyn/documentation

Tobias Brunner

commit sha 7a912f07aa79be6337b1fb8d22554d4abef4f3e8

WIP

view details

push time in 22 days

Pull request review commentprojectsyn/lieutenant-operator

Restructure and improve docs

 * xref:index.adoc[Home] -.Tutorials-include::partial$nav-tutorials.adoc[]+* xref:tutorials.adoc[Tutorials]

Please don't change this! This would break integration into main documentation. Navigation needs to be maintained in the partials.

Kidswiss

comment created time in a month

push eventappuio/openshift4-docs

Christian Haeusler

commit sha 05cb0665734c57e690f609864f763e04e3d78206

Switch block titles to sections It was not easy to understand the scopeing of the block titles. Switching them to sections resolved that issue.

view details

Tobias Brunner

commit sha 0646085ed07409760407eec48fb5f631efa4fc0a

Merge pull request #22 from appuio/switch_titles Switch block titles to sections

view details

push time in a month

PR merged appuio/openshift4-docs

Reviewers
Switch block titles to sections

It was not easy to understand the scopeing of the block titles. Switching them to sections resolved that issue.

+6 -2

0 comment

1 changed file

corvus-ch

pr closed time in a month

more