Sync latest to proxmox integration #641

themoriarti · 2025-02-21T18:46:33Z

No description provided.

## Summary by CodeRabbit - **New Features** - Enhanced OpenAPI schema handling for the Apps API server. - Introduced a method for deep copying schema structures to improve resource definition management. - **Bug Fixes** - Improved error handling during server configuration to ensure proper reporting of setup issues. - **Refactor** - Removed dynamic type registration for the `v1alpha1` API version to simplify server initialization. - **Chores** - Updated image tag for the CozyStack API to the latest version.

## Summary by CodeRabbit - **New Features** - Introduced the `keycloak-operator` as an optional component in multiple deployment configurations. - Added a Helm chart for the `keycloak-operator`, enabling streamlined deployment and management of Keycloak instances. - Enhanced documentation with a new README file for the Keycloak Operator Helm chart, detailing installation and usage instructions. - Added various Custom Resource Definitions (CRDs) for managing Keycloak resources effectively within Kubernetes. - **Bug Fixes** - Improved handling of user credentials and realm configurations in the Keycloak operator. - **Documentation** - Comprehensive updates to the README and configuration files to assist users in deploying and managing Keycloak. - **Chores** - Added various Custom Resource Definitions (CRDs) for managing Keycloak resources effectively within Kubernetes.

## Summary by CodeRabbit - **New Features** - Updated application version from 1.5.0 to 1.6.0. - Introduced new role-based access control (RBAC) roles: view, use, admin, and super-admin, enhancing security and permissions management. - Added new Keycloak realm groups for view, use, admin, and super-admin roles, streamlining user management within the application. - Integrated `keycloak-configure` release into the deployment structure, establishing dependencies for improved configuration management. - **Bug Fixes** - Resolved versioning discrepancies in the tenant package.

Signed-off-by: Andrei Kvapil <[email protected]>  ## Summary by CodeRabbit - **New Features** - Introduced a new patch application step in the update process for KubeOVN. - Enhanced flexibility in the `kube-ovn-cni` configuration by allowing users to specify the Maximum Transmission Unit (MTU) for improved network performance. - **Bug Fixes** - Applied a patch to ensure the new MTU configuration is properly integrated into the deployment process.  Signed-off-by: Andrei Kvapil <[email protected]>

## Summary by CodeRabbit ## Release Notes - **New Features** - Introduced a new variable `$host` for improved configuration management. - Added a `valuesFrom` section to the `dashboard` release, allowing external value sourcing. - Enhanced Keycloak integration with new client scopes, roles, and configurations for Kubeapps. - Added support for custom pod specifications and environment variables in Redis configurations. - Introduced a new Kubernetes configuration file for managing access to resources via Role and Secret. - Updated image versions across various components to ensure compatibility and leverage new features. - **Bug Fixes** - Implemented error handling to ensure required configurations are present. - Improved handling of request headers for the `/logos` endpoint in Nginx configuration. - Adjusted security context configurations to enhance deployment security. - **Documentation** - Updated configuration files to reflect new dependencies and structures for better clarity. - Enhanced README documentation with upgrade instructions and security defaults. - Expanded notes on handling persistent volumes and data migration during upgrades. These enhancements improve the overall functionality and reliability of the platform.

## Summary by CodeRabbit - **New Features** - Upgraded MetalLB application version to `v0.14.8`. - Introduced a new `frr-k8s` dependency for enhanced BGP management. - Added new configuration options for TLS settings and extra containers in the controller. - Implemented new Custom Resource Definitions (CRDs) for managing FRR configurations and node states. - **Bug Fixes** - Improved validation logic for service account names to ensure consistency. - **Documentation** - Updated README files for the MetalLB and `frr-k8s` charts to reflect new features and configuration options. - **Refactor** - Enhanced RBAC configurations for better resource management and security. - Improved webhook configurations for better validation and consistency. - **Chores** - Updated various YAML configuration files to include namespace specifications for clarity.

## Summary by CodeRabbit - **New Features** - Introduced new configuration options for socket-based load balancing tracing and initial fetch timeout settings in the Cilium deployment. - Enhanced validation checks for deprecated options to prevent misconfigurations. - **Bug Fixes** - Improved error messaging for deprecated or invalid settings. - **Documentation** - Updated version numbers in README and configuration files to reflect the new version (1.16.4). - **Chores** - Updated Dockerfile and image tags to reference the latest version (1.16.4).

## Summary by CodeRabbit ## Release Notes - **New Features** - Updated Piraeus Operator chart to version 2.7.1. - Introduced new Custom Resource Definitions (CRDs) for enhanced management of LINSTOR resources. - **Improvements** - Updated image tags for various components to their latest versions. - Added `nodeSelector` and `affinity` fields for improved pod scheduling in deployments. These enhancements provide users with better resource management and operational capabilities.

## Summary by CodeRabbit - **New Features** - Introduced a new pre-commit hook (`run-make-generate`) to automate the generation process in application directories. - **Documentation** - Enhanced readability of the Managed NATS Service README by adjusting formatting and removing unnecessary headers. - **Bug Fixes** - Corrected JSON structure in the Postgres values schema to ensure validity. - **Chores** - Updated pre-commit configuration for improved consistency and functionality. - Reorganized properties in the NATS values schema, removing the `users` property to reflect changes in user management capabilities.

## Summary by CodeRabbit - **New Features** - Enhanced build process for Kubeapps with improved modularity and patch integration. - Introduced version specification for Kubeapps builds. - **Bug Fixes** - Streamlined plugin build commands for better performance and clarity. - **Refactor** - Restructured Dockerfile to utilize different base images and optimize the build stages.

## Summary by CodeRabbit ## Release Notes - **New Features** - Integrated OpenID Connect (OIDC) for enhanced authentication. - Added dynamic Role resource for tenant-specific access to Kubernetes secrets. - Introduced new Keycloak realm groups for improved role management. - **Improvements** - Enhanced error handling for service readiness checks. - Streamlined configuration files for better clarity and management of OIDC settings. - Updated handling of API server address and improved configuration adaptability based on OIDC settings. - **Bug Fixes** - Removed deprecated configurations related to Keycloak, simplifying deployment. These updates aim to improve security, usability, and overall system performance.

## Summary by CodeRabbit - **New Features** - Introduced new Makefiles for `keycloak`, `keycloak-configure`, and `keycloak-operator` packages, establishing environment variables for deployment. - Each Makefile includes common scripts to streamline build and environment settings. - **Bug Fixes** - No specific bug fixes were mentioned. - **Documentation** - No updates to documentation were noted.

## Summary by CodeRabbit - **New Features** - Enhanced management of Kubernetes secrets for `k8s-client`, `kubeapps-client`, and `kubeapps-auth-config`. - Improved handling of client secrets by reusing existing configurations when available. - **Bug Fixes** - Addressed issues with static secret definitions, streamlining the configuration process. - **Chores** - Removed outdated secret and Keycloak client definitions for cleaner configuration management.

## Summary by CodeRabbit ## Summary by CodeRabbit - **New Features** - Enhanced management of Keycloak credentials by checking for existing passwords stored in Kubernetes Secrets. - Improved password management logic, allowing for the reuse of existing passwords or the generation of new ones as needed. - **Bug Fixes** - Streamlined secret handling to avoid unnecessary random password generation, improving security and maintainability.  Co-authored-by: Floppy Disk <[email protected]>

## Summary by CodeRabbit ## Release Notes - **New Features** - Updated container images for various components to their latest versions, enhancing performance and security. - **Bug Fixes** - Addressed potential issues by upgrading image tags and digests for components such as CozyStack, ClickHouse, PostgreSQL, and others. - **Documentation** - Updated `values.yaml` configurations for multiple packages to reflect the latest image versions and digests. These updates ensure improved functionality and reliability across the application.

I saw your call for adopters - I am sort of in production now, but not with any services that I can advertise. This Urmanac is something I'm testing on WASM workloads. I also have hosted some Ruby services on my cluster. I am still in the proof-of-concept phase with my production workloads, working towards a service level of 99.5% or better. I am running SpinKube on Cozystack, with my own Talos Linux image that I have built to add the Spin and Tailscale extensions. (The urmanac is in beta at: https://beta.urmanac.com - urmanac.com is a dead link for now.) What's holding me back currently is hardware, not so much the software stack. I have deployed Cozystack on some severely under-powered machines. Every time I push it to the limit, my load averages shoot up into the 100's and I unfortunately bring my control plane and services down. I will probably get better results when I am able to separate the KubeVirt clusters from the data plane and control plane. When the load rises too high, etcd becomes unresponsive, and it goes downhill from there. I am very impressed with the architecture of Cozystack and I have made some contributions to Cozystack on behalf of the FluxCD community! I am in firm support of your goal to join the CNCF.  ## Summary by CodeRabbit - **New Features** - Added "Urmanac" to the Cozystack Adopters list, including contact information and a description of its use of Cozystack. - **Documentation** - Reformatted the existing entry for "gohost" for consistency.  Signed-off-by: Kingdon Barrett <[email protected]>

## Summary by CodeRabbit - **New Features** - Enhanced Keycloak client configuration with new secrets for `k8s-client`, `kubeapps-client`, and `kubeapps-auth-config`. - Introduced new `ClusterKeycloak` and `ClusterKeycloakRealm` resources for improved management. - Updated Keycloak client scopes with additional attributes and protocol mappers. - Added multiple CiliumNetworkPolicy and CiliumClusterwideNetworkPolicy configurations for better traffic control. - **Improvements** - Logic added to check for existing Kubernetes secrets and generate new ones as needed, ensuring seamless configuration management. - Enhanced network policies to provide comprehensive control over ingress and egress traffic for various services within the tenant's namespace.

## Summary by CodeRabbit ## Release Notes - **New Features** - Introduced new configuration parameters for Jetstream, including `jetstream.size` and `jetstream.enabled`, enhancing storage and functionality options. - Added support for merging additional configurations with `config.merge` and `config.resolver`. - **Bug Fixes** - Improved password generation and configuration merging logic for better flexibility in deployments. - **Version Updates** - NATS application version updated from `0.3.1` to `0.4.0`.

## Summary by CodeRabbit ## Release Notes - **New Features** - Enhanced deployment configurations with new init containers for various components, improving ownership management and initialization processes. - Added new properties to Custom Resource Definitions (CRDs) for better network resource management and flexibility. - Introduced new configuration options in `values.yaml` for enhanced functionality. - Implemented dynamic version-specific fetching for kube-ovn charts, improving version control. - Expanded permissions for ClusterRoles related to authentication and authorization. - **Bug Fixes** - Updated command structures and security contexts across multiple deployments to enhance security and functionality. - **Documentation** - Minor formatting adjustments made to improve clarity in configuration files. - **Chores** - Streamlined Dockerfile and Helm chart configurations for better maintainability and efficiency.

Upstream fixes: - kubevirt/cloud-provider-kubevirt#335 - kubevirt/cloud-provider-kubevirt#336  ## Summary by CodeRabbit ## Release Notes - **New Features** - Incremented Kubernetes chart version to 0.14.1. - Introduced a new cloud provider controller for managing EndpointSlices in KubeVirt, enhancing responsiveness to service changes. - **Improvements** - Updated Docker image tag for kubevirt-cloud-provider to use the latest version. - Enhanced handling of EndpointSlices for LoadBalancer services, improving service management. - **Bug Fixes** - Improved error handling and logging for service retrieval and EndpointSlice management. - **Documentation** - Updated version mappings in the versions map file for clarity and tracking.  Signed-off-by: Andrei Kvapil <[email protected]>

## Summary by CodeRabbit - **New Features** - Enhanced Kubernetes configuration template for tenant-specific context, improving configurability and security. - **Version Updates** - Updated application version from 1.6.1 to 1.6.2. - Incremented version references for multiple packages, ensuring alignment with the latest commits.

We don't need to show alerts from longterm instance, because the alerts have shorter timeout than metrics collection interval  ## Summary by CodeRabbit - **New Features** - Updated the `VMAlert` YAML template to generate only the first `VMAlert` resource based on metrics storage values.  Signed-off-by: Andrei Kvapil <[email protected]>

## Summary by CodeRabbit - **Chores** - Revised Virtual Machine configuration to require explicit confirmation for the running state. The system no longer auto-activates instances by default, giving users more direct control over instance activation. Existing validations continue to ensure that only valid configurations are applied, resulting in a more reliable deployment process.

## Summary by CodeRabbit - **Chores** - Upgraded the core installer and related system images from version v1.9.2 to v1.9.3. - Refreshed firmware and driver references for improved consistency across all installation profiles.

Signed-off-by: Andrei Kvapil <[email protected]>  ## Summary by CodeRabbit - **Chores** - Upgraded multiple system components to the latest version, ensuring improved performance, stability, and enhanced security. - Updated deployment and testing configurations across the platform for a more reliable user experience.  Signed-off-by: Andrei Kvapil <[email protected]>

Signed-off-by: Andrei Kvapil <[email protected]>  ## Summary by CodeRabbit - **Chores** - Updated deployment configurations with the latest application versions (0.8.1 and 0.5.1) to ensure improved stability and compatibility. - **Bug Fixes** - Enhanced service connectivity by refining the criteria used for routing requests to the correct application endpoints.  Signed-off-by: Andrei Kvapil <[email protected]>

feature/add-kafka-monitoring

Signed-off-by: Andrei Kvapil <[email protected]>

Prepare release v0.25.1

feature/add-workloadmonitors-roles

feature/add-wl

feature/add-more-resources

Prepare release v0.25.2

feature/mv-kubeconfig

coderabbitai · 2025-02-21T18:46:41Z

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

kvaps and others added 30 commits November 25, 2024 15:18

Update CDI v1.61.0 (#495)

d02b851

Update KubeVirt v1.4.0 (#496)

9556716

Update Talos Linux v1.8.3 (#497)

2b10fb2

MetallB disable frr by default (#501)

9baef88

MetallB enable frr and disable frr-k8s by default (#503)

fd04586

fix kk-configure (#505)

142790d

fix keycloak secrets drift (#509)

6272cd7

Add networkpolicy for Keycloak (#510)

607ad72

kvaps and others added 25 commits February 7, 2025 13:53

Update cozy-proxy v0.1.1 (#624)

dacabe6

Fix bootbox chartname (#623)

6245976

Merge branch 'aenix-io:main' into main

87328a6

add kafka monitoring

b75aaf1

update kafka operator version

d234d58

fix

84a2394

Upd cozy-proxy to fix reconciliation logic (#629)

65036e8

fix dashboard

cc0222a

Merge pull request #625 from klinch0/feature/add-kafka-monitoring

ecfb02a

feature/add-kafka-monitoring

add-workloadmonitors-roles

4cc48e6

Prepare release v0.25.1

1f6ea33

Signed-off-by: Andrei Kvapil <[email protected]>

Merge pull request #630 from aenix-io/release-0.25.1

93c4616

Prepare release v0.25.1

Merge pull request #626 from klinch0/feature/add-workloadmonitors-roles

eefef8b

feature/add-workloadmonitors-roles

add wl

42f1dab

Merge pull request #632 from klinch0/feature/add-white-label

7d5b22e

feature/add-wl

Prepare release v0.25.2

bd90eb2

add more resources

9a55747

Merge pull request #635 from klinch0/feature/update-limits

0f68db6

feature/add-more-resources

Merge pull request #634 from aenix-io/release/v0.25.2

bc95159

Prepare release v0.25.2

feature/mv-kubeconfig

6c73e3f

Merge pull request #638 from klinch0/feature/move-kubeconfig

135b060

feature/mv-kubeconfig

themoriarti requested a review from kvaps as a code owner February 21, 2025 18:46

dosubot bot added the size:XXL This PR changes 1000+ lines, ignoring generated files. label Feb 21, 2025

themoriarti merged commit 31f5a1b into 69-integration-with-proxmox-paas-proxmox-bundle Feb 21, 2025
1 of 2 checks passed

dosubot bot added the enhancement New feature or request label Feb 21, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sync latest to proxmox integration #641

Sync latest to proxmox integration #641

themoriarti commented Feb 21, 2025

coderabbitai bot commented Feb 21, 2025

Review skipped

Chat

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (`.coderabbit.yaml`)

Documentation and Community

Sync latest to proxmox integration #641

Sync latest to proxmox integration #641

Conversation

themoriarti commented Feb 21, 2025

coderabbitai bot commented Feb 21, 2025

Review skipped

Chat

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (.coderabbit.yaml)

Documentation and Community

CodeRabbit Configuration File (`.coderabbit.yaml`)