From 889d8a948e522d0f91a393270297da0679857292 Mon Sep 17 00:00:00 2001 From: "distro-ci[bot]" <122795778+distro-ci[bot]@users.noreply.github.com> Date: Sat, 29 Jun 2024 00:34:38 +0200 Subject: [PATCH 01/32] Release Camunda Platform Helm Chart 8.2.29, 8.3.14, 9.3.7, 10.2.0 (#2014) * Release Camunda Platform Helm Chart * chore(release): update chart files --------- Signed-off-by: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Co-authored-by: distro-ci[bot] <122795778+distro-ci[bot]@users.noreply.github.com> --- .../.release-please-manifest.json | 8 +-- .github/workflows/chart-release.yaml | 6 +- charts/camunda-platform-8.2/Chart.yaml | 10 +++- charts/camunda-platform-8.2/RELEASE-NOTES.md | 51 +++++++++++++++- .../charts/identity/Chart.yaml | 2 +- .../charts/operate/Chart.yaml | 2 +- .../charts/optimize/Chart.yaml | 2 +- .../charts/tasklist/Chart.yaml | 2 +- .../charts/zeebe-gateway/Chart.yaml | 2 +- .../charts/zeebe/Chart.yaml | 2 +- .../connectors/golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../connectors/golden/ingress.golden.yaml | 2 +- .../connectors/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../unit/golden/curator-configmap.golden.yaml | 2 +- .../unit/golden/curator-cronjob.golden.yaml | 2 +- .../unit/golden/service-monitor.golden.yaml | 2 +- charts/camunda-platform-8.3/Chart.yaml | 8 ++- charts/camunda-platform-8.3/RELEASE-NOTES.md | 49 +++++++++++++-- .../charts/identity/Chart.yaml | 2 +- .../connectors-service-monitor.golden.yaml | 2 +- .../identity-service-monitor.golden.yaml | 2 +- .../operate-service-monitor.golden.yaml | 2 +- .../optimize-service-monitor.golden.yaml | 2 +- .../tasklist-service-monitor.golden.yaml | 2 +- .../web-modeler-service-monitor.golden.yaml | 2 +- .../zeebe-gateway-service-monitor.golden.yaml | 2 +- .../golden/zeebe-service-monitor.golden.yaml | 2 +- .../connectors/golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../connectors/golden/ingress.golden.yaml | 2 +- .../connectors/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../unit/operate/golden/configmap.golden.yaml | 2 +- .../operate/golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/operate/golden/ingress.golden.yaml | 2 +- .../unit/operate/golden/service.golden.yaml | 2 +- .../operate/golden/serviceaccount.golden.yaml | 2 +- .../optimize/golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/optimize/golden/ingress.golden.yaml | 2 +- .../unit/optimize/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../tasklist/golden/configmap.golden.yaml | 2 +- .../tasklist/golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/tasklist/golden/ingress.golden.yaml | 2 +- .../unit/tasklist/golden/service.golden.yaml | 2 +- .../golden/configmap-log4j2.golden.yaml | 2 +- .../golden/configmap.golden.yaml | 2 +- .../golden/deployment.golden.yaml | 4 +- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../zeebe-gateway/golden/ingress.golden.yaml | 2 +- .../golden/poddisruptionbudget.golden.yaml | 2 +- .../zeebe-gateway/golden/service.golden.yaml | 2 +- .../serviceaccount-annotations.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../zeebe/golden/configmap-log4j2.golden.yaml | 2 +- .../unit/zeebe/golden/configmap.golden.yaml | 2 +- .../golden/poddisruptionbudget.golden.yaml | 2 +- .../unit/zeebe/golden/service.golden.yaml | 2 +- .../zeebe/golden/serviceaccount.golden.yaml | 2 +- .../unit/zeebe/golden/statefulset.golden.yaml | 4 +- charts/camunda-platform-8.4/Chart.yaml | 8 +-- charts/camunda-platform-8.4/RELEASE-NOTES.md | 51 ++++++++++++++-- .../charts/identity/Chart.yaml | 2 +- charts/camunda-platform-latest/Chart.yaml | 14 ++++- .../camunda-platform-latest/RELEASE-NOTES.md | 59 +++++++++++++++++-- scripts/generate-version-matrix.sh | 4 +- version-matrix/README.md | 4 ++ version-matrix/camunda-8.2/README.md | 29 +++++++++ version-matrix/camunda-8.3/README.md | 30 ++++++++++ version-matrix/camunda-8.4/README.md | 30 ++++++++++ version-matrix/camunda-8.5/README.md | 31 ++++++++++ 76 files changed, 422 insertions(+), 104 deletions(-) diff --git a/.github/config/release-please/.release-please-manifest.json b/.github/config/release-please/.release-please-manifest.json index d728e04445..2b601a7292 100644 --- a/.github/config/release-please/.release-please-manifest.json +++ b/.github/config/release-please/.release-please-manifest.json @@ -1,6 +1,6 @@ { - "charts/camunda-platform-8.2": "8.2.28", - "charts/camunda-platform-8.3": "8.3.13", - "charts/camunda-platform-8.4": "9.3.6", - "charts/camunda-platform-latest": "10.1.0" + "charts/camunda-platform-8.2": "8.2.29", + "charts/camunda-platform-8.3": "8.3.14", + "charts/camunda-platform-8.4": "9.3.7", + "charts/camunda-platform-latest": "10.2.0" } diff --git a/.github/workflows/chart-release.yaml b/.github/workflows/chart-release.yaml index 13474534e4..6cf31946c3 100644 --- a/.github/workflows/chart-release.yaml +++ b/.github/workflows/chart-release.yaml @@ -12,6 +12,9 @@ on: pull_request: types: - labeled + push: + branches: + - release-please--branches--main concurrency: group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} @@ -90,6 +93,7 @@ jobs: - name: Pre-Release - Previous versions run: | rm -rf charts/camunda-platform-latest + rm -rf charts/camunda-platform-alpha - name: Run Chart Releaser - Previous versions uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0 with: @@ -106,6 +110,7 @@ jobs: - name: Pre-Release - Latest version run: | rm -rf charts/camunda-platform-8* + rm -rf charts/camunda-platform-alpha - name: Run Chart Releaser - Latest version uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0 with: @@ -162,7 +167,6 @@ jobs: uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: # The verification step happens in the "release" branch before merging into the "main" branch. - ref: release fetch-depth: 0 - name: Install env dependencies uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 diff --git a/charts/camunda-platform-8.2/Chart.yaml b/charts/camunda-platform-8.2/Chart.yaml index 43c5315772..f515d5e6be 100644 --- a/charts/camunda-platform-8.2/Chart.yaml +++ b/charts/camunda-platform-8.2/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 8.2.28 +version: 8.2.29 appVersion: 8.2.x description: | Camunda Platform 8 Self-Managed Helm charts. @@ -71,5 +71,9 @@ annotations: - name: Camunda Platform 8 Self-Managed Helm charts url: https://github.com/camunda/camunda-platform-helm artifacthub.io/containsSecurityUpdates: "false" - artifacthub.io/changes: "" - camunda.io/helmCLIVersion: 3.15.1 + artifacthub.io/changes: | + - kind: changed + description: "remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4" + - kind: changed + description: "update zeebe gateway readiness probe endpoint" + camunda.io/helmCLIVersion: 3.15.2 diff --git a/charts/camunda-platform-8.2/RELEASE-NOTES.md b/charts/camunda-platform-8.2/RELEASE-NOTES.md index aca6bd7db0..329e07e9ce 100644 --- a/charts/camunda-platform-8.2/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.2/RELEASE-NOTES.md @@ -2,6 +2,53 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-8.2.27](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.2.26...camunda-platform-8.2.27) (2024-05-13) + +## [camunda-platform-8.2.29](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.2.29) (2024-06-28) +### Ci + +* automate release chores ([#2013](https://github.com/camunda/camunda-platform-helm/issues/2013)) + +### Refactor + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) +* update zeebe gateway readiness probe endpoint + +### Release Info + +Supported versions: + +- Camunda applications: [8.2](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.2&expanded=true) +- Helm values: [8.2.29](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.2.29#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:0.23.2 +- docker.io/camunda/identity:8.2.29 +- docker.io/camunda/operate:8.2.28 +- docker.io/camunda/optimize:8.2.12 +- docker.io/camunda/tasklist:8.2.29 +- docker.io/camunda/zeebe:8.2.29 +- registry.camunda.cloud/console/console-sm:latest +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.2.16 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.2.16 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.2.16 + +Non-Camunda images: + +- docker.elastic.co/elasticsearch/elasticsearch:7.17.22 +- docker.io/bitnami/keycloak:19.0.3 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.4.0 + +### Verification + +To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): + +```shell +cosign verify-blob camunda-platform-8.2.29.tgz \ + --bundle camunda-platform-8.2.29.cosign.bundle \ + --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" +``` diff --git a/charts/camunda-platform-8.2/charts/identity/Chart.yaml b/charts/camunda-platform-8.2/charts/identity/Chart.yaml index b0b6931c14..3f23f46a2a 100644 --- a/charts/camunda-platform-8.2/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 8.2.28 +version: 8.2.29 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-8.2/charts/operate/Chart.yaml b/charts/camunda-platform-8.2/charts/operate/Chart.yaml index 307cd0dc01..6671abbbef 100644 --- a/charts/camunda-platform-8.2/charts/operate/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/operate/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 description: Operate Helm Chart for Kubernetes name: operate -version: 8.2.28 +version: 8.2.29 type: application icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/optimize/Chart.yaml b/charts/camunda-platform-8.2/charts/optimize/Chart.yaml index a814de0a96..09086d7529 100644 --- a/charts/camunda-platform-8.2/charts/optimize/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/optimize/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 description: Optimize Helm Chart for Kubernetes name: optimize -version: 8.2.28 +version: 8.2.29 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml b/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml index 44fab3210f..e5402a71a0 100644 --- a/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 description: Zeebe TaskList Helm Chart for Kubernetes name: tasklist -version: 8.2.28 +version: 8.2.29 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml b/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml index e9560ee087..63574e89bf 100644 --- a/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml @@ -2,5 +2,5 @@ apiVersion: v2 description: Zeebe Gateway Helm Chart for Kubernetes name: zeebe-gateway type: application -version: 8.2.28 +version: 8.2.29 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml b/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml index 7047f9681f..85fef8c94d 100644 --- a/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml @@ -2,5 +2,5 @@ apiVersion: v2 description: Zeebe Helm Chart for Kubernetes name: zeebe type: application -version: 8.2.28 +version: 8.2.29 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml index 4addf0f2d9..131d32e7f8 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml index e59acc8b76..90ff3bba34 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml index df51d62b10..69c9769425 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml index e1cebe19cc..9164c7bf74 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors annotations: spec: diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml index 45d3c93255..1053ebfaed 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" app.kubernetes.io/component: connectors \ No newline at end of file diff --git a/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml index 3019d5a644..c654012d9b 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" data: action_file.yml: |- --- diff --git a/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml index 493197bd7d..bde374d918 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" spec: schedule: "0 0 * * *" successfulJobsHistoryLimit: 1 diff --git a/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml index 7c3e0ec7c3..b056322001 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.28" + app.kubernetes.io/version: "8.2.29" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/Chart.yaml b/charts/camunda-platform-8.3/Chart.yaml index fcace66936..f564a0ed96 100644 --- a/charts/camunda-platform-8.3/Chart.yaml +++ b/charts/camunda-platform-8.3/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 8.3.13 +version: 8.3.14 appVersion: 8.3.x description: | Camunda 8 Self-Managed Helm charts. @@ -56,5 +56,7 @@ annotations: - name: Camunda 8 Self-Managed Helm charts url: https://github.com/camunda/camunda-platform-helm artifacthub.io/containsSecurityUpdates: "false" - artifacthub.io/changes: "" - camunda.io/helmCLIVersion: 3.15.1 + artifacthub.io/changes: | + - kind: changed + description: "remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4" + camunda.io/helmCLIVersion: 3.15.2 diff --git a/charts/camunda-platform-8.3/RELEASE-NOTES.md b/charts/camunda-platform-8.3/RELEASE-NOTES.md index 83f6943cd2..208eec44b0 100644 --- a/charts/camunda-platform-8.3/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.3/RELEASE-NOTES.md @@ -2,16 +2,53 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-8.3.12](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.3.11...camunda-platform-8.3.12) (2024-05-13) + +## [camunda-platform-8.3.14](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.3.14) (2024-06-28) + +### Ci + +* automate release chores ([#2013](https://github.com/camunda/camunda-platform-helm/issues/2013)) + +### Refactor + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) + +### Release Info + +Supported versions: + +- Camunda applications: [8.3](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.3&expanded=true) +- Helm values: [8.3.14](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.3.14#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.3.13 +- docker.io/camunda/identity:8.3.13 +- docker.io/camunda/operate:8.3.13 +- docker.io/camunda/optimize:8.3.11 +- docker.io/camunda/tasklist:8.3.14 +- docker.io/camunda/zeebe:8.3.13 +- registry.camunda.cloud/console/console-sm:latest +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.3.9 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.3.9 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.3.9 + +Non-Camunda images: + +- docker.io/bitnami/elasticsearch:8.8.2 +- docker.io/bitnami/keycloak:22.0.5 +- docker.io/bitnami/os-shell:11-debian-11-r92 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.5.0 ### Verification -To verify integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): +To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): ```shell -cosign verify-blob camunda-platform-8.3.12.tgz \ - --bundle camunda-platform-8.3.12.cosign.bundle \ +cosign verify-blob camunda-platform-8.3.14.tgz \ + --bundle camunda-platform-8.3.14.cosign.bundle \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ - --certificate-identity "https://github.com/_GITHUB_WORKFLOW_REF_" + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" ``` diff --git a/charts/camunda-platform-8.3/charts/identity/Chart.yaml b/charts/camunda-platform-8.3/charts/identity/Chart.yaml index 007b5c49ba..6f59124406 100644 --- a/charts/camunda-platform-8.3/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.3/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 8.3.13 +version: 8.3.14 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml index ddb6300c49..1002b0fc9f 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml index b5216c0aa2..76cf4c5f08 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml index 83b34dab3d..a6198dac69 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml index 8953fb787a..82c5340001 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml index 8d57c3b5b1..1bcc8bc329 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml index b249394ee2..35fdf97e5a 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml index bd2514cfde..dd31151eaf 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml index 2b38eb0f0d..0ea1a811b4 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml index 76074ec5e5..08412425b2 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml index d8e6075f59..c96dfbd339 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml index b6fa03555f..f90e90d616 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml index 006293d3c2..583440948b 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml index 9852768a8c..116067b7c3 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: connectors \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml index 98c0b85fdf..7ac0f984b0 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate data: application.yml: | diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml index 68aa6b5235..db8901fb61 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml index ee52d6f27d..e6e7a31e21 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml index cf64e207d5..568d435c3e 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml index 295d435333..2fa2ddb47f 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml index 380673a7a7..779406309a 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: operate \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml index 35d5f5e105..36cb35c10c 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml index 4d503ecc19..e6a57caff3 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml index 1da78a0b8c..2fda48a26b 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml index b0c469e26a..0382edee5d 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml index 621fedf942..99d78217a9 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: optimize \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml index 05becbda10..5b105608e5 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist data: application.yml: | diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml index 8c4e55026f..b0b8cea29e 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml index b999f1bd37..f0030f95a4 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml index 96b1e9f85a..1eedf98c0d 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml index 6d2c62309a..570b39d312 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: tasklist spec: type: ClusterIP diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml index a80b634365..fe3e98736f 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml index 90fe3a38e2..c93547e886 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml index 59bd9685d9..c4f40d7bef 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: {} diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml index 38f81b3565..5775c8cd5a 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml index 5f86c6f168..87a997d7a3 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml index 22750dec57..f548c87fca 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway spec: minAvailable: 1 diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml index 12df3daf24..f87b7def33 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml index 479bbc4b61..21317b7155 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway annotations: foo: bar diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml index 97f09d071b..b7917212e9 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-gateway \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml index 54d4d5f3e7..7c5f9ee43b 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml index 542325a254..1d0f32aeba 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml index 4121569e20..045c1c28ba 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker spec: maxUnavailable: 1 diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml index b3451d7436..0ec6dd2e2d 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker annotations: {} diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml index 6a897c44c9..3075c35791 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml index 5b2245bcc7..3735daca5e 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker annotations: spec: @@ -35,7 +35,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.13" + app.kubernetes.io/version: "8.3.14" app.kubernetes.io/component: zeebe-broker annotations: spec: diff --git a/charts/camunda-platform-8.4/Chart.yaml b/charts/camunda-platform-8.4/Chart.yaml index b5e7c736ad..3f74eb0a7b 100644 --- a/charts/camunda-platform-8.4/Chart.yaml +++ b/charts/camunda-platform-8.4/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 9.3.6 +version: 9.3.7 appVersion: 8.4.x description: | Camunda 8 Self-Managed Helm charts. @@ -59,6 +59,6 @@ annotations: url: https://github.com/camunda/camunda-platform-helm artifacthub.io/containsSecurityUpdates: "false" artifacthub.io/changes: | - - kind: fixed - description: "operate should be 8.4.8 in helm 9.3.4" - camunda.io/helmCLIVersion: 3.15.1 + - kind: changed + description: "remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4" + camunda.io/helmCLIVersion: 3.15.2 diff --git a/charts/camunda-platform-8.4/RELEASE-NOTES.md b/charts/camunda-platform-8.4/RELEASE-NOTES.md index 8fc3bc7e75..ba71fd8830 100644 --- a/charts/camunda-platform-8.4/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.4/RELEASE-NOTES.md @@ -2,10 +2,53 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-9.3.5](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-9.3.4...camunda-platform-9.3.5) (2024-05-22) + +## [camunda-platform-9.3.7](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-9.3.7) (2024-06-28) -### Fix +### Ci -* operate should be 8.4.8 in helm 9.3.4 ([#1835](https://github.com/camunda/camunda-platform-helm/issues/1835)) +* automate release chores ([#2013](https://github.com/camunda/camunda-platform-helm/issues/2013)) +### Refactor + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) + +### Release Info + +Supported versions: + +- Camunda applications: [8.4](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.4&expanded=true) +- Helm values: [9.3.7](https://artifacthub.io/packages/helm/camunda/camunda-platform/9.3.7#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.4.9 +- docker.io/camunda/identity:8.4.9 +- docker.io/camunda/operate:8.4.10 +- docker.io/camunda/optimize:8.4.6 +- docker.io/camunda/tasklist:8.4.10 +- docker.io/camunda/zeebe:8.4.9 +- registry.camunda.cloud/console/console-sm:8.4.60 +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.4.7 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.4.7 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.4.7 + +Non-Camunda images: + +- docker.io/bitnami/elasticsearch:8.9.2 +- docker.io/bitnami/keycloak:22.0.5 +- docker.io/bitnami/os-shell:12-debian-12-r16 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.7.0 + +### Verification + +To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): + +```shell +cosign verify-blob camunda-platform-9.3.7.tgz \ + --bundle camunda-platform-9.3.7.cosign.bundle \ + --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" +``` diff --git a/charts/camunda-platform-8.4/charts/identity/Chart.yaml b/charts/camunda-platform-8.4/charts/identity/Chart.yaml index ba41515202..62ce19769a 100644 --- a/charts/camunda-platform-8.4/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.4/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 9.3.6 +version: 9.3.7 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-latest/Chart.yaml b/charts/camunda-platform-latest/Chart.yaml index fcb39d2b9f..bb486f710a 100644 --- a/charts/camunda-platform-latest/Chart.yaml +++ b/charts/camunda-platform-latest/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 10.1.1 +version: 10.2.0 appVersion: 8.5.x description: | Camunda 8 Self-Managed Helm charts. @@ -51,7 +51,7 @@ maintainers: email: ahmed.abouzaid@camunda.com annotations: dummy: dummy - camunda.io/helmCLIVersion: "3.15.1" + camunda.io/helmCLIVersion: "3.15.2" artifacthub.io/links: | - name: Camunda 8 docs url: https://docs.camunda.io/ @@ -61,5 +61,15 @@ annotations: url: https://github.com/camunda/camunda-platform-helm artifacthub.io/containsSecurityUpdates: "false" artifacthub.io/changes: | + - kind: added + description: "configurable update strategy" + - kind: added + description: "support dnsPolicy and dnsConfig for all components" - kind: added description: "add console auth vars" + - kind: fixed + description: "identity base url not configured" + - kind: fixed + description: "unauthenticated external elasticsearch no longer forces password…" + - kind: changed + description: "remove the global image tag value and use it from the components" diff --git a/charts/camunda-platform-latest/RELEASE-NOTES.md b/charts/camunda-platform-latest/RELEASE-NOTES.md index d012b36b74..11d0910322 100644 --- a/charts/camunda-platform-latest/RELEASE-NOTES.md +++ b/charts/camunda-platform-latest/RELEASE-NOTES.md @@ -2,18 +2,65 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-10.1.1](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-9.3.6...camunda-platform-10.1.1) (2024-06-17) + +## [camunda-platform-10.2.0](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-10.2.0) (2024-06-28) + +### Ci + +* automate release chores ([#2013](https://github.com/camunda/camunda-platform-helm/issues/2013)) ### Feat +* configurable update strategy ([#2036](https://github.com/camunda/camunda-platform-helm/issues/2036)) +* support dnsPolicy and dnsConfig for all components ([#2009](https://github.com/camunda/camunda-platform-helm/issues/2009)) * add console auth vars ([#1782](https://github.com/camunda/camunda-platform-helm/issues/1782)) +### Fix + +* identity base url not configured ([#2028](https://github.com/camunda/camunda-platform-helm/issues/2028)) +* unauthenticated external elasticsearch no longer forces password… ([#1990](https://github.com/camunda/camunda-platform-helm/issues/1990)) + +### Refactor + +* remove the global image tag value and use it from the components ([#2069](https://github.com/camunda/camunda-platform-helm/issues/2069)) + +### Release Info + +Supported versions: + +- Camunda applications: [8.5](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.5&expanded=true) +- Helm values: [10.2.0](https://artifacthub.io/packages/helm/camunda/camunda-platform/10.2.0#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.5.4 +- docker.io/camunda/identity:8.5.3 +- docker.io/camunda/identity:latest +- docker.io/camunda/operate:8.5.4 +- docker.io/camunda/optimize:8.5.3 +- docker.io/camunda/tasklist:8.5.3 +- docker.io/camunda/zeebe:8.5.4 +- registry.camunda.cloud/console/console-sm:8.5.67 +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.5.5 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.5.5 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.5.5 + +Non-Camunda images: - -## [camunda-platform-9.3.6](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-10.1.0...camunda-platform-9.3.6) (2024-06-11) +- docker.io/bitnami/elasticsearch:8.12.2 +- docker.io/bitnami/keycloak:23.0.7 +- docker.io/bitnami/os-shell:12-debian-12-r18 +- docker.io/bitnami/postgresql:14.12.0 +- docker.io/bitnami/postgresql:15.7.0 +### Verification - -## [camunda-platform-10.1.0](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.2.28...camunda-platform-10.1.0) (2024-06-11) +To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): +```shell +cosign verify-blob camunda-platform-10.2.0.tgz \ + --bundle camunda-platform-10.2.0.cosign.bundle \ + --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" +``` diff --git a/scripts/generate-version-matrix.sh b/scripts/generate-version-matrix.sh index 4dc8f681fd..969e8fc8c9 100755 --- a/scripts/generate-version-matrix.sh +++ b/scripts/generate-version-matrix.sh @@ -1,6 +1,6 @@ #!/bin/bash -set -euo pipefail +set -euox pipefail # Check dependencies. dep_names="awk git gomplate helm jq tr yq" @@ -13,7 +13,7 @@ for dep_name in ${dep_names}; do done CHART_NAME="${CHART_NAME:-camunda-platform}" -CHART_DIR="${CHART_DIR:-${CHART_NAME-latest}}" +CHART_DIR="${CHART_DIR:-charts/camunda-platform-latest}" CHART_SOURCE="${CHART_SOURCE:-camunda/$CHART_NAME}" # Add unsupported Camunda version to reduce generation time. CAMUNDA_APPS_UNSUPPORTED_VERSIONS_REGEX='(1.*|8.[01])' diff --git a/version-matrix/README.md b/version-matrix/README.md index 0bbaa7182d..27f8a2eabd 100644 --- a/version-matrix/README.md +++ b/version-matrix/README.md @@ -20,6 +20,7 @@ For the best experience, please remember: ## Camunda 8.5 +### [Helm chart 10.2.0](./camunda-8.5/#helm-chart-1020) ### [Helm chart 10.1.1](./camunda-8.5/#helm-chart-1011) ### [Helm chart 10.1.0](./camunda-8.5/#helm-chart-1010) ### [Helm chart 10.0.5](./camunda-8.5/#helm-chart-1005) @@ -29,6 +30,7 @@ For the best experience, please remember: ## Camunda 8.4 +### [Helm chart 9.3.7](./camunda-8.4/#helm-chart-937) ### [Helm chart 9.3.6](./camunda-8.4/#helm-chart-936) ### [Helm chart 9.3.5](./camunda-8.4/#helm-chart-935) ### [Helm chart 9.3.4](./camunda-8.4/#helm-chart-934) @@ -46,6 +48,7 @@ For the best experience, please remember: ## Camunda 8.3 +### [Helm chart 8.3.14](./camunda-8.3/#helm-chart-8314) ### [Helm chart 8.3.13](./camunda-8.3/#helm-chart-8313) ### [Helm chart 8.3.12](./camunda-8.3/#helm-chart-8312) ### [Helm chart 8.3.11](./camunda-8.3/#helm-chart-8311) @@ -63,6 +66,7 @@ For the best experience, please remember: ## Camunda 8.2 +### [Helm chart 8.2.29](./camunda-8.2/#helm-chart-8229) ### [Helm chart 8.2.28](./camunda-8.2/#helm-chart-8228) ### [Helm chart 8.2.27](./camunda-8.2/#helm-chart-8227) ### [Helm chart 8.2.26](./camunda-8.2/#helm-chart-8226) diff --git a/version-matrix/camunda-8.2/README.md b/version-matrix/camunda-8.2/README.md index 61fdf59851..ab83a0c235 100644 --- a/version-matrix/camunda-8.2/README.md +++ b/version-matrix/camunda-8.2/README.md @@ -1,6 +1,35 @@ # Camunda 8.2 Helm Chart Version Matrix +## Helm chart 8.2.29 + +Supported versions: + +- Camunda applications: [8.2](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.2&expanded=true) +- Helm values: [8.2.29](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.2.29#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:0.23.2 +- docker.io/camunda/identity:8.2.29 +- docker.io/camunda/operate:8.2.28 +- docker.io/camunda/optimize:8.2.12 +- docker.io/camunda/tasklist:8.2.29 +- docker.io/camunda/zeebe:8.2.29 +- registry.camunda.cloud/console/console-sm:latest +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.2.16 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.2.16 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.2.16 + +Non-Camunda images: + +- docker.elastic.co/elasticsearch/elasticsearch:7.17.22 +- docker.io/bitnami/keycloak:19.0.3 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.4.0 + + ## Helm chart 8.2.28 Supported versions: diff --git a/version-matrix/camunda-8.3/README.md b/version-matrix/camunda-8.3/README.md index 45bf49be60..cde1093a24 100644 --- a/version-matrix/camunda-8.3/README.md +++ b/version-matrix/camunda-8.3/README.md @@ -1,6 +1,36 @@ # Camunda 8.3 Helm Chart Version Matrix +## Helm chart 8.3.14 + +Supported versions: + +- Camunda applications: [8.3](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.3&expanded=true) +- Helm values: [8.3.14](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.3.14#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.3.13 +- docker.io/camunda/identity:8.3.13 +- docker.io/camunda/operate:8.3.13 +- docker.io/camunda/optimize:8.3.11 +- docker.io/camunda/tasklist:8.3.14 +- docker.io/camunda/zeebe:8.3.13 +- registry.camunda.cloud/console/console-sm:latest +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.3.9 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.3.9 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.3.9 + +Non-Camunda images: + +- docker.io/bitnami/elasticsearch:8.8.2 +- docker.io/bitnami/keycloak:22.0.5 +- docker.io/bitnami/os-shell:11-debian-11-r92 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.5.0 + + ## Helm chart 8.3.13 Supported versions: diff --git a/version-matrix/camunda-8.4/README.md b/version-matrix/camunda-8.4/README.md index eee903e9a4..799c520b2f 100644 --- a/version-matrix/camunda-8.4/README.md +++ b/version-matrix/camunda-8.4/README.md @@ -1,6 +1,36 @@ # Camunda 8.4 Helm Chart Version Matrix +## Helm chart 9.3.7 + +Supported versions: + +- Camunda applications: [8.4](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.4&expanded=true) +- Helm values: [9.3.7](https://artifacthub.io/packages/helm/camunda/camunda-platform/9.3.7#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.4.9 +- docker.io/camunda/identity:8.4.9 +- docker.io/camunda/operate:8.4.10 +- docker.io/camunda/optimize:8.4.6 +- docker.io/camunda/tasklist:8.4.10 +- docker.io/camunda/zeebe:8.4.9 +- registry.camunda.cloud/console/console-sm:8.4.60 +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.4.7 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.4.7 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.4.7 + +Non-Camunda images: + +- docker.io/bitnami/elasticsearch:8.9.2 +- docker.io/bitnami/keycloak:22.0.5 +- docker.io/bitnami/os-shell:12-debian-12-r16 +- docker.io/bitnami/postgresql:14.5.0-debian-11-r35 +- docker.io/bitnami/postgresql:15.7.0 + + ## Helm chart 9.3.6 Supported versions: diff --git a/version-matrix/camunda-8.5/README.md b/version-matrix/camunda-8.5/README.md index 04ca881568..43c73829fa 100644 --- a/version-matrix/camunda-8.5/README.md +++ b/version-matrix/camunda-8.5/README.md @@ -1,6 +1,37 @@ # Camunda 8.5 Helm Chart Version Matrix +## Helm chart 10.2.0 + +Supported versions: + +- Camunda applications: [8.5](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.5&expanded=true) +- Helm values: [10.2.0](https://artifacthub.io/packages/helm/camunda/camunda-platform/10.2.0#parameters) +- Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) + +Camunda images: + +- docker.io/camunda/connectors-bundle:8.5.4 +- docker.io/camunda/identity:8.5.3 +- docker.io/camunda/identity:latest +- docker.io/camunda/operate:8.5.4 +- docker.io/camunda/optimize:8.5.3 +- docker.io/camunda/tasklist:8.5.3 +- docker.io/camunda/zeebe:8.5.4 +- registry.camunda.cloud/console/console-sm:8.5.68 +- registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.5.5 +- registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.5.5 +- registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.5.5 + +Non-Camunda images: + +- docker.io/bitnami/elasticsearch:8.12.2 +- docker.io/bitnami/keycloak:23.0.7 +- docker.io/bitnami/os-shell:12-debian-12-r18 +- docker.io/bitnami/postgresql:14.12.0 +- docker.io/bitnami/postgresql:15.7.0 + + ## Helm chart 10.1.1 Supported versions: From e6c0b418270618513edc19db68a9ac8e53bdc76c Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Sat, 29 Jun 2024 00:43:36 +0200 Subject: [PATCH 02/32] chore: tidy up chart-release-chores workflow --- .github/config/release-please/release-please-config.json | 4 ++-- .github/workflows/chart-release-chores.yml | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/config/release-please/release-please-config.json b/.github/config/release-please/release-please-config.json index 76c2ec4cbe..e48d3b6afa 100644 --- a/.github/config/release-please/release-please-config.json +++ b/.github/config/release-please/release-please-config.json @@ -1,7 +1,7 @@ { "release-type": "helm", - "group-pull-request-title-pattern": "Release Camunda Platform Helm Chart", - "pull-request-title-pattern": "Camunda Platform Helm Chart ${component}/${version}", + "group-pull-request-title-pattern": "chore(release): Camunda Platform Helm Chart", + "pull-request-title-pattern": "chore(release): Camunda Platform Helm Chart ${component}/${version}", "extra-label": "automation/release-please,release/pr,kind/chore,chart/camunda-platform", "skip-github-release": true, "separate-pull-requests": false, diff --git a/.github/workflows/chart-release-chores.yml b/.github/workflows/chart-release-chores.yml index 942a9c4396..868908a6e3 100644 --- a/.github/workflows/chart-release-chores.yml +++ b/.github/workflows/chart-release-chores.yml @@ -3,9 +3,10 @@ name: "Chart - Release - Chores" on: pull_request: branches: - - main + - release-please--branches--main paths: - .github/workflows/chart-release-chores.yml + - .github/config/release-please/release-please-config.json - .github/config/release-please/.release-please-manifest.json permissions: @@ -69,11 +70,10 @@ jobs: git fetch origin main:main # Update PR title with changed versions. - title="$(jq -r '."group-pull-request-title-pattern"' ${RELEASE_PLEASE_CONFIG})" versions="$(git log -p main..HEAD -- ${RELEASE_PLEASE_MANIFEST} | awk -F ": " '/^+ /{gsub(/[",]/,""); printf "%s%s",sep,$2; sep=", "} END{print ""}')" pr_nubmer="$(echo $GITHUB_REF | awk 'BEGIN { FS = "/" }; { print $3 }')" - gh pr edit "${pr_nubmer}" --title "${title} ${versions}" + gh pr edit "${pr_nubmer}" --title "Release Camunda Platform Helm Chart ${versions}" # Set PR project. gh pr edit "${pr_nubmer}" --add-project "Distribution Team" From dd049a19bde193db68f27f8a5037cc5994362af0 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Sat, 29 Jun 2024 01:02:31 +0200 Subject: [PATCH 03/32] chore: tidy up links --- README.md | 2 +- charts/camunda-platform-8.2/README.md | 2 +- charts/camunda-platform-8.2/openshift/README.md | 2 +- charts/camunda-platform-8.3/README.md | 10 +++------- charts/camunda-platform-8.3/openshift/README.md | 2 +- charts/camunda-platform-8.4/README.md | 10 +++------- charts/camunda-platform-8.4/openshift/README.md | 2 +- charts/camunda-platform-alpha/README.md | 10 +++------- charts/camunda-platform-alpha/openshift/README.md | 2 +- .../templates/identity/constraints.tpl | 4 ++-- .../templates/zeebe-gateway/constraints.tpl | 4 ++-- charts/camunda-platform-latest/README.md | 10 +++------- charts/camunda-platform-latest/openshift/README.md | 2 +- .../templates/identity/constraints.tpl | 4 ++-- .../templates/zeebe-gateway/constraints.tpl | 4 ++-- .../scenarios/lib/chart-upgrade-taskfile.yaml | 2 +- 16 files changed, 28 insertions(+), 44 deletions(-) diff --git a/README.md b/README.md index 24458b46ef..1873acc485 100644 --- a/README.md +++ b/README.md @@ -50,7 +50,7 @@ on the [Camunda 8 Helm chart readme](./charts/camunda-platform-latest/README.md) ## Guides Default values cannot cover every use case, so we have -[Camunda 8 deploy guides](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/guides/). +[Camunda 8 deploy guides](https://docs.camunda.io/docs/self-managed/setup/guides/). The guides have detailed examples for different use cases like Ingress setup. ## Issues diff --git a/charts/camunda-platform-8.2/README.md b/charts/camunda-platform-8.2/README.md index caca0b7dd6..c78bbec812 100644 --- a/charts/camunda-platform-8.2/README.md +++ b/charts/camunda-platform-8.2/README.md @@ -2,7 +2,7 @@ [![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) [![Test - Unit](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml/badge.svg)](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml) -[![Camunda Platform 8](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) +[![Camunda Platform 8](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform-8.2%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/setup/overview/) on how to use Helm charts. diff --git a/charts/camunda-platform-8.2/openshift/README.md b/charts/camunda-platform-8.2/openshift/README.md index c0bb2a7b9f..7728d7d61f 100644 --- a/charts/camunda-platform-8.2/openshift/README.md +++ b/charts/camunda-platform-8.2/openshift/README.md @@ -4,4 +4,4 @@ The Camunda 8 Helm chart can be deployed to OpenShift using extra values file th according to OpenShift default Security Context Constraints (SCCs). For full details, please check the official docs: -[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/platforms/redhat-openshift/). +[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/setup/deploy/openshift/redhat-openshift/). diff --git a/charts/camunda-platform-8.3/README.md b/charts/camunda-platform-8.3/README.md index f99495176e..af789e3cc4 100644 --- a/charts/camunda-platform-8.3/README.md +++ b/charts/camunda-platform-8.3/README.md @@ -1,10 +1,6 @@ # Camunda 8 Helm Chart -[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Test - Unit](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml/badge.svg)](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml) -[![Camunda 8](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) - -Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/deploy/) on how to use Helm charts. +Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/setup/overview/) on how to use Helm charts. - [Architecture](#architecture) - [Requirements](#requirements) @@ -165,7 +161,7 @@ We recommend using Helm on KIND for local environments, as the Helm configuratio and much closer to production systems. For more details, follow the Camunda 8 -[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/guides/local-kubernetes-cluster/). +[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/setup/guides/local-kubernetes-cluster/). ### OpenShift @@ -226,7 +222,7 @@ Check out the default [values.yaml](values.yaml) file, which contains the same c > **Note** > For more details about deploying Camunda 8 on Kubernetes, please visit the -> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/overview/). +> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/setup/overview/). ## Notes on Configuration diff --git a/charts/camunda-platform-8.3/openshift/README.md b/charts/camunda-platform-8.3/openshift/README.md index c0bb2a7b9f..7728d7d61f 100644 --- a/charts/camunda-platform-8.3/openshift/README.md +++ b/charts/camunda-platform-8.3/openshift/README.md @@ -4,4 +4,4 @@ The Camunda 8 Helm chart can be deployed to OpenShift using extra values file th according to OpenShift default Security Context Constraints (SCCs). For full details, please check the official docs: -[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/platforms/redhat-openshift/). +[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/setup/deploy/openshift/redhat-openshift/). diff --git a/charts/camunda-platform-8.4/README.md b/charts/camunda-platform-8.4/README.md index 9256dd2c63..151b0454d9 100644 --- a/charts/camunda-platform-8.4/README.md +++ b/charts/camunda-platform-8.4/README.md @@ -1,10 +1,6 @@ # Camunda 8 Helm Chart -[![Badge - License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Badge - Test - Unit](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml/badge.svg)](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml) -[![Badge - Artifact Hub](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) - -Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/deploy/) on how to use Helm charts. +Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/setup/overview/) on how to use Helm charts. - [Architecture](#architecture) - [Requirements](#requirements) @@ -140,7 +136,7 @@ We recommend using Helm on KIND for local environments, as the Helm configuratio and much closer to production systems. For more details, follow the Camunda 8 -[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/guides/local-kubernetes-cluster/). +[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/setup/guides/local-kubernetes-cluster/). ### OpenShift @@ -202,7 +198,7 @@ Check out the default [values.yaml](values.yaml) file, which contains the same c > [!NOTE] > > For more details about deploying Camunda 8 on Kubernetes, please visit the -> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/overview/). +> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/setup/overview/). ## Notes on Configuration diff --git a/charts/camunda-platform-8.4/openshift/README.md b/charts/camunda-platform-8.4/openshift/README.md index c0bb2a7b9f..7728d7d61f 100644 --- a/charts/camunda-platform-8.4/openshift/README.md +++ b/charts/camunda-platform-8.4/openshift/README.md @@ -4,4 +4,4 @@ The Camunda 8 Helm chart can be deployed to OpenShift using extra values file th according to OpenShift default Security Context Constraints (SCCs). For full details, please check the official docs: -[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/platforms/redhat-openshift/). +[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/setup/deploy/openshift/redhat-openshift/). diff --git a/charts/camunda-platform-alpha/README.md b/charts/camunda-platform-alpha/README.md index 8c992a2462..11da951d01 100644 --- a/charts/camunda-platform-alpha/README.md +++ b/charts/camunda-platform-alpha/README.md @@ -1,10 +1,6 @@ # Camunda 8 Helm Chart -[![Badge - License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Badge - Test - Unit](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml/badge.svg)](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml) -[![Badge - Artifact Hub](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) - -Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/deploy/) on how to use Helm charts. +Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/setup/overview/) on how to use Helm charts. - [Architecture](#architecture) - [Requirements](#requirements) @@ -141,7 +137,7 @@ We recommend using Helm on KIND for local environments, as the Helm configuratio and much closer to production systems. For more details, follow the Camunda 8 -[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/guides/local-kubernetes-cluster/). +[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/setup/guides/local-kubernetes-cluster/). ### OpenShift @@ -203,7 +199,7 @@ Check out the default [values.yaml](values.yaml) file, which contains the same c > [!NOTE] > > For more details about deploying Camunda 8 on Kubernetes, please visit the -> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/overview/). +> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/setup/overview/). ## Notes on Configuration diff --git a/charts/camunda-platform-alpha/openshift/README.md b/charts/camunda-platform-alpha/openshift/README.md index c0bb2a7b9f..7728d7d61f 100644 --- a/charts/camunda-platform-alpha/openshift/README.md +++ b/charts/camunda-platform-alpha/openshift/README.md @@ -4,4 +4,4 @@ The Camunda 8 Helm chart can be deployed to OpenShift using extra values file th according to OpenShift default Security Context Constraints (SCCs). For full details, please check the official docs: -[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/platforms/redhat-openshift/). +[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/setup/deploy/openshift/redhat-openshift/). diff --git a/charts/camunda-platform-alpha/templates/identity/constraints.tpl b/charts/camunda-platform-alpha/templates/identity/constraints.tpl index ac49ff1d29..b1f8ac46d2 100644 --- a/charts/camunda-platform-alpha/templates/identity/constraints.tpl +++ b/charts/camunda-platform-alpha/templates/identity/constraints.tpl @@ -38,7 +38,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[identity][error] %s %s %s" "The Keycloak key changed from \"identity.keycloak\" to \"identityKeycloak\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} @@ -47,7 +47,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[identity][error] %s %s %s" "The PostgreSQL key changed from \"identity.postgresq\" to \"identityPostgresql\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} diff --git a/charts/camunda-platform-alpha/templates/zeebe-gateway/constraints.tpl b/charts/camunda-platform-alpha/templates/zeebe-gateway/constraints.tpl index 66a6163c96..0ae0fd56a3 100644 --- a/charts/camunda-platform-alpha/templates/zeebe-gateway/constraints.tpl +++ b/charts/camunda-platform-alpha/templates/zeebe-gateway/constraints.tpl @@ -13,7 +13,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[zeebe-gateway] %s %s %s" "The Zeebe Gatway key changed from \"zeebe-gateway\" to \"zeebeGateway\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} @@ -22,7 +22,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[zeebe-gateway] %s %s %s" "The gRPC Ingress key changed from \"zeebeGateway.ingress\" to \"zeebeGateway.ingress.grpc\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} diff --git a/charts/camunda-platform-latest/README.md b/charts/camunda-platform-latest/README.md index b774fdf227..c7ee713880 100644 --- a/charts/camunda-platform-latest/README.md +++ b/charts/camunda-platform-latest/README.md @@ -1,10 +1,6 @@ # Camunda 8 Helm Chart -[![Badge - License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Badge - Test - Unit](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml/badge.svg)](https://github.com/camunda/camunda-platform-helm/actions/workflows/test-unit.yml) -[![Badge - Artifact Hub](https://img.shields.io/badge/dynamic/yaml?label=Camunda%20Platform&query=version&url=https%3A%2F%2Fraw.githubusercontent.com%2Fcamunda%2Fcamunda-platform-helm%2Fmain%2Fcharts%2Fcamunda-platform%2FChart.yaml?style=plastic&logo=artifacthub&logoColor=white&labelColor=417598&color=2D4857)](https://artifacthub.io/packages/helm/camunda/camunda-platform) - -Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/deploy/) on how to use Helm charts. +Please also refer to the [documentation](https://docs.camunda.io/docs/self-managed/setup/overview/) on how to use Helm charts. - [Architecture](#architecture) - [Requirements](#requirements) @@ -141,7 +137,7 @@ We recommend using Helm on KIND for local environments, as the Helm configuratio and much closer to production systems. For more details, follow the Camunda 8 -[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/guides/local-kubernetes-cluster/). +[local Kubernetes cluster guide](https://docs.camunda.io/docs/self-managed/setup/guides/local-kubernetes-cluster/). ### OpenShift @@ -203,7 +199,7 @@ Check out the default [values.yaml](values.yaml) file, which contains the same c > [!NOTE] > > For more details about deploying Camunda 8 on Kubernetes, please visit the -> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/overview/). +> [Helm/Kubernetes installation instructions docs](https://docs.camunda.io/docs/self-managed/setup/overview/). ## Notes on Configuration diff --git a/charts/camunda-platform-latest/openshift/README.md b/charts/camunda-platform-latest/openshift/README.md index c0bb2a7b9f..7728d7d61f 100644 --- a/charts/camunda-platform-latest/openshift/README.md +++ b/charts/camunda-platform-latest/openshift/README.md @@ -4,4 +4,4 @@ The Camunda 8 Helm chart can be deployed to OpenShift using extra values file th according to OpenShift default Security Context Constraints (SCCs). For full details, please check the official docs: -[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/platforms/redhat-openshift/). +[Camunda 8 Self-Managed Red Hat OpenShift](https://docs.camunda.io/docs/self-managed/setup/deploy/openshift/redhat-openshift/). diff --git a/charts/camunda-platform-latest/templates/identity/constraints.tpl b/charts/camunda-platform-latest/templates/identity/constraints.tpl index ac49ff1d29..b1f8ac46d2 100644 --- a/charts/camunda-platform-latest/templates/identity/constraints.tpl +++ b/charts/camunda-platform-latest/templates/identity/constraints.tpl @@ -38,7 +38,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[identity][error] %s %s %s" "The Keycloak key changed from \"identity.keycloak\" to \"identityKeycloak\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} @@ -47,7 +47,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[identity][error] %s %s %s" "The PostgreSQL key changed from \"identity.postgresq\" to \"identityPostgresql\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} diff --git a/charts/camunda-platform-latest/templates/zeebe-gateway/constraints.tpl b/charts/camunda-platform-latest/templates/zeebe-gateway/constraints.tpl index 66a6163c96..0ae0fd56a3 100644 --- a/charts/camunda-platform-latest/templates/zeebe-gateway/constraints.tpl +++ b/charts/camunda-platform-latest/templates/zeebe-gateway/constraints.tpl @@ -13,7 +13,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[zeebe-gateway] %s %s %s" "The Zeebe Gatway key changed from \"zeebe-gateway\" to \"zeebeGateway\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} @@ -22,7 +22,7 @@ Chart Version: 10.0.0 {{- $errorMessage := printf "[zeebe-gateway] %s %s %s" "The gRPC Ingress key changed from \"zeebeGateway.ingress\" to \"zeebeGateway.ingress.grpc\"." "For more details, please check Camunda Helm chart documentation." - "https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/#version-update-instructions" + "https://docs.camunda.io/docs/self-managed/setup/upgrade/#version-update-instructions" -}} {{ printf "\n%s" $errorMessage | trimSuffix "\n"| fail }} {{- end }} diff --git a/test/integration/scenarios/lib/chart-upgrade-taskfile.yaml b/test/integration/scenarios/lib/chart-upgrade-taskfile.yaml index c18e48dd0b..2dd38cb834 100644 --- a/test/integration/scenarios/lib/chart-upgrade-taskfile.yaml +++ b/test/integration/scenarios/lib/chart-upgrade-taskfile.yaml @@ -10,7 +10,7 @@ tasks: cmds: - echo "No pre setup task for this test." - # https://docs.camunda.io/docs/self-managed/platform-deployment/helm-kubernetes/upgrade/ + # https://docs.camunda.io/docs/self-managed/setup/upgrade/ exec: cmds: - | From bdad663f4669acec12e42c16ab40681002b3aa17 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Sat, 29 Jun 2024 02:10:48 +0200 Subject: [PATCH 04/32] chore: update gomplate to v4 and use its new plugins syntax --- .tool-versions | 2 +- scripts/generate-version-matrix.sh | 19 ++++++----- .../templates/version-matrix/.gomplate.yaml | 33 ++++++++----------- .../VERSION-MATRIX-RELEASE.md.tpl | 13 ++++---- 4 files changed, 31 insertions(+), 36 deletions(-) diff --git a/.tool-versions b/.tool-versions index a822533b9e..11bb275e11 100644 --- a/.tool-versions +++ b/.tool-versions @@ -1,6 +1,6 @@ git-chglog 0.15.4 golang 1.22.4 -gomplate v3.11.8 +gomplate v4.0.1 helm 3.15.2 helm-ct 3.11.0 kubectl 1.27.15 # The kubectl version depends on the K8s CI cluster version diff --git a/scripts/generate-version-matrix.sh b/scripts/generate-version-matrix.sh index 969e8fc8c9..7f6d6a1096 100755 --- a/scripts/generate-version-matrix.sh +++ b/scripts/generate-version-matrix.sh @@ -1,6 +1,6 @@ #!/bin/bash -set -euox pipefail +set -euo pipefail # Check dependencies. dep_names="awk git gomplate helm jq tr yq" @@ -42,6 +42,7 @@ get_versions_filtered () { # Get all images used in a certain Helm chart. get_chart_images () { chart_version="${1}" + test -d "${CHART_DIR}" || CHART_DIR="charts/camunda-platform-latest" helm template --skip-tests camunda "${CHART_SOURCE}" --version "${chart_version}" \ --values "${CHART_DIR}/test/integration/scenarios/chart-full-setup/values-integration-test-ingress.yaml" 2> /dev/null | tr -d "\"'" | awk '/image:/{gsub(/^(camunda|bitnami)/, "docker.io/&", $2); printf "- %s\n", $2}' | @@ -136,20 +137,20 @@ while test -n "${1:-}"; do shift ;; --chart-images-camunda) - test -n "${2:-}" || ( - echo "[ERROR] Helm chart version is needed as an arg for this option"; + test -n "${3:-}" || ( + echo "[ERROR] Chart dir and Helm chart version are needed as an arg for this option"; exit 1 ) - get_chart_images "${2}" | grep "camunda" - shift + CHART_DIR="${2}" get_chart_images "${3}" | grep "camunda" + shift 2 ;; --chart-images-non-camunda) - test -n "${2:-}" || ( - echo "[ERROR] Helm chart version is needed as an arg for this option"; + test -n "${3:-}" || ( + echo "[ERROR] Chart dir and Helm chart version are needed as an arg for this option"; exit 1 ) - get_chart_images "${2}" | grep -v "camunda" - shift + CHART_DIR="${2}" get_chart_images "${3}" | grep -v "camunda" + shift 2 ;; *) print_help diff --git a/scripts/templates/version-matrix/.gomplate.yaml b/scripts/templates/version-matrix/.gomplate.yaml index 259f154831..48d6d833dc 100644 --- a/scripts/templates/version-matrix/.gomplate.yaml +++ b/scripts/templates/version-matrix/.gomplate.yaml @@ -1,23 +1,16 @@ plugins: - versionMatrix: + helmCLIVersion: cmd: scripts/generate-version-matrix.sh + args: + - --helm-cli-version + timeout: 30s + chartImagesCamunda: + cmd: scripts/generate-version-matrix.sh + args: + - --chart-images-camunda + timeout: 30s + chartImagesNonCamunda: + cmd: scripts/generate-version-matrix.sh + args: + - --chart-images-non-camunda timeout: 30s - # TODO: Move to the new format once gomplate v4 is released. - # https://github.com/hairyhenderson/gomplate/releases - # helmCLIVersion: - # cmd: scripts/generate-version-matrix.sh - # args: - # - --helm-cli-version - # timeout: 30s - # chartImagesCamunda: - # cmd: scripts/generate-version-matrix.sh - # args: - # - --chart-images-camunda - # pipe: true - # timeout: 30s - # chartImagesNonCamunda: - # cmd: scripts/generate-version-matrix.sh - # args: - # - --chart-images-non-camunda - # pipe: true - # timeout: 30s diff --git a/scripts/templates/version-matrix/VERSION-MATRIX-RELEASE.md.tpl b/scripts/templates/version-matrix/VERSION-MATRIX-RELEASE.md.tpl index 334539b612..9a16042e9e 100644 --- a/scripts/templates/version-matrix/VERSION-MATRIX-RELEASE.md.tpl +++ b/scripts/templates/version-matrix/VERSION-MATRIX-RELEASE.md.tpl @@ -1,18 +1,19 @@ {{- $release := ds "release" -}} {{- $releaseHeader := conv.ToBool (getenv "VERSION_MATRIX_RELEASE_HEADER" "true") -}} +{{- $chartDir := printf "charts/camunda-platform-%s" $release.app -}} {{- if $releaseHeader -}} # Camunda {{ $release.app }} Helm Chart Version Matrix {{- end }} -{{- range $release.charts }} -{{- /* TODO: Unify charts image once gomplate v4 is released using coll.JQ */ -}} +{{- range $chartVersion := $release.charts }} +{{- $gitRef := printf "camunda-platform-%s" $chartVersion -}} {{- $vars := dict "app_version" $release.app - "chart_version" . - "chart_images_camunda" (versionMatrix "--chart-images-camunda" . | strings.Trim "\n") - "chart_images_non_camunda" (versionMatrix "--chart-images-non-camunda" . | strings.Trim "\n") - "helm_cli_version" (versionMatrix "--helm-cli-version" (printf "camunda-platform-%s" .) | strings.Trim " ") + "chart_version" $chartVersion + "chart_images_camunda" (chartImagesCamunda $chartDir $chartVersion | strings.Trim "\n") + "chart_images_non_camunda" (chartImagesNonCamunda $chartDir $chartVersion | strings.Trim "\n") + "helm_cli_version" (helmCLIVersion $gitRef | strings.Trim " ") }} {{- $helmCLIVersion := ternary From 257d2d836b71039c6bdea2a9cf487d64dbdbc4ff Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Sat, 29 Jun 2024 02:22:16 +0200 Subject: [PATCH 05/32] chore: update readme file --- charts/camunda-platform-latest/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/camunda-platform-latest/README.md b/charts/camunda-platform-latest/README.md index c7ee713880..085ee6e134 100644 --- a/charts/camunda-platform-latest/README.md +++ b/charts/camunda-platform-latest/README.md @@ -533,7 +533,7 @@ Please see the corresponding [release guide](../../docs/release.md) to find out | `console.configuration` | Configuration passed directly to Console as YAML file. More details on [Console official documenations](https://docs.camunda.io/docs/self-managed/console-deployment/configuration/) | `""` | | `console.image.registry` | can be used to set container image registry. | `registry.camunda.cloud` | | `console.image.repository` | defines which image repository to use | `console/console-sm` | -| `console.image.tag` | can be used to set the Docker image tag for the Console image (overwrites global.image.tag) | `8.5.67` | +| `console.image.tag` | can be used to set the Docker image tag for the Console image (overwrites global.image.tag) | `8.5.68` | | `console.image.pullSecrets` | can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod | `[]` | | `console.sidecars` | can be used to attach extra containers to the console deployment | `[]` | | `console.replicas` | Number of Console replicas | `1` | From 58be4a64d8f078caf8e874b6216168014c129e2a Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 10:11:05 +0200 Subject: [PATCH 06/32] chore: add groups to renovate config (#2099) --- .github/renovate.json5 | 148 +++++++++++++++++++++++++++++++---------- 1 file changed, 112 insertions(+), 36 deletions(-) diff --git a/.github/renovate.json5 b/.github/renovate.json5 index 150f6c1369..f565c9e536 100644 --- a/.github/renovate.json5 +++ b/.github/renovate.json5 @@ -20,35 +20,44 @@ "fileMatch": ["^\\.github/workflows/[^/]+\\.ya?ml$"] }, "packageRules": [ + // + // Main groups. + // This section should be updated with the Camunda supported versions. + // Start of minor cycle chores. { + "groupName": "camunda-platform-8.2", + "addLabels": ["version/8.2", "deps/charts"], "matchFileNames": [ - ".tool-versions", - ".github/workflows/*", - ".github/actions/*", - "charts/camunda-platform-*/**", + "charts/camunda-platform-8.2/Chart.yaml", + "charts/camunda-platform-8.2/values*.yaml", + "charts/camunda-platform-8.2/go.*" ], - "addLabels": ["automerge", "automation/renovatebot", "kind/chore"], - // The platformAutomerge value should be false to avoid having the renovatebot PRs merged - // without all checks passed. - "platformAutomerge": false, - "automerge": true + "matchUpdateTypes": ["patch", "pin", "digest"], }, { - "matchDatasources": ["docker", "helm-values"], - "matchDepPatterns": ["^camunda/.+"], + "groupName": "camunda-platform-8.3", + "addLabels": ["version/8.3", "deps/charts"], "matchFileNames": [ - "charts/camunda-platform-alpha/Chart.yaml", - "charts/camunda-platform-alpha/values*.yaml", + "charts/camunda-platform-8.3/Chart.yaml", + "charts/camunda-platform-8.3/values*.yaml", + "charts/camunda-platform-8.3/go.*" ], - // Ignore non-semver versions like 8.6.0-alpha3-rc3 which has a higher precedence than 8.6.0-alpha3 - // which is not the case. - "versionCompatibility": "^(?[^-]*)(-(?[^-]*))?$", - "matchUpdateTypes": ["minor", "patch"] + "matchUpdateTypes": ["patch", "pin", "digest"], }, { + "groupName": "camunda-platform-8.4", + "addLabels": ["version/8.4", "deps/charts"], + "matchFileNames": [ + "charts/camunda-platform-8.4/Chart.yaml", + "charts/camunda-platform-8.4/values*.yaml", + "charts/camunda-platform-8.4/go.*" + ], + "matchUpdateTypes": ["patch", "pin", "digest"], + }, + { + "groupName": "camunda-platform-latest", + "addLabels": ["version/8.5", "deps/charts"], "matchFileNames": [ - ".github/workflows/*", - ".github/actions/*", "charts/camunda-platform-latest/Chart.yaml", "charts/camunda-platform-latest/values*.yaml", "charts/camunda-platform-latest/go.*" @@ -56,12 +65,62 @@ "matchUpdateTypes": ["minor", "patch", "pin", "digest"], }, { + "groupName": "camunda-platform-alpha", + "addLabels": ["version/8.6", "deps/charts"], "matchFileNames": [ - "charts/camunda-platform-8*/Chart.yaml", - "charts/camunda-platform-8*/values*.yaml", - "charts/camunda-platform-8*/go.*", + "charts/camunda-platform-alpha/Chart.yaml", + "charts/camunda-platform-alpha/values*.yaml", + "charts/camunda-platform-alpha/go.*" + ], + "matchUpdateTypes": ["major", "minor", "patch"], + }, + // End of minor cycle chores. + + // + // Other groups. + { + "groupName": "bitnami-web-modeler-postgresql", + "addLabels": ["deps/charts"], + "matchFileNames": [ + "charts/web-modeler-postgresql/**", + ], + "matchUpdateTypes": ["minor", "patch"], + }, + { + "groupName": "tool-versions", + "addLabels": ["deps/tools"], + "matchFileNames": [".tool-versions"], + }, + { + "groupName": "github-actions", + "addLabels": ["deps/github-actions"], + "matchManagers": ["github-actions"], + }, + + // + // Tools. + { + // Limit tools and libs versions to the actual Distro CI Kubernetes cluster. + "matchDepPatterns": ["kubectl"], + "allowedVersions": "<1.28.0" + }, + { + "matchDepPatterns": ["k8s.io/.*"], + "allowedVersions": "<0.28.0" + }, + + // + // Camunda charts. + { + "matchDepPatterns": ["^camunda/.+"], + "matchFileNames": [ + "charts/camunda-platform-alpha/Chart.yaml", + "charts/camunda-platform-alpha/values*.yaml", ], - "matchUpdateTypes": ["patch"], + // Ignore non-semver versions like 8.6.0-alpha3-rc3 which has a higher precedence than 8.6.0-alpha3 + // which is not the case. + "versionCompatibility": "^(?[^-]*)(-(?[^-]*))?$", + "matchUpdateTypes": ["minor", "patch"] }, { // Disable major version update for all Helm components. @@ -72,7 +131,7 @@ { // Disable minor version update for previous Camunda releases which will only get patch updates. "enabled": false, - "matchManagers": ["helm-values", "regex"], + "matchManagers": ["helmv3", "helm-values", "regex"], "matchPaths": [ "charts/camunda-platform-8*/values*.yaml", ], @@ -80,21 +139,30 @@ }, { // Enable non-major version update for current Camunda version. - "matchDatasources": ["github-releases", "docker", "regex"], - "matchPaths": ["charts/camunda-platform-latest/values.yaml", "charts/camunda-platform-latest/values-latest.yaml"], + "matchDatasources": ["helm", "docker", "regex"], + "matchPaths": [ + "charts/camunda-platform-latest/values.yaml", + "charts/camunda-platform-latest/values-latest.yaml" + ], "matchUpdateTypes": ["minor", "patch"] }, { // Enable patch version update for previous Camunda version. - "matchDatasources": ["github-releases", "docker", "regex"], - "matchPaths": ["charts/camunda-platform-*/values.yaml", "charts/camunda-platform-*/values-latest.yaml"], + "matchDatasources": ["helmv3", "helm-values", "docker", "regex"], + "matchPaths": [ + "charts/camunda-platform-8*/values.yaml", + "charts/camunda-platform-8*/values-latest.yaml" + ], "matchUpdateTypes": ["patch"] }, { // Limit Elasticsearch version to latest supported version in Camunda v8.5. // https://docs.camunda.io/docs/reference/supported-environments/#camunda-8-self-managed "matchDatasources": ["docker"], - "matchPaths": ["charts/camunda-platform-latest/values.yaml", "charts/camunda-platform-latest/values-latest.yaml"], + "matchPaths": [ + "charts/camunda-platform-latest/values.yaml", + "charts/camunda-platform-latest/values-latest.yaml" + ], "matchDepNames": ["bitnami/elasticsearch"], "allowedVersions": "~8.12.0" }, @@ -104,16 +172,24 @@ "matchPaths": ["charts/camunda-platform-8*/Chart.yaml"], "enabled": false }, - // Limit tools and libs versions to the actual Distro CI Kubernetes cluster. - { - "matchDepPatterns": ["kubectl"], - "allowedVersions": "<1.28.0" - }, + + // + // General. { - "matchDepPatterns": ["k8s.io/.*"], - "allowedVersions": "<0.28.0" + "matchFileNames": [ + ".tool-versions", + ".github/workflows/*", + ".github/actions/*", + "charts/camunda-platform-*/**", + ], + "addLabels": ["automerge", "automation/renovatebot", "kind/chore"], + // The platformAutomerge value should be false to avoid having the renovatebot PRs merged + // without all checks passed. + "platformAutomerge": false, + "automerge": true } ], + "regexManagers": [ { // This is mainly used to update Camunda unified image tag. From c5a38bb90a3eaf1551a222f5e5c9261672aaf478 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 2 Jul 2024 08:27:47 +0000 Subject: [PATCH 07/32] chore(deps): update github/codeql-action digest to ee4ad8b (#2100) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/sec-codeql.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sec-codeql.yml b/.github/workflows/sec-codeql.yml index fba4c9f444..e03f8dd823 100644 --- a/.github/workflows/sec-codeql.yml +++ b/.github/workflows/sec-codeql.yml @@ -48,7 +48,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@79e9a50e51439bd8fd234c77d9eb659839d10a61 + uses: github/codeql-action/init@ee4ad8b9d64b235782063b8cfff3942401b8033d with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -62,7 +62,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@79e9a50e51439bd8fd234c77d9eb659839d10a61 + uses: github/codeql-action/autobuild@ee4ad8b9d64b235782063b8cfff3942401b8033d # ℹ️ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -75,6 +75,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@79e9a50e51439bd8fd234c77d9eb659839d10a61 + uses: github/codeql-action/analyze@ee4ad8b9d64b235782063b8cfff3942401b8033d with: category: "/language:${{ matrix.language }}" From 300b98be0530b78357d8b6b2c235b14d29654138 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 10:29:00 +0200 Subject: [PATCH 08/32] chore: update dep names (#2102) Signed-off-by: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> --- .github/renovate.json5 | 1 + charts/camunda-platform-8.2/values-latest.yaml | 2 +- charts/camunda-platform-8.2/values.yaml | 2 +- charts/camunda-platform-8.3/values-latest.yaml | 2 +- charts/camunda-platform-8.3/values.yaml | 2 +- charts/camunda-platform-8.4/values-latest.yaml | 4 ++-- charts/camunda-platform-8.4/values.yaml | 4 ++-- charts/camunda-platform-alpha/values-latest.yaml | 2 +- charts/camunda-platform-alpha/values.yaml | 2 +- charts/camunda-platform-latest/values-latest.yaml | 4 ++-- charts/camunda-platform-latest/values.yaml | 4 ++-- charts/web-modeler-postgresql/values.yaml | 4 ++-- 12 files changed, 17 insertions(+), 16 deletions(-) diff --git a/.github/renovate.json5 b/.github/renovate.json5 index f565c9e536..3a8b20d4bb 100644 --- a/.github/renovate.json5 +++ b/.github/renovate.json5 @@ -213,6 +213,7 @@ "versioningTemplate": "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}" } ], + "hostRules": [ { "hostType": "docker", diff --git a/charts/camunda-platform-8.2/values-latest.yaml b/charts/camunda-platform-8.2/values-latest.yaml index 21b9150bff..43dbe047ac 100644 --- a/charts/camunda-platform-8.2/values-latest.yaml +++ b/charts/camunda-platform-8.2/values-latest.yaml @@ -34,7 +34,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.2.16 zeebe: diff --git a/charts/camunda-platform-8.2/values.yaml b/charts/camunda-platform-8.2/values.yaml index f5f369cef0..915552ac12 100644 --- a/charts/camunda-platform-8.2/values.yaml +++ b/charts/camunda-platform-8.2/values.yaml @@ -1494,7 +1494,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud # Image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.2.16 # Image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-8.3/values-latest.yaml b/charts/camunda-platform-8.3/values-latest.yaml index 0eb8e979d5..036821be5e 100644 --- a/charts/camunda-platform-8.3/values-latest.yaml +++ b/charts/camunda-platform-8.3/values-latest.yaml @@ -34,7 +34,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.3.9 zeebe: diff --git a/charts/camunda-platform-8.3/values.yaml b/charts/camunda-platform-8.3/values.yaml index 2d096a0b8e..372d371c6f 100644 --- a/charts/camunda-platform-8.3/values.yaml +++ b/charts/camunda-platform-8.3/values.yaml @@ -1934,7 +1934,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.3.9 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-8.4/values-latest.yaml b/charts/camunda-platform-8.4/values-latest.yaml index 534062bc9a..c579a91883 100644 --- a/charts/camunda-platform-8.4/values-latest.yaml +++ b/charts/camunda-platform-8.4/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.4.60 connectors: @@ -41,7 +41,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.4.7 zeebe: diff --git a/charts/camunda-platform-8.4/values.yaml b/charts/camunda-platform-8.4/values.yaml index e07101a3d7..2a28d718a9 100644 --- a/charts/camunda-platform-8.4/values.yaml +++ b/charts/camunda-platform-8.4/values.yaml @@ -314,7 +314,7 @@ console: repository: console/console-sm ## @param console.image.tag can be set to overwrite the global tag, which should be used in that chart ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.4.60 ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] @@ -2257,7 +2257,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.4.7 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-alpha/values-latest.yaml b/charts/camunda-platform-alpha/values-latest.yaml index 8c3f41541b..ecc15d312d 100644 --- a/charts/camunda-platform-alpha/values-latest.yaml +++ b/charts/camunda-platform-alpha/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: latest connectors: diff --git a/charts/camunda-platform-alpha/values.yaml b/charts/camunda-platform-alpha/values.yaml index aa455537d0..48d9e080ce 100644 --- a/charts/camunda-platform-alpha/values.yaml +++ b/charts/camunda-platform-alpha/values.yaml @@ -378,7 +378,7 @@ console: ## @param console.image.repository defines which image repository to use repository: console/console-sm ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: latest ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] diff --git a/charts/camunda-platform-latest/values-latest.yaml b/charts/camunda-platform-latest/values-latest.yaml index 5a34578788..d143834457 100644 --- a/charts/camunda-platform-latest/values-latest.yaml +++ b/charts/camunda-platform-latest/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.5.68 connectors: @@ -41,7 +41,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.5.5 zeebe: diff --git a/charts/camunda-platform-latest/values.yaml b/charts/camunda-platform-latest/values.yaml index 3481fadc83..99de01a87a 100644 --- a/charts/camunda-platform-latest/values.yaml +++ b/charts/camunda-platform-latest/values.yaml @@ -368,7 +368,7 @@ console: ## @param console.image.repository defines which image repository to use repository: console/console-sm ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.5.68 ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] @@ -2458,7 +2458,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the WebModeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.5.5 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the WebModeler images are pulled directly from Camunda's private registry. diff --git a/charts/web-modeler-postgresql/values.yaml b/charts/web-modeler-postgresql/values.yaml index 42d4324520..e874612505 100644 --- a/charts/web-modeler-postgresql/values.yaml +++ b/charts/web-modeler-postgresql/values.yaml @@ -95,7 +95,7 @@ diagnosticMode: image: registry: docker.io repository: bitnami/postgresql - tag: 14.12.0-debian-12-r14 + tag: 14.12.0 digest: "" ## Specify a imagePullPolicy ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent' @@ -1205,7 +1205,7 @@ metrics: image: registry: docker.io repository: bitnami/postgres-exporter - tag: 0.15.0-debian-12-r33 + tag: 0.15.0 digest: "" pullPolicy: IfNotPresent ## Optionally specify an array of imagePullSecrets. From cbbe5a19a4158a073f606053b4180e2477bf17be Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 10:46:09 +0200 Subject: [PATCH 09/32] chore: match all charts in renovate general section --- .github/renovate.json5 | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/renovate.json5 b/.github/renovate.json5 index 3a8b20d4bb..3dda81ce4d 100644 --- a/.github/renovate.json5 +++ b/.github/renovate.json5 @@ -180,7 +180,7 @@ ".tool-versions", ".github/workflows/*", ".github/actions/*", - "charts/camunda-platform-*/**", + "charts/**", ], "addLabels": ["automerge", "automation/renovatebot", "kind/chore"], // The platformAutomerge value should be false to avoid having the renovatebot PRs merged From b402fa1e1f4041fd65434d5f5daa37171e6b38f9 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 11:31:53 +0200 Subject: [PATCH 10/32] chore: remove lookupName for renovate deps --- charts/camunda-platform-8.2/values-latest.yaml | 2 +- charts/camunda-platform-8.2/values.yaml | 2 +- charts/camunda-platform-8.3/values-latest.yaml | 2 +- charts/camunda-platform-8.3/values.yaml | 2 +- charts/camunda-platform-8.4/values-latest.yaml | 4 ++-- charts/camunda-platform-8.4/values.yaml | 4 ++-- charts/camunda-platform-alpha/values-latest.yaml | 2 +- charts/camunda-platform-alpha/values.yaml | 2 +- charts/camunda-platform-latest/values-latest.yaml | 4 ++-- charts/camunda-platform-latest/values.yaml | 4 ++-- 10 files changed, 14 insertions(+), 14 deletions(-) diff --git a/charts/camunda-platform-8.2/values-latest.yaml b/charts/camunda-platform-8.2/values-latest.yaml index 43dbe047ac..21b9150bff 100644 --- a/charts/camunda-platform-8.2/values-latest.yaml +++ b/charts/camunda-platform-8.2/values-latest.yaml @@ -34,7 +34,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.2.16 zeebe: diff --git a/charts/camunda-platform-8.2/values.yaml b/charts/camunda-platform-8.2/values.yaml index 915552ac12..f5f369cef0 100644 --- a/charts/camunda-platform-8.2/values.yaml +++ b/charts/camunda-platform-8.2/values.yaml @@ -1494,7 +1494,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud # Image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.2.16 # Image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-8.3/values-latest.yaml b/charts/camunda-platform-8.3/values-latest.yaml index 036821be5e..0eb8e979d5 100644 --- a/charts/camunda-platform-8.3/values-latest.yaml +++ b/charts/camunda-platform-8.3/values-latest.yaml @@ -34,7 +34,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.3.9 zeebe: diff --git a/charts/camunda-platform-8.3/values.yaml b/charts/camunda-platform-8.3/values.yaml index 372d371c6f..2d096a0b8e 100644 --- a/charts/camunda-platform-8.3/values.yaml +++ b/charts/camunda-platform-8.3/values.yaml @@ -1934,7 +1934,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.3.9 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-8.4/values-latest.yaml b/charts/camunda-platform-8.4/values-latest.yaml index c579a91883..534062bc9a 100644 --- a/charts/camunda-platform-8.4/values-latest.yaml +++ b/charts/camunda-platform-8.4/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.4.60 connectors: @@ -41,7 +41,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.4.7 zeebe: diff --git a/charts/camunda-platform-8.4/values.yaml b/charts/camunda-platform-8.4/values.yaml index 2a28d718a9..e07101a3d7 100644 --- a/charts/camunda-platform-8.4/values.yaml +++ b/charts/camunda-platform-8.4/values.yaml @@ -314,7 +314,7 @@ console: repository: console/console-sm ## @param console.image.tag can be set to overwrite the global tag, which should be used in that chart ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.4.60 ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] @@ -2257,7 +2257,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the Web Modeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.4.7 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the Web Modeler images are pulled directly from Camunda's private registry. diff --git a/charts/camunda-platform-alpha/values-latest.yaml b/charts/camunda-platform-alpha/values-latest.yaml index ecc15d312d..8c3f41541b 100644 --- a/charts/camunda-platform-alpha/values-latest.yaml +++ b/charts/camunda-platform-alpha/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: latest connectors: diff --git a/charts/camunda-platform-alpha/values.yaml b/charts/camunda-platform-alpha/values.yaml index 48d9e080ce..aa455537d0 100644 --- a/charts/camunda-platform-alpha/values.yaml +++ b/charts/camunda-platform-alpha/values.yaml @@ -378,7 +378,7 @@ console: ## @param console.image.repository defines which image repository to use repository: console/console-sm ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: latest ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] diff --git a/charts/camunda-platform-latest/values-latest.yaml b/charts/camunda-platform-latest/values-latest.yaml index d143834457..5a34578788 100644 --- a/charts/camunda-platform-latest/values-latest.yaml +++ b/charts/camunda-platform-latest/values-latest.yaml @@ -12,7 +12,7 @@ console: # Camunda Enterprise repository. # registry.camunda.cloud/console image: - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.5.68 connectors: @@ -41,7 +41,7 @@ webModeler: # Camunda Enterprise repository. # registry.camunda.cloud/web-modeler-ee image: - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.5.5 zeebe: diff --git a/charts/camunda-platform-latest/values.yaml b/charts/camunda-platform-latest/values.yaml index 99de01a87a..3481fadc83 100644 --- a/charts/camunda-platform-latest/values.yaml +++ b/charts/camunda-platform-latest/values.yaml @@ -368,7 +368,7 @@ console: ## @param console.image.repository defines which image repository to use repository: console/console-sm ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/console packageName=camunda/console lookupName=registry.camunda.cloud/console/console-sm + # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm tag: 8.5.68 ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] @@ -2458,7 +2458,7 @@ webModeler: # Note: The images are not publicly available on Docker Hub, but only from Camunda's private registry. registry: registry.camunda.cloud ## @param webModeler.image.tag can be used to set the Docker image tag for the WebModeler images (overwrites global.image.tag) - # renovate: datasource=docker depName=camunda/web-modeler packageName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi + # renovate: datasource=docker depName=camunda/web-modeler lookupName=registry.camunda.cloud/web-modeler-ee/modeler-restapi tag: 8.5.5 ## @param webModeler.image.pullSecrets can be used to configure image pull secrets, see https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod # Note: A secret will be required, if the WebModeler images are pulled directly from Camunda's private registry. From 71fc93a54e2cb47f60592661b3df506d4f9a295b Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 12:43:45 +0200 Subject: [PATCH 11/32] chore: support multi chart in chart-update-readme workflow --- .github/workflows/chart-update-readme.yaml | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/.github/workflows/chart-update-readme.yaml b/.github/workflows/chart-update-readme.yaml index 0c002f7eb5..239e45b0c2 100644 --- a/.github/workflows/chart-update-readme.yaml +++ b/.github/workflows/chart-update-readme.yaml @@ -5,9 +5,9 @@ on: branches: - main paths: + - '.github/workflows/chart-update-readme.yaml' - 'charts/camunda-platform*/README.md' - 'charts/camunda-platform*/values.yaml' - - '.github/workflows/chart-update-readme.yaml' permissions: contents: read @@ -28,12 +28,16 @@ jobs: - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: token: '${{ steps.generate-github-token.outputs.token }}' + ref: ${{ github.event.pull_request.head.ref }} + - name: Install dependencies + uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - name: Install readme-generator-for-helm run: npm install -g @bitnami/readme-generator-for-helm - name: Run readme generator run: | echo "Updating README.md" - make helm.readme-update + chartPath="$(ct list-changed | tr '\n' ' ')" \ + make helm.readme-update git diff --exit-code || ( echo "Please ensure to run: make helm.readme-update"; exit 1; From 349f14d4e9938feecf046a211779d07438d08678 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Tue, 2 Jul 2024 16:43:10 +0200 Subject: [PATCH 12/32] chore: support multi chart in chart-update-readme workflow --- .github/workflows/chart-update-readme.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/chart-update-readme.yaml b/.github/workflows/chart-update-readme.yaml index 239e45b0c2..4c7f75a434 100644 --- a/.github/workflows/chart-update-readme.yaml +++ b/.github/workflows/chart-update-readme.yaml @@ -35,6 +35,7 @@ jobs: run: npm install -g @bitnami/readme-generator-for-helm - name: Run readme generator run: | + git fetch origin main:main echo "Updating README.md" chartPath="$(ct list-changed | tr '\n' ' ')" \ make helm.readme-update From fcd137b71cecd1e98dca39c10331be8e73b30f68 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 2 Jul 2024 15:04:41 +0000 Subject: [PATCH 13/32] chore(deps): update github/codeql-action digest to 7adf9ac (#2106) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/sec-codeql.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sec-codeql.yml b/.github/workflows/sec-codeql.yml index e03f8dd823..82b5b7c561 100644 --- a/.github/workflows/sec-codeql.yml +++ b/.github/workflows/sec-codeql.yml @@ -48,7 +48,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@ee4ad8b9d64b235782063b8cfff3942401b8033d + uses: github/codeql-action/init@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -62,7 +62,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@ee4ad8b9d64b235782063b8cfff3942401b8033d + uses: github/codeql-action/autobuild@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 # ℹ️ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -75,6 +75,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@ee4ad8b9d64b235782063b8cfff3942401b8033d + uses: github/codeql-action/analyze@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 with: category: "/language:${{ matrix.language }}" From 75509c6b82bf617ec8bbbabb5c2c28028d792c31 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 3 Jul 2024 00:19:41 +0000 Subject: [PATCH 14/32] chore(deps): update dependency golang to v1.22.5 (#2110) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .tool-versions | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.tool-versions b/.tool-versions index 11bb275e11..7aa1d651d3 100644 --- a/.tool-versions +++ b/.tool-versions @@ -1,5 +1,5 @@ git-chglog 0.15.4 -golang 1.22.4 +golang 1.22.5 gomplate v4.0.1 helm 3.15.2 helm-ct 3.11.0 From c2ca0d86b9b6d31b390c9f6fee7a9792af748ce2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 3 Jul 2024 03:51:53 +0000 Subject: [PATCH 15/32] chore(deps): update dependency go to v1.22.5 (#2109) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- charts/camunda-platform-8.2/go.mod | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/camunda-platform-8.2/go.mod b/charts/camunda-platform-8.2/go.mod index 12f39cb94f..42ba192b66 100644 --- a/charts/camunda-platform-8.2/go.mod +++ b/charts/camunda-platform-8.2/go.mod @@ -2,7 +2,7 @@ module camunda-platform go 1.21 -toolchain go1.22.4 +toolchain go1.22.5 require ( github.com/gruntwork-io/terratest v0.46.16 From db296ae6f41d1094263a000ed2e6ba251eb9877e Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Wed, 3 Jul 2024 17:30:08 +0200 Subject: [PATCH 16/32] chore: use the correct component name for release-please the component is used to match the git tags --- .../config/release-please/release-please-config.json | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/.github/config/release-please/release-please-config.json b/.github/config/release-please/release-please-config.json index e48d3b6afa..f737048bfc 100644 --- a/.github/config/release-please/release-please-config.json +++ b/.github/config/release-please/release-please-config.json @@ -10,12 +10,14 @@ "draft": false, "packages": { "charts/camunda-platform-latest": { - "component": "camunda-platform-latest", + "component": "camunda-platform", + "include-v-in-tag": false, "extra-label": "version/8.5", "changelog-path": "CHANGELOG.md" }, "charts/camunda-platform-8.4": { - "component": "camunda-platform-8.4", + "component": "camunda-platform", + "include-v-in-tag": false, "extra-label": "version/8.4", "changelog-path": "CHANGELOG.md", "extra-files": [ @@ -27,7 +29,8 @@ ] }, "charts/camunda-platform-8.3": { - "component": "camunda-platform-8.3", + "component": "camunda-platform", + "include-v-in-tag": false, "extra-label": "version/8.3", "changelog-path": "CHANGELOG.md", "extra-files": [ @@ -39,7 +42,8 @@ ] }, "charts/camunda-platform-8.2": { - "component": "camunda-platform-8.2", + "component": "camunda-platform", + "include-v-in-tag": false, "extra-label": "version/8.2", "changelog-path": "CHANGELOG.md", "extra-files": [ From a1b1f1a468dd753fbefa0e9b468d9748af6b438f Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Wed, 3 Jul 2024 17:51:45 +0200 Subject: [PATCH 17/32] chore: fix wrong workflow trigger --- .github/workflows/chart-release-chores.yml | 2 +- .github/workflows/chart-release.yaml | 7 ++----- 2 files changed, 3 insertions(+), 6 deletions(-) diff --git a/.github/workflows/chart-release-chores.yml b/.github/workflows/chart-release-chores.yml index 868908a6e3..f41b9fc8ef 100644 --- a/.github/workflows/chart-release-chores.yml +++ b/.github/workflows/chart-release-chores.yml @@ -3,7 +3,7 @@ name: "Chart - Release - Chores" on: pull_request: branches: - - release-please--branches--main + - main paths: - .github/workflows/chart-release-chores.yml - .github/config/release-please/release-please-config.json diff --git a/.github/workflows/chart-release.yaml b/.github/workflows/chart-release.yaml index 6cf31946c3..f191292e2a 100644 --- a/.github/workflows/chart-release.yaml +++ b/.github/workflows/chart-release.yaml @@ -12,9 +12,6 @@ on: pull_request: types: - labeled - push: - branches: - - release-please--branches--main concurrency: group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} @@ -25,7 +22,7 @@ permissions: jobs: release: - if: ${{ contains(github.event.*.labels.*.name, 'release') || github.event.inputs.trigger }} + if: ${{ (contains(github.event.*.labels.*.name, 'release') && github.event.pull_request.merged == false) || github.event.inputs.trigger }} runs-on: ubuntu-latest permissions: contents: write @@ -157,7 +154,7 @@ jobs: GH_TOKEN: '${{ secrets.GITHUB_TOKEN }}' post-release: - if: ${{ contains(github.event.*.labels.*.name, 'release') || github.event.inputs.trigger }} + if: ${{ (contains(github.event.*.labels.*.name, 'release') && github.event.pull_request.merged == false) || github.event.inputs.trigger }} needs: release runs-on: ubuntu-latest permissions: From 8e9c776b05755a5ed67e80be411ac2406917c033 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Wed, 3 Jul 2024 18:22:30 +0200 Subject: [PATCH 18/32] chore: add pacage-name to release-please --- .../config/release-please/release-please-config.json | 12 ++++++++---- scripts/generate-version-matrix.sh | 2 +- 2 files changed, 9 insertions(+), 5 deletions(-) diff --git a/.github/config/release-please/release-please-config.json b/.github/config/release-please/release-please-config.json index f737048bfc..fd2a8ccbbf 100644 --- a/.github/config/release-please/release-please-config.json +++ b/.github/config/release-please/release-please-config.json @@ -10,15 +10,17 @@ "draft": false, "packages": { "charts/camunda-platform-latest": { + "package-name": "camunda-platform-8.5", + "extra-label": "version/8.5", "component": "camunda-platform", "include-v-in-tag": false, - "extra-label": "version/8.5", "changelog-path": "CHANGELOG.md" }, "charts/camunda-platform-8.4": { + "package-name": "camunda-platform-8.4", + "extra-label": "version/8.4", "component": "camunda-platform", "include-v-in-tag": false, - "extra-label": "version/8.4", "changelog-path": "CHANGELOG.md", "extra-files": [ { @@ -29,9 +31,10 @@ ] }, "charts/camunda-platform-8.3": { + "package-name": "camunda-platform-8.3", + "extra-label": "version/8.3", "component": "camunda-platform", "include-v-in-tag": false, - "extra-label": "version/8.3", "changelog-path": "CHANGELOG.md", "extra-files": [ { @@ -42,9 +45,10 @@ ] }, "charts/camunda-platform-8.2": { + "package-name": "camunda-platform-8.2", + "extra-label": "version/8.2", "component": "camunda-platform", "include-v-in-tag": false, - "extra-label": "version/8.2", "changelog-path": "CHANGELOG.md", "extra-files": [ { diff --git a/scripts/generate-version-matrix.sh b/scripts/generate-version-matrix.sh index 7f6d6a1096..a9854fda84 100755 --- a/scripts/generate-version-matrix.sh +++ b/scripts/generate-version-matrix.sh @@ -1,6 +1,6 @@ #!/bin/bash -set -euo pipefail +set -euox pipefail # Check dependencies. dep_names="awk git gomplate helm jq tr yq" From 20746479e2bba8cae05391232be6a16a6227d072 Mon Sep 17 00:00:00 2001 From: Hamza Masood <47217263+hamza-m-masood@users.noreply.github.com> Date: Wed, 3 Jul 2024 17:26:21 +0100 Subject: [PATCH 19/32] ci: adding workflow for pr conventions (#2089) * ci: adding workflow for pr conventions --- .github/workflows/pr-conventions.yaml | 34 +++++++++++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 .github/workflows/pr-conventions.yaml diff --git a/.github/workflows/pr-conventions.yaml b/.github/workflows/pr-conventions.yaml new file mode 100644 index 0000000000..8b947c4d56 --- /dev/null +++ b/.github/workflows/pr-conventions.yaml @@ -0,0 +1,34 @@ +name: Repo - Pull Request Conventions + +on: + pull_request: + types: [opened, edited, synchronize, reopened] + +jobs: + lint-format: + runs-on: ubuntu-latest + + steps: + - uses: amannn/action-semantic-pull-request@v5.5.2 + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + with: + types: | + feat + fix + refactor + test + docs + style + build + ci + chore + chore(deps) + # Configure additional validation for the subject based on a regex. + # Ensures the subject doesn't start with an uppercase character. + subjectPattern: ^(?![A-Z]).+$ + # When using "Squash and merge" on a PR with only one commit, GitHub + # will suggest using that commit message instead of the PR title for the + # merge commit, and it's easy to commit this by mistake. Enable this option + # to also validate the commit message for one commit PRs. + validateSingleCommit: true From 4d96b760d357481187058adaff2e4389f09e73c9 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 3 Jul 2024 17:10:57 +0000 Subject: [PATCH 20/32] chore(deps): update amannn/action-semantic-pull-request action to v5.5.3 (#2113) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/pr-conventions.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr-conventions.yaml b/.github/workflows/pr-conventions.yaml index 8b947c4d56..7c2d809bde 100644 --- a/.github/workflows/pr-conventions.yaml +++ b/.github/workflows/pr-conventions.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: amannn/action-semantic-pull-request@v5.5.2 + - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5.5.3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: From b6d0580986755eb17384de0e095067094d1d14a9 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 3 Jul 2024 19:16:31 +0200 Subject: [PATCH 21/32] chore(deps): update camunda-platform-latest to v8.5.73 (patch) (#2103) * chore(deps): update camunda-platform-latest to v8.5.73 * chore(deps): post upgrade tasks - update golden files * fix chart-update-readme * chore: update readme --- .github/workflows/chart-update-readme.yaml | 5 +---- charts/camunda-platform-latest/README.md | 2 +- .../test/unit/console/golden/configmap.golden.yaml | 2 +- .../test/unit/console/golden/deployment.golden.yaml | 4 ++-- .../test/unit/console/golden/ingress-all-enabled.golden.yaml | 2 +- .../test/unit/console/golden/ingress.golden.yaml | 2 +- .../test/unit/console/golden/service.golden.yaml | 2 +- .../test/unit/console/golden/serviceaccount.golden.yaml | 2 +- charts/camunda-platform-latest/values-latest.yaml | 2 +- charts/camunda-platform-latest/values.yaml | 2 +- 10 files changed, 11 insertions(+), 14 deletions(-) diff --git a/.github/workflows/chart-update-readme.yaml b/.github/workflows/chart-update-readme.yaml index 4c7f75a434..f19df59c55 100644 --- a/.github/workflows/chart-update-readme.yaml +++ b/.github/workflows/chart-update-readme.yaml @@ -29,15 +29,12 @@ jobs: with: token: '${{ steps.generate-github-token.outputs.token }}' ref: ${{ github.event.pull_request.head.ref }} - - name: Install dependencies - uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - name: Install readme-generator-for-helm run: npm install -g @bitnami/readme-generator-for-helm - name: Run readme generator run: | - git fetch origin main:main echo "Updating README.md" - chartPath="$(ct list-changed | tr '\n' ' ')" \ + chartPath="charts/camunda-platform-*" \ make helm.readme-update git diff --exit-code || ( echo "Please ensure to run: make helm.readme-update"; diff --git a/charts/camunda-platform-latest/README.md b/charts/camunda-platform-latest/README.md index 085ee6e134..daafb88663 100644 --- a/charts/camunda-platform-latest/README.md +++ b/charts/camunda-platform-latest/README.md @@ -533,7 +533,7 @@ Please see the corresponding [release guide](../../docs/release.md) to find out | `console.configuration` | Configuration passed directly to Console as YAML file. More details on [Console official documenations](https://docs.camunda.io/docs/self-managed/console-deployment/configuration/) | `""` | | `console.image.registry` | can be used to set container image registry. | `registry.camunda.cloud` | | `console.image.repository` | defines which image repository to use | `console/console-sm` | -| `console.image.tag` | can be used to set the Docker image tag for the Console image (overwrites global.image.tag) | `8.5.68` | +| `console.image.tag` | can be used to set the Docker image tag for the Console image (overwrites global.image.tag) | `8.5.73` | | `console.image.pullSecrets` | can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod | `[]` | | `console.sidecars` | can be used to attach extra containers to the console deployment | `[]` | | `console.replicas` | Number of Console replicas | `1` | diff --git a/charts/camunda-platform-latest/test/unit/console/golden/configmap.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/configmap.golden.yaml index 5597ca2904..f116d89542 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/configmap.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/configmap.golden.yaml @@ -11,7 +11,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" data: application.yaml: |- # https://docs.camunda.io/docs/self-managed/console-deployment/configuration/ diff --git a/charts/camunda-platform-latest/test/unit/console/golden/deployment.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/deployment.golden.yaml index a24141f512..8c4049985a 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/deployment.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/deployment.golden.yaml @@ -11,7 +11,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" annotations: {} spec: @@ -47,7 +47,7 @@ spec: type: RuntimeDefault containers: - name: camunda-platform - image: registry.camunda.cloud/console/console-sm:8.5.68 + image: registry.camunda.cloud/console/console-sm:8.5.73 imagePullPolicy: IfNotPresent securityContext: allowPrivilegeEscalation: false diff --git a/charts/camunda-platform-latest/test/unit/console/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/ingress-all-enabled.golden.yaml index 68d47e738f..b042d4987b 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/ingress-all-enabled.golden.yaml @@ -11,7 +11,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" annotations: ingress.kubernetes.io/rewrite-target: / nginx.ingress.kubernetes.io/proxy-buffer-size: 128k diff --git a/charts/camunda-platform-latest/test/unit/console/golden/ingress.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/ingress.golden.yaml index 282c399dbc..9882f10dfa 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/ingress.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/ingress.golden.yaml @@ -11,7 +11,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" annotations: ingress.kubernetes.io/rewrite-target: / nginx.ingress.kubernetes.io/proxy-buffer-size: 128k diff --git a/charts/camunda-platform-latest/test/unit/console/golden/service.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/service.golden.yaml index 803cd748da..97aad41ff0 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/service.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/service.golden.yaml @@ -11,7 +11,7 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" annotations: spec: type: ClusterIP diff --git a/charts/camunda-platform-latest/test/unit/console/golden/serviceaccount.golden.yaml b/charts/camunda-platform-latest/test/unit/console/golden/serviceaccount.golden.yaml index 9a2d89ba54..e13291ee83 100644 --- a/charts/camunda-platform-latest/test/unit/console/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-latest/test/unit/console/golden/serviceaccount.golden.yaml @@ -11,5 +11,5 @@ metadata: app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform app.kubernetes.io/component: console - app.kubernetes.io/version: "8.5.68" + app.kubernetes.io/version: "8.5.73" automountServiceAccountToken: false \ No newline at end of file diff --git a/charts/camunda-platform-latest/values-latest.yaml b/charts/camunda-platform-latest/values-latest.yaml index 5a34578788..ffff4e0f68 100644 --- a/charts/camunda-platform-latest/values-latest.yaml +++ b/charts/camunda-platform-latest/values-latest.yaml @@ -13,7 +13,7 @@ console: # registry.camunda.cloud/console image: # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm - tag: 8.5.68 + tag: 8.5.73 connectors: # https://hub.docker.com/r/camunda/connectors-bundle/tags diff --git a/charts/camunda-platform-latest/values.yaml b/charts/camunda-platform-latest/values.yaml index 3481fadc83..ccd85faea4 100644 --- a/charts/camunda-platform-latest/values.yaml +++ b/charts/camunda-platform-latest/values.yaml @@ -369,7 +369,7 @@ console: repository: console/console-sm ## @param console.image.tag can be used to set the Docker image tag for the Console image (overwrites global.image.tag) # renovate: datasource=docker depName=camunda/console lookupName=registry.camunda.cloud/console/console-sm - tag: 8.5.68 + tag: 8.5.73 ## @param console.image.pullSecrets can be used to configure image pull secrets https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod pullSecrets: [] From 8c90aaf56df689dc33319e3b205209d8ac3e2e4e Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Wed, 3 Jul 2024 22:32:09 +0200 Subject: [PATCH 22/32] chore: update release-please config the release commit should follow conventional commits syntax, also the extra-label inside the package overrides the top-level one --- .github/config/release-please/release-please-config.json | 8 ++++---- .github/workflows/chart-release-chores.yml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/config/release-please/release-please-config.json b/.github/config/release-please/release-please-config.json index fd2a8ccbbf..2120fc3c0e 100644 --- a/.github/config/release-please/release-please-config.json +++ b/.github/config/release-please/release-please-config.json @@ -11,14 +11,14 @@ "packages": { "charts/camunda-platform-latest": { "package-name": "camunda-platform-8.5", - "extra-label": "version/8.5", + "extra-label": "version/8.5,automation/release-please,release/pr,kind/chore,chart/camunda-platform", "component": "camunda-platform", "include-v-in-tag": false, "changelog-path": "CHANGELOG.md" }, "charts/camunda-platform-8.4": { "package-name": "camunda-platform-8.4", - "extra-label": "version/8.4", + "extra-label": "version/8.4,automation/release-please,release/pr,kind/chore,chart/camunda-platform", "component": "camunda-platform", "include-v-in-tag": false, "changelog-path": "CHANGELOG.md", @@ -32,7 +32,7 @@ }, "charts/camunda-platform-8.3": { "package-name": "camunda-platform-8.3", - "extra-label": "version/8.3", + "extra-label": "version/8.3,automation/release-please,release/pr,kind/chore,chart/camunda-platform", "component": "camunda-platform", "include-v-in-tag": false, "changelog-path": "CHANGELOG.md", @@ -46,7 +46,7 @@ }, "charts/camunda-platform-8.2": { "package-name": "camunda-platform-8.2", - "extra-label": "version/8.2", + "extra-label": "version/8.2,automation/release-please,release/pr,kind/chore,chart/camunda-platform", "component": "camunda-platform", "include-v-in-tag": false, "changelog-path": "CHANGELOG.md", diff --git a/.github/workflows/chart-release-chores.yml b/.github/workflows/chart-release-chores.yml index f41b9fc8ef..33c4650682 100644 --- a/.github/workflows/chart-release-chores.yml +++ b/.github/workflows/chart-release-chores.yml @@ -73,7 +73,7 @@ jobs: versions="$(git log -p main..HEAD -- ${RELEASE_PLEASE_MANIFEST} | awk -F ": " '/^+ /{gsub(/[",]/,""); printf "%s%s",sep,$2; sep=", "} END{print ""}')" pr_nubmer="$(echo $GITHUB_REF | awk 'BEGIN { FS = "/" }; { print $3 }')" - gh pr edit "${pr_nubmer}" --title "Release Camunda Platform Helm Chart ${versions}" + gh pr edit "${pr_nubmer}" --title "chore(release): Camunda Platform Helm Chart ${versions}" # Set PR project. gh pr edit "${pr_nubmer}" --add-project "Distribution Team" From 58c45a6309d5da1ee4fee6ff398260b39fc61c4c Mon Sep 17 00:00:00 2001 From: Leo J <153937047+leiicamundi@users.noreply.github.com> Date: Fri, 5 Jul 2024 00:24:35 +0200 Subject: [PATCH 23/32] ci: add openshift on-demand cluster tests (#1816) --- .github/actions/chart-test/action.yml | 207 +++++++++ .github/actions/workflow-vars/action.yml | 178 ++++---- .../distribution-team/.gitignore | 1 + .../external-cluster-secretstore.yaml | 21 + .../distribution-team/external-secret.yaml | 23 + .../distribution-team/kustomization.yaml | 15 + .../distribution-team/secret.yaml.tpl | 14 + .../rosa-on-demand/external-dns/.gitignore | 2 + .../external-dns/kustomization.yaml | 13 + .../external-dns/secret.yaml.tpl | 10 + .../config/rosa-on-demand/kustomization.yaml | 15 + .../configs/test-integration-rosa-matrix.yaml | 18 + .../test-integration-rosa-cleanup.yml | 85 ++++ .github/workflows/test-integration-rosa.yaml | 421 ++++++++++++++++++ .../workflows/test-integration-template.yaml | 165 ++----- .github/workflows/test-integration.yaml | 2 + 16 files changed, 977 insertions(+), 213 deletions(-) create mode 100644 .github/actions/chart-test/action.yml create mode 100644 .github/config/rosa-on-demand/distribution-team/.gitignore create mode 100644 .github/config/rosa-on-demand/distribution-team/external-cluster-secretstore.yaml create mode 100644 .github/config/rosa-on-demand/distribution-team/external-secret.yaml create mode 100644 .github/config/rosa-on-demand/distribution-team/kustomization.yaml create mode 100644 .github/config/rosa-on-demand/distribution-team/secret.yaml.tpl create mode 100644 .github/config/rosa-on-demand/external-dns/.gitignore create mode 100644 .github/config/rosa-on-demand/external-dns/kustomization.yaml create mode 100644 .github/config/rosa-on-demand/external-dns/secret.yaml.tpl create mode 100644 .github/config/rosa-on-demand/kustomization.yaml create mode 100644 .github/workflows/configs/test-integration-rosa-matrix.yaml create mode 100644 .github/workflows/test-integration-rosa-cleanup.yml create mode 100644 .github/workflows/test-integration-rosa.yaml diff --git a/.github/actions/chart-test/action.yml b/.github/actions/chart-test/action.yml new file mode 100644 index 0000000000..01cfa8f1cc --- /dev/null +++ b/.github/actions/chart-test/action.yml @@ -0,0 +1,207 @@ +name: 'Camunda Chart Helm Tests Action' +description: 'A reusable action for Camunda Helm chart integration tests' + +inputs: + platform: + description: "Plaform on which we run the tests" + required: true + type: + description: "Type of the plaform on which we run the tests" + required: true + identifier: + description: 'The unique identifier used in the deployment hostname.' + required: true + caller-git-ref: + description: "Caller of this action git reference" + default: 'main' + test-enabled: + description: "Enable the tests" + default: 'true' + deployment-ttl: + description: | + Define a ttl for the lifespan of the deployment + required: false + default: "" + flow: + description: "Test scenario to perform (install, upgrade)." + default: 'install' + extra-values: + description: 'Pass extra values to the Helm chart.' + default: "" + ingress-hostname-base: + description: "Hostname base for the tests" + required: true + chart-dir: + description: A reference for the Camunda Helm chart directory which allows to test unreleased chagnes from Git repo. + required: true + gh-token: + required: true + description: "Github Token used to handle deployments (requires administration:write)" + wildcard-certs-secret-path: + default: ".github/config/external-secret.yaml" + description: "Path of the secrets containing the wildcard certificates for the ingress" + +runs: + using: 'composite' + steps: + + - name: Print workflow inputs + shell: bash + run: | + echo "Tests inputs:" + echo "identifier: ${{ inputs.identifier }}" + echo "chart-dir: ${{ inputs.chart-dir }}" + echo "caller-git-ref: ${{ inputs.caller-git-ref }}" + echo "deployment-ttl: ${{ inputs.deployment-ttl }}" + echo "platform: ${{ inputs.platform }}" + echo "flow: ${{ inputs.flow }}" + echo "test-enabled: ${{ inputs.test-enabled }}" + echo "extra-values: ${{ inputs.extra-values }}" + + - name: Install dependencies + uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 + + - name: Set workflow vars + id: vars + uses: ./.github/actions/workflow-vars + with: + setup-flow: ${{ inputs.flow }} + ingress-hostname-base: ${{ inputs.ingress-hostname-base }} + platform: ${{ inputs.platform }} + deployment-ttl: ${{ inputs.deployment-ttl }} + type: ${{ inputs.type }} + identifier-base: ${{ inputs.identifier }} + chart-dir: ${{ inputs.chart-dir }} + + - name: Set test type vars + id: test-type-vars + uses: ./.github/actions/test-type-vars + with: + chart-dir: "${{ inputs.chart-dir }}" + + - name: Add Helm repos and dependencies + shell: bash + run: | + export chartPath="charts/${{ inputs.chart-dir }}" + make helm.repos-add + make helm.dependency-update + + - name: Create test namespace + shell: bash + run: | + echo $TEST_NAMESPACE + kubectl delete ns --ignore-not-found=true \ + -l "github-id=${{ steps.vars.outputs.identifier }},test-flow=${{ inputs.flow }}" + kubectl create ns $TEST_NAMESPACE + kubectl label ns $TEST_NAMESPACE github-run-id=$GITHUB_WORKFLOW_RUN_ID + kubectl label ns $TEST_NAMESPACE github-job-id=$GITHUB_WORKFLOW_JOB_ID + kubectl label ns $TEST_NAMESPACE github-id=${{ inputs.identifier }} + kubectl label ns $TEST_NAMESPACE test-flow=${{ inputs.flow }} + kubectl label ns $TEST_NAMESPACE github-org=$(dirname $GITHUB_REPOSITORY) + kubectl label ns $TEST_NAMESPACE github-repo=$(basename $GITHUB_REPOSITORY) + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1d + kubectl annotate ns $TEST_NAMESPACE github-workflow-run-url=$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID + + - name: Copy PRs wildcard certificate + shell: bash + run: | + kubectl apply -n $TEST_NAMESPACE -f ${{ inputs.wildcard-certs-secret-path }} + timeout 300 bash -c ' + until kubectl get externalsecret -n "$TEST_NAMESPACE" -o json | jq -e ".items | all(.status.conditions[]? | select(.type==\"Ready\").status == \"True\")" > /dev/null; do + echo "Waiting for ExternalSecrets to be ready"; + sleep 10; + done' + + - name: Start GitHub deployment + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + id: deployment + with: + step: start + token: ${{ inputs.gh-token }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + + - name: Pre setup + shell: bash + env: + TEST_CHART_FLOW: ${{ inputs.flow }} + run: | + timeout 5m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.pre + + echo "Extra values from workflow:" + echo "${{ inputs.extra-values }}" > /tmp/extra-values-file.yaml + cat /tmp/extra-values-file.yaml + + - name: 🌟 Setup Camunda chart 🌟 + shell: bash + env: + TEST_CHART_FLOW: ${{ inputs.flow }} + TEST_HELM_EXTRA_ARGS: >- + --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} --values /tmp/extra-values-file.yaml + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.exec + + - name: Post setup + shell: bash + run: timeout 5m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.post + + - name: Pre Upgrade + shell: bash + if: inputs.flow == 'upgrade' + run: task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.pre + + - name: 🌟 Upgrade Camunda chart 🌟 + shell: bash + if: inputs.flow == 'upgrade' + env: + TEST_HELM_EXTRA_ARGS: >- + --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} --values /tmp/extra-values-file.yaml + run: task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.exec + + - name: Update GitHub deployment status + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + with: + step: finish + token: ${{ inputs.gh-token }} + status: ${{ job.status }} + deployment_id: ${{ steps.deployment.outputs.deployment_id }} + env_url: https://${{ steps.vars.outputs.ingress-host }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + + - name: ⭐️ Run Preflight TestSuite ⭐️ + shell: bash + if: inputs.test-enabled == 'true' + run: timeout 10m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.preflight + + - name: ⭐️ Run Core TestSuite ⭐️ + shell: bash + if: inputs.test-enabled == 'true' + run: timeout 20m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.core + + - name: 🚨 Get failed Pods info 🚨 + if: failure() + uses: ./.github/actions/failed-pods-info + + - name: Cleanup GitHub deployment + if: always() && (inputs.deployment-ttl == '' || inputs.type != 'kubernetes') + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + with: + step: delete-env + token: ${{ inputs.gh-token }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + + - name: Cleanup test namespace + shell: bash + if: always() + run: | + if [ "${{ inputs.deployment-ttl }}" != "" ]; then + if [ "${{ inputs.type }}" == "kubernetes" ]; then + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=${{ inputs.deployment-ttl }} --overwrite=true + else + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true + fi + else + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true + fi diff --git a/.github/actions/workflow-vars/action.yml b/.github/actions/workflow-vars/action.yml index c283fbc8d9..191f923538 100644 --- a/.github/actions/workflow-vars/action.yml +++ b/.github/actions/workflow-vars/action.yml @@ -6,105 +6,127 @@ inputs: default: "install" ingress-hostname-base: description: The base of the Ingress hostname. + required: true platform: description: The deployment cloud platform like GKE or ROSA. + required: true deployment-ttl: description: | Define a ttl for the lifespan of the deployment - required: false default: "" - type: string + type: + description: The platform type platform like openshift or kubernetes. + required: true identifier-base: description: The fixed string in the identifier of the deployment it could be PR number or another specified name. + required: true chart-dir: description: A reference for the Camunda Helm chart directory which allows to test unreleased chagnes from Git repo. -# NOTE: This is not an exclusive list, some vars are exported as env var not an output. + required: true + +# NOTE: every outputs variable will also be set in the environment using "TEST_" prefix and capitalize outputs: identifier: description: The unique identifier of the deployment where the workflow could be triggered by pull_request or workflow_dispatch. - value: ${{ steps.vars.outputs.identifier }} + value: ${{ steps.vars.outputs.TEST_IDENTIFIER }} ingress-host: description: Ingress hostname that will be used in the test - value: ${{ steps.vars.outputs.ingress-host }} + value: ${{ steps.vars.outputs.TEST_INGRESS_HOST }} + github-workflow-job-id: + description: "The github workflow job id" + value: ${{ steps.vars.outputs.GITHUB_WORKFLOW_JOB_ID }} + github-workflow-run-id: + description: "The github workflow run id" + value: ${{ steps.vars.outputs.GITHUB_WORKFLOW_RUN_ID }} + test-namespace: + description: "The name of the namespace to use for tests" + value: ${{ steps.vars.outputs.TEST_NAMESPACE }} + cluster-type: + description: "The cluster type for tests" + value: ${{ steps.vars.outputs.TEST_CLUSTER_TYPE }} + chart-version: + description: "The chart version" + value: ${{ steps.vars-chart.outputs.TEST_CHART_VERSION }} runs: using: composite steps: - - name: Set workflow vars - id: vars - shell: bash - run: | - # Generate workflow vars. - rand_gen() { - python -c "import random, string; print(''.join(random.SystemRandom().choice(string.ascii_lowercase + string.digits) for _ in range(20)))" - } - - is_pr() { - echo ${{ github.event.pull_request.number }} | grep -q . - } - - # NOTE: We should use the matrix job id var once it's available. - # https://github.com/orgs/community/discussions/40291 - GITHUB_WORKFLOW_JOB_ID=$(rand_gen | cut -c 1-6) - - echo "Env vars:" - - # Workflow. - echo "GITHUB_WORKFLOW_JOB_ID=$GITHUB_WORKFLOW_JOB_ID" | tee -a $GITHUB_ENV - echo "GITHUB_WORKFLOW_RUN_ID=${{ github.run_id }}" | tee -a $GITHUB_ENV - - # Namespace. - TRIGGER_KEY=$(is_pr && echo "pr" || echo "id") - TEST_NAMESPACE="$(echo camunda-${TRIGGER_KEY}-${{ inputs.identifier-base }} | sed 's/\./-/g')" - - if [[ "${{ inputs.deployment-ttl }}" == '' ]]; then - TEST_NAMESPACE="${TEST_NAMESPACE}-run-${{ github.run_id }}-sfx-${GITHUB_WORKFLOW_JOB_ID}" - fi - - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - TEST_NAMESPACE="${TEST_NAMESPACE}-upgrade" - fi - - echo "TEST_NAMESPACE=${TEST_NAMESPACE}" | tee -a $GITHUB_ENV - - echo "Output vars:" - - # Deployment identifier. - TEST_IDENTIFIER="$(echo ${{ inputs.platform }}-${{ inputs.identifier-base }} | sed 's/\./-/g')" - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - TEST_IDENTIFIER="${TEST_IDENTIFIER}-upgrade" - fi - echo "identifier=${TEST_IDENTIFIER}" | tee -a $GITHUB_OUTPUT - - # Ingress hostname. - TEST_INGRESS_HOST="${TEST_IDENTIFIER}.${{ inputs.ingress-hostname-base }}" - if [[ "${{ inputs.deployment-ttl }}" == "" ]] && is_pr; then - TEST_INGRESS_HOST="${GITHUB_WORKFLOW_JOB_ID}-${TEST_INGRESS_HOST}" - fi - # The var is needed in some non-shell steps. - echo "ingress-host=${TEST_INGRESS_HOST}" | tee -a $GITHUB_OUTPUT - - - name: Set workflow vars - Chart version - shell: bash - run: | - # In the upgrade flow, the latest released chart for certain minor Camunda version will installed, - # then upgraded from the PR branch to ensure upgradability. - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - git fetch origin main:main --no-tags - TEST_CHART_VERSION="$(git show main:charts/${{ inputs.chart-dir }}/Chart.yaml | yq '.version')" - echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a $GITHUB_ENV - - # Alpha should be always upgraded from latest version. - if [[ $(echo "${TEST_CHART_VERSION}" | grep 'alpha') ]]; then - TEST_CHART_VERSION="$(git show main:charts/camunda-platform-latest/Chart.yaml | yq '.version')" - echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a $GITHUB_ENV + - name: Set workflow vars + id: vars + shell: bash + run: | + # Generate workflow vars. + rand_gen() { + python -c "import random, string; print(''.join(random.SystemRandom().choice(string.ascii_lowercase + string.digits) for _ in range(20)))" + } + + is_pr() { + echo ${{ github.event.pull_request.number }} | grep -q . + } + + # NOTE: We should use the matrix job id var once it's available. + # https://github.com/orgs/community/discussions/40291 + GITHUB_WORKFLOW_JOB_ID=$(rand_gen | cut -c 1-6) + + # Workflow. + echo "GITHUB_WORKFLOW_JOB_ID=$GITHUB_WORKFLOW_JOB_ID" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + echo "GITHUB_WORKFLOW_RUN_ID=${{ github.run_id }}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + # Namespace. + TRIGGER_KEY=$(is_pr && echo "pr" || echo "id") + TEST_NAMESPACE="$(echo camunda-${TRIGGER_KEY}-${{ inputs.identifier-base }} | sed 's/\./-/g')" + + if [[ "${{ inputs.deployment-ttl }}" == '' ]]; then + # maximum 63 characters + TEST_NAMESPACE="${TEST_NAMESPACE}-run-${{ github.run_id }}-sfx-${GITHUB_WORKFLOW_JOB_ID}" + fi + + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + TEST_NAMESPACE="${TEST_NAMESPACE}-u" + fi + + echo "TEST_NAMESPACE=${TEST_NAMESPACE}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + echo "TEST_CLUSTER_TYPE=${{ inputs.type }}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + # Deployment identifier. + TEST_IDENTIFIER="$(echo ${{ inputs.platform }}-${{ inputs.identifier-base }} | sed 's/\./-/g')" + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + TEST_IDENTIFIER="${TEST_IDENTIFIER}-u" + fi + echo "TEST_IDENTIFIER=${TEST_IDENTIFIER}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + # Ingress hostname. + TEST_INGRESS_HOST="${TEST_IDENTIFIER}.${{ inputs.ingress-hostname-base }}" + if [[ "${{ inputs.deployment-ttl }}" == "" ]] && is_pr; then + TEST_INGRESS_HOST="${GITHUB_WORKFLOW_JOB_ID}-${TEST_INGRESS_HOST}" + fi + # The var is needed in some non-shell steps. + echo "TEST_INGRESS_HOST=${TEST_INGRESS_HOST}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + + - name: Set workflow vars - Chart version + shell: bash + id: vars-chart + run: | + # In the upgrade flow, the latest released chart for certain minor Camunda version will installed, + # then upgraded from the PR branch to ensure upgradability. + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + git fetch origin main:main --no-tags + TEST_CHART_VERSION="$(git show main:charts/${{ inputs.chart-dir }}/Chart.yaml | yq '.version')" + echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + + # Alpha should be always upgraded from latest version. + if [[ $(echo "${TEST_CHART_VERSION}" | grep 'alpha') ]]; then + TEST_CHART_VERSION="$(git show main:charts/camunda-platform-latest/Chart.yaml | yq '.version')" + echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" + fi fi - fi # Avoid confusion about the chart version since we only change the version during the release process # as the "version" field in "Chart.yaml" file doesn't reflect the changes since the latest release. - - name: Set chart version - shell: bash - run: | - chart_version="$(echo ${{ inputs.chart-dir }} | sed 's/camunda-platform/0.0.0-ci-snapshot/g')" \ + - name: Set chart version + shell: bash + run: | + chart_version="$(echo ${{ inputs.chart-dir }} | sed 's/camunda-platform/0.0.0-ci-snapshot/g')" \ yq -i '.version = env(chart_version)' charts/${{ inputs.chart-dir }}/Chart.yaml diff --git a/.github/config/rosa-on-demand/distribution-team/.gitignore b/.github/config/rosa-on-demand/distribution-team/.gitignore new file mode 100644 index 0000000000..4a424df541 --- /dev/null +++ b/.github/config/rosa-on-demand/distribution-team/.gitignore @@ -0,0 +1 @@ +secret.yaml diff --git a/.github/config/rosa-on-demand/distribution-team/external-cluster-secretstore.yaml b/.github/config/rosa-on-demand/distribution-team/external-cluster-secretstore.yaml new file mode 100644 index 0000000000..98bc11dfee --- /dev/null +++ b/.github/config/rosa-on-demand/distribution-team/external-cluster-secretstore.yaml @@ -0,0 +1,21 @@ +--- +apiVersion: external-secrets.io/v1beta1 +kind: SecretStore +metadata: + name: k8s-store-token-auth +spec: + provider: + kubernetes: + remoteNamespace: distribution-team + server: + url: REPLACE_ME # the url will be dynamically replaced in .github/workflows/test-integration-rosa.yaml using `yq` + caProvider: + type: Secret + name: "external-clusters-access-secret-store-token" + key: "ca.crt" + namespace: distribution-team + auth: + token: + bearerToken: + name: "external-clusters-access-secret-store-token" + key: "token" diff --git a/.github/config/rosa-on-demand/distribution-team/external-secret.yaml b/.github/config/rosa-on-demand/distribution-team/external-secret.yaml new file mode 100644 index 0000000000..29a7d39423 --- /dev/null +++ b/.github/config/rosa-on-demand/distribution-team/external-secret.yaml @@ -0,0 +1,23 @@ +# clone the widlcard certs secrets from the permanent cluster + +apiVersion: external-secrets.io/v1beta1 +kind: ExternalSecret +metadata: + name: external-secret-ci-distro-ultrawombat-com + namespace: camunda-platform +spec: + refreshInterval: 1h + secretStoreRef: + kind: SecretStore + name: k8s-store-token-auth + target: + name: ci-distro-ultrawombat-com # name of the k8s Secret to be created + data: + - secretKey: tls.crt + remoteRef: + key: ci-distro-ultrawombat-com + property: tls.crt + - secretKey: tls.key + remoteRef: + key: ci-distro-ultrawombat-com + property: tls.key diff --git a/.github/config/rosa-on-demand/distribution-team/kustomization.yaml b/.github/config/rosa-on-demand/distribution-team/kustomization.yaml new file mode 100644 index 0000000000..d939e03628 --- /dev/null +++ b/.github/config/rosa-on-demand/distribution-team/kustomization.yaml @@ -0,0 +1,15 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization + +commonAnnotations: + camunda.com/team: distribution + +commonLabels: + app.kubernetes.io/managed-by: kustomize + +namespace: distribution-team + +resources: + - secret.yaml + - external-cluster-secretstore.yaml + - external-secret.yaml diff --git a/.github/config/rosa-on-demand/distribution-team/secret.yaml.tpl b/.github/config/rosa-on-demand/distribution-team/secret.yaml.tpl new file mode 100644 index 0000000000..bf0dc1e693 --- /dev/null +++ b/.github/config/rosa-on-demand/distribution-team/secret.yaml.tpl @@ -0,0 +1,14 @@ +# Use envsubst https://stackoverflow.com/a/56009991 +# envsubst < secret.yaml.tpl > secret.yaml +# This secret is templated in .github/workflows/test-integration-rosa.yaml#L228 +--- +apiVersion: v1 +kind: Secret +metadata: + name: external-clusters-access-secret-store-token +data: + ca.crt: "$EXTERNAL_SECRET_STORE_SA_CA" + service-ca.crt: "$EXTERNAL_SECRET_STORE_SA_SERVICE_CA" + namespace: ZGlzdHJpYnV0aW9uLXRlYW0= + # Get it from distro-central cluster. + token: "$EXTERNAL_SECRET_STORE_SA_TOKEN" diff --git a/.github/config/rosa-on-demand/external-dns/.gitignore b/.github/config/rosa-on-demand/external-dns/.gitignore new file mode 100644 index 0000000000..ddbd752c47 --- /dev/null +++ b/.github/config/rosa-on-demand/external-dns/.gitignore @@ -0,0 +1,2 @@ +secret.yaml +charts diff --git a/.github/config/rosa-on-demand/external-dns/kustomization.yaml b/.github/config/rosa-on-demand/external-dns/kustomization.yaml new file mode 100644 index 0000000000..b2003c61e8 --- /dev/null +++ b/.github/config/rosa-on-demand/external-dns/kustomization.yaml @@ -0,0 +1,13 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization + +commonAnnotations: + camunda.com/team: distribution + +commonLabels: + app.kubernetes.io/managed-by: kustomize + +namespace: external-dns + +resources: +- ./secret.yaml diff --git a/.github/config/rosa-on-demand/external-dns/secret.yaml.tpl b/.github/config/rosa-on-demand/external-dns/secret.yaml.tpl new file mode 100644 index 0000000000..ba1246b98b --- /dev/null +++ b/.github/config/rosa-on-demand/external-dns/secret.yaml.tpl @@ -0,0 +1,10 @@ +# Use envsubst https://stackoverflow.com/a/56009991 +# envsubst < secret.yaml.tpl > secret.yaml +--- +apiVersion: v1 +kind: Secret +metadata: + name: external-dns-gcp-service-account +data: + # Get it from distro-central repo. + credentials.json: "$EXTERNAL_DNS_GCP_SERVICE_ACCOUNT" diff --git a/.github/config/rosa-on-demand/kustomization.yaml b/.github/config/rosa-on-demand/kustomization.yaml new file mode 100644 index 0000000000..bf89722e40 --- /dev/null +++ b/.github/config/rosa-on-demand/kustomization.yaml @@ -0,0 +1,15 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization + +# Description: this is a template cluster that is used each time we spawn an "on-demand" ROSA HCP cluster in the CI +# it extends the default configuration of the generic on-demand ROSA cluster with specific values set by the workflow + +commonAnnotations: + camunda.com/team: distribution + +commonLabels: + app.kubernetes.io/managed-by: kustomize + +resources: +- ./external-dns +- ./distribution-team diff --git a/.github/workflows/configs/test-integration-rosa-matrix.yaml b/.github/workflows/configs/test-integration-rosa-matrix.yaml new file mode 100644 index 0000000000..c665a4c9ef --- /dev/null +++ b/.github/workflows/configs/test-integration-rosa-matrix.yaml @@ -0,0 +1,18 @@ +matrix: + distro: + # /!\ BEFORE ADDING/REMOVING A VERSION: + # /!\ Please keep this matrix synced with the official documentation: https://github.com/camunda/camunda-docs/blob/main/docs/self-managed/setup/deploy/openshift/redhat-openshift.md?plain=1#L2 + # According to https://access.redhat.com/support/policy/updates/openshift, this matrix should reference the last 4 (may change) supported versions of OpenShift + - name: OpenShift 4.15 + type: openshift + # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4(\.(?\d+))?(\.(?\d+))?$ + version: 4.15.11 + # /!\ Warning: When a new minor version of OpenShift is released, you must update all N-1, N-2, and N-3 versions in this matrix. + # rationale: Red Hat supports the last four minor versions of OpenShift. Therefore, to ensure compatibility and support, we must test against these versions. For more details, refer to the official support policy at https://endoflife.date/red-hat-openshift. + platform: rosa + + - name: OpenShift 4.14 # TODO: when you will add to this matrix OpenShift 4.16, please duplicate this block for 4.15 (pay attention the the renovate regex) + type: openshift + # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4.14(\.(?\d+))?$ + version: 4.14.24 + platform: rosa diff --git a/.github/workflows/test-integration-rosa-cleanup.yml b/.github/workflows/test-integration-rosa-cleanup.yml new file mode 100644 index 0000000000..d65e62f9bd --- /dev/null +++ b/.github/workflows/test-integration-rosa-cleanup.yml @@ -0,0 +1,85 @@ +name: "Test - Integration - ROSA Daily cleanup" + +on: + pull_request: + paths: + - '.github/workflows/daily-cleanup-rosa.yml' + - '.github/templates/issue_delete_clusters_failed.md' + workflow_dispatch: + inputs: + max_age_hours_cluster: + description: "Maximum age of clusters in hours" + default: "20" + + schedule: + - cron: '0 1 * * *' # At 01:00 everyday. + +env: + MAX_AGE_HOURS_CLUSTER: 20 + + # please keep those variables synced with test-integration-rosa.yml + TEST_AWS_REGION: "eu-central-1" + TF_S3_BUCKET: "${{ secrets.DISTRO_CI_OPENSHIFT_TFSTATE_BUCKET }}" + +jobs: + + cleanup-clusters: + runs-on: ubuntu-latest + steps: + - name: Checkout repository + uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + with: + ref: ${{ github.head_ref }} + fetch-depth: 0 + + - name: Checkout Repository rosa modules + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + with: + repository: "camunda/camunda-tf-rosa" + ref: "main" + path: "./.rosa-hcp" + fetch-depth: 0 + + # Official action does not support profiles + - name: Authenticate to AWS + run: | + aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + + - name: Delete clusters + id: delete_clusters + uses: camunda/camunda-tf-rosa/.github/actions/rosa-cleanup-clusters@main + timeout-minutes: 125 + env: + RH_TOKEN: "${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }}" + AWS_REGION: "${{ env.TEST_AWS_REGION }}" + AWS_PROFILE: "${{ secrets.DISTRO_CI_AWS_PROFILE }}" + with: + tf-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" + max-age-hours-cluster: "${{ env.MAX_AGE_HOURS_CLUSTER }}" + + - name: Notify in Slack in case of failure + id: slack-notification + if: failure() && github.event_name == 'schedule' + uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 + with: + channel-id: ${{ secrets.SLACK_CHANNEL_ID }} + payload: | + { + "unfurl_links": false, + "unfurl_media": false, + "text": "${{ github.event.repository.name }} (${{ github.server_url }}/${{ github.repository }}) scheduled workflow: ${{ github.workflow }} failed! Please check: ${{ env.WORKFLOW_URL }}", + "blocks": [ + { + "type": "section", + "text": { + "type": "mrkdwn", + "text": ":automation-platform-failure: :mechanic: <${{ github.server_url }}/${{ github.repository }}|[${{ github.event.repository.name }}]> scheduled workflow: ${{ github.workflow }} failed! \n :link: Please check: ${{ env.WORKFLOW_URL }}" + } + } + ] + } + env: + SLACK_BOT_TOKEN: ${{ secrets.DISTRO_CI_SLACK_BOT_TOKEN }} + WORKFLOW_URL: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" diff --git a/.github/workflows/test-integration-rosa.yaml b/.github/workflows/test-integration-rosa.yaml new file mode 100644 index 0000000000..4934cd212b --- /dev/null +++ b/.github/workflows/test-integration-rosa.yaml @@ -0,0 +1,421 @@ +name: "Test - Integration - ROSA" + +# description: This workflow perform integration tests against ROSA platform, it only prepares the cluster to run the tests + +on: + schedule: + - cron: '0 3 * * 1,3,5' # Runs at 3 AM on Monday, Wednesday, and Friday + pull_request: + paths: + - '.github/workflows/configs/test-integration-rosa-matrix.yaml' + - '.github/workflows/test-integration-rosa.yaml' + - '.github/actions/workflow-vars/**' + - '.github/actions/chart-test/**' + - '.github/actions/test-type-vars/**' + - '.github/workflows/fixtures/clusters/rosa-hcp-on-demand/**' + - '.github/workflows/fixtures/modules/**' + - '.tool-versions' + workflow_call: + inputs: + cluster_name: + description: The unique identifier of used in the cluster name, will be random if not provided. + default: "" + type: string + identifier: + description: The unique identifier of used in the deployment hostname. + required: true + type: string + camunda-helm-dir: + required: false + default: camunda-platform-latest + type: string + camunda-helm-git-ref: + default: main + type: string + caller-git-ref: + default: main + type: string + deployment-ttl: + description: | + Define a ttl for the lifespan of the deployment + NOTE: Currently, any ttl will be handled as a 24h deployment + required: false # TODO: configure a way to handle ttl for permanent clusters see https://github.com/camunda/camunda-platform-helm/pull/1816#discussion_r1658465380 + default: "" + type: string + flows: + description: "JSON formated list of flows" + default: '["install", "upgrade"]' + type: string + test-enabled: + default: true + type: boolean + extra-values: + description: Pass extra values to the Helm chart. + default: "" + type: string + +env: + # Vars with "CI_" prefix are used in the CI workflow only. + # Vars with "TEST_" prefix are used in the test runner tool (Task). + CI_DEPLOYMENT_TTL: "${{ inputs.deployment-ttl || '' }}" + CI_HOSTNAME_BASE: ci.distro.ultrawombat.com + + # please keep those variables synced with test-integration-template.yml + TEST_AWS_REGION: "eu-central-1" + TF_S3_BUCKET: "${{ secrets.DISTRO_CI_OPENSHIFT_TFSTATE_BUCKET }}" + + # Docker Hub auth to avoid image pull rate limit. + TEST_CREATE_DOCKER_LOGIN_SECRET: "TRUE" + TEST_DOCKER_USERNAME: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_DOCKERHUB }} + TEST_DOCKER_PASSWORD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_DOCKERHUB }} + # Camunda registry auth to access WebModeler Docker image since it's not public. + TEST_DOCKER_USERNAME_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_CAMUNDA }} + TEST_DOCKER_PASSWORD_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_CAMUNDA }} + + INPUTS_IDENTIFIER: "${{ inputs.identifier }}" + INPUTS_TEST_ENABLED: "${{ inputs.test-enabled || 'true' }}" + INPUTS_CALLER_GIT_REF: "${{ inputs.caller-git-ref || github.event.pull_request.head.sha || github.sha }}" + INPUTS_CAMUNDA_HELM_GIT_REF: "${{ inputs.camunda-helm-git-ref || github.event.pull_request.head.sha || github.sha }}" + INPUTS_EXTRA_VALUES: "${{ inputs.extra-values || '' }}" + INPUTS_FLOWS: ${{ inputs.flows || '[\"install\", \"upgrade\"]' }} + INPUTS_CHART_DIR: ${{ inputs.camunda-helm-dir || 'camunda-platform-latest' }} + +# limit to a single execution per actor of this workflow +concurrency: + group: "${{ github.workflow }}-${{ github.actor }}" + +jobs: + define-matrix: + name: Define matrix + runs-on: ubuntu-latest + outputs: + platform_matrix: ${{ steps.set-matrix.outputs.platform_matrix }} + flow_matrix: ${{ steps.set-matrix.outputs.flow_matrix }} + steps: + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + with: + fetch-depth: 0 + + - id: set-matrix + # we define a global matrix in an external file due to https://github.com/orgs/community/discussions/26284 + run: | + platform_matrix=$(yq -I0 '.matrix.distro' -o=json .github/workflows/configs/test-integration-rosa-matrix.yaml) + echo "platform_matrix=$platform_matrix" + echo "platform_matrix=$platform_matrix" >> "$GITHUB_OUTPUT" + echo "flow_matrix=${{ env.INPUTS_FLOWS }}" + echo "flow_matrix=${{ env.INPUTS_FLOWS }}" >> "$GITHUB_OUTPUT" + + define-variables: + name: Define variables + runs-on: ubuntu-latest + needs: + - define-matrix + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} + steps: + - name: Define ROSA cluster name + id: rosa-cluster-name + run: | + if [ -z "${{ inputs.cluster_name }}" ]; then + random_string=$(LC_ALL=C tr -cd 'a-f0-9' < /dev/urandom | head -c 8) + identifier="random-${random_string}-${{ matrix.distro.name }}" + else + identifier="${{ inputs.cluster_name }}-${{ matrix.distro.name }}" + fi + + : # ensure that the name of the cluster is unique + sha_identifier=$(echo -n "$identifier" | sha1sum | cut -c1-10) + rosa_cluster_name="c-$sha_identifier" + echo "rosa_cluster_name=$rosa_cluster_name" + echo "rosa_cluster_name=$rosa_cluster_name" >> "$GITHUB_OUTPUT" + + ## Write for matrix outputs workaround + - uses: cloudposse/github-action-matrix-outputs-write@ed06cf3a6bf23b8dce36d1cf0d63123885bb8375 # v1 + id: out + with: + matrix-step-name: ${{ github.job }} + matrix-key: ${{ matrix.distro.name }} + outputs: |- + cluster_name: ${{ steps.rosa-cluster-name.outputs.rosa_cluster_name }} + + read-cluster-vars: + name: Read cluster variables + runs-on: ubuntu-latest + needs: [ define-variables ] + steps: + - uses: cloudposse/github-action-matrix-outputs-read@33cac12fa9282a7230a418d859b93fdbc4f27b5a # v1 + id: read + with: + matrix-step-name: define-variables + outputs: + result: "${{ steps.read.outputs.result }}" + + prepare-clusters: + name: Prepare clusters + needs: + - define-matrix + - read-cluster-vars + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + with: + fetch-depth: 0 + + - name: Authenticate to AWS + run: | + aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + + - name: Create ROSA cluster and login + uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@34eef55d18c7d3d84a79bfc0d305c92bd3dccc45 # main + timeout-minutes: 125 + env: + AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} + with: + rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} + admin-username: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_USERNAME }} + admin-password: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_PASSWORD }} + s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" + + cluster-name: ${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }} + aws-region: ${{ env.TEST_AWS_REGION }} + replicas: 10 + + openshift-version: "${{ matrix.distro.version }}" + + # this token is used to clone the github repository containing the base modules + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} + + - name: Clone the distribution GitOps repo + uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + with: + repository: "camunda/distribution" + ref: "main" + path: "./.distribution-kube/" + fetch-depth: 0 + token: "${{ steps.generate-github-token.outputs.token }}" + + - name: Configure on-demand cluster ROSA + timeout-minutes: 10 + # we need to retry as CRDs can take some time to be installed + uses: nick-fields/retry@7152eba30c6575329ac0576536151aca5a72780e # v3 + with: + timeout_minutes: 10 + max_attempts: 40 + shell: bash + retry_wait_seconds: 15 + command: | + : # see https://github.com/nick-fields/retry/issues/133 + set -o errexit + set -o pipefail + + : # we configure the whole cluster using this generic template + cd ./.distribution-kube/clusters/rosa-hcp-on-demand/ + : # we need to ensure uniqueness of the dns + yq -ei '.txtOwnerId = "${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }}"' external-dns/helm-chart/external-dns-values.yaml + kustomize build --load-restrictor LoadRestrictionsNone --enable-helm ./ | kubectl apply -f - + + : # configure specific configurations for the ci + cd ${{ github.workspace }}/.github/config/rosa-on-demand/ + + : # configure external dns + export EXTERNAL_DNS_GCP_SERVICE_ACCOUNT=${{ secrets.DISTRO_CI_ON_DEMAND_EXTERNAL_DNS_GCP_SERVICE_ACCOUNT }} + envsubst < external-dns/secret.yaml.tpl > external-dns/secret.yaml + + : # configure ExternalSecretStore replication from the permanent ROSA cluster + export EXTERNAL_SECRET_STORE_SA_TOKEN=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_TOKEN }} + export EXTERNAL_SECRET_STORE_SA_SERVICE_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_SERVICE_CA }} + export EXTERNAL_SECRET_STORE_SA_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_CA }} + envsubst < distribution-team/secret.yaml.tpl > distribution-team/secret.yaml + yq -ei '.spec.provider.kubernetes.server.url = "${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_URL }}"' distribution-team/external-cluster-secretstore.yaml + + : # apply + kustomize build ./ | kubectl apply -f - + + echo "Waiting for global state to converge" + sleep 30 + + while kubectl get pods --all-namespaces | grep -E -q -v '(Running|Completed|STATUS)'; do + echo "Waiting for all pods to be Running or Completed" + sleep 5 + done + + kubectl get all --all-namespaces + + - name: Export kubeconfig and encrypt it # this is required to pass matrix outputs securely using artifacts + id: export_kube_config + run: | + echo "$(kubectl config view --raw)" > kubeconfig.yaml 2>/dev/null + openssl enc -aes-256-cbc -salt -in kubeconfig.yaml -out encrypted_kubeconfig.enc -pass pass:"${GITHUB_TOKEN}" -pbkdf2 + encrypted_kubeconfig_base64=$(base64 -w 0 encrypted_kubeconfig.enc) + echo "kubeconfig_raw=${encrypted_kubeconfig_base64}" >> "$GITHUB_OUTPUT" + + ## Write for matrix outputs workaround + - uses: cloudposse/github-action-matrix-outputs-write@ed06cf3a6bf23b8dce36d1cf0d63123885bb8375 # v1 + id: out + with: + matrix-step-name: ${{ github.job }} + matrix-key: ${{ matrix.distro.name }} + outputs: |- + kubeconfig_raw: ${{ steps.export_kube_config.outputs.kubeconfig_raw }} + + read-kube-configs: + name: "Read kube configs from matrix" + runs-on: ubuntu-latest + needs: [ prepare-clusters ] + steps: + - uses: cloudposse/github-action-matrix-outputs-read@33cac12fa9282a7230a418d859b93fdbc4f27b5a # v1 + id: read + with: + matrix-step-name: prepare-clusters + outputs: + kubeconfig: "${{ steps.read.outputs.result }}" + + launch-tests: + name: "Launch tests" + runs-on: ubuntu-latest + needs: + - define-matrix + - read-cluster-vars + - read-kube-configs + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} + flow: ${{ fromJson(needs.define-matrix.outputs.flow_matrix) }} + steps: + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + with: + fetch-depth: 1 + ref: ${{ inputs.camunda-helm-git-ref }} + + - name: Set up Kubeconfig + run: | + mkdir -p $HOME/.kube + echo "${{ fromJson(needs.read-kube-configs.outputs.kubeconfig).kubeconfig_raw[matrix.distro.name] }}" | base64 --decode > encrypted_kubeconfig.enc + openssl enc -aes-256-cbc -d -in encrypted_kubeconfig.enc -out "$HOME/.kube/config" -pass pass:"${GITHUB_TOKEN}" -pbkdf2 + rm encrypted_kubeconfig.enc + chmod 600 $HOME/.kube/config + + # when TEST_IDENTIFIER is empty (in case of a push event or other), we must provide a fallback value that is unique + - name: Ensure identifier is set and append cluster name + run: | + INPUTS_IDENTIFIER="${{ env.INPUTS_IDENTIFIER }}" + if [ -z "$INPUTS_IDENTIFIER" ]; then + INPUTS_IDENTIFIER="$(git rev-parse --short ${{ github.sha }})" + fi + + echo "INPUTS_IDENTIFIER=$INPUTS_IDENTIFIER-${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }}" | tee -a "$GITHUB_ENV" + + # Used to create/delete GitHub environment. + # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} + + - name: Launch tests + uses: ./.github/actions/chart-test + with: + platform: "${{ matrix.distro.platform }}" + type: "${{ matrix.distro.type }}" + + identifier: "${{ env.INPUTS_IDENTIFIER }}" + deployment-ttl: "${{ env.CI_DEPLOYMENT_TTL }}" + flow: "${{ matrix.flow }}" + test-enabled: "${{ env.INPUTS_TEST_ENABLED }}" + + caller-git-ref: ${{ env.INPUTS_CALLER_GIT_REF }} + extra-values: ${{ env.INPUTS_EXTRA_VALUES }} + ingress-hostname-base: ${{ env.CI_HOSTNAME_BASE }} + chart-dir: ${{ env.INPUTS_CHART_DIR }} + + gh-token: ${{ steps.generate-github-token.outputs.token }} + + cleanup-clusters: + name: "Cleanup ROSA clusters" + if: always() + runs-on: ubuntu-latest + needs: + - define-matrix + - read-cluster-vars + - launch-tests + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} + steps: + # Used to create/delete GitHub environment. + # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} + + - name: Authenticate to AWS + run: | + aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + + - name: Delete on-demand ROSA HCP Cluster + uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@34eef55d18c7d3d84a79bfc0d305c92bd3dccc45 # main + if: always() && env.CI_DEPLOYMENT_TTL == '' + timeout-minutes: 125 + env: + AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} + with: + rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} + s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" + + cluster-name: ${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }} + aws-region: ${{ env.TEST_AWS_REGION }} + + report: + name: "Report failures" + if: always() + runs-on: ubuntu-latest + needs: + - launch-tests + - cleanup-clusters + steps: + - name: Notify in Slack in case of failure + id: slack-notification + if: failure() && github.event_name == 'schedule' + uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 + with: + channel-id: ${{ secrets.SLACK_CHANNEL_ID }} + payload: | + { + "unfurl_links": false, + "unfurl_media": false, + "text": "${{ github.event.repository.name }} (${{ github.server_url }}/${{ github.repository }}) scheduled workflow: ${{ github.workflow }} failed! Please check: ${{ env.WORKFLOW_URL }}", + "blocks": [ + { + "type": "section", + "text": { + "type": "mrkdwn", + "text": ":automation-platform-failure: :mechanic: <${{ github.server_url }}/${{ github.repository }}|[${{ github.event.repository.name }}]> scheduled workflow: ${{ github.workflow }} failed! \n :link: Please check: ${{ env.WORKFLOW_URL }}" + } + } + ] + } + env: + SLACK_BOT_TOKEN: ${{ secrets.DISTRO_CI_SLACK_BOT_TOKEN }} + WORKFLOW_URL: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" diff --git a/.github/workflows/test-integration-template.yaml b/.github/workflows/test-integration-template.yaml index 753807e7eb..a924c6a9f6 100644 --- a/.github/workflows/test-integration-template.yaml +++ b/.github/workflows/test-integration-template.yaml @@ -13,11 +13,9 @@ on: default: camunda-platform-latest type: string camunda-helm-git-ref: - required: false default: main type: string caller-git-ref: - required: false default: main type: string deployment-ttl: @@ -30,17 +28,15 @@ on: default: gke type: string flows: - required: false default: install type: string test-enabled: - required: false default: true type: boolean extra-values: description: Pass extra values to the Helm chart. - required: false type: string + default: "" vault-secret-mapping: description: (optional) defines how to map Vault secrets to distro CI environment variables required: false @@ -58,6 +54,9 @@ env: # Vars with "TEST_" prefix are used in the test runner tool (Task). CI_DEPLOYMENT_TTL: ${{ inputs.deployment-ttl }} CI_HOSTNAME_BASE: ci.distro.ultrawombat.com + + TEST_IDENTIFIER: ${{ inputs.identifier }} + # Docker Hub auth to avoid image pull rate limit. TEST_CREATE_DOCKER_LOGIN_SECRET: "TRUE" TEST_DOCKER_USERNAME: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_DOCKERHUB }} @@ -111,29 +110,21 @@ jobs: if: false - scenario: if: false - - env: - TEST_CLUSTER_TYPE: ${{ matrix.distro.type }} - steps: - name: Print workflow inputs run: | echo "Workflow inputs:" - echo "identifier: ${{ inputs.identifier }}" - echo "camunda-helm-dir: ${{ inputs.camunda-helm-dir }}" echo "camunda-helm-git-ref: ${{ inputs.camunda-helm-git-ref }}" - echo "caller-git-ref: ${{ inputs.caller-git-ref }}" - echo "deployment-ttl: ${{ inputs.deployment-ttl }}" echo "platforms: ${{ inputs.platforms }}" echo "flows: ${{ inputs.flows }}" - echo "test-enabled: ${{ inputs.test-enabled }}" - echo "extra-values: ${{ inputs.extra-values }}" echo "vault-secret-mapping: ${{ inputs.vault-secret-mapping }}" + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: # This is needed to load repo GH composite actions if the workflow triggered by workflow_call. repository: camunda/camunda-platform-helm ref: ${{ inputs.camunda-helm-git-ref }} + # When there is a vault-secret-mapping input given, use Vault instead of GitHub secrets # and populate environment variables from Vault - name: Import Vault secrets @@ -147,6 +138,7 @@ jobs: secretId: ${{ secrets.VAULT_SECRET_ID }} secrets: ${{ inputs.vault-secret-mapping }} exportEnv: true + # Used to create/delete GitHub environment. # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. - name: Generate GitHub token @@ -155,6 +147,7 @@ jobs: with: app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} + # TODO: Later, find a way to abstract the auth for different platforms. - name: Authenticate to GKE if: matrix.distro.platform == 'gke' @@ -164,6 +157,7 @@ jobs: cluster-location: ${{ secrets[matrix.distro.secret.cluster-location] }} workload-identity-provider: ${{ secrets[matrix.distro.secret.workload-identity-provider] }} service-account: ${{ secrets[matrix.distro.secret.service-account] }} + - name: Authenticate to OpenShift if: matrix.distro.platform == 'rosa' uses: redhat-actions/oc-login@5eb45e848b168b6bf6b8fe7f1561003c12e3c99d # v1 @@ -171,128 +165,29 @@ jobs: openshift_server_url: ${{ secrets[matrix.distro.secret.server-url] }} openshift_username: ${{ secrets[matrix.distro.secret.username] }} openshift_password: ${{ secrets[matrix.distro.secret.password] }} - - name: Set workflow vars - id: vars - uses: ./.github/actions/workflow-vars + + # when TEST_IDENTIFIER is empty (in case of a push event or other), we must provide a fallback value that is unique + - name: Ensure identifier is set + run: | + if [ -z "${{ env.TEST_IDENTIFIER }}" ]; then + calculatedSha=$(git rev-parse --short ${{ github.sha }}) + echo "TEST_IDENTIFIER=$calculatedSha" >> $GITHUB_ENV + fi + + - name: Launch tests + uses: ./.github/actions/chart-test with: + platform: "${{ matrix.distro.platform }}" + type: "${{ matrix.distro.type }}" + + identifier: "${{ env.TEST_IDENTIFIER }}" deployment-ttl: ${{ env.CI_DEPLOYMENT_TTL }} - setup-flow: ${{ matrix.scenario.flow }} - platform: ${{ matrix.distro.platform }} - identifier-base: ${{ inputs.identifier }} + flow: "${{ matrix.scenario.flow }}" + test-enabled: "${{ inputs.test-enabled }}" + + caller-git-ref: ${{ inputs.caller-git-ref }} + extra-values: ${{ inputs.extra-values }} ingress-hostname-base: ${{ env.CI_HOSTNAME_BASE }} chart-dir: ${{ inputs.camunda-helm-dir }} - - name: Set test type vars - id: test-type-vars - uses: ./.github/actions/test-type-vars - with: - chart-dir: "${{ inputs.camunda-helm-dir }}" - - name: Install env dependencies - uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - - name: Add Helm repos and dependencies - run: | - export chartPath="charts/${{ inputs.camunda-helm-dir }}" - make helm.repos-add - make helm.dependency-update - - name: Create test namespace - run: | - echo $TEST_NAMESPACE - kubectl delete ns --ignore-not-found=true \ - -l "github-id=${{ steps.vars.outputs.identifier }},test-flow=${{ matrix.scenario.flow }}" - kubectl create ns $TEST_NAMESPACE - kubectl label ns $TEST_NAMESPACE github-run-id=$GITHUB_WORKFLOW_RUN_ID - kubectl label ns $TEST_NAMESPACE github-job-id=$GITHUB_WORKFLOW_JOB_ID - kubectl label ns $TEST_NAMESPACE github-id=${{ steps.vars.outputs.identifier }} - kubectl label ns $TEST_NAMESPACE test-flow=${{ matrix.scenario.flow }} - kubectl label ns $TEST_NAMESPACE github-org=$(dirname $GITHUB_REPOSITORY) - kubectl label ns $TEST_NAMESPACE github-repo=$(basename $GITHUB_REPOSITORY) - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1d - kubectl annotate ns $TEST_NAMESPACE github-workflow-run-url=$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID - - name: Copy PRs wildcard certificate - run: | - kubectl apply -n $TEST_NAMESPACE -f .github/config/external-secret.yaml - - name: Start GitHub deployment - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - id: deployment - with: - step: start - token: ${{ steps.generate-github-token.outputs.token }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - name: Pre setup - timeout-minutes: 5 - env: - TEST_CHART_FLOW: ${{ matrix.scenario.flow }} - TEST_INGRESS_HOST: ${{ steps.vars.outputs.ingress-host }} - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.pre - echo "Extra values from workflow:" - echo "${{ inputs.extra-values }}" > /tmp/extra-values-file.yaml - cat /tmp/extra-values-file.yaml - - name: 🌟 Setup Camunda chart 🌟 - env: - TEST_CHART_FLOW: ${{ matrix.scenario.flow }} - TEST_HELM_EXTRA_ARGS: >- - --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} - --values /tmp/extra-values-file.yaml - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.exec - - name: Post setup - timeout-minutes: 5 - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.post - - name: Pre Upgrade - if: matrix.scenario.flow == 'upgrade' - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.pre - - name: 🌟 Upgrade Camunda chart 🌟 - if: matrix.scenario.flow == 'upgrade' - env: - TEST_HELM_EXTRA_ARGS: >- - --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} - --values /tmp/extra-values-file.yaml - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.exec - - name: Update GitHub deployment status - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - with: - step: finish - token: ${{ steps.generate-github-token.outputs.token }} - status: ${{ job.status }} - deployment_id: ${{ steps.deployment.outputs.deployment_id }} - env_url: https://${{ steps.vars.outputs.ingress-host }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - name: ⭐️ Run Preflight TestSuite ⭐️ - if: inputs.test-enabled - timeout-minutes: 10 - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.preflight - - name: ⭐️ Run Core TestSuite ⭐️ - if: inputs.test-enabled - timeout-minutes: 20 - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.core - - name: 🚨 Get failed Pods info 🚨 - if: failure() - uses: ./.github/actions/failed-pods-info - - name: Cleanup GitHub deployment - if: always() && (env.CI_DEPLOYMENT_TTL == '' || matrix.distro.type != 'kubernetes') - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - with: - step: delete-env - token: ${{ steps.generate-github-token.outputs.token }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - name: Cleanup test namespace - if: always() - run: | - if [ "${{ env.CI_DEPLOYMENT_TTL }}" != "" ]; then - if [ "${{ matrix.distro.type }}" == "kubernetes" ]; then - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=${CI_DEPLOYMENT_TTL} --overwrite=true - else - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true - fi - else - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true - fi + gh-token: ${{ steps.generate-github-token.outputs.token }} diff --git a/.github/workflows/test-integration.yaml b/.github/workflows/test-integration.yaml index 9cc3335dd1..fcd23e1f8d 100644 --- a/.github/workflows/test-integration.yaml +++ b/.github/workflows/test-integration.yaml @@ -7,6 +7,8 @@ on: - '.github/workflows/test-integration.yaml' - '.github/actions/gke-login/**' - '.github/actions/workflow-vars/**' + - '.github/actions/test-type-vars/**' + - '.github/actions/chart-test/**' - '.tool-versions' - 'charts/camunda-platform-latest/**' types: [opened, closed, reopened, synchronize] From c9aa1eeefb2dd9dee50914690ee119defcb0eaaa Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 5 Jul 2024 01:43:24 +0000 Subject: [PATCH 24/32] chore(deps): update github-actions (#2112) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/test-integration-rosa-cleanup.yml | 4 ++-- .github/workflows/test-integration-rosa.yaml | 12 ++++++------ 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/test-integration-rosa-cleanup.yml b/.github/workflows/test-integration-rosa-cleanup.yml index d65e62f9bd..2bbb3e02b6 100644 --- a/.github/workflows/test-integration-rosa-cleanup.yml +++ b/.github/workflows/test-integration-rosa-cleanup.yml @@ -27,13 +27,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: ref: ${{ github.head_ref }} fetch-depth: 0 - name: Checkout Repository rosa modules - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: repository: "camunda/camunda-tf-rosa" ref: "main" diff --git a/.github/workflows/test-integration-rosa.yaml b/.github/workflows/test-integration-rosa.yaml index 4934cd212b..9ebd9d6685 100644 --- a/.github/workflows/test-integration-rosa.yaml +++ b/.github/workflows/test-integration-rosa.yaml @@ -92,7 +92,7 @@ jobs: platform_matrix: ${{ steps.set-matrix.outputs.platform_matrix }} flow_matrix: ${{ steps.set-matrix.outputs.flow_matrix }} steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: fetch-depth: 0 @@ -163,7 +163,7 @@ jobs: distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: fetch-depth: 0 @@ -174,7 +174,7 @@ jobs: aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - name: Create ROSA cluster and login - uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@34eef55d18c7d3d84a79bfc0d305c92bd3dccc45 # main + uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main timeout-minutes: 125 env: AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} @@ -199,7 +199,7 @@ jobs: private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - name: Clone the distribution GitOps repo - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: repository: "camunda/distribution" ref: "main" @@ -296,7 +296,7 @@ jobs: distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} flow: ${{ fromJson(needs.define-matrix.outputs.flow_matrix) }} steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 with: fetch-depth: 1 ref: ${{ inputs.camunda-helm-git-ref }} @@ -375,7 +375,7 @@ jobs: aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - name: Delete on-demand ROSA HCP Cluster - uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@34eef55d18c7d3d84a79bfc0d305c92bd3dccc45 # main + uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main if: always() && env.CI_DEPLOYMENT_TTL == '' timeout-minutes: 125 env: From 57a103a36c85090b8991c1e6cf0dd6144b770100 Mon Sep 17 00:00:00 2001 From: Leo J <153937047+leiicamundi@users.noreply.github.com> Date: Fri, 5 Jul 2024 12:42:32 +0200 Subject: [PATCH 25/32] fix(ci): failure alerts are not triggered on ROSA schedule integration (#2117) --- .github/actions/workflow-vars/action.yml | 10 +++++++++- .github/workflows/test-integration-rosa.yaml | 4 ++-- 2 files changed, 11 insertions(+), 3 deletions(-) diff --git a/.github/actions/workflow-vars/action.yml b/.github/actions/workflow-vars/action.yml index 191f923538..f72e0249f1 100644 --- a/.github/actions/workflow-vars/action.yml +++ b/.github/actions/workflow-vars/action.yml @@ -112,7 +112,15 @@ runs: # In the upgrade flow, the latest released chart for certain minor Camunda version will installed, # then upgraded from the PR branch to ensure upgradability. if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - git fetch origin main:main --no-tags + current_branch=$(git symbolic-ref --short HEAD) + + if [ "$current_branch" != "main" ]; then + # Perform the fetch operation + git fetch origin main:main --no-tags + else + echo "You are currently on the 'main' branch. Fetch operation not performed." + fi + TEST_CHART_VERSION="$(git show main:charts/${{ inputs.chart-dir }}/Chart.yaml | yq '.version')" echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" diff --git a/.github/workflows/test-integration-rosa.yaml b/.github/workflows/test-integration-rosa.yaml index 9ebd9d6685..5294087ed5 100644 --- a/.github/workflows/test-integration-rosa.yaml +++ b/.github/workflows/test-integration-rosa.yaml @@ -389,7 +389,7 @@ jobs: report: name: "Report failures" - if: always() + if: failure() runs-on: ubuntu-latest needs: - launch-tests @@ -397,7 +397,7 @@ jobs: steps: - name: Notify in Slack in case of failure id: slack-notification - if: failure() && github.event_name == 'schedule' + if: github.event_name == 'schedule' uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 with: channel-id: ${{ secrets.SLACK_CHANNEL_ID }} From 76a26880b7c700801ea07e70a2dcf845a3ccdf57 Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Fri, 5 Jul 2024 17:17:18 +0200 Subject: [PATCH 26/32] chore: add renovate schedule to tool-versions and github-actions --- .github/renovate.json5 | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/renovate.json5 b/.github/renovate.json5 index 3dda81ce4d..16584325c2 100644 --- a/.github/renovate.json5 +++ b/.github/renovate.json5 @@ -90,11 +90,13 @@ "groupName": "tool-versions", "addLabels": ["deps/tools"], "matchFileNames": [".tool-versions"], + "schedule": ["every weekend"], }, { "groupName": "github-actions", "addLabels": ["deps/github-actions"], "matchManagers": ["github-actions"], + "schedule": ["every weekend"], }, // From 3cc8a634c5b7a0ec51b1b6c5c1a899c4e0d74f21 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 6 Jul 2024 03:45:38 +0000 Subject: [PATCH 27/32] chore(deps): update actions/upload-artifact action to v4.3.4 (#2119) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/sec-scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sec-scorecard.yml b/.github/workflows/sec-scorecard.yml index 07d1799717..f9d82774e8 100644 --- a/.github/workflows/sec-scorecard.yml +++ b/.github/workflows/sec-scorecard.yml @@ -55,7 +55,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 + uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4 with: name: SARIF file path: results.sarif From 0ae2e3c6507fba8b18d13f76b35ca01352ea5678 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 13 Jul 2024 03:17:33 +0000 Subject: [PATCH 28/32] chore(deps): update github-actions (#2123) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/chart-validate-template.yaml | 2 +- .github/workflows/sec-codeql.yml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/chart-validate-template.yaml b/.github/workflows/chart-validate-template.yaml index e8b83ed474..cdb5a127c6 100644 --- a/.github/workflows/chart-validate-template.yaml +++ b/.github/workflows/chart-validate-template.yaml @@ -45,7 +45,7 @@ jobs: run: | echo "check-version-increment: false" >> .github/config/chart-testing.yaml # Dependencies. - - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5 + - uses: actions/setup-python@39cd14951b08e74b54015e9e001cdefcf80e669f # v5 with: python-version: 3.7 - name: Install dependencies diff --git a/.github/workflows/sec-codeql.yml b/.github/workflows/sec-codeql.yml index 82b5b7c561..07cf40904b 100644 --- a/.github/workflows/sec-codeql.yml +++ b/.github/workflows/sec-codeql.yml @@ -48,7 +48,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 + uses: github/codeql-action/init@c2585eca08d6e40bf455acae5248e197cdd25de1 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -62,7 +62,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 + uses: github/codeql-action/autobuild@c2585eca08d6e40bf455acae5248e197cdd25de1 # ℹ️ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -75,6 +75,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@7adf9ac915317792cbeaf8d9c9fa80f2dbacfd48 + uses: github/codeql-action/analyze@c2585eca08d6e40bf455acae5248e197cdd25de1 with: category: "/language:${{ matrix.language }}" From 06634a79690149b4f8fd52580594cdef8c9b898b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 13 Jul 2024 03:28:34 +0000 Subject: [PATCH 29/32] chore(deps): update github/codeql-action action to v3.25.12 (#2125) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/sec-scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sec-scorecard.yml b/.github/workflows/sec-scorecard.yml index f9d82774e8..12ccff1455 100644 --- a/.github/workflows/sec-scorecard.yml +++ b/.github/workflows/sec-scorecard.yml @@ -63,6 +63,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11 + uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3.25.12 with: sarif_file: results.sarif From 2cc22d192338b8dcaff05ab03630f8358e8af09e Mon Sep 17 00:00:00 2001 From: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> Date: Sun, 14 Jul 2024 00:14:07 +0200 Subject: [PATCH 30/32] chore(ci): refactor rosa integration test workflow (#2118) Signed-off-by: Ahmed AbouZaid <6760103+aabouzaid@users.noreply.github.com> --- .github/actions/chart-test/action.yml | 207 --------- .github/actions/gke-login/action.yml | 4 +- .github/actions/workflow-vars/action.yml | 182 ++++---- .../test-integration-rosa-matrix.yaml | 24 + .github/config/test-integration-matrix.yaml | 33 ++ .../configs/test-integration-rosa-matrix.yaml | 18 - .../test-integration-rosa-template.yaml | 319 +++++++++++++ .github/workflows/test-integration-rosa.yaml | 419 +----------------- .../workflows/test-integration-template.yaml | 335 +++++++++----- .github/workflows/test-integration.yaml | 1 - 10 files changed, 684 insertions(+), 858 deletions(-) delete mode 100644 .github/actions/chart-test/action.yml create mode 100644 .github/config/rosa-on-demand/test-integration-rosa-matrix.yaml create mode 100644 .github/config/test-integration-matrix.yaml delete mode 100644 .github/workflows/configs/test-integration-rosa-matrix.yaml create mode 100644 .github/workflows/test-integration-rosa-template.yaml diff --git a/.github/actions/chart-test/action.yml b/.github/actions/chart-test/action.yml deleted file mode 100644 index 01cfa8f1cc..0000000000 --- a/.github/actions/chart-test/action.yml +++ /dev/null @@ -1,207 +0,0 @@ -name: 'Camunda Chart Helm Tests Action' -description: 'A reusable action for Camunda Helm chart integration tests' - -inputs: - platform: - description: "Plaform on which we run the tests" - required: true - type: - description: "Type of the plaform on which we run the tests" - required: true - identifier: - description: 'The unique identifier used in the deployment hostname.' - required: true - caller-git-ref: - description: "Caller of this action git reference" - default: 'main' - test-enabled: - description: "Enable the tests" - default: 'true' - deployment-ttl: - description: | - Define a ttl for the lifespan of the deployment - required: false - default: "" - flow: - description: "Test scenario to perform (install, upgrade)." - default: 'install' - extra-values: - description: 'Pass extra values to the Helm chart.' - default: "" - ingress-hostname-base: - description: "Hostname base for the tests" - required: true - chart-dir: - description: A reference for the Camunda Helm chart directory which allows to test unreleased chagnes from Git repo. - required: true - gh-token: - required: true - description: "Github Token used to handle deployments (requires administration:write)" - wildcard-certs-secret-path: - default: ".github/config/external-secret.yaml" - description: "Path of the secrets containing the wildcard certificates for the ingress" - -runs: - using: 'composite' - steps: - - - name: Print workflow inputs - shell: bash - run: | - echo "Tests inputs:" - echo "identifier: ${{ inputs.identifier }}" - echo "chart-dir: ${{ inputs.chart-dir }}" - echo "caller-git-ref: ${{ inputs.caller-git-ref }}" - echo "deployment-ttl: ${{ inputs.deployment-ttl }}" - echo "platform: ${{ inputs.platform }}" - echo "flow: ${{ inputs.flow }}" - echo "test-enabled: ${{ inputs.test-enabled }}" - echo "extra-values: ${{ inputs.extra-values }}" - - - name: Install dependencies - uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - - - name: Set workflow vars - id: vars - uses: ./.github/actions/workflow-vars - with: - setup-flow: ${{ inputs.flow }} - ingress-hostname-base: ${{ inputs.ingress-hostname-base }} - platform: ${{ inputs.platform }} - deployment-ttl: ${{ inputs.deployment-ttl }} - type: ${{ inputs.type }} - identifier-base: ${{ inputs.identifier }} - chart-dir: ${{ inputs.chart-dir }} - - - name: Set test type vars - id: test-type-vars - uses: ./.github/actions/test-type-vars - with: - chart-dir: "${{ inputs.chart-dir }}" - - - name: Add Helm repos and dependencies - shell: bash - run: | - export chartPath="charts/${{ inputs.chart-dir }}" - make helm.repos-add - make helm.dependency-update - - - name: Create test namespace - shell: bash - run: | - echo $TEST_NAMESPACE - kubectl delete ns --ignore-not-found=true \ - -l "github-id=${{ steps.vars.outputs.identifier }},test-flow=${{ inputs.flow }}" - kubectl create ns $TEST_NAMESPACE - kubectl label ns $TEST_NAMESPACE github-run-id=$GITHUB_WORKFLOW_RUN_ID - kubectl label ns $TEST_NAMESPACE github-job-id=$GITHUB_WORKFLOW_JOB_ID - kubectl label ns $TEST_NAMESPACE github-id=${{ inputs.identifier }} - kubectl label ns $TEST_NAMESPACE test-flow=${{ inputs.flow }} - kubectl label ns $TEST_NAMESPACE github-org=$(dirname $GITHUB_REPOSITORY) - kubectl label ns $TEST_NAMESPACE github-repo=$(basename $GITHUB_REPOSITORY) - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1d - kubectl annotate ns $TEST_NAMESPACE github-workflow-run-url=$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID - - - name: Copy PRs wildcard certificate - shell: bash - run: | - kubectl apply -n $TEST_NAMESPACE -f ${{ inputs.wildcard-certs-secret-path }} - timeout 300 bash -c ' - until kubectl get externalsecret -n "$TEST_NAMESPACE" -o json | jq -e ".items | all(.status.conditions[]? | select(.type==\"Ready\").status == \"True\")" > /dev/null; do - echo "Waiting for ExternalSecrets to be ready"; - sleep 10; - done' - - - name: Start GitHub deployment - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - id: deployment - with: - step: start - token: ${{ inputs.gh-token }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - - name: Pre setup - shell: bash - env: - TEST_CHART_FLOW: ${{ inputs.flow }} - run: | - timeout 5m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.pre - - echo "Extra values from workflow:" - echo "${{ inputs.extra-values }}" > /tmp/extra-values-file.yaml - cat /tmp/extra-values-file.yaml - - - name: 🌟 Setup Camunda chart 🌟 - shell: bash - env: - TEST_CHART_FLOW: ${{ inputs.flow }} - TEST_HELM_EXTRA_ARGS: >- - --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} --values /tmp/extra-values-file.yaml - run: | - task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.exec - - - name: Post setup - shell: bash - run: timeout 5m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.post - - - name: Pre Upgrade - shell: bash - if: inputs.flow == 'upgrade' - run: task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.pre - - - name: 🌟 Upgrade Camunda chart 🌟 - shell: bash - if: inputs.flow == 'upgrade' - env: - TEST_HELM_EXTRA_ARGS: >- - --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} --values /tmp/extra-values-file.yaml - run: task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.exec - - - name: Update GitHub deployment status - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - with: - step: finish - token: ${{ inputs.gh-token }} - status: ${{ job.status }} - deployment_id: ${{ steps.deployment.outputs.deployment_id }} - env_url: https://${{ steps.vars.outputs.ingress-host }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - - name: ⭐️ Run Preflight TestSuite ⭐️ - shell: bash - if: inputs.test-enabled == 'true' - run: timeout 10m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.preflight - - - name: ⭐️ Run Core TestSuite ⭐️ - shell: bash - if: inputs.test-enabled == 'true' - run: timeout 20m task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.core - - - name: 🚨 Get failed Pods info 🚨 - if: failure() - uses: ./.github/actions/failed-pods-info - - - name: Cleanup GitHub deployment - if: always() && (inputs.deployment-ttl == '' || inputs.type != 'kubernetes') - uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 - with: - step: delete-env - token: ${{ inputs.gh-token }} - env: ${{ steps.vars.outputs.identifier }} - ref: ${{ inputs.caller-git-ref }} - - - name: Cleanup test namespace - shell: bash - if: always() - run: | - if [ "${{ inputs.deployment-ttl }}" != "" ]; then - if [ "${{ inputs.type }}" == "kubernetes" ]; then - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=${{ inputs.deployment-ttl }} --overwrite=true - else - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true - fi - else - kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true - fi diff --git a/.github/actions/gke-login/action.yml b/.github/actions/gke-login/action.yml index 50f843e377..361622844e 100644 --- a/.github/actions/gke-login/action.yml +++ b/.github/actions/gke-login/action.yml @@ -42,4 +42,6 @@ runs: run: chmod 600 $KUBECONFIG - name: Check credentials shell: bash - run: kubectl auth can-i create deployment + run: | + kubectl auth can-i create deployment + kubectl version diff --git a/.github/actions/workflow-vars/action.yml b/.github/actions/workflow-vars/action.yml index f72e0249f1..c35c24f44f 100644 --- a/.github/actions/workflow-vars/action.yml +++ b/.github/actions/workflow-vars/action.yml @@ -6,135 +6,101 @@ inputs: default: "install" ingress-hostname-base: description: The base of the Ingress hostname. - required: true platform: description: The deployment cloud platform like GKE or ROSA. - required: true deployment-ttl: description: | Define a ttl for the lifespan of the deployment + required: false default: "" - type: - description: The platform type platform like openshift or kubernetes. - required: true identifier-base: description: The fixed string in the identifier of the deployment it could be PR number or another specified name. - required: true chart-dir: description: A reference for the Camunda Helm chart directory which allows to test unreleased chagnes from Git repo. - required: true - -# NOTE: every outputs variable will also be set in the environment using "TEST_" prefix and capitalize +# NOTE: This is not an exclusive list, some vars are exported as env var not an output. outputs: identifier: description: The unique identifier of the deployment where the workflow could be triggered by pull_request or workflow_dispatch. - value: ${{ steps.vars.outputs.TEST_IDENTIFIER }} + value: ${{ steps.vars.outputs.identifier }} ingress-host: description: Ingress hostname that will be used in the test - value: ${{ steps.vars.outputs.TEST_INGRESS_HOST }} - github-workflow-job-id: - description: "The github workflow job id" - value: ${{ steps.vars.outputs.GITHUB_WORKFLOW_JOB_ID }} - github-workflow-run-id: - description: "The github workflow run id" - value: ${{ steps.vars.outputs.GITHUB_WORKFLOW_RUN_ID }} - test-namespace: - description: "The name of the namespace to use for tests" - value: ${{ steps.vars.outputs.TEST_NAMESPACE }} - cluster-type: - description: "The cluster type for tests" - value: ${{ steps.vars.outputs.TEST_CLUSTER_TYPE }} - chart-version: - description: "The chart version" - value: ${{ steps.vars-chart.outputs.TEST_CHART_VERSION }} + value: ${{ steps.vars.outputs.ingress-host }} runs: using: composite steps: - - name: Set workflow vars - id: vars - shell: bash - run: | - # Generate workflow vars. - rand_gen() { - python -c "import random, string; print(''.join(random.SystemRandom().choice(string.ascii_lowercase + string.digits) for _ in range(20)))" - } - - is_pr() { - echo ${{ github.event.pull_request.number }} | grep -q . - } - - # NOTE: We should use the matrix job id var once it's available. - # https://github.com/orgs/community/discussions/40291 - GITHUB_WORKFLOW_JOB_ID=$(rand_gen | cut -c 1-6) - - # Workflow. - echo "GITHUB_WORKFLOW_JOB_ID=$GITHUB_WORKFLOW_JOB_ID" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - echo "GITHUB_WORKFLOW_RUN_ID=${{ github.run_id }}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - # Namespace. - TRIGGER_KEY=$(is_pr && echo "pr" || echo "id") - TEST_NAMESPACE="$(echo camunda-${TRIGGER_KEY}-${{ inputs.identifier-base }} | sed 's/\./-/g')" - - if [[ "${{ inputs.deployment-ttl }}" == '' ]]; then - # maximum 63 characters - TEST_NAMESPACE="${TEST_NAMESPACE}-run-${{ github.run_id }}-sfx-${GITHUB_WORKFLOW_JOB_ID}" - fi - - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - TEST_NAMESPACE="${TEST_NAMESPACE}-u" - fi - - echo "TEST_NAMESPACE=${TEST_NAMESPACE}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - echo "TEST_CLUSTER_TYPE=${{ inputs.type }}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - # Deployment identifier. - TEST_IDENTIFIER="$(echo ${{ inputs.platform }}-${{ inputs.identifier-base }} | sed 's/\./-/g')" - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - TEST_IDENTIFIER="${TEST_IDENTIFIER}-u" - fi - echo "TEST_IDENTIFIER=${TEST_IDENTIFIER}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - # Ingress hostname. - TEST_INGRESS_HOST="${TEST_IDENTIFIER}.${{ inputs.ingress-hostname-base }}" - if [[ "${{ inputs.deployment-ttl }}" == "" ]] && is_pr; then - TEST_INGRESS_HOST="${GITHUB_WORKFLOW_JOB_ID}-${TEST_INGRESS_HOST}" - fi - # The var is needed in some non-shell steps. - echo "TEST_INGRESS_HOST=${TEST_INGRESS_HOST}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - - - name: Set workflow vars - Chart version - shell: bash - id: vars-chart - run: | - # In the upgrade flow, the latest released chart for certain minor Camunda version will installed, - # then upgraded from the PR branch to ensure upgradability. - if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then - current_branch=$(git symbolic-ref --short HEAD) - - if [ "$current_branch" != "main" ]; then - # Perform the fetch operation - git fetch origin main:main --no-tags - else - echo "You are currently on the 'main' branch. Fetch operation not performed." - fi - - TEST_CHART_VERSION="$(git show main:charts/${{ inputs.chart-dir }}/Chart.yaml | yq '.version')" - echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - - # Alpha should be always upgraded from latest version. - if [[ $(echo "${TEST_CHART_VERSION}" | grep 'alpha') ]]; then - TEST_CHART_VERSION="$(git show main:charts/camunda-platform-latest/Chart.yaml | yq '.version')" - echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a "$GITHUB_ENV" "$GITHUB_OUTPUT" - fi + - name: Set workflow vars + id: vars + shell: bash + run: | + # Generate workflow vars. + is_pr() { + echo ${{ github.event.pull_request.number }} | grep -q . + } + + # NOTE: We should use the matrix job id var once it's available. + # https://github.com/orgs/community/discussions/40291 + GITHUB_WORKFLOW_JOB_ID=$(uuidgen | head -c 6) + + echo "Env vars:" + + # Workflow. + echo "GITHUB_WORKFLOW_JOB_ID=$GITHUB_WORKFLOW_JOB_ID" | tee -a $GITHUB_ENV + echo "GITHUB_WORKFLOW_RUN_ID=${{ github.run_id }}" | tee -a $GITHUB_ENV + + # Namespace. + TRIGGER_KEY=$(is_pr && echo "pr" || echo "id") + TEST_NAMESPACE="$(echo camunda-${TRIGGER_KEY}-${{ inputs.identifier-base }} | sed 's/\./-/g')" + + if [[ "${{ inputs.deployment-ttl }}" == '' ]]; then + TEST_NAMESPACE="${TEST_NAMESPACE}-run-${{ github.run_id }}-sfx-${GITHUB_WORKFLOW_JOB_ID}" + fi + + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + TEST_NAMESPACE="${TEST_NAMESPACE}-upgrade" + fi + + echo "TEST_NAMESPACE=$(echo ${TEST_NAMESPACE} | head -c 63)" | tee -a $GITHUB_ENV + + echo "Output vars:" + + # Deployment identifier. + TEST_IDENTIFIER="$(echo ${{ inputs.platform }}-${{ inputs.identifier-base }} | sed 's/\./-/g')" + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + TEST_IDENTIFIER="${TEST_IDENTIFIER}-upgrade" + fi + echo "identifier=${TEST_IDENTIFIER}" | tee -a $GITHUB_OUTPUT + + # Ingress hostname. + TEST_INGRESS_HOST="${TEST_IDENTIFIER}.${{ inputs.ingress-hostname-base }}" + if [[ "${{ inputs.deployment-ttl }}" == "" ]] && is_pr; then + TEST_INGRESS_HOST="${GITHUB_WORKFLOW_JOB_ID}-${TEST_INGRESS_HOST}" + fi + # The var is needed in some non-shell steps. + echo "ingress-host=${TEST_INGRESS_HOST}" | tee -a $GITHUB_OUTPUT + + - name: Set workflow vars - Chart version + shell: bash + run: | + # In the upgrade flow, the latest released chart for certain minor Camunda version will installed, + # then upgraded from the PR branch to ensure upgradability. + if [[ "${{ inputs.setup-flow }}" == 'upgrade' ]]; then + test "$(git branch --show-current)" != "main" && + git fetch origin main:main --no-tags + TEST_CHART_VERSION="$(git show main:charts/${{ inputs.chart-dir }}/Chart.yaml | yq '.version')" + echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a $GITHUB_ENV + + # Alpha should be always upgraded from latest version. + if [[ $(echo "${TEST_CHART_VERSION}" | grep 'alpha') ]]; then + TEST_CHART_VERSION="$(git show main:charts/camunda-platform-latest/Chart.yaml | yq '.version')" + echo "TEST_CHART_VERSION=${TEST_CHART_VERSION}" | tee -a $GITHUB_ENV fi + fi # Avoid confusion about the chart version since we only change the version during the release process # as the "version" field in "Chart.yaml" file doesn't reflect the changes since the latest release. - - name: Set chart version - shell: bash - run: | - chart_version="$(echo ${{ inputs.chart-dir }} | sed 's/camunda-platform/0.0.0-ci-snapshot/g')" \ + - name: Set chart version + shell: bash + run: | + chart_version="$(echo ${{ inputs.chart-dir }} | sed 's/camunda-platform/0.0.0-ci-snapshot/g')" \ yq -i '.version = env(chart_version)' charts/${{ inputs.chart-dir }}/Chart.yaml diff --git a/.github/config/rosa-on-demand/test-integration-rosa-matrix.yaml b/.github/config/rosa-on-demand/test-integration-rosa-matrix.yaml new file mode 100644 index 0000000000..0420f91390 --- /dev/null +++ b/.github/config/rosa-on-demand/test-integration-rosa-matrix.yaml @@ -0,0 +1,24 @@ +matrix: + distro: + # /!\ BEFORE ADDING/REMOVING A VERSION: + # /!\ Please keep this matrix synced with the official documentation: https://github.com/camunda/camunda-docs/blob/main/docs/self-managed/setup/deploy/openshift/redhat-openshift.md?plain=1#L2 + # According to https://access.redhat.com/support/policy/updates/openshift, this matrix should reference the last 4 (may change) supported versions of OpenShift + - name: OpenShift 4.15 + type: openshift + # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4(\.(?\d+))?(\.(?\d+))?$ + version: 4.15.11 + # /!\ Warning: When a new minor version of OpenShift is released, you must update all N-1, N-2, and N-3 versions in this matrix. + # rationale: Red Hat supports the last four minor versions of OpenShift. Therefore, to ensure compatibility and support, we must test against these versions. For more details, refer to the official support policy at https://endoflife.date/red-hat-openshift. + platform: rosa + - name: OpenShift 4.14 # TODO: when you will add to this matrix OpenShift 4.16, please duplicate this block for 4.15 (pay attention the the renovate regex) + type: openshift + # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4.14(\.(?\d+))?$ + version: 4.14.24 + platform: rosa + scenario: + - name: Chart Setup + desc: Setup chart in production-like setup with Ingress and TLS. + flow: install + - name: Chart Upgrade + desc: Upgrade chart from the latest released version to the current branch. + flow: upgrade diff --git a/.github/config/test-integration-matrix.yaml b/.github/config/test-integration-matrix.yaml new file mode 100644 index 0000000000..8ac5713fad --- /dev/null +++ b/.github/config/test-integration-matrix.yaml @@ -0,0 +1,33 @@ +matrix: + distro: + - name: Kubernetes + type: kubernetes + platform: gke + secret: + cluster-name: DISTRO_CI_GCP_GKE_CLUSTER_NAME + cluster-location: DISTRO_CI_GCP_GKE_CLUSTER_LOCATION + workload-identity-provider: DISTRO_CI_GCP_WORKLOAD_IDENTITY_PROVIDER + service-account: DISTRO_CI_GCP_SERVICE_ACCOUNT + if: ${{ contains(inputs.platforms, 'gke') }} + - name: OpenShift + type: openshift + platform: rosa + secret: + server-url: DISTRO_CI_OPENSHIFT_CLUSTER_URL + username: DISTRO_CI_OPENSHIFT_CLUSTER_USERNAME + password: DISTRO_CI_OPENSHIFT_CLUSTER_PASSWORD + if: ${{ contains(inputs.platforms, 'rosa') }} + scenario: + - name: Chart Setup + desc: Setup chart in production-like setup with Ingress and TLS. + flow: install + if: ${{ contains(inputs.flows, 'install') }} + - name: Chart Upgrade + desc: Upgrade chart from the latest released version to the current branch. + flow: upgrade + if: ${{ contains(inputs.flows, 'upgrade') }} + exclude: + - distro: + if: false + - scenario: + if: false diff --git a/.github/workflows/configs/test-integration-rosa-matrix.yaml b/.github/workflows/configs/test-integration-rosa-matrix.yaml deleted file mode 100644 index c665a4c9ef..0000000000 --- a/.github/workflows/configs/test-integration-rosa-matrix.yaml +++ /dev/null @@ -1,18 +0,0 @@ -matrix: - distro: - # /!\ BEFORE ADDING/REMOVING A VERSION: - # /!\ Please keep this matrix synced with the official documentation: https://github.com/camunda/camunda-docs/blob/main/docs/self-managed/setup/deploy/openshift/redhat-openshift.md?plain=1#L2 - # According to https://access.redhat.com/support/policy/updates/openshift, this matrix should reference the last 4 (may change) supported versions of OpenShift - - name: OpenShift 4.15 - type: openshift - # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4(\.(?\d+))?(\.(?\d+))?$ - version: 4.15.11 - # /!\ Warning: When a new minor version of OpenShift is released, you must update all N-1, N-2, and N-3 versions in this matrix. - # rationale: Red Hat supports the last four minor versions of OpenShift. Therefore, to ensure compatibility and support, we must test against these versions. For more details, refer to the official support policy at https://endoflife.date/red-hat-openshift. - platform: rosa - - - name: OpenShift 4.14 # TODO: when you will add to this matrix OpenShift 4.16, please duplicate this block for 4.15 (pay attention the the renovate regex) - type: openshift - # renovate: datasource=endoflife-date depName=red-hat-openshift versioning=regex:^4.14(\.(?\d+))?$ - version: 4.14.24 - platform: rosa diff --git a/.github/workflows/test-integration-rosa-template.yaml b/.github/workflows/test-integration-rosa-template.yaml new file mode 100644 index 0000000000..bbf5b9f038 --- /dev/null +++ b/.github/workflows/test-integration-rosa-template.yaml @@ -0,0 +1,319 @@ +name: "Test - Integration - ROSA - Template" + +# description: This workflow perform integration tests against ROSA platform, it only prepares the cluster to run the tests + +on: + workflow_call: + inputs: + cluster-name: + description: The unique identifier of used in the cluster name, will be random if not provided. + default: "" + type: string + camunda-helm-dir: + required: false + default: camunda-platform-latest + type: string + camunda-helm-git-ref: + default: main + type: string + caller-git-ref: + default: main + type: string + deployment-ttl: + description: | + Define a ttl for the lifespan of the deployment + NOTE: Currently, any ttl will be handled as a 24h deployment + required: false # TODO: configure a way to handle ttl for permanent clusters see https://github.com/camunda/camunda-platform-helm/pull/1816#discussion_r1658465380 + default: "" + type: string + flows: + default: install,upgrade + type: string + test-enabled: + default: true + type: boolean + extra-values: + description: Pass extra values to the Helm chart. + default: "" + type: string + +env: + # Vars with "CI_" prefix are used in the CI workflow only. + # Vars with "TEST_" prefix are used in the test runner tool (Task). + CI_MATRIX_FILE: ".github/config/rosa-on-demand/test-integration-rosa-matrix.yaml" + + # please keep those variables synced with test-integration-template.yml + TEST_AWS_REGION: "eu-central-1" + TF_S3_BUCKET: "${{ secrets.DISTRO_CI_OPENSHIFT_TFSTATE_BUCKET }}" + + # Docker Hub auth to avoid image pull rate limit. + TEST_CREATE_DOCKER_LOGIN_SECRET: "TRUE" + TEST_DOCKER_USERNAME: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_DOCKERHUB }} + TEST_DOCKER_PASSWORD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_DOCKERHUB }} + # Camunda registry auth to access WebModeler Docker image since it's not public. + TEST_DOCKER_USERNAME_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_CAMUNDA }} + TEST_DOCKER_PASSWORD_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_CAMUNDA }} + +# limit to a single execution per actor of this workflow +concurrency: + group: "${{ github.workflow }}-${{ github.actor }}" + +jobs: + clusters-info: + name: Define Matrix + runs-on: ubuntu-latest + outputs: + platform-matrix: ${{ steps.matrix.outputs.platform-matrix }} + steps: + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + with: + fetch-depth: 0 + + - id: matrix + # we define a global matrix in an external file due to https://github.com/orgs/community/discussions/26284 + run: | + # + # Generate cluster name. + distro_indexes="$(yq '.matrix.distro | to_entries | .[] | .key' ${CI_MATRIX_FILE})" + + # Loop over clusters. + # Vars are exported to pass them to yq instead of local inline syntax. + for distro_index in ${distro_indexes}; do + cluster_name_input="${{ inputs.cluster-name }}" + cluster_name_fallback="hci-$(uuidgen | head -c 8)" + export cluster_name="${cluster_name_input:-${cluster_name_fallback}}" + export distro_index="${distro_index}" + yq -i '.matrix.distro[env(distro_index)].clusterName = env(cluster_name)' ${CI_MATRIX_FILE} + done + + # Get updated matrix. + platform_matrix="$(yq '.matrix' --indent=0 --output-format json ${CI_MATRIX_FILE})" + echo "${platform_matrix}" | jq + echo "platform-matrix=${platform_matrix}" > "$GITHUB_OUTPUT" + + prepare-clusters: + name: Prepare clusters + needs: + - clusters-info + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.clusters-info.outputs.platform-matrix).distro }} + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + with: + fetch-depth: 0 + + - name: Authenticate to AWS + run: | + aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + + - name: Create ROSA cluster and login + uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main + timeout-minutes: 125 + env: + AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} + with: + rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} + admin-username: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_USERNAME }} + admin-password: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_PASSWORD }} + s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" + cluster-name: ${{ matrix.distro.clusterName }} + aws-region: ${{ env.TEST_AWS_REGION }} + replicas: 10 + openshift-version: "${{ matrix.distro.version }}" + + # this token is used to clone the github repository containing the base modules + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} + + - name: Clone the distribution GitOps repo + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + with: + repository: "camunda/distribution" + ref: "main" + path: "./.distribution-kube/" + fetch-depth: 0 + token: "${{ steps.generate-github-token.outputs.token }}" + + - name: Configure on-demand cluster ROSA + timeout-minutes: 10 + # we need to retry as CRDs can take some time to be installed + uses: nick-fields/retry@7152eba30c6575329ac0576536151aca5a72780e # v3 + with: + timeout_minutes: 10 + max_attempts: 40 + shell: bash + retry_wait_seconds: 15 + command: | + : # see https://github.com/nick-fields/retry/issues/133 + set -o errexit + set -o pipefail + + : # we configure the whole cluster using this generic template + cd ./.distribution-kube/clusters/rosa-hcp-on-demand/ + : # we need to ensure uniqueness of the dns + yq -ei '.txtOwnerId = "${{ matrix.distro.clusterName }}"' external-dns/helm-chart/external-dns-values.yaml + kustomize build --load-restrictor LoadRestrictionsNone --enable-helm ./ | kubectl apply -f - + + : # configure specific configurations for the ci + cd ${{ github.workspace }}/.github/config/rosa-on-demand/ + + : # configure external dns + export EXTERNAL_DNS_GCP_SERVICE_ACCOUNT=${{ secrets.DISTRO_CI_ON_DEMAND_EXTERNAL_DNS_GCP_SERVICE_ACCOUNT }} + envsubst < external-dns/secret.yaml.tpl > external-dns/secret.yaml + + : # configure ExternalSecretStore replication from the permanent ROSA cluster + export EXTERNAL_SECRET_STORE_SA_TOKEN=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_TOKEN }} + export EXTERNAL_SECRET_STORE_SA_SERVICE_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_SERVICE_CA }} + export EXTERNAL_SECRET_STORE_SA_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_CA }} + envsubst < distribution-team/secret.yaml.tpl > distribution-team/secret.yaml + yq -ei '.spec.provider.kubernetes.server.url = "${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_URL }}"' distribution-team/external-cluster-secretstore.yaml + + : # apply + kustomize build ./ | kubectl apply -f - + + echo "Waiting for global state to converge" + sleep 30 + + while kubectl get pods --all-namespaces | grep -E -q -v '(Running|Completed|STATUS)'; do + echo "Waiting for all pods to be Running or Completed" + sleep 5 + done + + kubectl get all --all-namespaces + + - name: Export kubeconfig and encrypt it # this is required to pass matrix outputs securely using artifacts + id: export_kube_config + run: | + echo "$(kubectl config view --raw)" > kubeconfig.yaml 2>/dev/null + openssl enc -aes-256-cbc -salt -in kubeconfig.yaml -out encrypted_kubeconfig.enc -pass pass:"${GITHUB_TOKEN}" -pbkdf2 + encrypted_kubeconfig_base64=$(base64 -w 0 encrypted_kubeconfig.enc) + echo "kubeconfig_raw=${encrypted_kubeconfig_base64}" >> "$GITHUB_OUTPUT" + + ## Write for matrix outputs workaround + - uses: cloudposse/github-action-matrix-outputs-write@ed06cf3a6bf23b8dce36d1cf0d63123885bb8375 # v1 + id: out + with: + matrix-step-name: ${{ github.job }} + matrix-key: ${{ matrix.distro.name }} + outputs: |- + kubeconfig_raw: ${{ steps.export_kube_config.outputs.kubeconfig_raw }} + + access-info: + name: "Read kube configs from matrix" + runs-on: ubuntu-latest + needs: prepare-clusters + outputs: + kubeconfig: "${{ steps.read-workflow.outputs.result }}" + steps: + - uses: cloudposse/github-action-matrix-outputs-read@33cac12fa9282a7230a418d859b93fdbc4f27b5a # v1 + id: read-workflow + with: + matrix-step-name: prepare-clusters + + integration-tests: + name: "Run integration tests - ${{ matrix.distro.name }}" + needs: + - clusters-info + - access-info + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.clusters-info.outputs.platform-matrix).distro }} + scenario: ${{ fromJson(needs.clusters-info.outputs.platform-matrix).scenario }} + secrets: inherit + uses: ./.github/workflows/test-integration-template.yaml + with: + matrix-data: | + { + "distro": [${{ toJson(matrix.distro) }}], + "scenario": [${{ toJson(matrix.scenario) }}] + } + cluster-type: "openshift" + platforms: "rosa" + flows: "${{ matrix.scenario.flow }}" + identifier: "${{ matrix.distro.clusterName }}-${{ matrix.scenario.flow }}" + auth-data: "${{ fromJson(needs.access-info.outputs.kubeconfig).kubeconfig_raw[matrix.distro.name] }}" + camunda-helm-dir: "${{ inputs.camunda-helm-dir }}" + extra-values: "${{ inputs.extra-values }}" + camunda-helm-git-ref: "${{ inputs.camunda-helm-git-ref }}" + + cleanup-clusters: + name: "Cleanup ROSA clusters" + if: always() + runs-on: ubuntu-latest + needs: + - clusters-info + - integration-tests + strategy: + fail-fast: false + matrix: + distro: ${{ fromJson(needs.clusters-info.outputs.platform-matrix).distro }} + steps: + # Used to create/delete GitHub environment. + # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} + + - name: Authenticate to AWS + run: | + aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} + + - name: Delete on-demand ROSA HCP Cluster + uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main + if: always() + timeout-minutes: 125 + env: + AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} + with: + rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} + s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" + cluster-name: ${{ matrix.distro.clusterName }} + aws-region: ${{ env.TEST_AWS_REGION }} + + report: + name: "Report failures" + if: failure() + runs-on: ubuntu-latest + needs: + - integration-tests + - cleanup-clusters + steps: + - name: Notify in Slack in case of failure + id: slack-notification + if: github.event_name == 'schedule' + uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 + with: + channel-id: ${{ secrets.SLACK_CHANNEL_ID }} + payload: | + { + "unfurl_links": false, + "unfurl_media": false, + "text": "${{ github.event.repository.name }} (${{ github.server_url }}/${{ github.repository }}) scheduled workflow: ${{ github.workflow }} failed! Please check: ${{ env.WORKFLOW_URL }}", + "blocks": [ + { + "type": "section", + "text": { + "type": "mrkdwn", + "text": ":automation-platform-failure: :mechanic: <${{ github.server_url }}/${{ github.repository }}|[${{ github.event.repository.name }}]> scheduled workflow: ${{ github.workflow }} failed! \n :link: Please check: ${{ env.WORKFLOW_URL }}" + } + } + ] + } + env: + SLACK_BOT_TOKEN: ${{ secrets.DISTRO_CI_SLACK_BOT_TOKEN }} + WORKFLOW_URL: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" diff --git a/.github/workflows/test-integration-rosa.yaml b/.github/workflows/test-integration-rosa.yaml index 5294087ed5..a895d337b7 100644 --- a/.github/workflows/test-integration-rosa.yaml +++ b/.github/workflows/test-integration-rosa.yaml @@ -10,412 +10,21 @@ on: - '.github/workflows/configs/test-integration-rosa-matrix.yaml' - '.github/workflows/test-integration-rosa.yaml' - '.github/actions/workflow-vars/**' - - '.github/actions/chart-test/**' - '.github/actions/test-type-vars/**' - - '.github/workflows/fixtures/clusters/rosa-hcp-on-demand/**' - - '.github/workflows/fixtures/modules/**' - - '.tool-versions' - workflow_call: - inputs: - cluster_name: - description: The unique identifier of used in the cluster name, will be random if not provided. - default: "" - type: string - identifier: - description: The unique identifier of used in the deployment hostname. - required: true - type: string - camunda-helm-dir: - required: false - default: camunda-platform-latest - type: string - camunda-helm-git-ref: - default: main - type: string - caller-git-ref: - default: main - type: string - deployment-ttl: - description: | - Define a ttl for the lifespan of the deployment - NOTE: Currently, any ttl will be handled as a 24h deployment - required: false # TODO: configure a way to handle ttl for permanent clusters see https://github.com/camunda/camunda-platform-helm/pull/1816#discussion_r1658465380 - default: "" - type: string - flows: - description: "JSON formated list of flows" - default: '["install", "upgrade"]' - type: string - test-enabled: - default: true - type: boolean - extra-values: - description: Pass extra values to the Helm chart. - default: "" - type: string -env: - # Vars with "CI_" prefix are used in the CI workflow only. - # Vars with "TEST_" prefix are used in the test runner tool (Task). - CI_DEPLOYMENT_TTL: "${{ inputs.deployment-ttl || '' }}" - CI_HOSTNAME_BASE: ci.distro.ultrawombat.com - - # please keep those variables synced with test-integration-template.yml - TEST_AWS_REGION: "eu-central-1" - TF_S3_BUCKET: "${{ secrets.DISTRO_CI_OPENSHIFT_TFSTATE_BUCKET }}" - - # Docker Hub auth to avoid image pull rate limit. - TEST_CREATE_DOCKER_LOGIN_SECRET: "TRUE" - TEST_DOCKER_USERNAME: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_DOCKERHUB }} - TEST_DOCKER_PASSWORD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_DOCKERHUB }} - # Camunda registry auth to access WebModeler Docker image since it's not public. - TEST_DOCKER_USERNAME_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_CAMUNDA }} - TEST_DOCKER_PASSWORD_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_CAMUNDA }} - - INPUTS_IDENTIFIER: "${{ inputs.identifier }}" - INPUTS_TEST_ENABLED: "${{ inputs.test-enabled || 'true' }}" - INPUTS_CALLER_GIT_REF: "${{ inputs.caller-git-ref || github.event.pull_request.head.sha || github.sha }}" - INPUTS_CAMUNDA_HELM_GIT_REF: "${{ inputs.camunda-helm-git-ref || github.event.pull_request.head.sha || github.sha }}" - INPUTS_EXTRA_VALUES: "${{ inputs.extra-values || '' }}" - INPUTS_FLOWS: ${{ inputs.flows || '[\"install\", \"upgrade\"]' }} - INPUTS_CHART_DIR: ${{ inputs.camunda-helm-dir || 'camunda-platform-latest' }} - -# limit to a single execution per actor of this workflow -concurrency: - group: "${{ github.workflow }}-${{ github.actor }}" +permissions: + contents: read jobs: - define-matrix: - name: Define matrix - runs-on: ubuntu-latest - outputs: - platform_matrix: ${{ steps.set-matrix.outputs.platform_matrix }} - flow_matrix: ${{ steps.set-matrix.outputs.flow_matrix }} - steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - with: - fetch-depth: 0 - - - id: set-matrix - # we define a global matrix in an external file due to https://github.com/orgs/community/discussions/26284 - run: | - platform_matrix=$(yq -I0 '.matrix.distro' -o=json .github/workflows/configs/test-integration-rosa-matrix.yaml) - echo "platform_matrix=$platform_matrix" - echo "platform_matrix=$platform_matrix" >> "$GITHUB_OUTPUT" - echo "flow_matrix=${{ env.INPUTS_FLOWS }}" - echo "flow_matrix=${{ env.INPUTS_FLOWS }}" >> "$GITHUB_OUTPUT" - - define-variables: - name: Define variables - runs-on: ubuntu-latest - needs: - - define-matrix - strategy: - fail-fast: false - matrix: - distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} - steps: - - name: Define ROSA cluster name - id: rosa-cluster-name - run: | - if [ -z "${{ inputs.cluster_name }}" ]; then - random_string=$(LC_ALL=C tr -cd 'a-f0-9' < /dev/urandom | head -c 8) - identifier="random-${random_string}-${{ matrix.distro.name }}" - else - identifier="${{ inputs.cluster_name }}-${{ matrix.distro.name }}" - fi - - : # ensure that the name of the cluster is unique - sha_identifier=$(echo -n "$identifier" | sha1sum | cut -c1-10) - rosa_cluster_name="c-$sha_identifier" - echo "rosa_cluster_name=$rosa_cluster_name" - echo "rosa_cluster_name=$rosa_cluster_name" >> "$GITHUB_OUTPUT" - - ## Write for matrix outputs workaround - - uses: cloudposse/github-action-matrix-outputs-write@ed06cf3a6bf23b8dce36d1cf0d63123885bb8375 # v1 - id: out - with: - matrix-step-name: ${{ github.job }} - matrix-key: ${{ matrix.distro.name }} - outputs: |- - cluster_name: ${{ steps.rosa-cluster-name.outputs.rosa_cluster_name }} - - read-cluster-vars: - name: Read cluster variables - runs-on: ubuntu-latest - needs: [ define-variables ] - steps: - - uses: cloudposse/github-action-matrix-outputs-read@33cac12fa9282a7230a418d859b93fdbc4f27b5a # v1 - id: read - with: - matrix-step-name: define-variables - outputs: - result: "${{ steps.read.outputs.result }}" - - prepare-clusters: - name: Prepare clusters - needs: - - define-matrix - - read-cluster-vars - strategy: - fail-fast: false - matrix: - distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - with: - fetch-depth: 0 - - - name: Authenticate to AWS - run: | - aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - - - name: Create ROSA cluster and login - uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main - timeout-minutes: 125 - env: - AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} - with: - rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} - admin-username: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_USERNAME }} - admin-password: ${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_PASSWORD }} - s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" - - cluster-name: ${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }} - aws-region: ${{ env.TEST_AWS_REGION }} - replicas: 10 - - openshift-version: "${{ matrix.distro.version }}" - - # this token is used to clone the github repository containing the base modules - - name: Generate GitHub token - uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 - id: generate-github-token - with: - app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} - private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - - - name: Clone the distribution GitOps repo - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - with: - repository: "camunda/distribution" - ref: "main" - path: "./.distribution-kube/" - fetch-depth: 0 - token: "${{ steps.generate-github-token.outputs.token }}" - - - name: Configure on-demand cluster ROSA - timeout-minutes: 10 - # we need to retry as CRDs can take some time to be installed - uses: nick-fields/retry@7152eba30c6575329ac0576536151aca5a72780e # v3 - with: - timeout_minutes: 10 - max_attempts: 40 - shell: bash - retry_wait_seconds: 15 - command: | - : # see https://github.com/nick-fields/retry/issues/133 - set -o errexit - set -o pipefail - - : # we configure the whole cluster using this generic template - cd ./.distribution-kube/clusters/rosa-hcp-on-demand/ - : # we need to ensure uniqueness of the dns - yq -ei '.txtOwnerId = "${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }}"' external-dns/helm-chart/external-dns-values.yaml - kustomize build --load-restrictor LoadRestrictionsNone --enable-helm ./ | kubectl apply -f - - - : # configure specific configurations for the ci - cd ${{ github.workspace }}/.github/config/rosa-on-demand/ - - : # configure external dns - export EXTERNAL_DNS_GCP_SERVICE_ACCOUNT=${{ secrets.DISTRO_CI_ON_DEMAND_EXTERNAL_DNS_GCP_SERVICE_ACCOUNT }} - envsubst < external-dns/secret.yaml.tpl > external-dns/secret.yaml - - : # configure ExternalSecretStore replication from the permanent ROSA cluster - export EXTERNAL_SECRET_STORE_SA_TOKEN=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_TOKEN }} - export EXTERNAL_SECRET_STORE_SA_SERVICE_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_SERVICE_CA }} - export EXTERNAL_SECRET_STORE_SA_CA=${{ secrets.DISTRO_CI_OPENSHIFT_EXTERNAL_SECRET_STORE_SA_CA }} - envsubst < distribution-team/secret.yaml.tpl > distribution-team/secret.yaml - yq -ei '.spec.provider.kubernetes.server.url = "${{ secrets.DISTRO_CI_OPENSHIFT_CLUSTER_URL }}"' distribution-team/external-cluster-secretstore.yaml - - : # apply - kustomize build ./ | kubectl apply -f - - - echo "Waiting for global state to converge" - sleep 30 - - while kubectl get pods --all-namespaces | grep -E -q -v '(Running|Completed|STATUS)'; do - echo "Waiting for all pods to be Running or Completed" - sleep 5 - done - - kubectl get all --all-namespaces - - - name: Export kubeconfig and encrypt it # this is required to pass matrix outputs securely using artifacts - id: export_kube_config - run: | - echo "$(kubectl config view --raw)" > kubeconfig.yaml 2>/dev/null - openssl enc -aes-256-cbc -salt -in kubeconfig.yaml -out encrypted_kubeconfig.enc -pass pass:"${GITHUB_TOKEN}" -pbkdf2 - encrypted_kubeconfig_base64=$(base64 -w 0 encrypted_kubeconfig.enc) - echo "kubeconfig_raw=${encrypted_kubeconfig_base64}" >> "$GITHUB_OUTPUT" - - ## Write for matrix outputs workaround - - uses: cloudposse/github-action-matrix-outputs-write@ed06cf3a6bf23b8dce36d1cf0d63123885bb8375 # v1 - id: out - with: - matrix-step-name: ${{ github.job }} - matrix-key: ${{ matrix.distro.name }} - outputs: |- - kubeconfig_raw: ${{ steps.export_kube_config.outputs.kubeconfig_raw }} - - read-kube-configs: - name: "Read kube configs from matrix" - runs-on: ubuntu-latest - needs: [ prepare-clusters ] - steps: - - uses: cloudposse/github-action-matrix-outputs-read@33cac12fa9282a7230a418d859b93fdbc4f27b5a # v1 - id: read - with: - matrix-step-name: prepare-clusters - outputs: - kubeconfig: "${{ steps.read.outputs.result }}" - - launch-tests: - name: "Launch tests" - runs-on: ubuntu-latest - needs: - - define-matrix - - read-cluster-vars - - read-kube-configs - strategy: - fail-fast: false - matrix: - distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} - flow: ${{ fromJson(needs.define-matrix.outputs.flow_matrix) }} - steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - with: - fetch-depth: 1 - ref: ${{ inputs.camunda-helm-git-ref }} - - - name: Set up Kubeconfig - run: | - mkdir -p $HOME/.kube - echo "${{ fromJson(needs.read-kube-configs.outputs.kubeconfig).kubeconfig_raw[matrix.distro.name] }}" | base64 --decode > encrypted_kubeconfig.enc - openssl enc -aes-256-cbc -d -in encrypted_kubeconfig.enc -out "$HOME/.kube/config" -pass pass:"${GITHUB_TOKEN}" -pbkdf2 - rm encrypted_kubeconfig.enc - chmod 600 $HOME/.kube/config - - # when TEST_IDENTIFIER is empty (in case of a push event or other), we must provide a fallback value that is unique - - name: Ensure identifier is set and append cluster name - run: | - INPUTS_IDENTIFIER="${{ env.INPUTS_IDENTIFIER }}" - if [ -z "$INPUTS_IDENTIFIER" ]; then - INPUTS_IDENTIFIER="$(git rev-parse --short ${{ github.sha }})" - fi - - echo "INPUTS_IDENTIFIER=$INPUTS_IDENTIFIER-${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }}" | tee -a "$GITHUB_ENV" - - # Used to create/delete GitHub environment. - # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. - - name: Generate GitHub token - uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 - id: generate-github-token - with: - app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} - private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} - - - name: Launch tests - uses: ./.github/actions/chart-test - with: - platform: "${{ matrix.distro.platform }}" - type: "${{ matrix.distro.type }}" - - identifier: "${{ env.INPUTS_IDENTIFIER }}" - deployment-ttl: "${{ env.CI_DEPLOYMENT_TTL }}" - flow: "${{ matrix.flow }}" - test-enabled: "${{ env.INPUTS_TEST_ENABLED }}" - - caller-git-ref: ${{ env.INPUTS_CALLER_GIT_REF }} - extra-values: ${{ env.INPUTS_EXTRA_VALUES }} - ingress-hostname-base: ${{ env.CI_HOSTNAME_BASE }} - chart-dir: ${{ env.INPUTS_CHART_DIR }} - - gh-token: ${{ steps.generate-github-token.outputs.token }} - - cleanup-clusters: - name: "Cleanup ROSA clusters" - if: always() - runs-on: ubuntu-latest - needs: - - define-matrix - - read-cluster-vars - - launch-tests - strategy: - fail-fast: false - matrix: - distro: ${{ fromJson(needs.define-matrix.outputs.platform_matrix) }} - steps: - # Used to create/delete GitHub environment. - # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. - - name: Generate GitHub token - uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 - id: generate-github-token - with: - app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} - private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} - - - name: Authenticate to AWS - run: | - aws configure set aws_secret_access_key ${{ secrets.DISTRO_CI_AWS_SECRET_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - aws configure set region ${{ env.TEST_AWS_REGION }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - - - name: Delete on-demand ROSA HCP Cluster - uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@408ad133d0da2362b84b144774ef0e5866aa2e61 # main - if: always() && env.CI_DEPLOYMENT_TTL == '' - timeout-minutes: 125 - env: - AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} - with: - rh-token: ${{ secrets.DISTRO_CI_REDHAT_CONSOLE_TOKEN }} - s3-backend-bucket: "${{ env.TF_S3_BUCKET }}-${{ env.TEST_AWS_REGION }}" - - cluster-name: ${{ fromJson(needs.read-cluster-vars.outputs.result).cluster_name[matrix.distro.name] }} - aws-region: ${{ env.TEST_AWS_REGION }} - - report: - name: "Report failures" - if: failure() - runs-on: ubuntu-latest - needs: - - launch-tests - - cleanup-clusters - steps: - - name: Notify in Slack in case of failure - id: slack-notification - if: github.event_name == 'schedule' - uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 - with: - channel-id: ${{ secrets.SLACK_CHANNEL_ID }} - payload: | - { - "unfurl_links": false, - "unfurl_media": false, - "text": "${{ github.event.repository.name }} (${{ github.server_url }}/${{ github.repository }}) scheduled workflow: ${{ github.workflow }} failed! Please check: ${{ env.WORKFLOW_URL }}", - "blocks": [ - { - "type": "section", - "text": { - "type": "mrkdwn", - "text": ":automation-platform-failure: :mechanic: <${{ github.server_url }}/${{ github.repository }}|[${{ github.event.repository.name }}]> scheduled workflow: ${{ github.workflow }} failed! \n :link: Please check: ${{ env.WORKFLOW_URL }}" - } - } - ] - } - env: - SLACK_BOT_TOKEN: ${{ secrets.DISTRO_CI_SLACK_BOT_TOKEN }} - WORKFLOW_URL: "${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" + test: + name: Main + permissions: + contents: read + id-token: write + deployments: write + secrets: inherit + uses: ./.github/workflows/test-integration-rosa-template.yaml + with: + deployment-ttl: "${{ contains(github.event.pull_request.labels.*.name, 'test-persistent') && '1d' || '' }}" + caller-git-ref: ${{ github.event.pull_request.head.sha }} + camunda-helm-git-ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/test-integration-template.yaml b/.github/workflows/test-integration-template.yaml index a924c6a9f6..d5aa6a4cc9 100644 --- a/.github/workflows/test-integration-template.yaml +++ b/.github/workflows/test-integration-template.yaml @@ -13,9 +13,11 @@ on: default: camunda-platform-latest type: string camunda-helm-git-ref: + required: false default: main type: string caller-git-ref: + required: false default: main type: string deployment-ttl: @@ -28,19 +30,30 @@ on: default: gke type: string flows: + required: false default: install type: string test-enabled: + required: false default: true type: boolean extra-values: description: Pass extra values to the Helm chart. + required: false type: string - default: "" vault-secret-mapping: description: (optional) defines how to map Vault secrets to distro CI environment variables required: false type: string + auth-data: + required: false + type: string + cluster-type: + required: false + type: string + matrix-data: + required: false + type: string permissions: contents: read @@ -54,9 +67,6 @@ env: # Vars with "TEST_" prefix are used in the test runner tool (Task). CI_DEPLOYMENT_TTL: ${{ inputs.deployment-ttl }} CI_HOSTNAME_BASE: ci.distro.ultrawombat.com - - TEST_IDENTIFIER: ${{ inputs.identifier }} - # Docker Hub auth to avoid image pull rate limit. TEST_CREATE_DOCKER_LOGIN_SECRET: "TRUE" TEST_DOCKER_USERNAME: ${{ secrets.DISTRO_CI_DOCKER_USERNAME_DOCKERHUB }} @@ -66,9 +76,29 @@ env: TEST_DOCKER_PASSWORD_CAMUNDA_CLOUD: ${{ secrets.DISTRO_CI_DOCKER_PASSWORD_CAMUNDA }} jobs: + init: + name: Generate workflow matrix + runs-on: ubuntu-latest + outputs: + matrix: ${{ steps.generate-workflow-matrix.outputs.matrix }} + steps: + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - name: Generate workflow matrix + id: generate-workflow-matrix + env: + CI_MATRIX_FILE: ".github/config/test-integration-matrix.yaml" + # Use GH env to safly load JSON matrix input. + CI_MATRIX_INPUT: "${{ inputs.matrix-data }}" + run: | + matrix_defult="$(yq '.matrix' --indent=0 --output-format json ${CI_MATRIX_FILE})" + matrix="${CI_MATRIX_INPUT:-${matrix_defult}}" + echo "${matrix}" | jq + echo "matrix=$(echo ${matrix} | jq -c)" > "$GITHUB_OUTPUT" + test: - name: ${{ matrix.distro.name }} - ${{ matrix.scenario.name }} if: github.event.action != 'closed' + name: ${{ matrix.distro.name }} - ${{ matrix.scenario.name }} + needs: init runs-on: ubuntu-latest permissions: contents: read @@ -76,118 +106,187 @@ jobs: deployments: write strategy: fail-fast: false - matrix: - distro: - - name: Kubernetes 1.27 - type: kubernetes - platform: gke - secret: - cluster-name: DISTRO_CI_GCP_GKE_CLUSTER_NAME - cluster-location: DISTRO_CI_GCP_GKE_CLUSTER_LOCATION - workload-identity-provider: DISTRO_CI_GCP_WORKLOAD_IDENTITY_PROVIDER - service-account: DISTRO_CI_GCP_SERVICE_ACCOUNT - if: ${{ contains(inputs.platforms, 'gke') }} - - name: OpenShift 4.14 - type: openshift - version: 4.14 - platform: rosa - secret: - server-url: DISTRO_CI_OPENSHIFT_CLUSTER_URL - username: DISTRO_CI_OPENSHIFT_CLUSTER_USERNAME - password: DISTRO_CI_OPENSHIFT_CLUSTER_PASSWORD - if: ${{ contains(inputs.platforms, 'rosa') }} - scenario: - - name: Chart Setup - desc: Setup chart in production-like setup with Ingress and TLS. - flow: install - if: ${{ contains(inputs.flows, 'install') }} - - name: Chart Upgrade - desc: Upgrade chart from the latest released version to the current branch. - flow: upgrade - if: ${{ contains(inputs.flows, 'upgrade') }} - exclude: - - distro: - if: false - - scenario: - if: false - steps: - - name: Print workflow inputs - run: | - echo "Workflow inputs:" - echo "camunda-helm-git-ref: ${{ inputs.camunda-helm-git-ref }}" - echo "platforms: ${{ inputs.platforms }}" - echo "flows: ${{ inputs.flows }}" - echo "vault-secret-mapping: ${{ inputs.vault-secret-mapping }}" - - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - with: - # This is needed to load repo GH composite actions if the workflow triggered by workflow_call. - repository: camunda/camunda-platform-helm - ref: ${{ inputs.camunda-helm-git-ref }} + matrix: ${{ fromJson(needs.init.outputs.matrix) }} + env: + TEST_CLUSTER_TYPE: ${{ matrix.distro.type || inputs.cluster-type }} - # When there is a vault-secret-mapping input given, use Vault instead of GitHub secrets - # and populate environment variables from Vault - - name: Import Vault secrets - id: secrets - uses: hashicorp/vault-action@d1720f055e0635fd932a1d2a48f87a666a57906c # v3.0.0 - if: inputs.vault-secret-mapping != '' - with: - url: ${{ secrets.VAULT_ADDR }} - method: approle - roleId: ${{ secrets.VAULT_ROLE_ID }} - secretId: ${{ secrets.VAULT_SECRET_ID }} - secrets: ${{ inputs.vault-secret-mapping }} - exportEnv: true - - # Used to create/delete GitHub environment. - # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. - - name: Generate GitHub token - uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 - id: generate-github-token - with: - app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} - private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} - - # TODO: Later, find a way to abstract the auth for different platforms. - - name: Authenticate to GKE - if: matrix.distro.platform == 'gke' - uses: ./.github/actions/gke-login - with: - cluster-name: ${{ secrets[matrix.distro.secret.cluster-name] }} - cluster-location: ${{ secrets[matrix.distro.secret.cluster-location] }} - workload-identity-provider: ${{ secrets[matrix.distro.secret.workload-identity-provider] }} - service-account: ${{ secrets[matrix.distro.secret.service-account] }} - - - name: Authenticate to OpenShift - if: matrix.distro.platform == 'rosa' - uses: redhat-actions/oc-login@5eb45e848b168b6bf6b8fe7f1561003c12e3c99d # v1 - with: - openshift_server_url: ${{ secrets[matrix.distro.secret.server-url] }} - openshift_username: ${{ secrets[matrix.distro.secret.username] }} - openshift_password: ${{ secrets[matrix.distro.secret.password] }} - - # when TEST_IDENTIFIER is empty (in case of a push event or other), we must provide a fallback value that is unique - - name: Ensure identifier is set - run: | - if [ -z "${{ env.TEST_IDENTIFIER }}" ]; then - calculatedSha=$(git rev-parse --short ${{ github.sha }}) - echo "TEST_IDENTIFIER=$calculatedSha" >> $GITHUB_ENV - fi - - - name: Launch tests - uses: ./.github/actions/chart-test - with: - platform: "${{ matrix.distro.platform }}" - type: "${{ matrix.distro.type }}" - - identifier: "${{ env.TEST_IDENTIFIER }}" - deployment-ttl: ${{ env.CI_DEPLOYMENT_TTL }} - flow: "${{ matrix.scenario.flow }}" - test-enabled: "${{ inputs.test-enabled }}" - - caller-git-ref: ${{ inputs.caller-git-ref }} - extra-values: ${{ inputs.extra-values }} - ingress-hostname-base: ${{ env.CI_HOSTNAME_BASE }} - chart-dir: ${{ inputs.camunda-helm-dir }} + steps: + - name: Print workflow inputs + env: + GITHUB_CONTEXT: ${{ toJson(inputs) }} + run: echo "$GITHUB_CONTEXT" + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + with: + # This is needed to load repo GH composite actions if the workflow triggered by workflow_call. + repository: camunda/camunda-platform-helm + ref: ${{ inputs.camunda-helm-git-ref }} + # When there is a vault-secret-mapping input given, use Vault instead of GitHub secrets + # and populate environment variables from Vault + - name: Import Vault secrets + id: secrets + uses: hashicorp/vault-action@d1720f055e0635fd932a1d2a48f87a666a57906c # v3.0.0 + if: inputs.vault-secret-mapping != '' + with: + url: ${{ secrets.VAULT_ADDR }} + method: approle + roleId: ${{ secrets.VAULT_ROLE_ID }} + secretId: ${{ secrets.VAULT_SECRET_ID }} + secrets: ${{ inputs.vault-secret-mapping }} + exportEnv: true + # Used to create/delete GitHub environment. + # NOTE: The GH app requires "administration:write" access to be able to delete the GH environment. + - name: Generate GitHub token + uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2 + id: generate-github-token + with: + app_id: ${{ secrets.GH_APP_ID_DISTRO_CI_MANAGE_GH_ENVS }} + private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI_MANAGE_GH_ENVS }} + # TODO: Later, find a way to abstract the auth for different platforms. + - name: Authenticate to GKE + if: matrix.distro.platform == 'gke' && inputs.auth-data == '' + uses: ./.github/actions/gke-login + with: + cluster-name: ${{ secrets[matrix.distro.secret.cluster-name] }} + cluster-location: ${{ secrets[matrix.distro.secret.cluster-location] }} + workload-identity-provider: ${{ secrets[matrix.distro.secret.workload-identity-provider] }} + service-account: ${{ secrets[matrix.distro.secret.service-account] }} + - name: Authenticate to OpenShift + if: matrix.distro.platform == 'rosa' && inputs.auth-data == '' + uses: redhat-actions/oc-login@5eb45e848b168b6bf6b8fe7f1561003c12e3c99d # v1 + with: + openshift_server_url: ${{ secrets[matrix.distro.secret.server-url] }} + openshift_username: ${{ secrets[matrix.distro.secret.username] }} + openshift_password: ${{ secrets[matrix.distro.secret.password] }} + - name: Authenticate via var + if: inputs.auth-data != '' + run: | + mkdir -p $HOME/.kube + echo "${{ inputs.auth-data }}" | base64 --decode > encrypted_kubeconfig.enc + openssl enc -aes-256-cbc -d -in encrypted_kubeconfig.enc -out "$HOME/.kube/config" -pass pass:"${GITHUB_TOKEN}" -pbkdf2 + rm encrypted_kubeconfig.enc + chmod 600 $HOME/.kube/config + - name: Set workflow vars + id: vars + uses: ./.github/actions/workflow-vars + with: + deployment-ttl: ${{ env.CI_DEPLOYMENT_TTL }} + setup-flow: ${{ matrix.scenario.flow }} + platform: ${{ matrix.distro.platform }} + identifier-base: ${{ inputs.identifier }} + ingress-hostname-base: ${{ env.CI_HOSTNAME_BASE }} + chart-dir: ${{ inputs.camunda-helm-dir }} + - name: Set test type vars + id: test-type-vars + uses: ./.github/actions/test-type-vars + with: + chart-dir: "${{ inputs.camunda-helm-dir }}" + - name: Install env dependencies + uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 + - name: Add Helm repos and dependencies + run: | + export chartPath="charts/${{ inputs.camunda-helm-dir }}" + make helm.repos-add + make helm.dependency-update + - name: Create test namespace + run: | + echo $TEST_NAMESPACE + kubectl delete ns --ignore-not-found=true \ + -l "github-id=${{ steps.vars.outputs.identifier }},test-flow=${{ matrix.scenario.flow }}" + kubectl create ns $TEST_NAMESPACE + kubectl label ns $TEST_NAMESPACE github-run-id=$GITHUB_WORKFLOW_RUN_ID + kubectl label ns $TEST_NAMESPACE github-job-id=$GITHUB_WORKFLOW_JOB_ID + kubectl label ns $TEST_NAMESPACE github-id=${{ steps.vars.outputs.identifier }} + kubectl label ns $TEST_NAMESPACE test-flow=${{ matrix.scenario.flow }} + kubectl label ns $TEST_NAMESPACE github-org=$(dirname $GITHUB_REPOSITORY) + kubectl label ns $TEST_NAMESPACE github-repo=$(basename $GITHUB_REPOSITORY) + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1d + kubectl annotate ns $TEST_NAMESPACE github-workflow-run-url=$GITHUB_SERVER_URL/$GITHUB_REPOSITORY/actions/runs/$GITHUB_RUN_ID + - name: Copy PRs wildcard certificate + run: | + kubectl apply -n $TEST_NAMESPACE -f .github/config/external-secret.yaml + - name: Start GitHub deployment + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + id: deployment + with: + step: start + token: ${{ steps.generate-github-token.outputs.token }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + - name: Pre setup + timeout-minutes: 5 + env: + TEST_CHART_FLOW: ${{ matrix.scenario.flow }} + TEST_INGRESS_HOST: ${{ steps.vars.outputs.ingress-host }} + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.pre - gh-token: ${{ steps.generate-github-token.outputs.token }} + echo "Extra values from workflow:" + echo "${{ inputs.extra-values }}" > /tmp/extra-values-file.yaml + cat /tmp/extra-values-file.yaml + - name: 🌟 Setup Camunda chart 🌟 + env: + TEST_CHART_FLOW: ${{ matrix.scenario.flow }} + TEST_HELM_EXTRA_ARGS: >- + --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} + --values /tmp/extra-values-file.yaml + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.exec + - name: Post setup + timeout-minutes: 5 + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup setup.post + - name: Pre Upgrade + if: matrix.scenario.flow == 'upgrade' + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.pre + - name: 🌟 Upgrade Camunda chart 🌟 + if: matrix.scenario.flow == 'upgrade' + env: + TEST_HELM_EXTRA_ARGS: >- + --set global.ingress.host=${{ steps.vars.outputs.ingress-host }} + --values /tmp/extra-values-file.yaml + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup upgrade.exec + - name: Update GitHub deployment status + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + with: + step: finish + token: ${{ steps.generate-github-token.outputs.token }} + status: ${{ job.status }} + deployment_id: ${{ steps.deployment.outputs.deployment_id }} + env_url: https://${{ steps.vars.outputs.ingress-host }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + - name: ⭐️ Run Preflight TestSuite ⭐️ + if: inputs.test-enabled + timeout-minutes: 10 + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.preflight + - name: ⭐️ Run Core TestSuite ⭐️ + if: inputs.test-enabled + timeout-minutes: 20 + run: | + task -d ${CI_TASKS_BASE_DIR}/chart-full-setup test.core + - name: 🚨 Get failed Pods info 🚨 + if: failure() + uses: ./.github/actions/failed-pods-info + - name: Cleanup GitHub deployment + if: always() && (env.CI_DEPLOYMENT_TTL == '' || matrix.distro.type != 'kubernetes') + uses: bobheadxi/deployments@648679e8e4915b27893bd7dbc35cb504dc915bc8 # v1 + with: + step: delete-env + token: ${{ steps.generate-github-token.outputs.token }} + env: ${{ steps.vars.outputs.identifier }} + ref: ${{ inputs.caller-git-ref }} + - name: Cleanup test namespace + if: always() + run: | + if [ "${{ env.CI_DEPLOYMENT_TTL }}" != "" ]; then + if [ "${{ matrix.distro.type }}" == "kubernetes" ]; then + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=${CI_DEPLOYMENT_TTL} --overwrite=true + else + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true + fi + else + kubectl annotate ns $TEST_NAMESPACE cleaner/ttl=1s --overwrite=true + fi diff --git a/.github/workflows/test-integration.yaml b/.github/workflows/test-integration.yaml index fcd23e1f8d..84a86ffab7 100644 --- a/.github/workflows/test-integration.yaml +++ b/.github/workflows/test-integration.yaml @@ -8,7 +8,6 @@ on: - '.github/actions/gke-login/**' - '.github/actions/workflow-vars/**' - '.github/actions/test-type-vars/**' - - '.github/actions/chart-test/**' - '.tool-versions' - 'charts/camunda-platform-latest/**' types: [opened, closed, reopened, synchronize] From 127cd4aaef0f1d38af46ab06eb6d343212e5065e Mon Sep 17 00:00:00 2001 From: "distro-ci[bot]" <122795778+distro-ci[bot]@users.noreply.github.com> Date: Sat, 13 Jul 2024 22:25:42 +0000 Subject: [PATCH 31/32] chore(release): Camunda Platform Helm Chart --- .../.release-please-manifest.json | 8 +++---- charts/camunda-platform-8.2/CHANGELOG.md | 18 +++++++++++++++ charts/camunda-platform-8.2/Chart.yaml | 2 +- .../charts/identity/Chart.yaml | 2 +- .../charts/operate/Chart.yaml | 2 +- .../charts/optimize/Chart.yaml | 2 +- .../charts/tasklist/Chart.yaml | 2 +- .../charts/zeebe-gateway/Chart.yaml | 2 +- .../charts/zeebe/Chart.yaml | 2 +- charts/camunda-platform-8.3/CHANGELOG.md | 16 ++++++++++++++ charts/camunda-platform-8.3/Chart.yaml | 2 +- .../charts/identity/Chart.yaml | 2 +- charts/camunda-platform-8.4/CHANGELOG.md | 15 +++++++++++++ charts/camunda-platform-8.4/Chart.yaml | 2 +- .../charts/identity/Chart.yaml | 2 +- charts/camunda-platform-latest/CHANGELOG.md | 22 +++++++++++++++++++ charts/camunda-platform-latest/Chart.yaml | 2 +- 17 files changed, 87 insertions(+), 16 deletions(-) create mode 100644 charts/camunda-platform-8.2/CHANGELOG.md create mode 100644 charts/camunda-platform-8.3/CHANGELOG.md create mode 100644 charts/camunda-platform-8.4/CHANGELOG.md create mode 100644 charts/camunda-platform-latest/CHANGELOG.md diff --git a/.github/config/release-please/.release-please-manifest.json b/.github/config/release-please/.release-please-manifest.json index 2b601a7292..aedb747cf1 100644 --- a/.github/config/release-please/.release-please-manifest.json +++ b/.github/config/release-please/.release-please-manifest.json @@ -1,6 +1,6 @@ { - "charts/camunda-platform-8.2": "8.2.29", - "charts/camunda-platform-8.3": "8.3.14", - "charts/camunda-platform-8.4": "9.3.7", - "charts/camunda-platform-latest": "10.2.0" + "charts/camunda-platform-8.2": "8.2.30", + "charts/camunda-platform-8.3": "8.3.15", + "charts/camunda-platform-8.4": "9.3.8", + "charts/camunda-platform-latest": "10.3.0" } diff --git a/charts/camunda-platform-8.2/CHANGELOG.md b/charts/camunda-platform-8.2/CHANGELOG.md new file mode 100644 index 0000000000..d1e804d227 --- /dev/null +++ b/charts/camunda-platform-8.2/CHANGELOG.md @@ -0,0 +1,18 @@ +# Changelog + +## [8.2.30](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.2.29...camunda-platform-8.2.30) (2024-07-13) + + +### Bug Fixes + +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1965](https://github.com/camunda/camunda-platform-helm/issues/1965)) ([5487142](https://github.com/camunda/camunda-platform-helm/commit/548714296ae6ade07b7585111f8973d221e80983)) +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) +* **deps:** update module github.com/stretchr/testify to v1.9.0 ([#1948](https://github.com/camunda/camunda-platform-helm/issues/1948)) ([11afba6](https://github.com/camunda/camunda-platform-helm/commit/11afba60edf6de35429174b381b0d06964e8b6de)) +* **deps:** update module k8s.io/api to v0.27.15 ([#1962](https://github.com/camunda/camunda-platform-helm/issues/1962)) ([e68d48b](https://github.com/camunda/camunda-platform-helm/commit/e68d48b7af48f6fbaf2aff0c1e8714c1659f4479)) +* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) + + +### Refactors + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) +* update zeebe gateway readiness probe endpoint ([a28f661](https://github.com/camunda/camunda-platform-helm/commit/a28f6616d0c3f0268709aceb8406ee9fe651d722)) diff --git a/charts/camunda-platform-8.2/Chart.yaml b/charts/camunda-platform-8.2/Chart.yaml index f515d5e6be..63574a60c0 100644 --- a/charts/camunda-platform-8.2/Chart.yaml +++ b/charts/camunda-platform-8.2/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 8.2.29 +version: 8.2.30 appVersion: 8.2.x description: | Camunda Platform 8 Self-Managed Helm charts. diff --git a/charts/camunda-platform-8.2/charts/identity/Chart.yaml b/charts/camunda-platform-8.2/charts/identity/Chart.yaml index 3f23f46a2a..41d1d18e21 100644 --- a/charts/camunda-platform-8.2/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 8.2.29 +version: 8.2.30 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-8.2/charts/operate/Chart.yaml b/charts/camunda-platform-8.2/charts/operate/Chart.yaml index 6671abbbef..24a24be898 100644 --- a/charts/camunda-platform-8.2/charts/operate/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/operate/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 description: Operate Helm Chart for Kubernetes name: operate -version: 8.2.29 +version: 8.2.30 type: application icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/optimize/Chart.yaml b/charts/camunda-platform-8.2/charts/optimize/Chart.yaml index 09086d7529..2049a8e62f 100644 --- a/charts/camunda-platform-8.2/charts/optimize/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/optimize/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 description: Optimize Helm Chart for Kubernetes name: optimize -version: 8.2.29 +version: 8.2.30 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml b/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml index e5402a71a0..4b103c949f 100644 --- a/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/tasklist/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 description: Zeebe TaskList Helm Chart for Kubernetes name: tasklist -version: 8.2.29 +version: 8.2.30 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml b/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml index 63574e89bf..406449a1e6 100644 --- a/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/zeebe-gateway/Chart.yaml @@ -2,5 +2,5 @@ apiVersion: v2 description: Zeebe Gateway Helm Chart for Kubernetes name: zeebe-gateway type: application -version: 8.2.29 +version: 8.2.30 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml b/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml index 85fef8c94d..0bea17b3a3 100644 --- a/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml +++ b/charts/camunda-platform-8.2/charts/zeebe/Chart.yaml @@ -2,5 +2,5 @@ apiVersion: v2 description: Zeebe Helm Chart for Kubernetes name: zeebe type: application -version: 8.2.29 +version: 8.2.30 icon: https://helm.camunda.io/imgs/camunda.svg diff --git a/charts/camunda-platform-8.3/CHANGELOG.md b/charts/camunda-platform-8.3/CHANGELOG.md new file mode 100644 index 0000000000..240773ad6c --- /dev/null +++ b/charts/camunda-platform-8.3/CHANGELOG.md @@ -0,0 +1,16 @@ +# Changelog + +## [8.3.15](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.3.14...camunda-platform-8.3.15) (2024-07-13) + + +### Bug Fixes + +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1935](https://github.com/camunda/camunda-platform-helm/issues/1935)) ([8817e58](https://github.com/camunda/camunda-platform-helm/commit/8817e587fb25499f25e6dd89dc801e630c3b63a5)) +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) +* **deps:** update module github.com/stretchr/testify to v1.9.0 ([#1948](https://github.com/camunda/camunda-platform-helm/issues/1948)) ([11afba6](https://github.com/camunda/camunda-platform-helm/commit/11afba60edf6de35429174b381b0d06964e8b6de)) +* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) + + +### Refactors + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) diff --git a/charts/camunda-platform-8.3/Chart.yaml b/charts/camunda-platform-8.3/Chart.yaml index f564a0ed96..830d3c509e 100644 --- a/charts/camunda-platform-8.3/Chart.yaml +++ b/charts/camunda-platform-8.3/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 8.3.14 +version: 8.3.15 appVersion: 8.3.x description: | Camunda 8 Self-Managed Helm charts. diff --git a/charts/camunda-platform-8.3/charts/identity/Chart.yaml b/charts/camunda-platform-8.3/charts/identity/Chart.yaml index 6f59124406..aef5324104 100644 --- a/charts/camunda-platform-8.3/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.3/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 8.3.14 +version: 8.3.15 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-8.4/CHANGELOG.md b/charts/camunda-platform-8.4/CHANGELOG.md new file mode 100644 index 0000000000..c444f909b8 --- /dev/null +++ b/charts/camunda-platform-8.4/CHANGELOG.md @@ -0,0 +1,15 @@ +# Changelog + +## [9.3.8](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-9.3.7...camunda-platform-9.3.8) (2024-07-13) + + +### Bug Fixes + +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1935](https://github.com/camunda/camunda-platform-helm/issues/1935)) ([8817e58](https://github.com/camunda/camunda-platform-helm/commit/8817e587fb25499f25e6dd89dc801e630c3b63a5)) +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) +* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) + + +### Refactors + +* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) diff --git a/charts/camunda-platform-8.4/Chart.yaml b/charts/camunda-platform-8.4/Chart.yaml index 3f74eb0a7b..1731d3ea06 100644 --- a/charts/camunda-platform-8.4/Chart.yaml +++ b/charts/camunda-platform-8.4/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 9.3.7 +version: 9.3.8 appVersion: 8.4.x description: | Camunda 8 Self-Managed Helm charts. diff --git a/charts/camunda-platform-8.4/charts/identity/Chart.yaml b/charts/camunda-platform-8.4/charts/identity/Chart.yaml index 62ce19769a..0ee4efd483 100644 --- a/charts/camunda-platform-8.4/charts/identity/Chart.yaml +++ b/charts/camunda-platform-8.4/charts/identity/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 description: Identity Helm Chart for Kubernetes name: identity -version: 9.3.7 +version: 9.3.8 type: application icon: https://helm.camunda.io/imgs/camunda.svg dependencies: diff --git a/charts/camunda-platform-latest/CHANGELOG.md b/charts/camunda-platform-latest/CHANGELOG.md new file mode 100644 index 0000000000..7c380ef0ea --- /dev/null +++ b/charts/camunda-platform-latest/CHANGELOG.md @@ -0,0 +1,22 @@ +# Changelog + +## [10.3.0](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-10.2.0...camunda-platform-10.3.0) (2024-07-13) + + +### Features + +* add console auth vars ([#1782](https://github.com/camunda/camunda-platform-helm/issues/1782)) ([81da51b](https://github.com/camunda/camunda-platform-helm/commit/81da51b4dc22e3419c5e210c626ff2a52edd4328)) +* configurable update strategy ([#2036](https://github.com/camunda/camunda-platform-helm/issues/2036)) ([675ce34](https://github.com/camunda/camunda-platform-helm/commit/675ce341395987f42707592a2e00b4e47c749b6d)) +* support dnsPolicy and dnsConfig for all components ([#2009](https://github.com/camunda/camunda-platform-helm/issues/2009)) ([6e3045c](https://github.com/camunda/camunda-platform-helm/commit/6e3045c6247af3d356564541dcae980eec5d7419)) + + +### Bug Fixes + +* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) +* identity base url not configured ([#2028](https://github.com/camunda/camunda-platform-helm/issues/2028)) ([890d202](https://github.com/camunda/camunda-platform-helm/commit/890d2028e14ed79c9a0f14b1ac7845379a3eb301)) +* unauthenticated external elasticsearch no longer forces password… ([#1990](https://github.com/camunda/camunda-platform-helm/issues/1990)) ([485ecb7](https://github.com/camunda/camunda-platform-helm/commit/485ecb7e575aa6c702e119d6ced97a0f9246e2b1)) + + +### Refactors + +* remove the global image tag value and use it from the components ([#2069](https://github.com/camunda/camunda-platform-helm/issues/2069)) ([0c34cd5](https://github.com/camunda/camunda-platform-helm/commit/0c34cd56d12fe257e0feca3fcf52fca3ea4c3fb5)) diff --git a/charts/camunda-platform-latest/Chart.yaml b/charts/camunda-platform-latest/Chart.yaml index bb486f710a..f07f7d4801 100644 --- a/charts/camunda-platform-latest/Chart.yaml +++ b/charts/camunda-platform-latest/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: camunda-platform -version: 10.2.0 +version: 10.3.0 appVersion: 8.5.x description: | Camunda 8 Self-Managed Helm charts. From aebc433d6dbab59032ca8ec579590332eff2198d Mon Sep 17 00:00:00 2001 From: "distro-ci[bot]" <122795778+distro-ci[bot]@users.noreply.github.com> Date: Sat, 13 Jul 2024 22:32:25 +0000 Subject: [PATCH 32/32] chore(release): update chart files --- charts/camunda-platform-8.2/CHANGELOG.md | 18 --------------- charts/camunda-platform-8.2/RELEASE-NOTES.md | 12 +++++----- .../connectors/golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../connectors/golden/ingress.golden.yaml | 2 +- .../connectors/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../unit/golden/curator-configmap.golden.yaml | 2 +- .../unit/golden/curator-cronjob.golden.yaml | 2 +- .../unit/golden/service-monitor.golden.yaml | 2 +- charts/camunda-platform-8.3/CHANGELOG.md | 16 -------------- charts/camunda-platform-8.3/RELEASE-NOTES.md | 12 +++++----- .../connectors-service-monitor.golden.yaml | 2 +- .../identity-service-monitor.golden.yaml | 2 +- .../operate-service-monitor.golden.yaml | 2 +- .../optimize-service-monitor.golden.yaml | 2 +- .../tasklist-service-monitor.golden.yaml | 2 +- .../web-modeler-service-monitor.golden.yaml | 2 +- .../zeebe-gateway-service-monitor.golden.yaml | 2 +- .../golden/zeebe-service-monitor.golden.yaml | 2 +- .../connectors/golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../connectors/golden/ingress.golden.yaml | 2 +- .../connectors/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../unit/operate/golden/configmap.golden.yaml | 2 +- .../operate/golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/operate/golden/ingress.golden.yaml | 2 +- .../unit/operate/golden/service.golden.yaml | 2 +- .../operate/golden/serviceaccount.golden.yaml | 2 +- .../optimize/golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/optimize/golden/ingress.golden.yaml | 2 +- .../unit/optimize/golden/service.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../tasklist/golden/configmap.golden.yaml | 2 +- .../tasklist/golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../unit/tasklist/golden/ingress.golden.yaml | 2 +- .../unit/tasklist/golden/service.golden.yaml | 2 +- .../golden/configmap-log4j2.golden.yaml | 2 +- .../golden/configmap.golden.yaml | 2 +- .../golden/deployment.golden.yaml | 4 ++-- .../golden/ingress-all-enabled.golden.yaml | 2 +- .../zeebe-gateway/golden/ingress.golden.yaml | 2 +- .../golden/poddisruptionbudget.golden.yaml | 2 +- .../zeebe-gateway/golden/service.golden.yaml | 2 +- .../serviceaccount-annotations.golden.yaml | 2 +- .../golden/serviceaccount.golden.yaml | 2 +- .../zeebe/golden/configmap-log4j2.golden.yaml | 2 +- .../unit/zeebe/golden/configmap.golden.yaml | 2 +- .../golden/poddisruptionbudget.golden.yaml | 2 +- .../unit/zeebe/golden/service.golden.yaml | 2 +- .../zeebe/golden/serviceaccount.golden.yaml | 2 +- .../unit/zeebe/golden/statefulset.golden.yaml | 4 ++-- charts/camunda-platform-8.4/CHANGELOG.md | 15 ------------- charts/camunda-platform-8.4/RELEASE-NOTES.md | 12 +++++----- charts/camunda-platform-latest/CHANGELOG.md | 22 ------------------- .../camunda-platform-latest/RELEASE-NOTES.md | 14 ++++++------ 60 files changed, 84 insertions(+), 155 deletions(-) delete mode 100644 charts/camunda-platform-8.2/CHANGELOG.md delete mode 100644 charts/camunda-platform-8.3/CHANGELOG.md delete mode 100644 charts/camunda-platform-8.4/CHANGELOG.md delete mode 100644 charts/camunda-platform-latest/CHANGELOG.md diff --git a/charts/camunda-platform-8.2/CHANGELOG.md b/charts/camunda-platform-8.2/CHANGELOG.md deleted file mode 100644 index d1e804d227..0000000000 --- a/charts/camunda-platform-8.2/CHANGELOG.md +++ /dev/null @@ -1,18 +0,0 @@ -# Changelog - -## [8.2.30](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.2.29...camunda-platform-8.2.30) (2024-07-13) - - -### Bug Fixes - -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1965](https://github.com/camunda/camunda-platform-helm/issues/1965)) ([5487142](https://github.com/camunda/camunda-platform-helm/commit/548714296ae6ade07b7585111f8973d221e80983)) -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) -* **deps:** update module github.com/stretchr/testify to v1.9.0 ([#1948](https://github.com/camunda/camunda-platform-helm/issues/1948)) ([11afba6](https://github.com/camunda/camunda-platform-helm/commit/11afba60edf6de35429174b381b0d06964e8b6de)) -* **deps:** update module k8s.io/api to v0.27.15 ([#1962](https://github.com/camunda/camunda-platform-helm/issues/1962)) ([e68d48b](https://github.com/camunda/camunda-platform-helm/commit/e68d48b7af48f6fbaf2aff0c1e8714c1659f4479)) -* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) - - -### Refactors - -* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) -* update zeebe gateway readiness probe endpoint ([a28f661](https://github.com/camunda/camunda-platform-helm/commit/a28f6616d0c3f0268709aceb8406ee9fe651d722)) diff --git a/charts/camunda-platform-8.2/RELEASE-NOTES.md b/charts/camunda-platform-8.2/RELEASE-NOTES.md index 329e07e9ce..8efc0f9f42 100644 --- a/charts/camunda-platform-8.2/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.2/RELEASE-NOTES.md @@ -2,8 +2,8 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-8.2.29](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.2.29) (2024-06-28) + +## [camunda-platform-8.2.30](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.2.30) (2024-07-13) ### Ci @@ -19,7 +19,7 @@ and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1. Supported versions: - Camunda applications: [8.2](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.2&expanded=true) -- Helm values: [8.2.29](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.2.29#parameters) +- Helm values: [8.2.30](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.2.30#parameters) - Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) Camunda images: @@ -47,8 +47,8 @@ Non-Camunda images: To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): ```shell -cosign verify-blob camunda-platform-8.2.29.tgz \ - --bundle camunda-platform-8.2.29.cosign.bundle \ +cosign verify-blob camunda-platform-8.2.30.tgz \ + --bundle camunda-platform-8.2.30.cosign.bundle \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ - --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2126/merge" ``` diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml index 131d32e7f8..c061aeae7f 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml index 90ff3bba34..d580cfa61e 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml index 69c9769425..bcac6e7db1 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml index 9164c7bf74..eac406f7fc 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors annotations: spec: diff --git a/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml index 1053ebfaed..93ec8c9ea4 100644 --- a/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/connectors/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" app.kubernetes.io/component: connectors \ No newline at end of file diff --git a/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml index c654012d9b..699a7f25d5 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/curator-configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" data: action_file.yml: |- --- diff --git a/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml index bde374d918..8504456c3b 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/curator-cronjob.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" spec: schedule: "0 0 * * *" successfulJobsHistoryLimit: 1 diff --git a/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml b/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml index b056322001..27e4072ab0 100644 --- a/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml +++ b/charts/camunda-platform-8.2/test/unit/golden/service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.2.29" + app.kubernetes.io/version: "8.2.30" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/CHANGELOG.md b/charts/camunda-platform-8.3/CHANGELOG.md deleted file mode 100644 index 240773ad6c..0000000000 --- a/charts/camunda-platform-8.3/CHANGELOG.md +++ /dev/null @@ -1,16 +0,0 @@ -# Changelog - -## [8.3.15](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-8.3.14...camunda-platform-8.3.15) (2024-07-13) - - -### Bug Fixes - -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1935](https://github.com/camunda/camunda-platform-helm/issues/1935)) ([8817e58](https://github.com/camunda/camunda-platform-helm/commit/8817e587fb25499f25e6dd89dc801e630c3b63a5)) -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) -* **deps:** update module github.com/stretchr/testify to v1.9.0 ([#1948](https://github.com/camunda/camunda-platform-helm/issues/1948)) ([11afba6](https://github.com/camunda/camunda-platform-helm/commit/11afba60edf6de35429174b381b0d06964e8b6de)) -* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) - - -### Refactors - -* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) diff --git a/charts/camunda-platform-8.3/RELEASE-NOTES.md b/charts/camunda-platform-8.3/RELEASE-NOTES.md index 208eec44b0..05331701b6 100644 --- a/charts/camunda-platform-8.3/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.3/RELEASE-NOTES.md @@ -2,8 +2,8 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-8.3.14](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.3.14) (2024-06-28) + +## [camunda-platform-8.3.15](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-8.3.15) (2024-07-13) ### Ci @@ -18,7 +18,7 @@ and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1. Supported versions: - Camunda applications: [8.3](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.3&expanded=true) -- Helm values: [8.3.14](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.3.14#parameters) +- Helm values: [8.3.15](https://artifacthub.io/packages/helm/camunda/camunda-platform/8.3.15#parameters) - Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) Camunda images: @@ -47,8 +47,8 @@ Non-Camunda images: To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): ```shell -cosign verify-blob camunda-platform-8.3.14.tgz \ - --bundle camunda-platform-8.3.14.cosign.bundle \ +cosign verify-blob camunda-platform-8.3.15.tgz \ + --bundle camunda-platform-8.3.15.cosign.bundle \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ - --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2126/merge" ``` diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml index 1002b0fc9f..66d08c5137 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/connectors-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml index 76cf4c5f08..eaf02fd3d0 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/identity-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml index a6198dac69..3f6d911e99 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/operate-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml index 82c5340001..3fed2f8b85 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/optimize-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml index 1bcc8bc329..305374a3fc 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/tasklist-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml index 35fdf97e5a..d01d275436 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/web-modeler-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml index dd31151eaf..2394426781 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-gateway-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml index 0ea1a811b4..275c98a17c 100644 --- a/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/camunda/golden/zeebe-service-monitor.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" release: metrics spec: selector: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml index 08412425b2..e7ae842fb6 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml index c96dfbd339..a23165af9e 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml index f90e90d616..9b5319a719 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml index 583440948b..39eefaa6bb 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml index 116067b7c3..dd95a30d51 100644 --- a/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/connectors/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: connectors \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml index 7ac0f984b0..5abb0c8cf6 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate data: application.yml: | diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml index db8901fb61..552444d8e5 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml index e6e7a31e21..5462b3a735 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml index 568d435c3e..51e5bd67aa 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml index 2fa2ddb47f..07b17aee33 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml index 779406309a..70c91b6f7a 100644 --- a/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/operate/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: operate \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml index 36cb35c10c..064f679e2b 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize spec: imagePullSecrets: diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml index e6a57caff3..8ae51dbbf5 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml index 2fda48a26b..f77c015633 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml index 0382edee5d..42bdb31320 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml index 99d78217a9..ce283d5cdb 100644 --- a/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/optimize/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: optimize \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml index 5b105608e5..d9b4421981 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/configmap.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist data: application.yml: | diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml index b0b8cea29e..a01c1e1a3c 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml index f0030f95a4..1d0411425f 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml index 1eedf98c0d..0cf4dc8d79 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml index 570b39d312..a8bf379dfe 100644 --- a/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/tasklist/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: tasklist spec: type: ClusterIP diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml index fe3e98736f..a7bba6e641 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap-log4j2.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml index c93547e886..c8a26bdae5 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/configmap.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml index c4f40d7bef..9ed682fa8f 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/deployment.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: {} @@ -32,7 +32,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: {} diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml index 5775c8cd5a..6e597a0e5d 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress-all-enabled.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml index 87a997d7a3..0974ce098e 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/ingress.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: ingress.kubernetes.io/rewrite-target: / diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml index f548c87fca..878d8a9238 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/poddisruptionbudget.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway spec: minAvailable: 1 diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml index f87b7def33..9f8f21e9f3 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: spec: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml index 21317b7155..40b7ce2ec6 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount-annotations.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway annotations: foo: bar diff --git a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml index b7917212e9..11728ed5d0 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe-gateway/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-gateway \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml index 7c5f9ee43b..d43b5ff8c3 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap-log4j2.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml index 1d0f32aeba..548e694b51 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/configmap.golden.yaml @@ -9,7 +9,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker apiVersion: v1 data: diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml index 045c1c28ba..ed39132bbf 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/poddisruptionbudget.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker spec: maxUnavailable: 1 diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml index 0ec6dd2e2d..c3048526f2 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/service.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker annotations: {} diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml index 3075c35791..eb10f7928d 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/serviceaccount.golden.yaml @@ -10,5 +10,5 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker \ No newline at end of file diff --git a/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml b/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml index 3735daca5e..9a116eba47 100644 --- a/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml +++ b/charts/camunda-platform-8.3/test/unit/zeebe/golden/statefulset.golden.yaml @@ -10,7 +10,7 @@ metadata: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker annotations: spec: @@ -35,7 +35,7 @@ spec: app.kubernetes.io/instance: camunda-platform-test app.kubernetes.io/managed-by: Helm app.kubernetes.io/part-of: camunda-platform - app.kubernetes.io/version: "8.3.14" + app.kubernetes.io/version: "8.3.15" app.kubernetes.io/component: zeebe-broker annotations: spec: diff --git a/charts/camunda-platform-8.4/CHANGELOG.md b/charts/camunda-platform-8.4/CHANGELOG.md deleted file mode 100644 index c444f909b8..0000000000 --- a/charts/camunda-platform-8.4/CHANGELOG.md +++ /dev/null @@ -1,15 +0,0 @@ -# Changelog - -## [9.3.8](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-9.3.7...camunda-platform-9.3.8) (2024-07-13) - - -### Bug Fixes - -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.15 ([#1935](https://github.com/camunda/camunda-platform-helm/issues/1935)) ([8817e58](https://github.com/camunda/camunda-platform-helm/commit/8817e587fb25499f25e6dd89dc801e630c3b63a5)) -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) -* **openshift:** make post-render script compatible with mac ([#1970](https://github.com/camunda/camunda-platform-helm/issues/1970)) ([5a43425](https://github.com/camunda/camunda-platform-helm/commit/5a43425b2b59c674de4495b7e2ae13209156d29b)) - - -### Refactors - -* remove the global image tag value and use it from the components - 8.2, 8.3, and 8.4 ([#2080](https://github.com/camunda/camunda-platform-helm/issues/2080)) ([30a3724](https://github.com/camunda/camunda-platform-helm/commit/30a3724c62c9c97b54eb9f78dea2a95b0953d3bb)) diff --git a/charts/camunda-platform-8.4/RELEASE-NOTES.md b/charts/camunda-platform-8.4/RELEASE-NOTES.md index ba71fd8830..2269100cff 100644 --- a/charts/camunda-platform-8.4/RELEASE-NOTES.md +++ b/charts/camunda-platform-8.4/RELEASE-NOTES.md @@ -2,8 +2,8 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-9.3.7](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-9.3.7) (2024-06-28) + +## [camunda-platform-9.3.8](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-9.3.8) (2024-07-13) ### Ci @@ -18,7 +18,7 @@ and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1. Supported versions: - Camunda applications: [8.4](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.4&expanded=true) -- Helm values: [9.3.7](https://artifacthub.io/packages/helm/camunda/camunda-platform/9.3.7#parameters) +- Helm values: [9.3.8](https://artifacthub.io/packages/helm/camunda/camunda-platform/9.3.8#parameters) - Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) Camunda images: @@ -47,8 +47,8 @@ Non-Camunda images: To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): ```shell -cosign verify-blob camunda-platform-9.3.7.tgz \ - --bundle camunda-platform-9.3.7.cosign.bundle \ +cosign verify-blob camunda-platform-9.3.8.tgz \ + --bundle camunda-platform-9.3.8.cosign.bundle \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ - --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2126/merge" ``` diff --git a/charts/camunda-platform-latest/CHANGELOG.md b/charts/camunda-platform-latest/CHANGELOG.md deleted file mode 100644 index 7c380ef0ea..0000000000 --- a/charts/camunda-platform-latest/CHANGELOG.md +++ /dev/null @@ -1,22 +0,0 @@ -# Changelog - -## [10.3.0](https://github.com/camunda/camunda-platform-helm/compare/camunda-platform-10.2.0...camunda-platform-10.3.0) (2024-07-13) - - -### Features - -* add console auth vars ([#1782](https://github.com/camunda/camunda-platform-helm/issues/1782)) ([81da51b](https://github.com/camunda/camunda-platform-helm/commit/81da51b4dc22e3419c5e210c626ff2a52edd4328)) -* configurable update strategy ([#2036](https://github.com/camunda/camunda-platform-helm/issues/2036)) ([675ce34](https://github.com/camunda/camunda-platform-helm/commit/675ce341395987f42707592a2e00b4e47c749b6d)) -* support dnsPolicy and dnsConfig for all components ([#2009](https://github.com/camunda/camunda-platform-helm/issues/2009)) ([6e3045c](https://github.com/camunda/camunda-platform-helm/commit/6e3045c6247af3d356564541dcae980eec5d7419)) - - -### Bug Fixes - -* **deps:** update module github.com/gruntwork-io/terratest to v0.46.16 ([#2088](https://github.com/camunda/camunda-platform-helm/issues/2088)) ([33d5b61](https://github.com/camunda/camunda-platform-helm/commit/33d5b61e27fb4a6e3e30506fb557c65626995130)) -* identity base url not configured ([#2028](https://github.com/camunda/camunda-platform-helm/issues/2028)) ([890d202](https://github.com/camunda/camunda-platform-helm/commit/890d2028e14ed79c9a0f14b1ac7845379a3eb301)) -* unauthenticated external elasticsearch no longer forces password… ([#1990](https://github.com/camunda/camunda-platform-helm/issues/1990)) ([485ecb7](https://github.com/camunda/camunda-platform-helm/commit/485ecb7e575aa6c702e119d6ced97a0f9246e2b1)) - - -### Refactors - -* remove the global image tag value and use it from the components ([#2069](https://github.com/camunda/camunda-platform-helm/issues/2069)) ([0c34cd5](https://github.com/camunda/camunda-platform-helm/commit/0c34cd56d12fe257e0feca3fcf52fca3ea4c3fb5)) diff --git a/charts/camunda-platform-latest/RELEASE-NOTES.md b/charts/camunda-platform-latest/RELEASE-NOTES.md index 11d0910322..06bc534b7b 100644 --- a/charts/camunda-platform-latest/RELEASE-NOTES.md +++ b/charts/camunda-platform-latest/RELEASE-NOTES.md @@ -2,8 +2,8 @@ The changelog is automatically generated using [git-chglog](https://github.com/g and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1.0.0/) format. - -## [camunda-platform-10.2.0](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-10.2.0) (2024-06-28) + +## [camunda-platform-10.3.0](https://github.com/camunda/camunda-platform-helm/releases/tag/camunda-platform-10.3.0) (2024-07-13) ### Ci @@ -29,7 +29,7 @@ and it follows [Conventional Commits](https://www.conventionalcommits.org/en/v1. Supported versions: - Camunda applications: [8.5](https://github.com/camunda/camunda-platform/releases?q=tag%3A8.5&expanded=true) -- Helm values: [10.2.0](https://artifacthub.io/packages/helm/camunda/camunda-platform/10.2.0#parameters) +- Helm values: [10.3.0](https://artifacthub.io/packages/helm/camunda/camunda-platform/10.3.0#parameters) - Helm CLI: [3.15.2](https://github.com/helm/helm/releases/tag/v3.15.2) Camunda images: @@ -41,7 +41,7 @@ Camunda images: - docker.io/camunda/optimize:8.5.3 - docker.io/camunda/tasklist:8.5.3 - docker.io/camunda/zeebe:8.5.4 -- registry.camunda.cloud/console/console-sm:8.5.67 +- registry.camunda.cloud/console/console-sm:8.5.73 - registry.camunda.cloud/web-modeler-ee/modeler-restapi:8.5.5 - registry.camunda.cloud/web-modeler-ee/modeler-webapp:8.5.5 - registry.camunda.cloud/web-modeler-ee/modeler-websockets:8.5.5 @@ -59,8 +59,8 @@ Non-Camunda images: To verify the integrity of the Helm chart using [Cosign](https://docs.sigstore.dev/signing/quickstart/): ```shell -cosign verify-blob camunda-platform-10.2.0.tgz \ - --bundle camunda-platform-10.2.0.cosign.bundle \ +cosign verify-blob camunda-platform-10.3.0.tgz \ + --bundle camunda-platform-10.3.0.cosign.bundle \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ - --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2014/merge" + --certificate-identity "https://github.com/camunda/camunda-platform-helm/.github/workflows/chart-release-chores.yml@refs/pull/2126/merge" ```