Skip to content

Commit

Permalink
Release v1.18.0 (#96)
Browse files Browse the repository at this point in the history
Signed-off-by: Jaime Silvela <[email protected]>
Signed-off-by: Gabriele Bartolini <[email protected]>
Co-authored-by: Jaime Silvela <[email protected]>
Co-authored-by: Gabriele Bartolini <[email protected]>
  • Loading branch information
3 people authored Apr 28, 2023
1 parent f76c060 commit a98e5a9
Show file tree
Hide file tree
Showing 3 changed files with 249 additions and 14 deletions.
4 changes: 2 additions & 2 deletions charts/edb-postgres-for-kubernetes/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -17,12 +17,12 @@ name: edb-postgres-for-kubernetes
description: EDB Postgres for Kubernetes Helm Chart
icon: https://www.enterprisedb.com/themes/custom/edb_bootstrap_sass/edb-logo-disc-dark-2.svg
type: application
version: "0.17.1"
version: "0.18.0"
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning, they should reflect the version the application is using.
# It is recommended to use it with quotes.
appVersion: "1.19.1"
appVersion: "1.20.0"
sources:
- https://github.com/EnterpriseDB/edb-postgres-for-kubernetes-charts
keywords:
Expand Down
5 changes: 3 additions & 2 deletions charts/edb-postgres-for-kubernetes/README.md
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# edb-postgres-for-kubernetes

![Version: 0.17.1](https://img.shields.io/badge/Version-0.17.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.19.1](https://img.shields.io/badge/AppVersion-1.19.1-informational?style=flat-square)
![Version: 0.18.0](https://img.shields.io/badge/Version-0.18.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.20.0](https://img.shields.io/badge/AppVersion-1.20.0-informational?style=flat-square)

EDB Postgres for Kubernetes Helm Chart

Expand All @@ -11,7 +11,8 @@ EDB Postgres for Kubernetes Helm Chart
| Name | Email | Url |
| ---- | ------ | --- |
| gbartolini | <[email protected]> | |
| jaime.silvela | <[email protected]> | |
| jsilvela | <[email protected]> | |
| litaocdl | <[email protected]> | |

## Source Code

Expand Down
254 changes: 244 additions & 10 deletions charts/edb-postgres-for-kubernetes/templates/crds/crds.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -62,8 +62,8 @@ spec:
target:
description: The policy to decide which instance should perform this
backup. If empty, it defaults to `cluster.spec.backup.target`. Available
options are empty string, which will default to `primary` policy,
`primary` to have backups run always on primary instances, `prefer-standby`
options are empty string, `primary` and `prefer-standby`. `primary`
to have backups run always on primary instances, `prefer-standby`
to have backups run preferably on the most updated standby, if available.
enum:
- primary
Expand Down Expand Up @@ -1541,11 +1541,11 @@ spec:
pattern: ^[1-9][0-9]*[dwm]$
type: string
target:
default: primary
default: prefer-standby
description: The policy to decide which instance should perform
backups. Available options are empty string, which will default
to `primary` policy, `primary` to have backups run always on
primary instances, `prefer-standby` to have backups run preferably
to `prefer-standby` policy, `primary` to have backups run always
on primary instances, `prefer-standby` to have backups run preferably
on the most updated standby, if available.
enum:
- primary
Expand Down Expand Up @@ -2516,6 +2516,112 @@ spec:
- debug
- trace
type: string
managed:
description: The configuration that is used by the portions of PostgreSQL
that are managed by the instance manager
properties:
roles:
description: Database roles managed by the `Cluster`
items:
description: "RoleConfiguration is the representation, in Kubernetes,
of a PostgreSQL role with the additional field Ensure specifying
whether to ensure the presence or absence of the role in the
database \n The defaults of the CREATE ROLE command are applied
Reference: https://www.postgresql.org/docs/current/sql-createrole.html"
properties:
bypassrls:
description: Whether a role bypasses every row-level security
(RLS) policy. Default is `false`.
type: boolean
comment:
description: Description of the role
type: string
connectionLimit:
default: -1
description: If the role can log in, this specifies how
many concurrent connections the role can make. `-1` (the
default) means no limit.
format: int64
type: integer
createdb:
description: When set to `true`, the role being defined
will be allowed to create new databases. Specifying `false`
(default) will deny a role the ability to create databases.
type: boolean
createrole:
description: Whether the role will be permitted to create,
alter, drop, comment on, change the security label for,
and grant or revoke membership in other roles. Default
is `false`.
type: boolean
ensure:
default: present
description: Ensure the role is `present` or `absent` -
defaults to "present"
enum:
- present
- absent
type: string
inRoles:
description: List of one or more existing roles to which
this role will be immediately added as a new member. Default
empty.
items:
type: string
type: array
inherit:
default: true
description: Whether a role "inherits" the privileges of
roles it is a member of. Defaults is `true`.
type: boolean
login:
description: Whether the role is allowed to log in. A role
having the `login` attribute can be thought of as a user.
Roles without this attribute are useful for managing database
privileges, but are not users in the usual sense of the
word. Default is `false`.
type: boolean
name:
description: Name of the role
type: string
passwordSecret:
description: Secret containing the password of the role
(if present)
properties:
name:
description: Name of the referent.
type: string
required:
- name
type: object
replication:
description: Whether a role is a replication role. A role
must have this attribute (or be a superuser) in order
to be able to connect to the server in replication mode
(physical or logical replication) and in order to be able
to create or drop replication slots. A role having the
`replication` attribute is a very highly privileged role,
and should only be used on roles actually used for replication.
Default is `false`.
type: boolean
superuser:
description: Whether the role is a `superuser` who can override
all access restrictions within the database - superuser
status is dangerous and should be used only when really
needed. You must yourself be a superuser to create a new
superuser. Defaults is `false`.
type: boolean
validUntil:
description: Date and time after which the role's password
is no longer valid. When omitted, the password will never
expire (default).
format: date-time
type: string
required:
- name
type: object
type: array
type: object
maxSyncReplicas:
default: 0
description: The target value for the synchronous replication quorum,
Expand Down Expand Up @@ -2621,6 +2727,28 @@ spec:
enabled:
description: True if we want to have TDE enabled
type: boolean
passphraseCommand:
description: PassphraseCommand is the command executed
to get the passphrase that will be passed to the OpenSSL
command to encrypt and decrypt
properties:
key:
description: The key of the secret to select from. Must
be a valid secret key.
type: string
name:
description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
TODO: Add other useful fields. apiVersion, kind,
uid?'
type: string
optional:
description: Specify whether the Secret or its key
must be defined
type: boolean
required:
- key
type: object
x-kubernetes-map-type: atomic
secretKeyRef:
description: Reference to the secret that contains the
encryption key
Expand All @@ -2642,6 +2770,48 @@ spec:
- key
type: object
x-kubernetes-map-type: atomic
unwrapCommand:
description: UnwrapCommand is the decryption command provided
by the user
properties:
key:
description: The key of the secret to select from. Must
be a valid secret key.
type: string
name:
description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
TODO: Add other useful fields. apiVersion, kind,
uid?'
type: string
optional:
description: Specify whether the Secret or its key
must be defined
type: boolean
required:
- key
type: object
x-kubernetes-map-type: atomic
wrapCommand:
description: WrapCommand is the encrypt command provided
by the user
properties:
key:
description: The key of the secret to select from. Must
be a valid secret key.
type: string
name:
description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
TODO: Add other useful fields. apiVersion, kind,
uid?'
type: string
optional:
description: Specify whether the Secret or its key
must be defined
type: boolean
required:
- key
type: object
x-kubernetes-map-type: atomic
type: object
type: object
ldap:
Expand Down Expand Up @@ -2756,11 +2926,11 @@ spec:
type: object
type: object
primaryUpdateMethod:
default: switchover
default: restart
description: 'Method to follow to upgrade the primary server during
a rolling update procedure, after all replicas have been successfully
updated: it can be with a switchover (`switchover` - default) or
in-place (`restart`)'
updated: it can be with a switchover (`switchover`) or in-place
(`restart` - default)'
enum:
- switchover
- restart
Expand Down Expand Up @@ -3042,6 +3212,7 @@ spec:
description: Replication slots for high availability configuration
properties:
enabled:
default: false
description: If enabled, the operator will automatically manage
replication slots on the primary instance and use them in
streaming replication connections with all the standby instances
Expand Down Expand Up @@ -3117,6 +3288,27 @@ spec:
to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'
type: object
type: object
seccompProfile:
description: 'The SeccompProfile applied to every Pod and Container.
Defaults to: `RuntimeDefault`'
properties:
localhostProfile:
description: localhostProfile indicates a profile defined in a
file on the node should be used. The profile must be preconfigured
on the node to work. Must be a descending path, relative to
the kubelet's configured seccomp profile location. Must only
be set if type is "Localhost".
type: string
type:
description: "type indicates which kind of seccomp profile will
be applied. Valid options are: \n Localhost - a profile defined
in a file on the node should be used. RuntimeDefault - the container
runtime default profile should be used. Unconfined - no profile
should be applied."
type: string
required:
- type
type: object
serviceAccountTemplate:
description: Configure the generation of the service account
properties:
Expand Down Expand Up @@ -3898,6 +4090,43 @@ spec:
- repositoryAccess
- valid
type: object
managedRolesStatus:
description: ManagedRolesStatus reports the state of the managed roles
in the cluster
properties:
byStatus:
additionalProperties:
items:
type: string
type: array
description: ByStatus gives the list of roles in each state
type: object
cannotReconcile:
additionalProperties:
items:
type: string
type: array
description: CannotReconcile lists roles that cannot be reconciled
in PostgreSQL, with an explanation of the cause
type: object
passwordStatus:
additionalProperties:
description: PasswordState represents the state of the password
of a managed RoleConfiguration
properties:
resourceVersion:
description: the resource version of the password secret
type: string
transactionID:
description: the last transaction ID to affect the role
definition in PostgreSQL
format: int64
type: integer
type: object
description: PasswordStatus gives the last transaction id and
password secret version for each managed role
type: object
type: object
onlineUpdateEnabled:
description: OnlineUpdateEnabled shows if the online upgrade is enabled
inside the cluster
Expand Down Expand Up @@ -3956,6 +4185,11 @@ spec:
description: The resource version of the PostgreSQL client-side
CA secret version
type: string
managedRoleSecretVersion:
additionalProperties:
type: string
description: The resource versions of the managed roles secrets
type: object
metrics:
additionalProperties:
type: string
Expand Down Expand Up @@ -11704,8 +11938,8 @@ spec:
target:
description: The policy to decide which instance should perform this
backup. If empty, it defaults to `cluster.spec.backup.target`. Available
options are empty string, which will default to `primary` policy,
`primary` to have backups run always on primary instances, `prefer-standby`
options are empty string, `primary` and `prefer-standby`. `primary`
to have backups run always on primary instances, `prefer-standby`
to have backups run preferably on the most updated standby, if available.
enum:
- primary
Expand Down

0 comments on commit a98e5a9

Please sign in to comment.