diff --git a/.github/actions/debug-output/action.yaml b/.github/actions/debug-output/action.yaml index 5475c0789..1fe4ae4bf 100644 --- a/.github/actions/debug-output/action.yaml +++ b/.github/actions/debug-output/action.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: debug-output description: "Print out basic debug info for a k8s cluster" diff --git a/.github/actions/lint-check/action.yaml b/.github/actions/lint-check/action.yaml index bf9f7624e..40b43c5d0 100644 --- a/.github/actions/lint-check/action.yaml +++ b/.github/actions/lint-check/action.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: lint-check description: "Check Project for Linting Errors" diff --git a/.github/actions/notify-lula/action.yaml b/.github/actions/notify-lula/action.yaml index 5b39ee012..7534d6d78 100644 --- a/.github/actions/notify-lula/action.yaml +++ b/.github/actions/notify-lula/action.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Notify Lula description: "Comment on PR to notify Lula Team" diff --git a/.github/actions/save-logs/action.yaml b/.github/actions/save-logs/action.yaml index e66a9cac4..01aa42225 100644 --- a/.github/actions/save-logs/action.yaml +++ b/.github/actions/save-logs/action.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: save-logs description: "Save debug logs" diff --git a/.github/actions/setup/action.yaml b/.github/actions/setup/action.yaml index f6925d652..7ebb273a8 100644 --- a/.github/actions/setup/action.yaml +++ b/.github/actions/setup/action.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # action.yml name: "Setup Environment" description: "UDS Environment Setup" diff --git a/.github/bundles/eks/uds-bundle.yaml b/.github/bundles/eks/uds-bundle.yaml index fb8377763..94549f9d1 100644 --- a/.github/bundles/eks/uds-bundle.yaml +++ b/.github/bundles/eks/uds-bundle.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: UDSBundle metadata: name: uds-core-eks-nightly diff --git a/.github/bundles/eks/uds-config.yaml b/.github/bundles/eks/uds-config.yaml index eeff28455..12adfdd49 100644 --- a/.github/bundles/eks/uds-config.yaml +++ b/.github/bundles/eks/uds-config.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Overwritten by ci-iac-aws package options: architecture: amd64 diff --git a/.github/bundles/rke2/uds-bundle.yaml b/.github/bundles/rke2/uds-bundle.yaml index 8e4c648ab..7caecb4f1 100644 --- a/.github/bundles/rke2/uds-bundle.yaml +++ b/.github/bundles/rke2/uds-bundle.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: UDSBundle metadata: name: uds-core-rke2-nightly diff --git a/.github/bundles/rke2/uds-config.yaml b/.github/bundles/rke2/uds-config.yaml index 5d1542b4b..b55faf5a8 100644 --- a/.github/bundles/rke2/uds-config.yaml +++ b/.github/bundles/rke2/uds-config.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Overwritten by ci-iac-aws package options: architecture: amd64 diff --git a/.github/filters.yaml b/.github/filters.yaml index 86ae67237..8ffee6f5b 100644 --- a/.github/filters.yaml +++ b/.github/filters.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + all: - "**" diff --git a/.github/test-infra/aws/eks/loki.tf b/.github/test-infra/aws/eks/loki.tf index 868e2782e..756b95017 100644 --- a/.github/test-infra/aws/eks/loki.tf +++ b/.github/test-infra/aws/eks/loki.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + resource "aws_iam_policy" "loki_policy" { name = "${local.bucket_configurations.loki.name}-irsa-${random_id.unique_id.hex}" path = "/" diff --git a/.github/test-infra/aws/eks/main.tf b/.github/test-infra/aws/eks/main.tf index d8cd70a91..07d5821a5 100644 --- a/.github/test-infra/aws/eks/main.tf +++ b/.github/test-infra/aws/eks/main.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + resource "random_id" "default" { byte_length = 2 diff --git a/.github/test-infra/aws/eks/outputs.tf b/.github/test-infra/aws/eks/outputs.tf index d51f9cb36..f0e4e6224 100644 --- a/.github/test-infra/aws/eks/outputs.tf +++ b/.github/test-infra/aws/eks/outputs.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + output "aws_region" { value = data.aws_region.current.name } diff --git a/.github/test-infra/aws/eks/rds.tf b/.github/test-infra/aws/eks/rds.tf index 9f32281c9..9f90a2f1a 100644 --- a/.github/test-infra/aws/eks/rds.tf +++ b/.github/test-infra/aws/eks/rds.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + resource "random_password" "db_password" { length = 16 special = false diff --git a/.github/test-infra/aws/eks/variables.tf b/.github/test-infra/aws/eks/variables.tf index b3cdf700b..94bcb7e15 100644 --- a/.github/test-infra/aws/eks/variables.tf +++ b/.github/test-infra/aws/eks/variables.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variable "region" { description = "AWS region" type = string diff --git a/.github/test-infra/aws/eks/velero.tf b/.github/test-infra/aws/eks/velero.tf index cbcb6c588..cba3d9307 100644 --- a/.github/test-infra/aws/eks/velero.tf +++ b/.github/test-infra/aws/eks/velero.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + resource "aws_iam_policy" "velero_policy" { name = "${local.bucket_configurations.velero.name}-irsa-${random_id.unique_id.hex}" path = "/" diff --git a/.github/test-infra/aws/eks/versions.tf b/.github/test-infra/aws/eks/versions.tf index c43fc5636..0a4588878 100644 --- a/.github/test-infra/aws/eks/versions.tf +++ b/.github/test-infra/aws/eks/versions.tf @@ -1,3 +1,6 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + provider "aws" { region = var.region diff --git a/.github/test-infra/aws/rke2/data.tf b/.github/test-infra/aws/rke2/data.tf index cea2a14b2..80518887f 100644 --- a/.github/test-infra/aws/rke2/data.tf +++ b/.github/test-infra/aws/rke2/data.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + data "aws_vpc" "vpc" { filter { name = "tag:Name" diff --git a/.github/test-infra/aws/rke2/iam.tf b/.github/test-infra/aws/rke2/iam.tf index e31c0fa5a..c07666942 100644 --- a/.github/test-infra/aws/rke2/iam.tf +++ b/.github/test-infra/aws/rke2/iam.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # required iam roles for irsa data "aws_partition" "current" {} diff --git a/.github/test-infra/aws/rke2/irsa.tf b/.github/test-infra/aws/rke2/irsa.tf index edf2d5664..5996e24aa 100644 --- a/.github/test-infra/aws/rke2/irsa.tf +++ b/.github/test-infra/aws/rke2/irsa.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # setting up irsa for the rke2 cluster # Keypair for signing, added as secrets in AWS Secrets Manager resource "tls_private_key" "keypair" { diff --git a/.github/test-infra/aws/rke2/main.tf b/.github/test-infra/aws/rke2/main.tf index f07b17cb0..9fb44ef06 100644 --- a/.github/test-infra/aws/rke2/main.tf +++ b/.github/test-infra/aws/rke2/main.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # sourced from https://github.com/defenseunicorns/uds-rke2-image-builder/tree/2fecc1c9a10180579ada75a9ec92dcb224e82a74/.github/test-infra/rke2-cluster locals { cluster_name = "rke2-nightly-ci-${random_string.ssm.result}" diff --git a/.github/test-infra/aws/rke2/metallb.yaml b/.github/test-infra/aws/rke2/metallb.yaml index 5d0514777..24a487eb6 100644 --- a/.github/test-infra/aws/rke2/metallb.yaml +++ b/.github/test-infra/aws/rke2/metallb.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: metallb.io/v1beta1 kind: IPAddressPool metadata: diff --git a/.github/test-infra/aws/rke2/modules/statestore/main.tf b/.github/test-infra/aws/rke2/modules/statestore/main.tf index 47e3e87b2..8b6ca4f0b 100644 --- a/.github/test-infra/aws/rke2/modules/statestore/main.tf +++ b/.github/test-infra/aws/rke2/modules/statestore/main.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + #sourced from https://github.com/rancherfederal/rke2-aws-tf/blob/master/modules/statestore/main.tf resource "aws_s3_bucket" "bucket" { diff --git a/.github/test-infra/aws/rke2/modules/statestore/outputs.tf b/.github/test-infra/aws/rke2/modules/statestore/outputs.tf index 272821431..cab40e7fc 100644 --- a/.github/test-infra/aws/rke2/modules/statestore/outputs.tf +++ b/.github/test-infra/aws/rke2/modules/statestore/outputs.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + output "bucket" { value = aws_s3_object.token.bucket } diff --git a/.github/test-infra/aws/rke2/modules/statestore/variables.tf b/.github/test-infra/aws/rke2/modules/statestore/variables.tf index 84450bc81..d82abc962 100644 --- a/.github/test-infra/aws/rke2/modules/statestore/variables.tf +++ b/.github/test-infra/aws/rke2/modules/statestore/variables.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variable "name" { type = string } diff --git a/.github/test-infra/aws/rke2/modules/storage/irsa/data.tf b/.github/test-infra/aws/rke2/modules/storage/irsa/data.tf index 6397b4a1e..2e2778315 100644 --- a/.github/test-infra/aws/rke2/modules/storage/irsa/data.tf +++ b/.github/test-infra/aws/rke2/modules/storage/irsa/data.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + ## s3 policy data "aws_caller_identity" "current" {} diff --git a/.github/test-infra/aws/rke2/modules/storage/irsa/main.tf b/.github/test-infra/aws/rke2/modules/storage/irsa/main.tf index 622b83eb8..311818c5b 100644 --- a/.github/test-infra/aws/rke2/modules/storage/irsa/main.tf +++ b/.github/test-infra/aws/rke2/modules/storage/irsa/main.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + data "aws_partition" "current" {} ## This will create a policy for the S3 Buckets diff --git a/.github/test-infra/aws/rke2/modules/storage/irsa/outputs.tf b/.github/test-infra/aws/rke2/modules/storage/irsa/outputs.tf index abc93bdde..d86b92c76 100644 --- a/.github/test-infra/aws/rke2/modules/storage/irsa/outputs.tf +++ b/.github/test-infra/aws/rke2/modules/storage/irsa/outputs.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + output "bucket_role" { value = aws_iam_role.s3_bucket_role } diff --git a/.github/test-infra/aws/rke2/modules/storage/irsa/variables.tf b/.github/test-infra/aws/rke2/modules/storage/irsa/variables.tf index 272af5b70..10a892cdb 100644 --- a/.github/test-infra/aws/rke2/modules/storage/irsa/variables.tf +++ b/.github/test-infra/aws/rke2/modules/storage/irsa/variables.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variable "cluster_name" { description = "Name of the Kubernetes Cluster." type = string diff --git a/.github/test-infra/aws/rke2/modules/storage/main.tf b/.github/test-infra/aws/rke2/modules/storage/main.tf index 9add8f286..5350762c4 100644 --- a/.github/test-infra/aws/rke2/modules/storage/main.tf +++ b/.github/test-infra/aws/rke2/modules/storage/main.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Terraform Module for provisioning s3 buckets with optional support for IRSA, tailored specifically for loki and velero atop uds-core locals { permissions_boundary_name = split("/", var.permissions_boundary)[1] diff --git a/.github/test-infra/aws/rke2/modules/storage/outputs.tf b/.github/test-infra/aws/rke2/modules/storage/outputs.tf index 23c43276c..f0414ad1e 100644 --- a/.github/test-infra/aws/rke2/modules/storage/outputs.tf +++ b/.github/test-infra/aws/rke2/modules/storage/outputs.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + output "s3_buckets" { value = { for k, v in module.s3 : k => v } } diff --git a/.github/test-infra/aws/rke2/modules/storage/variables.tf b/.github/test-infra/aws/rke2/modules/storage/variables.tf index ab54e4963..f51b9c4e3 100644 --- a/.github/test-infra/aws/rke2/modules/storage/variables.tf +++ b/.github/test-infra/aws/rke2/modules/storage/variables.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variable "cluster_name" { description = "Name of the Kubernetes Cluster." type = string diff --git a/.github/test-infra/aws/rke2/modules/storage/versions.tf b/.github/test-infra/aws/rke2/modules/storage/versions.tf index 11737aa8f..bd25115e5 100644 --- a/.github/test-infra/aws/rke2/modules/storage/versions.tf +++ b/.github/test-infra/aws/rke2/modules/storage/versions.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + terraform { required_providers { aws = { diff --git a/.github/test-infra/aws/rke2/outputs.tf b/.github/test-infra/aws/rke2/outputs.tf index ae160aeb7..5ae696ab7 100644 --- a/.github/test-infra/aws/rke2/outputs.tf +++ b/.github/test-infra/aws/rke2/outputs.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + output "aws_region" { value = data.aws_region.current.name } diff --git a/.github/test-infra/aws/rke2/scripts/get-kubeconfig.sh b/.github/test-infra/aws/rke2/scripts/get-kubeconfig.sh index c2f5045f8..dc002bab1 100644 --- a/.github/test-infra/aws/rke2/scripts/get-kubeconfig.sh +++ b/.github/test-infra/aws/rke2/scripts/get-kubeconfig.sh @@ -1,8 +1,9 @@ #!/bin/bash - # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + + # Utility script that can be called from a uds task after tofu has deployed the e2e test module echo "tofu version: $(tofu --version)" diff --git a/.github/test-infra/aws/rke2/scripts/key_id.sh b/.github/test-infra/aws/rke2/scripts/key_id.sh index 9a83fd52f..cce17dafb 100644 --- a/.github/test-infra/aws/rke2/scripts/key_id.sh +++ b/.github/test-infra/aws/rke2/scripts/key_id.sh @@ -1,8 +1,9 @@ #!/bin/bash - # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + + set -e PUBLIC_KEY="$1" diff --git a/.github/test-infra/aws/rke2/scripts/key_modulus.sh b/.github/test-infra/aws/rke2/scripts/key_modulus.sh index 8516646dc..391a5ebd6 100644 --- a/.github/test-infra/aws/rke2/scripts/key_modulus.sh +++ b/.github/test-infra/aws/rke2/scripts/key_modulus.sh @@ -1,8 +1,9 @@ #!/bin/bash - # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + + PUBLIC_KEY="$1" modulus=$(echo "$PUBLIC_KEY" |\ diff --git a/.github/test-infra/aws/rke2/scripts/user_data.sh b/.github/test-infra/aws/rke2/scripts/user_data.sh index 2989428cf..82b9b7cc6 100644 --- a/.github/test-infra/aws/rke2/scripts/user_data.sh +++ b/.github/test-infra/aws/rke2/scripts/user_data.sh @@ -1,8 +1,9 @@ #!/bin/bash - # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + + info() { echo "[INFO] " "$@" } diff --git a/.github/test-infra/aws/rke2/storage.tf b/.github/test-infra/aws/rke2/storage.tf index a578a2fbd..aa1d742eb 100644 --- a/.github/test-infra/aws/rke2/storage.tf +++ b/.github/test-infra/aws/rke2/storage.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + ####################################### # Storage ####################################### diff --git a/.github/test-infra/aws/rke2/terraform.tfvars b/.github/test-infra/aws/rke2/terraform.tfvars index e7183dac6..53ff1f7dd 100644 --- a/.github/test-infra/aws/rke2/terraform.tfvars +++ b/.github/test-infra/aws/rke2/terraform.tfvars @@ -1,5 +1,3 @@ -# Copyright 2024 Defense Unicorns -# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial default_user = "ec2-user" ssh_key_name = "packer-rke2-rhel-key" os_distro = "rhel" diff --git a/.github/test-infra/aws/rke2/variables.tf b/.github/test-infra/aws/rke2/variables.tf index a2741778f..59ac1e4bb 100644 --- a/.github/test-infra/aws/rke2/variables.tf +++ b/.github/test-infra/aws/rke2/variables.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variable "environment" { description = "Environment/account that this is deployed to" default = "ci" diff --git a/.github/test-infra/aws/rke2/versions.tf b/.github/test-infra/aws/rke2/versions.tf index e8c9877d9..21fc2933b 100644 --- a/.github/test-infra/aws/rke2/versions.tf +++ b/.github/test-infra/aws/rke2/versions.tf @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + terraform { backend "s3" { } diff --git a/.github/workflows/commitlint.yaml b/.github/workflows/commitlint.yaml index cf09da0de..43c0e331e 100644 --- a/.github/workflows/commitlint.yaml +++ b/.github/workflows/commitlint.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Metadata on: diff --git a/.github/workflows/compliance.yaml b/.github/workflows/compliance.yaml index 63073d89e..7c9a1ab3d 100644 --- a/.github/workflows/compliance.yaml +++ b/.github/workflows/compliance.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Compliance Evaluation on: diff --git a/.github/workflows/docs-shim.yaml b/.github/workflows/docs-shim.yaml index f852244dd..cc6416c44 100644 --- a/.github/workflows/docs-shim.yaml +++ b/.github/workflows/docs-shim.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: CI Docs on: diff --git a/.github/workflows/lint-oscal.yaml b/.github/workflows/lint-oscal.yaml index ffc4111b3..806da851b 100644 --- a/.github/workflows/lint-oscal.yaml +++ b/.github/workflows/lint-oscal.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Lint OSCAL Files on: diff --git a/.github/workflows/nightly-testing.yaml b/.github/workflows/nightly-testing.yaml index 500b9efbf..cb7fb10c0 100644 --- a/.github/workflows/nightly-testing.yaml +++ b/.github/workflows/nightly-testing.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Nightly Testing on: diff --git a/.github/workflows/publish.yaml b/.github/workflows/publish.yaml index 21c9a2a68..3ffbaeaee 100644 --- a/.github/workflows/publish.yaml +++ b/.github/workflows/publish.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Publish UDS Core on: diff --git a/.github/workflows/pull-request-conditionals.yaml b/.github/workflows/pull-request-conditionals.yaml index 69dd6b47c..22b81fa7b 100644 --- a/.github/workflows/pull-request-conditionals.yaml +++ b/.github/workflows/pull-request-conditionals.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Filter # This workflow is triggered on pull requests diff --git a/.github/workflows/slim-dev-test.yaml b/.github/workflows/slim-dev-test.yaml index e4d12f760..b1c4e85fa 100644 --- a/.github/workflows/slim-dev-test.yaml +++ b/.github/workflows/slim-dev-test.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Slim Dev # This workflow is triggered on pull requests diff --git a/.github/workflows/snapshot-release.yaml b/.github/workflows/snapshot-release.yaml index c932797b7..caca1060b 100644 --- a/.github/workflows/snapshot-release.yaml +++ b/.github/workflows/snapshot-release.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Release UDS Core Snapshot on: diff --git a/.github/workflows/tag-and-release.yaml b/.github/workflows/tag-and-release.yaml index f0576d7e4..56d4294a7 100644 --- a/.github/workflows/tag-and-release.yaml +++ b/.github/workflows/tag-and-release.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Release UDS Core on: diff --git a/.github/workflows/test-eks.yaml b/.github/workflows/test-eks.yaml index f3c997dc7..727e35022 100644 --- a/.github/workflows/test-eks.yaml +++ b/.github/workflows/test-eks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Test Core On EKS on: diff --git a/.github/workflows/test-rke2.yaml b/.github/workflows/test-rke2.yaml index 4e8ad5e1f..8bd6480b2 100644 --- a/.github/workflows/test-rke2.yaml +++ b/.github/workflows/test-rke2.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Test Core On RKE2 on: diff --git a/.github/workflows/test-shim.yaml b/.github/workflows/test-shim.yaml index 7e2b1b362..bdc662027 100644 --- a/.github/workflows/test-shim.yaml +++ b/.github/workflows/test-shim.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Test Shim on: diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 3a87a252b..bafb1b939 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: Test packages on: diff --git a/.gitignore b/.gitignore index 75b5a663e..30014e1cd 100644 --- a/.gitignore +++ b/.gitignore @@ -6,7 +6,7 @@ build/ zarf-sbom tmp/ env.ts -node_modules +node_modules/** dist insecure* .env diff --git a/.husky/pre-commit b/.husky/pre-commit index 5427f7026..b1f1ff9d9 100755 --- a/.husky/pre-commit +++ b/.husky/pre-commit @@ -1,24 +1,35 @@ #!/usr/bin/env sh . "$(dirname -- "$0")/_/husky.sh" +echo "\nRunning YAML Lint Check" + # Run yamllint globally, which will respect the .yamllint config, including ignores yamllint -c .yamllint . --no-warnings -# Capture yamllint exit code +# Capture yamllint YAMLLINT_EXIT=$? if [ $YAMLLINT_EXIT -ne 0 ]; then - echo "\n\n❌ YAMLLint failed. Please fix the YAML issues before committing. ❌\n\n" + echo "\n❌ YAMLLint failed. Please fix the YAML issues before committing. ❌\n" exit 1 fi +echo "YAML Lint Check Passed - ✅\n" + +echo "\nRunning License Lint Check. Use \`uds run -f tasks/lint.yaml fix-license\` to resolve any issues.\n" + +# Run license linting +uds run -f tasks/lint.yaml license + +echo "\nRunning Pepr Format and Codespell Lint Checks\n" + # Run lint-staged for other linting tasks OUTPUT=$(npx lint-staged > /dev/null && echo $? || echo $?) if [ $OUTPUT -eq 0 ]; then - echo "\n\n✅ Lint Check Passed. ✅\n\n" + echo "\nAll Lints Check Passed - ✅\n" exit 0 else - echo "\n\n❌ Lint Check failed... Run \`uds run lint-fix\` to resolve issues and re-commit. ❌\n\n" + echo "❌ Pepr Format and Codespell Lint Check failed... Run \`uds run lint-fix\` to resolve issues and re-commit. ❌\n" exit 1 fi \ No newline at end of file diff --git a/CODEOWNERS b/CODEOWNERS index 80fd8b338..4b40be0c6 100644 --- a/CODEOWNERS +++ b/CODEOWNERS @@ -3,4 +3,4 @@ # Additional privileged files /CODEOWNERS @jeff-mccoy @daveworth # NOTE: No E to catch LICENSE and LICENSING -/LICENS* @jeff-mccoy @daveworth +/LICENS* @jeff-mccoy @Austen \ No newline at end of file diff --git a/bundles/k3d-slim-dev/uds-bundle.yaml b/bundles/k3d-slim-dev/uds-bundle.yaml index d16593c2d..61b7f7f92 100644 --- a/bundles/k3d-slim-dev/uds-bundle.yaml +++ b/bundles/k3d-slim-dev/uds-bundle.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: UDSBundle metadata: name: k3d-core-slim-dev diff --git a/bundles/k3d-standard/uds-bundle.yaml b/bundles/k3d-standard/uds-bundle.yaml index c08e42f1c..5f0993f14 100644 --- a/bundles/k3d-standard/uds-bundle.yaml +++ b/bundles/k3d-standard/uds-bundle.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: UDSBundle metadata: name: k3d-core-demo diff --git a/bundles/k3d-standard/uds-ha-config.yaml b/bundles/k3d-standard/uds-ha-config.yaml index 68c853ad9..018b44c01 100644 --- a/bundles/k3d-standard/uds-ha-config.yaml +++ b/bundles/k3d-standard/uds-ha-config.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variables: core: # Keycloak variables diff --git a/commitlint.config.js b/commitlint.config.js index eb5a79487..dab58d6ce 100644 --- a/commitlint.config.js +++ b/commitlint.config.js @@ -1,3 +1,6 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + module.exports = { extends: ["@commitlint/config-conventional"] }; \ No newline at end of file diff --git a/compliance/oscal-assessment-results.yaml b/compliance/oscal-assessment-results.yaml index 073bffdb6..7593fb5f2 100644 --- a/compliance/oscal-assessment-results.yaml +++ b/compliance/oscal-assessment-results.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + assessment-results: import-ap: href: "" diff --git a/compliance/oscal-component.yaml b/compliance/oscal-component.yaml index 94cb0f85f..e48e07e5c 100644 --- a/compliance/oscal-component.yaml +++ b/compliance/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: 8ef481dd-7924-42de-b426-ac300db35ec8 metadata: diff --git a/jest.setup.js b/jest.setup.js index 822f0e5ce..3d5852167 100644 --- a/jest.setup.js +++ b/jest.setup.js @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + const { K8s, kind } = require("kubernetes-fluent-client"); module.exports = async () => { diff --git a/jest.teardown.js b/jest.teardown.js index ba9bb6037..7926af39f 100644 --- a/jest.teardown.js +++ b/jest.teardown.js @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + const { K8s, kind } = require("kubernetes-fluent-client"); module.exports = async () => { diff --git a/packages/backup-restore/tasks.yaml b/packages/backup-restore/tasks.yaml index 145ecc4d9..321585dca 100644 --- a/packages/backup-restore/tasks.yaml +++ b/packages/backup-restore/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - velero: ../../src/velero/tasks.yaml diff --git a/packages/backup-restore/zarf.yaml b/packages/backup-restore/zarf.yaml index e76417b01..73cd943a8 100644 --- a/packages/backup-restore/zarf.yaml +++ b/packages/backup-restore/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-backup-restore diff --git a/packages/base/tasks.yaml b/packages/base/tasks.yaml index c1f9ee0d4..cd4defc93 100644 --- a/packages/base/tasks.yaml +++ b/packages/base/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - istio: ../../src/istio/tasks.yaml - pepr: ../../src/pepr/tasks.yaml diff --git a/packages/base/zarf.yaml b/packages/base/zarf.yaml index c7c8809cc..7389c8af5 100644 --- a/packages/base/zarf.yaml +++ b/packages/base/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-base diff --git a/packages/identity-authorization/tasks.yaml b/packages/identity-authorization/tasks.yaml index aa45acf6b..f06de22cf 100644 --- a/packages/identity-authorization/tasks.yaml +++ b/packages/identity-authorization/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - keycloak: ../../src/keycloak/tasks.yaml - authservice: ../../src/authservice/tasks.yaml diff --git a/packages/identity-authorization/zarf.yaml b/packages/identity-authorization/zarf.yaml index 76f5113d0..7cb804939 100644 --- a/packages/identity-authorization/zarf.yaml +++ b/packages/identity-authorization/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-identity-authorization diff --git a/packages/logging/tasks.yaml b/packages/logging/tasks.yaml index 83bd51774..e8d04ed1f 100644 --- a/packages/logging/tasks.yaml +++ b/packages/logging/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - loki: ../../src/loki/tasks.yaml - vector: ../../src/vector/tasks.yaml diff --git a/packages/logging/zarf.yaml b/packages/logging/zarf.yaml index 9d83f5715..f6bd0205c 100644 --- a/packages/logging/zarf.yaml +++ b/packages/logging/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-logging diff --git a/packages/metrics-server/tasks.yaml b/packages/metrics-server/tasks.yaml index 9692ae1c7..a13737dc2 100644 --- a/packages/metrics-server/tasks.yaml +++ b/packages/metrics-server/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - metrics-server: ../../src/metrics-server/tasks.yaml diff --git a/packages/metrics-server/zarf.yaml b/packages/metrics-server/zarf.yaml index 848f7d94f..6f9fd9b51 100644 --- a/packages/metrics-server/zarf.yaml +++ b/packages/metrics-server/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-metrics-server diff --git a/packages/monitoring/tasks.yaml b/packages/monitoring/tasks.yaml index 86932762f..e7c9b3bee 100644 --- a/packages/monitoring/tasks.yaml +++ b/packages/monitoring/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - prometheus: ../../src/prometheus-stack/tasks.yaml - grafana: ../../src/grafana/tasks.yaml diff --git a/packages/monitoring/zarf.yaml b/packages/monitoring/zarf.yaml index 2594f4cbb..3f5414ba0 100644 --- a/packages/monitoring/zarf.yaml +++ b/packages/monitoring/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-monitoring diff --git a/packages/runtime-security/tasks.yaml b/packages/runtime-security/tasks.yaml index 30995f848..9cf0cec0a 100644 --- a/packages/runtime-security/tasks.yaml +++ b/packages/runtime-security/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - neuvector: ../../src/neuvector/tasks.yaml diff --git a/packages/runtime-security/zarf.yaml b/packages/runtime-security/zarf.yaml index 9fe58b392..1296c148d 100644 --- a/packages/runtime-security/zarf.yaml +++ b/packages/runtime-security/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-runtime-security diff --git a/packages/standard/zarf.yaml b/packages/standard/zarf.yaml index c69d28221..82090fdf7 100644 --- a/packages/standard/zarf.yaml +++ b/packages/standard/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core diff --git a/packages/ui/tasks.yaml b/packages/ui/tasks.yaml index 93737ef31..ef2d5405a 100644 --- a/packages/ui/tasks.yaml +++ b/packages/ui/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - runtime: ../../src/runtime/tasks.yaml diff --git a/packages/ui/zarf.yaml b/packages/ui/zarf.yaml index 30c8c78a1..f7c21c97b 100644 --- a/packages/ui/zarf.yaml +++ b/packages/ui/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: core-ui diff --git a/pepr.ts b/pepr.ts index 773491727..b0403818e 100644 --- a/pepr.ts +++ b/pepr.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { PeprModule } from "pepr"; import cfg from "./package.json"; diff --git a/src/authservice/chart/Chart.yaml b/src/authservice/chart/Chart.yaml index a5de03aa0..23497aa1f 100644 --- a/src/authservice/chart/Chart.yaml +++ b/src/authservice/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: authservice description: A Helm chart for Istio Authservice diff --git a/src/authservice/chart/templates/deployment.yaml b/src/authservice/chart/templates/deployment.yaml index 9178ac02c..c75a602ec 100644 --- a/src/authservice/chart/templates/deployment.yaml +++ b/src/authservice/chart/templates/deployment.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: apps/v1 kind: Deployment metadata: diff --git a/src/authservice/chart/templates/hpa.yaml b/src/authservice/chart/templates/hpa.yaml index 8c5056844..dc12bb186 100644 --- a/src/authservice/chart/templates/hpa.yaml +++ b/src/authservice/chart/templates/hpa.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.autoscaling.enabled }} apiVersion: autoscaling/v2 kind: HorizontalPodAutoscaler diff --git a/src/authservice/chart/templates/service.yaml b/src/authservice/chart/templates/service.yaml index 8d206b363..c95d81359 100644 --- a/src/authservice/chart/templates/service.yaml +++ b/src/authservice/chart/templates/service.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/authservice/chart/templates/uds-package.yaml b/src/authservice/chart/templates/uds-package.yaml index 74fc7fd4d..acf50b428 100644 --- a/src/authservice/chart/templates/uds-package.yaml +++ b/src/authservice/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/authservice/chart/values.yaml b/src/authservice/chart/values.yaml index f3020e853..ea4e9af41 100644 --- a/src/authservice/chart/values.yaml +++ b/src/authservice/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # -- When setting this above 1, a redis configuration is required. replicaCount: 1 diff --git a/src/authservice/common/zarf.yaml b/src/authservice/common/zarf.yaml index 10247ba03..82c57392e 100644 --- a/src/authservice/common/zarf.yaml +++ b/src/authservice/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-authservice-common diff --git a/src/authservice/tasks.yaml b/src/authservice/tasks.yaml index cc5c2f0bb..06004f671 100644 --- a/src/authservice/tasks.yaml +++ b/src/authservice/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/authservice/values/registry1-values.yaml b/src/authservice/values/registry1-values.yaml index 8d852c491..96812b76b 100644 --- a/src/authservice/values/registry1-values.yaml +++ b/src/authservice/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry1.dso.mil/ironbank/istio-ecosystem/authservice tag: "1.0.2-ubi9" diff --git a/src/authservice/values/unicorn-values.yaml b/src/authservice/values/unicorn-values.yaml index cccd4b48b..8c48801c9 100644 --- a/src/authservice/values/unicorn-values.yaml +++ b/src/authservice/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: cgr.dev/du-uds-defenseunicorns/authservice-fips tag: "1.0.2" diff --git a/src/authservice/values/upstream-values.yaml b/src/authservice/values/upstream-values.yaml index ab304d56c..e8511c2b3 100644 --- a/src/authservice/values/upstream-values.yaml +++ b/src/authservice/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: ghcr.io/istio-ecosystem/authservice/authservice tag: "1.0.2" diff --git a/src/authservice/zarf.yaml b/src/authservice/zarf.yaml index e762ee70d..53a82124e 100644 --- a/src/authservice/zarf.yaml +++ b/src/authservice/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-authservice diff --git a/src/grafana/chart/Chart.yaml b/src/grafana/chart/Chart.yaml index 8a2db57e5..2b07d2451 100644 --- a/src/grafana/chart/Chart.yaml +++ b/src/grafana/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-grafana-config description: Grafana configuration for UDS diff --git a/src/grafana/chart/templates/datasources.yaml b/src/grafana/chart/templates/datasources.yaml index d2e135712..fecd5b634 100644 --- a/src/grafana/chart/templates/datasources.yaml +++ b/src/grafana/chart/templates/datasources.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: ConfigMap metadata: diff --git a/src/grafana/chart/templates/secret-postgres.yaml b/src/grafana/chart/templates/secret-postgres.yaml index c5489f38d..6aeb0ee58 100644 --- a/src/grafana/chart/templates/secret-postgres.yaml +++ b/src/grafana/chart/templates/secret-postgres.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Secret metadata: diff --git a/src/grafana/chart/templates/uds-package.yaml b/src/grafana/chart/templates/uds-package.yaml index 99d452c8d..be80115af 100644 --- a/src/grafana/chart/templates/uds-package.yaml +++ b/src/grafana/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/grafana/chart/values.yaml b/src/grafana/chart/values.yaml index 9d45a18cf..94f893ec2 100644 --- a/src/grafana/chart/values.yaml +++ b/src/grafana/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + domain: "###ZARF_VAR_DOMAIN###" # Stores Grafana's metadata, including dashboards, data sources, organizations, alerts, and other configurations. Required for HA mode. diff --git a/src/grafana/common/zarf.yaml b/src/grafana/common/zarf.yaml index 58cd8c251..b82cbe683 100644 --- a/src/grafana/common/zarf.yaml +++ b/src/grafana/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-grafana-common diff --git a/src/grafana/oscal-component.yaml b/src/grafana/oscal-component.yaml index ef99e0057..87ba1e33d 100644 --- a/src/grafana/oscal-component.yaml +++ b/src/grafana/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: 7d316238-f7c4-4d3b-ab33-6ecbf49de5a7 metadata: diff --git a/src/grafana/tasks.yaml b/src/grafana/tasks.yaml index a5e779b72..962abc8a7 100644 --- a/src/grafana/tasks.yaml +++ b/src/grafana/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/grafana/values/registry1-values.yaml b/src/grafana/values/registry1-values.yaml index 0c0a29d31..cfd61e80d 100644 --- a/src/grafana/values/registry1-values.yaml +++ b/src/grafana/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: registry: registry1.dso.mil repository: ironbank/opensource/grafana/grafana diff --git a/src/grafana/values/unicorn-values.yaml b/src/grafana/values/unicorn-values.yaml index 7e10efa2d..79970420e 100644 --- a/src/grafana/values/unicorn-values.yaml +++ b/src/grafana/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: registry: cgr.dev repository: du-uds-defenseunicorns/grafana-fips diff --git a/src/grafana/values/upstream-values.yaml b/src/grafana/values/upstream-values.yaml index a711bd8af..73f3ff340 100644 --- a/src/grafana/values/upstream-values.yaml +++ b/src/grafana/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + sidecar: image: # -- The Docker registry diff --git a/src/grafana/values/values.yaml b/src/grafana/values/values.yaml index 92ba9136c..d7056b54a 100644 --- a/src/grafana/values/values.yaml +++ b/src/grafana/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + sidecar: dashboards: enabled: true diff --git a/src/grafana/zarf.yaml b/src/grafana/zarf.yaml index 30fdc1ebb..a0fdde8c4 100644 --- a/src/grafana/zarf.yaml +++ b/src/grafana/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-grafana diff --git a/src/istio/chart/Chart.yaml b/src/istio/chart/Chart.yaml index b977ae6b4..8b1186d97 100644 --- a/src/istio/chart/Chart.yaml +++ b/src/istio/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-istio-config description: Istio configuration for UDS diff --git a/src/istio/chart/templates/gateway.yaml b/src/istio/chart/templates/gateway.yaml index f9ea55608..c14e81a74 100644 --- a/src/istio/chart/templates/gateway.yaml +++ b/src/istio/chart/templates/gateway.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- $domain := .Values.domain }} {{- if .Values.tls }} apiVersion: networking.istio.io/v1beta1 diff --git a/src/istio/chart/templates/tls-cert.yaml b/src/istio/chart/templates/tls-cert.yaml index a7023017a..0fd4f0314 100644 --- a/src/istio/chart/templates/tls-cert.yaml +++ b/src/istio/chart/templates/tls-cert.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- $tls := .Values.tls }} {{ if $tls.cert }} apiVersion: v1 diff --git a/src/istio/chart/values.yaml b/src/istio/chart/values.yaml index fb83b9401..a399181c4 100644 --- a/src/istio/chart/values.yaml +++ b/src/istio/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # The gateway name prefix name: change-me diff --git a/src/istio/common/manifests/envoy-filters.yaml b/src/istio/common/manifests/envoy-filters.yaml index fc67551f9..455f364a8 100644 --- a/src/istio/common/manifests/envoy-filters.yaml +++ b/src/istio/common/manifests/envoy-filters.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + --- # Source: istio/templates/envoyfilter.yaml apiVersion: networking.istio.io/v1alpha3 diff --git a/src/istio/common/manifests/peer-authentication.yaml b/src/istio/common/manifests/peer-authentication.yaml index 0744cfa6a..827d11bde 100644 --- a/src/istio/common/manifests/peer-authentication.yaml +++ b/src/istio/common/manifests/peer-authentication.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + --- # Source: istio/templates/bigbang/peerAuthentication.yaml apiVersion: security.istio.io/v1beta1 diff --git a/src/istio/common/manifests/pepr-istio-config.yaml b/src/istio/common/manifests/pepr-istio-config.yaml index 7b42f013c..cd6d0ae3d 100644 --- a/src/istio/common/manifests/pepr-istio-config.yaml +++ b/src/istio/common/manifests/pepr-istio-config.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Have to pre-create the namespace and also patch it with the istio-injection label later because # Helm is kind of dumb: https://github.com/helm/helm/issues/350 kind: Namespace diff --git a/src/istio/common/zarf.yaml b/src/istio/common/zarf.yaml index a0bfd30bc..681cc5e68 100644 --- a/src/istio/common/zarf.yaml +++ b/src/istio/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-istio-common diff --git a/src/istio/oscal-component.yaml b/src/istio/oscal-component.yaml index bbb8e1e66..6829f34b9 100644 --- a/src/istio/oscal-component.yaml +++ b/src/istio/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: back-matter: resources: diff --git a/src/istio/tasks.yaml b/src/istio/tasks.yaml index af2822ccd..2ccadee58 100644 --- a/src/istio/tasks.yaml +++ b/src/istio/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/istio/values/config-admin.yaml b/src/istio/values/config-admin.yaml index c2ad9aada..ceedf9cd1 100644 --- a/src/istio/values/config-admin.yaml +++ b/src/istio/values/config-admin.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: admin domain: "admin.###ZARF_VAR_DOMAIN###" tls: diff --git a/src/istio/values/config-passthrough.yaml b/src/istio/values/config-passthrough.yaml index 2df294459..6c81bac5a 100644 --- a/src/istio/values/config-passthrough.yaml +++ b/src/istio/values/config-passthrough.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: passthrough tls: diff --git a/src/istio/values/config-tenant.yaml b/src/istio/values/config-tenant.yaml index 77a05fe6e..8d6a4e96b 100644 --- a/src/istio/values/config-tenant.yaml +++ b/src/istio/values/config-tenant.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + name: tenant tls: servers: diff --git a/src/istio/values/registry1-values.yaml b/src/istio/values/registry1-values.yaml index b1a3f3108..17f229fea 100644 --- a/src/istio/values/registry1-values.yaml +++ b/src/istio/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + pilot: image: registry1.dso.mil/ironbank/tetrate/istio/pilot:1.23.2-tetratefips-v0 global: diff --git a/src/istio/values/unicorn-values.yaml b/src/istio/values/unicorn-values.yaml index dda07a5f9..4d112b8c3 100644 --- a/src/istio/values/unicorn-values.yaml +++ b/src/istio/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + pilot: image: "cgr.dev/du-uds-defenseunicorns/istio-pilot-fips:1.23.2" global: diff --git a/src/istio/values/upstream-values.yaml b/src/istio/values/upstream-values.yaml index 607956611..800d39f62 100644 --- a/src/istio/values/upstream-values.yaml +++ b/src/istio/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + pilot: image: "docker.io/istio/pilot:1.23.2-distroless" global: diff --git a/src/istio/values/values.yaml b/src/istio/values/values.yaml index 57e670543..0e06a2f26 100644 --- a/src/istio/values/values.yaml +++ b/src/istio/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + meshConfig: accessLogFile: /dev/stdout pathNormalization: diff --git a/src/istio/zarf.yaml b/src/istio/zarf.yaml index b8fa8bb78..21bae304e 100644 --- a/src/istio/zarf.yaml +++ b/src/istio/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-istio diff --git a/src/keycloak/chart/Chart.yaml b/src/keycloak/chart/Chart.yaml index 795e129f4..040ddcd78 100644 --- a/src/keycloak/chart/Chart.yaml +++ b/src/keycloak/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: keycloak # renovate: datasource=docker depName=quay.io/keycloak/keycloak versioning=semver diff --git a/src/keycloak/chart/templates/destination-rule.yaml b/src/keycloak/chart/templates/destination-rule.yaml index 6e47eaa9f..10b57d2d0 100644 --- a/src/keycloak/chart/templates/destination-rule.yaml +++ b/src/keycloak/chart/templates/destination-rule.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if not .Values.devMode }} apiVersion: networking.istio.io/v1alpha3 kind: DestinationRule diff --git a/src/keycloak/chart/templates/hpa.yaml b/src/keycloak/chart/templates/hpa.yaml index e1ee69623..17a8b7c4a 100644 --- a/src/keycloak/chart/templates/hpa.yaml +++ b/src/keycloak/chart/templates/hpa.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.autoscaling.enabled }} apiVersion: autoscaling/v2 kind: HorizontalPodAutoscaler diff --git a/src/keycloak/chart/templates/istio-admin.yaml b/src/keycloak/chart/templates/istio-admin.yaml index e6c0150d6..612e53d68 100644 --- a/src/keycloak/chart/templates/istio-admin.yaml +++ b/src/keycloak/chart/templates/istio-admin.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy diff --git a/src/keycloak/chart/templates/istio-peer-auth.yaml b/src/keycloak/chart/templates/istio-peer-auth.yaml index 055f1348e..7d8602eb3 100644 --- a/src/keycloak/chart/templates/istio-peer-auth.yaml +++ b/src/keycloak/chart/templates/istio-peer-auth.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication diff --git a/src/keycloak/chart/templates/poddisruptionbudget.yaml b/src/keycloak/chart/templates/poddisruptionbudget.yaml index 52b7b908e..0d91b54d1 100644 --- a/src/keycloak/chart/templates/poddisruptionbudget.yaml +++ b/src/keycloak/chart/templates/poddisruptionbudget.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.podDisruptionBudget -}} apiVersion: policy/v1 kind: PodDisruptionBudget diff --git a/src/keycloak/chart/templates/prometheusrule.yaml b/src/keycloak/chart/templates/prometheusrule.yaml index d6054d284..26ef5bd9e 100644 --- a/src/keycloak/chart/templates/prometheusrule.yaml +++ b/src/keycloak/chart/templates/prometheusrule.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- with .Values.prometheusRule -}} {{- if .enabled }} apiVersion: monitoring.coreos.com/v1 diff --git a/src/keycloak/chart/templates/pvc.yaml b/src/keycloak/chart/templates/pvc.yaml index aac58c906..bba13f93d 100644 --- a/src/keycloak/chart/templates/pvc.yaml +++ b/src/keycloak/chart/templates/pvc.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.persistence.providers.enabled }} kind: PersistentVolumeClaim apiVersion: v1 diff --git a/src/keycloak/chart/templates/secret-admin-password.yaml b/src/keycloak/chart/templates/secret-admin-password.yaml index a6d1c67ad..16ba00026 100644 --- a/src/keycloak/chart/templates/secret-admin-password.yaml +++ b/src/keycloak/chart/templates/secret-admin-password.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.insecureAdminPasswordGeneration.enabled }} {{- $kcPass := (randAlphaNum 32) | b64enc | quote }} {{- $kcUser := .Values.insecureAdminPasswordGeneration.username | b64enc | quote }} diff --git a/src/keycloak/chart/templates/secret-kc-realm.yaml b/src/keycloak/chart/templates/secret-kc-realm.yaml index f3b05e324..a41db2617 100644 --- a/src/keycloak/chart/templates/secret-kc-realm.yaml +++ b/src/keycloak/chart/templates/secret-kc-realm.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Secret metadata: diff --git a/src/keycloak/chart/templates/secret-postgresql.yaml b/src/keycloak/chart/templates/secret-postgresql.yaml index c2d063edb..6fc0905e0 100644 --- a/src/keycloak/chart/templates/secret-postgresql.yaml +++ b/src/keycloak/chart/templates/secret-postgresql.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if eq (include "keycloak.postgresql.config" .) "true" }} apiVersion: v1 kind: Secret diff --git a/src/keycloak/chart/templates/service-headless.yaml b/src/keycloak/chart/templates/service-headless.yaml index 61e77be3f..c85e78914 100644 --- a/src/keycloak/chart/templates/service-headless.yaml +++ b/src/keycloak/chart/templates/service-headless.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/keycloak/chart/templates/service-http.yaml b/src/keycloak/chart/templates/service-http.yaml index 8b7d8ecc5..6dd7ab485 100644 --- a/src/keycloak/chart/templates/service-http.yaml +++ b/src/keycloak/chart/templates/service-http.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/keycloak/chart/templates/servicemonitor.yaml b/src/keycloak/chart/templates/servicemonitor.yaml index 5259368b1..835284e8d 100644 --- a/src/keycloak/chart/templates/servicemonitor.yaml +++ b/src/keycloak/chart/templates/servicemonitor.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- range $key, $serviceMonitor := dict "metrics" .Values.serviceMonitor "extra" .Values.extraServiceMonitor }} {{- with $serviceMonitor }} {{- if .enabled }} diff --git a/src/keycloak/chart/templates/statefulset.yaml b/src/keycloak/chart/templates/statefulset.yaml index 738a1c1ae..ed23facc4 100644 --- a/src/keycloak/chart/templates/statefulset.yaml +++ b/src/keycloak/chart/templates/statefulset.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: apps/v1 kind: StatefulSet metadata: diff --git a/src/keycloak/chart/templates/uds-package.yaml b/src/keycloak/chart/templates/uds-package.yaml index d0e0d3a80..42bb8a9f5 100644 --- a/src/keycloak/chart/templates/uds-package.yaml +++ b/src/keycloak/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/keycloak/chart/values.yaml b/src/keycloak/chart/values.yaml index 8d546dd3a..bd1020069 100644 --- a/src/keycloak/chart/values.yaml +++ b/src/keycloak/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: # The Keycloak image repository repository: quay.io/keycloak/keycloak diff --git a/src/keycloak/common/zarf.yaml b/src/keycloak/common/zarf.yaml index 747829224..ce63c125a 100644 --- a/src/keycloak/common/zarf.yaml +++ b/src/keycloak/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-keycloak-common diff --git a/src/keycloak/tasks.yaml b/src/keycloak/tasks.yaml index 09582bfe2..8937fa0a4 100644 --- a/src/keycloak/tasks.yaml +++ b/src/keycloak/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - config: https://raw.githubusercontent.com/defenseunicorns/uds-identity-config/v0.6.3/tasks.yaml diff --git a/src/keycloak/values/registry1-values.yaml b/src/keycloak/values/registry1-values.yaml index 2e00a3230..635584579 100644 --- a/src/keycloak/values/registry1-values.yaml +++ b/src/keycloak/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry1.dso.mil/ironbank/opensource/keycloak/keycloak tag: "25.0.6" diff --git a/src/keycloak/values/unicorn-values.yaml b/src/keycloak/values/unicorn-values.yaml index 1c89141d3..32a44252e 100644 --- a/src/keycloak/values/unicorn-values.yaml +++ b/src/keycloak/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + podSecurityContext: fsGroup: 65532 image: diff --git a/src/keycloak/values/upstream-values.yaml b/src/keycloak/values/upstream-values.yaml index ef8e86b2c..c856c052f 100644 --- a/src/keycloak/values/upstream-values.yaml +++ b/src/keycloak/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + podSecurityContext: fsGroup: 1000 image: diff --git a/src/keycloak/zarf.yaml b/src/keycloak/zarf.yaml index 88c689bc0..037a18fa9 100644 --- a/src/keycloak/zarf.yaml +++ b/src/keycloak/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-keycloak diff --git a/src/kiali/tasks.yaml b/src/kiali/tasks.yaml index ab7c3e4cf..31f664e75 100644 --- a/src/kiali/tasks.yaml +++ b/src/kiali/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/kiali/zarf.yaml b/src/kiali/zarf.yaml index f4be00cf5..a2b3b0d8b 100644 --- a/src/kiali/zarf.yaml +++ b/src/kiali/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-kiali diff --git a/src/loki/chart/Chart.yaml b/src/loki/chart/Chart.yaml index 373a4b054..7bacb6262 100644 --- a/src/loki/chart/Chart.yaml +++ b/src/loki/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-loki-config description: Loki configuration for UDS diff --git a/src/loki/chart/templates/loki-dashboards.yaml b/src/loki/chart/templates/loki-dashboards.yaml index 56b293c7c..92cc07c13 100644 --- a/src/loki/chart/templates/loki-dashboards.yaml +++ b/src/loki/chart/templates/loki-dashboards.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: ConfigMap metadata: diff --git a/src/loki/chart/templates/peerauthentication/loki-simple-scalable.yaml b/src/loki/chart/templates/peerauthentication/loki-simple-scalable.yaml index 2779012da..12ac3e56b 100644 --- a/src/loki/chart/templates/peerauthentication/loki-simple-scalable.yaml +++ b/src/loki/chart/templates/peerauthentication/loki-simple-scalable.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: "security.istio.io/v1beta1" kind: PeerAuthentication diff --git a/src/loki/chart/templates/service-dns.yaml b/src/loki/chart/templates/service-dns.yaml index 2454c1030..04c0a61e8 100644 --- a/src/loki/chart/templates/service-dns.yaml +++ b/src/loki/chart/templates/service-dns.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + --- apiVersion: v1 kind: Service diff --git a/src/loki/chart/templates/uds-package.yaml b/src/loki/chart/templates/uds-package.yaml index 5adefed5a..80b87d8eb 100644 --- a/src/loki/chart/templates/uds-package.yaml +++ b/src/loki/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/loki/chart/values.yaml b/src/loki/chart/values.yaml index 3d19de62c..5ec83f081 100644 --- a/src/loki/chart/values.yaml +++ b/src/loki/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + storage: internal: enabled: false diff --git a/src/loki/common/zarf.yaml b/src/loki/common/zarf.yaml index 12def6d06..66c05553b 100644 --- a/src/loki/common/zarf.yaml +++ b/src/loki/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-loki-common diff --git a/src/loki/oscal-component.yaml b/src/loki/oscal-component.yaml index 0aaa2348a..303ade21f 100644 --- a/src/loki/oscal-component.yaml +++ b/src/loki/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: aaa97ff3-41f7-4f11-b74a-0cf0de527e6e metadata: diff --git a/src/loki/tasks.yaml b/src/loki/tasks.yaml index 90e74d34f..41b1eda6b 100644 --- a/src/loki/tasks.yaml +++ b/src/loki/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/loki/values/registry1-values.yaml b/src/loki/values/registry1-values.yaml index dbc51b71c..3618cadbd 100644 --- a/src/loki/values/registry1-values.yaml +++ b/src/loki/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + loki: image: registry: registry1.dso.mil diff --git a/src/loki/values/unicorn-values.yaml b/src/loki/values/unicorn-values.yaml index 09d6fc434..177cbe1be 100644 --- a/src/loki/values/unicorn-values.yaml +++ b/src/loki/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + loki: image: registry: cgr.dev diff --git a/src/loki/values/upstream-values.yaml b/src/loki/values/upstream-values.yaml index 167c0a164..5fbfbdd13 100644 --- a/src/loki/values/upstream-values.yaml +++ b/src/loki/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + loki: image: registry: docker.io diff --git a/src/loki/values/values.yaml b/src/loki/values/values.yaml index d16369b27..243286566 100644 --- a/src/loki/values/values.yaml +++ b/src/loki/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Sets the global DNS service to the service created in this chart global: dnsService: "uds-loki-dns" diff --git a/src/loki/zarf.yaml b/src/loki/zarf.yaml index 16fe3bc3b..25f938b86 100644 --- a/src/loki/zarf.yaml +++ b/src/loki/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-loki diff --git a/src/metrics-server/chart/Chart.yaml b/src/metrics-server/chart/Chart.yaml index 672899a77..81339062a 100644 --- a/src/metrics-server/chart/Chart.yaml +++ b/src/metrics-server/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-metrics-server-config description: Metrics Server configuration for UDS diff --git a/src/metrics-server/chart/templates/peerauthentication/metrics-api.yaml b/src/metrics-server/chart/templates/peerauthentication/metrics-api.yaml index 080bc2c67..24e4ef61c 100644 --- a/src/metrics-server/chart/templates/peerauthentication/metrics-api.yaml +++ b/src/metrics-server/chart/templates/peerauthentication/metrics-api.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication diff --git a/src/metrics-server/chart/templates/service-monitor.yaml b/src/metrics-server/chart/templates/service-monitor.yaml index 890ff2675..e636bcf66 100644 --- a/src/metrics-server/chart/templates/service-monitor.yaml +++ b/src/metrics-server/chart/templates/service-monitor.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "monitoring.coreos.com/v1" }} # The serviceMonitor for metrics-server is unique due to permissive mTLS on its port, so it is created outside of the Package spec apiVersion: monitoring.coreos.com/v1 diff --git a/src/metrics-server/chart/templates/uds-package.yaml b/src/metrics-server/chart/templates/uds-package.yaml index 712b44b4d..dfe607dab 100644 --- a/src/metrics-server/chart/templates/uds-package.yaml +++ b/src/metrics-server/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/metrics-server/chart/values.yaml b/src/metrics-server/chart/values.yaml index e69de29bb..2067cc53d 100644 --- a/src/metrics-server/chart/values.yaml +++ b/src/metrics-server/chart/values.yaml @@ -0,0 +1,2 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial diff --git a/src/metrics-server/common/zarf.yaml b/src/metrics-server/common/zarf.yaml index 7140b54a2..8eaeab1c2 100644 --- a/src/metrics-server/common/zarf.yaml +++ b/src/metrics-server/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-metrics-server-common diff --git a/src/metrics-server/tasks.yaml b/src/metrics-server/tasks.yaml index 94adbff04..c6bd4ef0f 100644 --- a/src/metrics-server/tasks.yaml +++ b/src/metrics-server/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/metrics-server/values/registry1-values.yaml b/src/metrics-server/values/registry1-values.yaml index 2da09de5e..38f843e47 100644 --- a/src/metrics-server/values/registry1-values.yaml +++ b/src/metrics-server/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry1.dso.mil/ironbank/opensource/kubernetes-sigs/metrics-server tag: "v0.7.2" diff --git a/src/metrics-server/values/unicorn-values.yaml b/src/metrics-server/values/unicorn-values.yaml index 41dc2e1eb..46a3e4be3 100644 --- a/src/metrics-server/values/unicorn-values.yaml +++ b/src/metrics-server/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: cgr.dev/du-uds-defenseunicorns/metrics-server-fips tag: "0.7.2" diff --git a/src/metrics-server/values/upstream-values.yaml b/src/metrics-server/values/upstream-values.yaml index 9f4bcf7f0..874d66b9f 100644 --- a/src/metrics-server/values/upstream-values.yaml +++ b/src/metrics-server/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry.k8s.io/metrics-server/metrics-server tag: "v0.7.2" diff --git a/src/metrics-server/values/values.yaml b/src/metrics-server/values/values.yaml index 828b306ab..e7152fcac 100644 --- a/src/metrics-server/values/values.yaml +++ b/src/metrics-server/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + readinessProbe: httpGet: path: /readyz diff --git a/src/metrics-server/zarf.yaml b/src/metrics-server/zarf.yaml index f637302f7..d91819c6b 100644 --- a/src/metrics-server/zarf.yaml +++ b/src/metrics-server/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-metrics-server diff --git a/src/neuvector/chart/Chart.yaml b/src/neuvector/chart/Chart.yaml index f606e512d..34ce1f650 100644 --- a/src/neuvector/chart/Chart.yaml +++ b/src/neuvector/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-neuvector-config description: Neuvector configuration for UDS diff --git a/src/neuvector/chart/templates/internal-cert.yaml b/src/neuvector/chart/templates/internal-cert.yaml index 1b4b2eef6..b00d4a5c0 100644 --- a/src/neuvector/chart/templates/internal-cert.yaml +++ b/src/neuvector/chart/templates/internal-cert.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.generateInternalCert -}} {{- $cn := "neuvector" }} {{- $ca := genCA "neuvector" 3650 -}} diff --git a/src/neuvector/chart/templates/istio/headless-controller-service.yaml b/src/neuvector/chart/templates/istio/headless-controller-service.yaml index c5c5b8375..f4d5211df 100644 --- a/src/neuvector/chart/templates/istio/headless-controller-service.yaml +++ b/src/neuvector/chart/templates/istio/headless-controller-service.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/neuvector/chart/templates/istio/headless-enforcer-service.yaml b/src/neuvector/chart/templates/istio/headless-enforcer-service.yaml index 18dbb3d27..487f6c448 100644 --- a/src/neuvector/chart/templates/istio/headless-enforcer-service.yaml +++ b/src/neuvector/chart/templates/istio/headless-enforcer-service.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/neuvector/chart/templates/istio/headless-scanner-service.yaml b/src/neuvector/chart/templates/istio/headless-scanner-service.yaml index cd91bc12c..26ad3043e 100644 --- a/src/neuvector/chart/templates/istio/headless-scanner-service.yaml +++ b/src/neuvector/chart/templates/istio/headless-scanner-service.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Service metadata: diff --git a/src/neuvector/chart/templates/neuvector-dashboard.yaml b/src/neuvector/chart/templates/neuvector-dashboard.yaml index b3d3a5b7e..80f839248 100644 --- a/src/neuvector/chart/templates/neuvector-dashboard.yaml +++ b/src/neuvector/chart/templates/neuvector-dashboard.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Values.grafana.enabled -}} apiVersion: v1 kind: ConfigMap diff --git a/src/neuvector/chart/templates/peerauthentication/neuvector-controller-pa.yaml b/src/neuvector/chart/templates/peerauthentication/neuvector-controller-pa.yaml index 66c8f13c6..90d91096d 100644 --- a/src/neuvector/chart/templates/peerauthentication/neuvector-controller-pa.yaml +++ b/src/neuvector/chart/templates/peerauthentication/neuvector-controller-pa.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: "security.istio.io/v1beta1" kind: PeerAuthentication diff --git a/src/neuvector/chart/templates/uds-exemption.yaml b/src/neuvector/chart/templates/uds-exemption.yaml index 7dd5a9aef..7be8143bf 100644 --- a/src/neuvector/chart/templates/uds-exemption.yaml +++ b/src/neuvector/chart/templates/uds-exemption.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/neuvector/chart/templates/uds-package.yaml b/src/neuvector/chart/templates/uds-package.yaml index 97a30c719..0644dd4f9 100644 --- a/src/neuvector/chart/templates/uds-package.yaml +++ b/src/neuvector/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/neuvector/chart/values.yaml b/src/neuvector/chart/values.yaml index 6480645ee..9c16875a1 100644 --- a/src/neuvector/chart/values.yaml +++ b/src/neuvector/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + domain: "###ZARF_VAR_DOMAIN###" grafana: diff --git a/src/neuvector/common/zarf.yaml b/src/neuvector/common/zarf.yaml index 513921c1a..730e0310f 100644 --- a/src/neuvector/common/zarf.yaml +++ b/src/neuvector/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-neuvector-common diff --git a/src/neuvector/oscal-component.yaml b/src/neuvector/oscal-component.yaml index 4836d3d9d..9d9e271fc 100644 --- a/src/neuvector/oscal-component.yaml +++ b/src/neuvector/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: 80bc0932-82d9-4144-8e7c-dec0f79e04fc metadata: diff --git a/src/neuvector/tasks.yaml b/src/neuvector/tasks.yaml index b281d6785..b5c1ad696 100644 --- a/src/neuvector/tasks.yaml +++ b/src/neuvector/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/neuvector/values/monitor-values.yaml b/src/neuvector/values/monitor-values.yaml index 0c74109bf..7f2e21aad 100644 --- a/src/neuvector/values/monitor-values.yaml +++ b/src/neuvector/values/monitor-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + leastPrivilege: true exporter: diff --git a/src/neuvector/values/registry1-values.yaml b/src/neuvector/values/registry1-values.yaml index b0dde7a6d..436d488d7 100644 --- a/src/neuvector/values/registry1-values.yaml +++ b/src/neuvector/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + registry: registry1.dso.mil # renovate: datasource=docker depName=registry1.dso.mil/ironbank/neuvector/neuvector/controller versioning=docker tag: "5.3.4" diff --git a/src/neuvector/values/unicorn-config-values.yaml b/src/neuvector/values/unicorn-config-values.yaml index d0add16a4..284d3107c 100644 --- a/src/neuvector/values/unicorn-config-values.yaml +++ b/src/neuvector/values/unicorn-config-values.yaml @@ -1,3 +1,4 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + generateInternalCert: true diff --git a/src/neuvector/values/unicorn-values.yaml b/src/neuvector/values/unicorn-values.yaml index acc912c61..f34c5c87a 100644 --- a/src/neuvector/values/unicorn-values.yaml +++ b/src/neuvector/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Generate certs missing from unicorn images autoGenerateCert: true diff --git a/src/neuvector/values/upstream-values.yaml b/src/neuvector/values/upstream-values.yaml index 68918baf0..0391ab7a2 100644 --- a/src/neuvector/values/upstream-values.yaml +++ b/src/neuvector/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + registry: docker.io # renovate: datasource=docker depName=docker.io/neuvector/controller versioning=docker tag: "5.3.4" diff --git a/src/neuvector/values/values.yaml b/src/neuvector/values/values.yaml index 99e29df14..a11c8d823 100644 --- a/src/neuvector/values/values.yaml +++ b/src/neuvector/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + leastPrivilege: true autoGenerateCert: false rbac: true diff --git a/src/neuvector/zarf.yaml b/src/neuvector/zarf.yaml index 2bdc045f7..2bb8ccc13 100644 --- a/src/neuvector/zarf.yaml +++ b/src/neuvector/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-neuvector diff --git a/src/pepr/config.ts b/src/pepr/config.ts index b4584286e..2b1198405 100644 --- a/src/pepr/config.ts +++ b/src/pepr/config.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Component, setupLogger } from "./logger"; let domain = process.env.UDS_DOMAIN; diff --git a/src/pepr/istio/index.ts b/src/pepr/istio/index.ts index 17863f140..3a105b99f 100644 --- a/src/pepr/istio/index.ts +++ b/src/pepr/istio/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Exec, KubeConfig } from "@kubernetes/client-node"; import { Capability, a } from "pepr"; import { Component, setupLogger } from "../logger"; diff --git a/src/pepr/logger.ts b/src/pepr/logger.ts index 50cdaba6f..b79ca76a5 100644 --- a/src/pepr/logger.ts +++ b/src/pepr/logger.ts @@ -1,5 +1,7 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ import { Log } from "pepr"; diff --git a/src/pepr/operator/common.ts b/src/pepr/operator/common.ts index 7a93e0ef9..713363d0f 100644 --- a/src/pepr/operator/common.ts +++ b/src/pepr/operator/common.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Capability } from "pepr"; export const operator = new Capability({ diff --git a/src/pepr/operator/controllers/exemptions/exemption-store.spec.ts b/src/pepr/operator/controllers/exemptions/exemption-store.spec.ts index faf96f491..94ccb5db3 100644 --- a/src/pepr/operator/controllers/exemptions/exemption-store.spec.ts +++ b/src/pepr/operator/controllers/exemptions/exemption-store.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeEach, describe, expect, it } from "@jest/globals"; import { Matcher, MatcherKind, Policy } from "../../crd"; import { ExemptionStore } from "./exemption-store"; diff --git a/src/pepr/operator/controllers/exemptions/exemption-store.ts b/src/pepr/operator/controllers/exemptions/exemption-store.ts index 746805b79..f32dcefac 100644 --- a/src/pepr/operator/controllers/exemptions/exemption-store.ts +++ b/src/pepr/operator/controllers/exemptions/exemption-store.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Component, setupLogger } from "../../../logger"; import { StoredMatcher } from "../../../policies"; import { Matcher, Policy, UDSExemption } from "../../crd"; diff --git a/src/pepr/operator/controllers/exemptions/exemptions.spec.ts b/src/pepr/operator/controllers/exemptions/exemptions.spec.ts index a6893359a..92556b78a 100644 --- a/src/pepr/operator/controllers/exemptions/exemptions.spec.ts +++ b/src/pepr/operator/controllers/exemptions/exemptions.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeEach, describe, expect, it } from "@jest/globals"; import { WatchPhase } from "kubernetes-fluent-client/dist/fluent/types"; import { MatcherKind, Policy } from "../../crd"; diff --git a/src/pepr/operator/controllers/exemptions/exemptions.ts b/src/pepr/operator/controllers/exemptions/exemptions.ts index 527b174ed..88d2e9d2a 100644 --- a/src/pepr/operator/controllers/exemptions/exemptions.ts +++ b/src/pepr/operator/controllers/exemptions/exemptions.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { WatchPhase } from "kubernetes-fluent-client/dist/fluent/types"; import { UDSExemption } from "../../crd"; import { ExemptionStore } from "./exemption-store"; diff --git a/src/pepr/operator/controllers/istio/injection.ts b/src/pepr/operator/controllers/istio/injection.ts index 1289363ee..4ee2971ce 100644 --- a/src/pepr/operator/controllers/istio/injection.ts +++ b/src/pepr/operator/controllers/istio/injection.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s, kind } from "pepr"; import { Component, setupLogger } from "../../../logger"; diff --git a/src/pepr/operator/controllers/istio/istio-resources.ts b/src/pepr/operator/controllers/istio/istio-resources.ts index 3a1862956..6cb7c4b2b 100644 --- a/src/pepr/operator/controllers/istio/istio-resources.ts +++ b/src/pepr/operator/controllers/istio/istio-resources.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s } from "pepr"; import { Component, setupLogger } from "../../../logger"; diff --git a/src/pepr/operator/controllers/istio/service-entry.spec.ts b/src/pepr/operator/controllers/istio/service-entry.spec.ts index c707c984e..f9724a9de 100644 --- a/src/pepr/operator/controllers/istio/service-entry.spec.ts +++ b/src/pepr/operator/controllers/istio/service-entry.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { UDSConfig } from "../../../config"; import { Expose, Gateway, IstioLocation, IstioResolution } from "../../crd"; diff --git a/src/pepr/operator/controllers/istio/service-entry.ts b/src/pepr/operator/controllers/istio/service-entry.ts index 48a04ad3e..0e049913e 100644 --- a/src/pepr/operator/controllers/istio/service-entry.ts +++ b/src/pepr/operator/controllers/istio/service-entry.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1OwnerReference } from "@kubernetes/client-node"; import { UDSConfig } from "../../../config"; import { diff --git a/src/pepr/operator/controllers/istio/virtual-service.spec.ts b/src/pepr/operator/controllers/istio/virtual-service.spec.ts index 9537481af..9d92a5f6f 100644 --- a/src/pepr/operator/controllers/istio/virtual-service.spec.ts +++ b/src/pepr/operator/controllers/istio/virtual-service.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { UDSConfig } from "../../../config"; import { Expose, Gateway } from "../../crd"; diff --git a/src/pepr/operator/controllers/istio/virtual-service.ts b/src/pepr/operator/controllers/istio/virtual-service.ts index 307cf0890..c5ecc28d1 100644 --- a/src/pepr/operator/controllers/istio/virtual-service.ts +++ b/src/pepr/operator/controllers/istio/virtual-service.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1OwnerReference } from "@kubernetes/client-node"; import { UDSConfig } from "../../../config"; import { Expose, Gateway, IstioHTTP, IstioHTTPRoute, IstioVirtualService } from "../../crd"; diff --git a/src/pepr/operator/controllers/keycloak/authservice/authorization-policy.ts b/src/pepr/operator/controllers/keycloak/authservice/authorization-policy.ts index 10e00e7a4..f818482c4 100644 --- a/src/pepr/operator/controllers/keycloak/authservice/authorization-policy.ts +++ b/src/pepr/operator/controllers/keycloak/authservice/authorization-policy.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s } from "pepr"; import { UDSConfig } from "../../../../config"; import { diff --git a/src/pepr/operator/controllers/keycloak/authservice/authservice.spec.ts b/src/pepr/operator/controllers/keycloak/authservice/authservice.spec.ts index 9c235513f..0ed1ca897 100644 --- a/src/pepr/operator/controllers/keycloak/authservice/authservice.spec.ts +++ b/src/pepr/operator/controllers/keycloak/authservice/authservice.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeEach, describe, expect, jest, test } from "@jest/globals"; import { UDSPackage } from "../../../crd"; import { Client } from "../types"; diff --git a/src/pepr/operator/controllers/keycloak/authservice/authservice.ts b/src/pepr/operator/controllers/keycloak/authservice/authservice.ts index 3359b834a..69dc30628 100644 --- a/src/pepr/operator/controllers/keycloak/authservice/authservice.ts +++ b/src/pepr/operator/controllers/keycloak/authservice/authservice.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { R } from "pepr"; import { UDSConfig } from "../../../../config"; import { Component, setupLogger } from "../../../../logger"; diff --git a/src/pepr/operator/controllers/keycloak/authservice/config.ts b/src/pepr/operator/controllers/keycloak/authservice/config.ts index 7a4b16a14..859885c5b 100644 --- a/src/pepr/operator/controllers/keycloak/authservice/config.ts +++ b/src/pepr/operator/controllers/keycloak/authservice/config.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { createHash } from "crypto"; import { K8s, kind } from "pepr"; diff --git a/src/pepr/operator/controllers/keycloak/authservice/types.ts b/src/pepr/operator/controllers/keycloak/authservice/types.ts index 32c8fb240..0b6eb3554 100644 --- a/src/pepr/operator/controllers/keycloak/authservice/types.ts +++ b/src/pepr/operator/controllers/keycloak/authservice/types.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Client } from "../types"; export enum Action { diff --git a/src/pepr/operator/controllers/keycloak/client-sync.spec.ts b/src/pepr/operator/controllers/keycloak/client-sync.spec.ts index e58ac386a..1f4892f20 100644 --- a/src/pepr/operator/controllers/keycloak/client-sync.spec.ts +++ b/src/pepr/operator/controllers/keycloak/client-sync.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { Sso } from "../../crd"; import { diff --git a/src/pepr/operator/controllers/keycloak/client-sync.ts b/src/pepr/operator/controllers/keycloak/client-sync.ts index 61528832d..3ecc9bd28 100644 --- a/src/pepr/operator/controllers/keycloak/client-sync.ts +++ b/src/pepr/operator/controllers/keycloak/client-sync.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { fetch, K8s, kind } from "pepr"; import { Component, setupLogger } from "../../../logger"; diff --git a/src/pepr/operator/controllers/keycloak/types.ts b/src/pepr/operator/controllers/keycloak/types.ts index 0fc68c7df..e9d62d138 100644 --- a/src/pepr/operator/controllers/keycloak/types.ts +++ b/src/pepr/operator/controllers/keycloak/types.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { ProtocolMapper } from "../../crd/generated/package-v1alpha1"; export interface Client { diff --git a/src/pepr/operator/controllers/monitoring/common.ts b/src/pepr/operator/controllers/monitoring/common.ts index 8ba62e6e4..be9655421 100644 --- a/src/pepr/operator/controllers/monitoring/common.ts +++ b/src/pepr/operator/controllers/monitoring/common.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Monitor } from "../../crd"; import { sanitizeResourceName } from "../utils"; diff --git a/src/pepr/operator/controllers/monitoring/pod-monitor.spec.ts b/src/pepr/operator/controllers/monitoring/pod-monitor.spec.ts index 505dc19f3..9fc200af5 100644 --- a/src/pepr/operator/controllers/monitoring/pod-monitor.spec.ts +++ b/src/pepr/operator/controllers/monitoring/pod-monitor.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { Monitor } from "../../crd"; import { generatePodMonitor } from "./pod-monitor"; diff --git a/src/pepr/operator/controllers/monitoring/pod-monitor.ts b/src/pepr/operator/controllers/monitoring/pod-monitor.ts index 57eb61b24..50e5ab756 100644 --- a/src/pepr/operator/controllers/monitoring/pod-monitor.ts +++ b/src/pepr/operator/controllers/monitoring/pod-monitor.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1OwnerReference } from "@kubernetes/client-node"; import { K8s } from "pepr"; import { Component, setupLogger } from "../../../logger"; diff --git a/src/pepr/operator/controllers/monitoring/service-monitor.spec.ts b/src/pepr/operator/controllers/monitoring/service-monitor.spec.ts index c93f39545..76282a47f 100644 --- a/src/pepr/operator/controllers/monitoring/service-monitor.spec.ts +++ b/src/pepr/operator/controllers/monitoring/service-monitor.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { Monitor } from "../../crd"; import { generateServiceMonitor } from "./service-monitor"; diff --git a/src/pepr/operator/controllers/monitoring/service-monitor.ts b/src/pepr/operator/controllers/monitoring/service-monitor.ts index eba230bcd..e582faefc 100644 --- a/src/pepr/operator/controllers/monitoring/service-monitor.ts +++ b/src/pepr/operator/controllers/monitoring/service-monitor.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s } from "pepr"; import { V1OwnerReference } from "@kubernetes/client-node"; diff --git a/src/pepr/operator/controllers/network/defaults/allow-egress-dns.ts b/src/pepr/operator/controllers/network/defaults/allow-egress-dns.ts index a75a638e9..b30c3c77b 100644 --- a/src/pepr/operator/controllers/network/defaults/allow-egress-dns.ts +++ b/src/pepr/operator/controllers/network/defaults/allow-egress-dns.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Direction } from "../../../crd"; import { generate } from "../generate"; diff --git a/src/pepr/operator/controllers/network/defaults/allow-egress-istiod.ts b/src/pepr/operator/controllers/network/defaults/allow-egress-istiod.ts index 2af26074c..17e7411aa 100644 --- a/src/pepr/operator/controllers/network/defaults/allow-egress-istiod.ts +++ b/src/pepr/operator/controllers/network/defaults/allow-egress-istiod.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Direction } from "../../../crd"; import { generate } from "../generate"; diff --git a/src/pepr/operator/controllers/network/defaults/allow-ingress-sidecar-monitoring.ts b/src/pepr/operator/controllers/network/defaults/allow-ingress-sidecar-monitoring.ts index 74089a240..878c27e35 100644 --- a/src/pepr/operator/controllers/network/defaults/allow-ingress-sidecar-monitoring.ts +++ b/src/pepr/operator/controllers/network/defaults/allow-ingress-sidecar-monitoring.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Direction } from "../../../crd"; import { generate } from "../generate"; diff --git a/src/pepr/operator/controllers/network/defaults/default-deny-all.ts b/src/pepr/operator/controllers/network/defaults/default-deny-all.ts index 80ff17d08..84d54d310 100644 --- a/src/pepr/operator/controllers/network/defaults/default-deny-all.ts +++ b/src/pepr/operator/controllers/network/defaults/default-deny-all.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { kind } from "pepr"; export function defaultDenyAll(namespace: string): kind.NetworkPolicy { diff --git a/src/pepr/operator/controllers/network/generate.spec.ts b/src/pepr/operator/controllers/network/generate.spec.ts index 6998a9bd3..495363aa7 100644 --- a/src/pepr/operator/controllers/network/generate.spec.ts +++ b/src/pepr/operator/controllers/network/generate.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { kind } from "pepr"; import { Direction } from "../../crd"; diff --git a/src/pepr/operator/controllers/network/generate.ts b/src/pepr/operator/controllers/network/generate.ts index aa4cbae2d..c46bc0b75 100644 --- a/src/pepr/operator/controllers/network/generate.ts +++ b/src/pepr/operator/controllers/network/generate.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer, V1NetworkPolicyPort } from "@kubernetes/client-node"; import { kind } from "pepr"; diff --git a/src/pepr/operator/controllers/network/generators/anywhere.ts b/src/pepr/operator/controllers/network/generators/anywhere.ts index 77689d560..c9db22318 100644 --- a/src/pepr/operator/controllers/network/generators/anywhere.ts +++ b/src/pepr/operator/controllers/network/generators/anywhere.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer } from "@kubernetes/client-node"; import { META_IP } from "./cloudMetadata"; diff --git a/src/pepr/operator/controllers/network/generators/cloudMetadata.ts b/src/pepr/operator/controllers/network/generators/cloudMetadata.ts index 54e1d4c01..b3dc4e942 100644 --- a/src/pepr/operator/controllers/network/generators/cloudMetadata.ts +++ b/src/pepr/operator/controllers/network/generators/cloudMetadata.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer } from "@kubernetes/client-node"; export const META_IP = "169.254.169.254/32"; diff --git a/src/pepr/operator/controllers/network/generators/intraNamespace.ts b/src/pepr/operator/controllers/network/generators/intraNamespace.ts index b9aa31fda..9ff89a0da 100644 --- a/src/pepr/operator/controllers/network/generators/intraNamespace.ts +++ b/src/pepr/operator/controllers/network/generators/intraNamespace.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer } from "@kubernetes/client-node"; /** Matches any pod in the namespace */ diff --git a/src/pepr/operator/controllers/network/generators/kubeAPI.ts b/src/pepr/operator/controllers/network/generators/kubeAPI.ts index 29cac86f0..30f704780 100644 --- a/src/pepr/operator/controllers/network/generators/kubeAPI.ts +++ b/src/pepr/operator/controllers/network/generators/kubeAPI.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer } from "@kubernetes/client-node"; import { K8s, kind, R } from "pepr"; diff --git a/src/pepr/operator/controllers/network/generators/remoteCidr.ts b/src/pepr/operator/controllers/network/generators/remoteCidr.ts index 09298f529..0b62bf878 100644 --- a/src/pepr/operator/controllers/network/generators/remoteCidr.ts +++ b/src/pepr/operator/controllers/network/generators/remoteCidr.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1NetworkPolicyPeer } from "@kubernetes/client-node"; import { META_IP } from "./cloudMetadata"; diff --git a/src/pepr/operator/controllers/network/policies.ts b/src/pepr/operator/controllers/network/policies.ts index 82ed04780..24a53cc88 100644 --- a/src/pepr/operator/controllers/network/policies.ts +++ b/src/pepr/operator/controllers/network/policies.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s, kind } from "pepr"; import { Component, setupLogger } from "../../../logger"; diff --git a/src/pepr/operator/controllers/utils.ts b/src/pepr/operator/controllers/utils.ts index 68cc2ac6a..9b8adf647 100644 --- a/src/pepr/operator/controllers/utils.ts +++ b/src/pepr/operator/controllers/utils.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1OwnerReference } from "@kubernetes/client-node"; import { GenericClass, GenericKind } from "kubernetes-fluent-client"; import { K8s } from "pepr"; diff --git a/src/pepr/operator/crd/generated/exemption-v1alpha1.ts b/src/pepr/operator/crd/generated/exemption-v1alpha1.ts index b3436aed3..7c22b5a1a 100644 --- a/src/pepr/operator/crd/generated/exemption-v1alpha1.ts +++ b/src/pepr/operator/crd/generated/exemption-v1alpha1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/istio/authorizationpolicy-v1beta1.ts b/src/pepr/operator/crd/generated/istio/authorizationpolicy-v1beta1.ts index 51bddc9b7..568feae88 100644 --- a/src/pepr/operator/crd/generated/istio/authorizationpolicy-v1beta1.ts +++ b/src/pepr/operator/crd/generated/istio/authorizationpolicy-v1beta1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/istio/requestauthentication-v1.ts b/src/pepr/operator/crd/generated/istio/requestauthentication-v1.ts index 07b467437..4382de250 100644 --- a/src/pepr/operator/crd/generated/istio/requestauthentication-v1.ts +++ b/src/pepr/operator/crd/generated/istio/requestauthentication-v1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/istio/serviceentry-v1beta1.ts b/src/pepr/operator/crd/generated/istio/serviceentry-v1beta1.ts index 0fc86ac9e..364daee2a 100644 --- a/src/pepr/operator/crd/generated/istio/serviceentry-v1beta1.ts +++ b/src/pepr/operator/crd/generated/istio/serviceentry-v1beta1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/istio/virtualservice-v1beta1.ts b/src/pepr/operator/crd/generated/istio/virtualservice-v1beta1.ts index 4847ee444..dd575a7ec 100644 --- a/src/pepr/operator/crd/generated/istio/virtualservice-v1beta1.ts +++ b/src/pepr/operator/crd/generated/istio/virtualservice-v1beta1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/package-v1alpha1.ts b/src/pepr/operator/crd/generated/package-v1alpha1.ts index b8a3f5753..1696c9f8d 100644 --- a/src/pepr/operator/crd/generated/package-v1alpha1.ts +++ b/src/pepr/operator/crd/generated/package-v1alpha1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/prometheus/podmonitor-v1.ts b/src/pepr/operator/crd/generated/prometheus/podmonitor-v1.ts index a6baabec0..654172626 100644 --- a/src/pepr/operator/crd/generated/prometheus/podmonitor-v1.ts +++ b/src/pepr/operator/crd/generated/prometheus/podmonitor-v1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/generated/prometheus/servicemonitor-v1.ts b/src/pepr/operator/crd/generated/prometheus/servicemonitor-v1.ts index 667733e9b..3acf678e8 100644 --- a/src/pepr/operator/crd/generated/prometheus/servicemonitor-v1.ts +++ b/src/pepr/operator/crd/generated/prometheus/servicemonitor-v1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // This file is auto-generated by kubernetes-fluent-client, do not edit manually import { GenericKind, RegisterKind } from "kubernetes-fluent-client"; diff --git a/src/pepr/operator/crd/index.ts b/src/pepr/operator/crd/index.ts index ccdf5730b..ee4603e00 100644 --- a/src/pepr/operator/crd/index.ts +++ b/src/pepr/operator/crd/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + export { Allow, Direction, diff --git a/src/pepr/operator/crd/migrate.ts b/src/pepr/operator/crd/migrate.ts index 06bde71fb..bb8e8bb23 100644 --- a/src/pepr/operator/crd/migrate.ts +++ b/src/pepr/operator/crd/migrate.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { UDSPackage } from "."; /** diff --git a/src/pepr/operator/crd/register.ts b/src/pepr/operator/crd/register.ts index 1f9e9740d..7be968e71 100644 --- a/src/pepr/operator/crd/register.ts +++ b/src/pepr/operator/crd/register.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s, kind } from "pepr"; import { Component, setupLogger } from "../../logger"; diff --git a/src/pepr/operator/crd/sources/exemption/v1alpha1.ts b/src/pepr/operator/crd/sources/exemption/v1alpha1.ts index 32e3bf1be..f9ab19404 100644 --- a/src/pepr/operator/crd/sources/exemption/v1alpha1.ts +++ b/src/pepr/operator/crd/sources/exemption/v1alpha1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1CustomResourceDefinitionVersion, V1JSONSchemaProps } from "@kubernetes/client-node"; export const v1alpha1: V1CustomResourceDefinitionVersion = { diff --git a/src/pepr/operator/crd/sources/istio/virtualservice-v1beta1.ts b/src/pepr/operator/crd/sources/istio/virtualservice-v1beta1.ts index b09812fb6..d32c97b35 100644 --- a/src/pepr/operator/crd/sources/istio/virtualservice-v1beta1.ts +++ b/src/pepr/operator/crd/sources/istio/virtualservice-v1beta1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1JSONSchemaProps } from "@kubernetes/client-node"; const matchRequired = [{ required: ["exact"] }, { required: ["prefix"] }, { required: ["regex"] }]; diff --git a/src/pepr/operator/crd/sources/package/v1alpha1.ts b/src/pepr/operator/crd/sources/package/v1alpha1.ts index d714e8022..3b36df0a6 100644 --- a/src/pepr/operator/crd/sources/package/v1alpha1.ts +++ b/src/pepr/operator/crd/sources/package/v1alpha1.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { V1CustomResourceDefinitionVersion, V1JSONSchemaProps } from "@kubernetes/client-node"; import { advancedHTTP } from "../istio/virtualservice-v1beta1"; diff --git a/src/pepr/operator/crd/validators/exempt-validator.spec.ts b/src/pepr/operator/crd/validators/exempt-validator.spec.ts index 85a51b2a1..166d4f627 100644 --- a/src/pepr/operator/crd/validators/exempt-validator.spec.ts +++ b/src/pepr/operator/crd/validators/exempt-validator.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { afterEach, describe, expect, it, jest } from "@jest/globals"; import { PeprValidateRequest } from "pepr"; import { MatcherKind, UDSExemption } from ".."; diff --git a/src/pepr/operator/crd/validators/exempt-validator.ts b/src/pepr/operator/crd/validators/exempt-validator.ts index 2e2c801d6..f725c16ef 100644 --- a/src/pepr/operator/crd/validators/exempt-validator.ts +++ b/src/pepr/operator/crd/validators/exempt-validator.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { PeprValidateRequest } from "pepr"; import { MatcherKind, Policy, UDSExemption } from ".."; import { UDSConfig } from "../../../config"; diff --git a/src/pepr/operator/crd/validators/package-validator.spec.ts b/src/pepr/operator/crd/validators/package-validator.spec.ts index 94a8eb148..379e16e74 100644 --- a/src/pepr/operator/crd/validators/package-validator.spec.ts +++ b/src/pepr/operator/crd/validators/package-validator.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { afterEach, describe, expect, it, jest } from "@jest/globals"; import { PeprValidateRequest } from "pepr"; import { Allow, Direction, Expose, Gateway, Protocol, RemoteGenerated, Sso, UDSPackage } from ".."; diff --git a/src/pepr/operator/crd/validators/package-validator.ts b/src/pepr/operator/crd/validators/package-validator.ts index 8a62926a2..bc04e810a 100644 --- a/src/pepr/operator/crd/validators/package-validator.ts +++ b/src/pepr/operator/crd/validators/package-validator.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { PeprValidateRequest } from "pepr"; import { Gateway, Protocol, UDSPackage } from ".."; diff --git a/src/pepr/operator/index.ts b/src/pepr/operator/index.ts index 50636a100..23c7510ee 100644 --- a/src/pepr/operator/index.ts +++ b/src/pepr/operator/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // Common imports import { a } from "pepr"; import { When } from "./common"; diff --git a/src/pepr/operator/reconcilers/index.spec.ts b/src/pepr/operator/reconcilers/index.spec.ts index 329918e41..054d99782 100644 --- a/src/pepr/operator/reconcilers/index.spec.ts +++ b/src/pepr/operator/reconcilers/index.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeEach, describe, expect, it, jest } from "@jest/globals"; import { GenericKind } from "kubernetes-fluent-client"; import { K8s, Log, kind } from "pepr"; diff --git a/src/pepr/operator/reconcilers/index.ts b/src/pepr/operator/reconcilers/index.ts index 442bc8241..6466c84d7 100644 --- a/src/pepr/operator/reconcilers/index.ts +++ b/src/pepr/operator/reconcilers/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { K8s, kind } from "pepr"; import { Component, setupLogger } from "../../logger"; diff --git a/src/pepr/operator/reconcilers/package-reconciler.spec.ts b/src/pepr/operator/reconcilers/package-reconciler.spec.ts index 0769e6ffb..bb8a8c843 100644 --- a/src/pepr/operator/reconcilers/package-reconciler.spec.ts +++ b/src/pepr/operator/reconcilers/package-reconciler.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeEach, describe, expect, jest, test } from "@jest/globals"; import { K8s, Log } from "pepr"; diff --git a/src/pepr/operator/reconcilers/package-reconciler.ts b/src/pepr/operator/reconcilers/package-reconciler.ts index 1577f0171..e60e39150 100644 --- a/src/pepr/operator/reconcilers/package-reconciler.ts +++ b/src/pepr/operator/reconcilers/package-reconciler.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { handleFailure, shouldSkip, updateStatus, writeEvent } from "."; import { UDSConfig } from "../../config"; import { Component, setupLogger } from "../../logger"; diff --git a/src/pepr/policies/common.ts b/src/pepr/policies/common.ts index aefdb7aa7..fb7a91331 100644 --- a/src/pepr/policies/common.ts +++ b/src/pepr/policies/common.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { KubernetesObject, V1Container, V1SecurityContext } from "@kubernetes/client-node"; import { Capability, PeprMutateRequest, PeprValidateRequest, a } from "pepr"; import { Policy } from "../operator/crd"; diff --git a/src/pepr/policies/exemptions/index.spec.ts b/src/pepr/policies/exemptions/index.spec.ts index 33dd03314..e81850ed5 100644 --- a/src/pepr/policies/exemptions/index.spec.ts +++ b/src/pepr/policies/exemptions/index.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { beforeAll, describe, expect, it, jest } from "@jest/globals"; import { PeprValidateRequest, kind } from "pepr"; import { isExempt } from "."; diff --git a/src/pepr/policies/exemptions/index.ts b/src/pepr/policies/exemptions/index.ts index f85dd4578..08a89fb74 100644 --- a/src/pepr/policies/exemptions/index.ts +++ b/src/pepr/policies/exemptions/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { KubernetesObject } from "kubernetes-fluent-client"; import { PeprMutateRequest, PeprValidateRequest } from "pepr"; import { Component, setupLogger } from "../../logger"; diff --git a/src/pepr/policies/index.ts b/src/pepr/policies/index.ts index e1566cee0..a0561c302 100644 --- a/src/pepr/policies/index.ts +++ b/src/pepr/policies/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + // Various validation actions for Kubernetes resources from Big Bang import { WatchCfg } from "kubernetes-fluent-client"; import { K8s } from "pepr"; diff --git a/src/pepr/policies/network.spec.ts b/src/pepr/policies/network.spec.ts index db3b1027b..6b5479d51 100644 --- a/src/pepr/policies/network.spec.ts +++ b/src/pepr/policies/network.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { K8s, kind } from "pepr"; diff --git a/src/pepr/policies/networking.ts b/src/pepr/policies/networking.ts index 40f245dd1..fcf02297a 100644 --- a/src/pepr/policies/networking.ts +++ b/src/pepr/policies/networking.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { a } from "pepr"; import { Policy } from "../operator/crd"; diff --git a/src/pepr/policies/security.spec.ts b/src/pepr/policies/security.spec.ts index 97887a18f..a48e162dd 100644 --- a/src/pepr/policies/security.spec.ts +++ b/src/pepr/policies/security.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { K8s, kind } from "pepr"; diff --git a/src/pepr/policies/security.ts b/src/pepr/policies/security.ts index e66ef9496..75d52908d 100644 --- a/src/pepr/policies/security.ts +++ b/src/pepr/policies/security.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { a } from "pepr"; import { V1SecurityContext } from "@kubernetes/client-node"; diff --git a/src/pepr/policies/storage.spec.ts b/src/pepr/policies/storage.spec.ts index f526ca910..231951b87 100644 --- a/src/pepr/policies/storage.spec.ts +++ b/src/pepr/policies/storage.spec.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { describe, expect, it } from "@jest/globals"; import { K8s, kind } from "pepr"; diff --git a/src/pepr/policies/storage.ts b/src/pepr/policies/storage.ts index 114f80b3b..f04efd483 100644 --- a/src/pepr/policies/storage.ts +++ b/src/pepr/policies/storage.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { a } from "pepr"; import { Policy } from "../operator/crd"; diff --git a/src/pepr/prometheus/index.ts b/src/pepr/prometheus/index.ts index 27a06ecac..cb06542b4 100644 --- a/src/pepr/prometheus/index.ts +++ b/src/pepr/prometheus/index.ts @@ -1,5 +1,8 @@ -// Copyright 2024 Defense Unicorns -// SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial +/** + * Copyright 2024 Defense Unicorns + * SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + */ + import { Capability, K8s, kind } from "pepr"; import { Component, setupLogger } from "../logger"; import { diff --git a/src/pepr/tasks.yaml b/src/pepr/tasks.yaml index 673b3d587..15f3e123f 100644 --- a/src/pepr/tasks.yaml +++ b/src/pepr/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/pepr/uds-operator-config/Chart.yaml b/src/pepr/uds-operator-config/Chart.yaml index 3c0ef126f..787490c85 100644 --- a/src/pepr/uds-operator-config/Chart.yaml +++ b/src/pepr/uds-operator-config/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-operator-config description: UDS Core configuration for UDS Operator diff --git a/src/pepr/uds-operator-config/templates/secret.yaml b/src/pepr/uds-operator-config/templates/secret.yaml index 3bc92320a..6bb2c0c30 100644 --- a/src/pepr/uds-operator-config/templates/secret.yaml +++ b/src/pepr/uds-operator-config/templates/secret.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Secret metadata: diff --git a/src/pepr/uds-operator-config/values.yaml b/src/pepr/uds-operator-config/values.yaml index fd3bc3db6..17197d87d 100644 --- a/src/pepr/uds-operator-config/values.yaml +++ b/src/pepr/uds-operator-config/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + operator: UDS_DOMAIN: "###ZARF_VAR_DOMAIN###" UDS_CA_CERT: "###ZARF_VAR_CA_CERT###" diff --git a/src/pepr/values.yaml b/src/pepr/values.yaml index 572b01db9..d6630a25b 100644 --- a/src/pepr/values.yaml +++ b/src/pepr/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + watcher: serviceMonitor: enabled: ###ZARF_VAR_PEPR_SERVICE_MONITORS### diff --git a/src/pepr/zarf.yaml b/src/pepr/zarf.yaml index f85257e6e..57a5264bf 100644 --- a/src/pepr/zarf.yaml +++ b/src/pepr/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: pepr-uds-core diff --git a/src/prometheus-stack/chart/Chart.yaml b/src/prometheus-stack/chart/Chart.yaml index 6a4135857..9a6487cab 100644 --- a/src/prometheus-stack/chart/Chart.yaml +++ b/src/prometheus-stack/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-prometheus-config description: Prometheus stack configuration for UDS diff --git a/src/prometheus-stack/chart/templates/istio-monitor.yaml b/src/prometheus-stack/chart/templates/istio-monitor.yaml index 561f85e13..674346d35 100644 --- a/src/prometheus-stack/chart/templates/istio-monitor.yaml +++ b/src/prometheus-stack/chart/templates/istio-monitor.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # This podmonitor will pick up envoy stats for all Istio sidecars across the cluster apiVersion: monitoring.coreos.com/v1 kind: PodMonitor diff --git a/src/prometheus-stack/chart/templates/peerauthentication/prometheus-operator-pa.yaml b/src/prometheus-stack/chart/templates/peerauthentication/prometheus-operator-pa.yaml index 42a169946..45b36d696 100644 --- a/src/prometheus-stack/chart/templates/peerauthentication/prometheus-operator-pa.yaml +++ b/src/prometheus-stack/chart/templates/peerauthentication/prometheus-operator-pa.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + {{- if .Capabilities.APIVersions.Has "security.istio.io/v1beta1" }} apiVersion: "security.istio.io/v1beta1" kind: PeerAuthentication diff --git a/src/prometheus-stack/chart/templates/prometheus-pod-monitor.yaml b/src/prometheus-stack/chart/templates/prometheus-pod-monitor.yaml index 1abb1f66e..e9ea8bb10 100644 --- a/src/prometheus-stack/chart/templates/prometheus-pod-monitor.yaml +++ b/src/prometheus-stack/chart/templates/prometheus-pod-monitor.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # This pod monitor is used instead of a service monitor to handle mTLS with self-monitoring apiVersion: monitoring.coreos.com/v1 kind: PodMonitor diff --git a/src/prometheus-stack/chart/templates/uds-exemption.yaml b/src/prometheus-stack/chart/templates/uds-exemption.yaml index 398e3a88c..ffb1df745 100644 --- a/src/prometheus-stack/chart/templates/uds-exemption.yaml +++ b/src/prometheus-stack/chart/templates/uds-exemption.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/prometheus-stack/chart/templates/uds-package.yaml b/src/prometheus-stack/chart/templates/uds-package.yaml index aae1f7f76..fd049e994 100644 --- a/src/prometheus-stack/chart/templates/uds-package.yaml +++ b/src/prometheus-stack/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/prometheus-stack/chart/values.yaml b/src/prometheus-stack/chart/values.yaml index e69de29bb..2067cc53d 100644 --- a/src/prometheus-stack/chart/values.yaml +++ b/src/prometheus-stack/chart/values.yaml @@ -0,0 +1,2 @@ +# Copyright 2024 Defense Unicorns +# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial diff --git a/src/prometheus-stack/common/zarf.yaml b/src/prometheus-stack/common/zarf.yaml index 23cdc0b86..ed60e79f8 100644 --- a/src/prometheus-stack/common/zarf.yaml +++ b/src/prometheus-stack/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-prometheus-stack-common diff --git a/src/prometheus-stack/oscal-component.yaml b/src/prometheus-stack/oscal-component.yaml index 575874b3f..0bf34cbf4 100644 --- a/src/prometheus-stack/oscal-component.yaml +++ b/src/prometheus-stack/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: 017dbd45-5122-4c11-b5ce-d4b31116c581 metadata: diff --git a/src/prometheus-stack/tasks.yaml b/src/prometheus-stack/tasks.yaml index 00b3c309b..f71e3624e 100644 --- a/src/prometheus-stack/tasks.yaml +++ b/src/prometheus-stack/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/prometheus-stack/values/crd-values.yaml b/src/prometheus-stack/values/crd-values.yaml index 3ee4fa258..bb4bd672d 100644 --- a/src/prometheus-stack/values/crd-values.yaml +++ b/src/prometheus-stack/values/crd-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + ## Annotations for CRDs crds: annotations: {} diff --git a/src/prometheus-stack/values/registry1-values.yaml b/src/prometheus-stack/values/registry1-values.yaml index 9ee7c3329..2515c2eba 100644 --- a/src/prometheus-stack/values/registry1-values.yaml +++ b/src/prometheus-stack/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + alertmanager: alertmanagerSpec: image: diff --git a/src/prometheus-stack/values/unicorn-values.yaml b/src/prometheus-stack/values/unicorn-values.yaml index 5e21304ed..7035a9cb2 100644 --- a/src/prometheus-stack/values/unicorn-values.yaml +++ b/src/prometheus-stack/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + alertmanager: alertmanagerSpec: image: diff --git a/src/prometheus-stack/values/upstream-values.yaml b/src/prometheus-stack/values/upstream-values.yaml index 2b3e284c6..ef4286956 100644 --- a/src/prometheus-stack/values/upstream-values.yaml +++ b/src/prometheus-stack/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + alertmanager: alertmanagerSpec: image: diff --git a/src/prometheus-stack/values/values.yaml b/src/prometheus-stack/values/values.yaml index 33bb4d76d..216b6c78c 100644 --- a/src/prometheus-stack/values/values.yaml +++ b/src/prometheus-stack/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + crds: enabled: false grafana: diff --git a/src/prometheus-stack/zarf.yaml b/src/prometheus-stack/zarf.yaml index ad0285f91..d6a8e1a86 100644 --- a/src/prometheus-stack/zarf.yaml +++ b/src/prometheus-stack/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-prometheus-stack diff --git a/src/runtime/tasks.yaml b/src/runtime/tasks.yaml index 5bbe48b3f..c07ea9314 100644 --- a/src/runtime/tasks.yaml +++ b/src/runtime/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/runtime/zarf.yaml b/src/runtime/zarf.yaml index f7699c7f7..dd33fb982 100644 --- a/src/runtime/zarf.yaml +++ b/src/runtime/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-runtime diff --git a/src/tempo/tasks.yaml b/src/tempo/tasks.yaml index ab7c3e4cf..31f664e75 100644 --- a/src/tempo/tasks.yaml +++ b/src/tempo/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/tempo/zarf.yaml b/src/tempo/zarf.yaml index c2e46979d..cf41f93c3 100644 --- a/src/tempo/zarf.yaml +++ b/src/tempo/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-tempo diff --git a/src/test/app-admin.yaml b/src/test/app-admin.yaml index 937221727..81bfecb2a 100644 --- a/src/test/app-admin.yaml +++ b/src/test/app-admin.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Namespace metadata: diff --git a/src/test/app-authservice-tenant.yaml b/src/test/app-authservice-tenant.yaml index ba8c40051..dcca00954 100644 --- a/src/test/app-authservice-tenant.yaml +++ b/src/test/app-authservice-tenant.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Namespace metadata: diff --git a/src/test/app-tenant.yaml b/src/test/app-tenant.yaml index e7ab06e71..e377cd25e 100644 --- a/src/test/app-tenant.yaml +++ b/src/test/app-tenant.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v1 kind: Namespace metadata: diff --git a/src/test/chart/Chart.yaml b/src/test/chart/Chart.yaml index 69ed6b27b..f7eefefca 100644 --- a/src/test/chart/Chart.yaml +++ b/src/test/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-podinfo-config description: A Helm chart for testing an exempted-app diff --git a/src/test/chart/templates/exemption1.yaml b/src/test/chart/templates/exemption1.yaml index 2f8262a81..25ae7d346 100644 --- a/src/test/chart/templates/exemption1.yaml +++ b/src/test/chart/templates/exemption1.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/test/chart/templates/exemption2.yaml b/src/test/chart/templates/exemption2.yaml index 6de6ff956..b3dd9d30c 100644 --- a/src/test/chart/templates/exemption2.yaml +++ b/src/test/chart/templates/exemption2.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/test/chart/templates/exemption3.yaml b/src/test/chart/templates/exemption3.yaml index fb862af71..a3a01ca18 100644 --- a/src/test/chart/templates/exemption3.yaml +++ b/src/test/chart/templates/exemption3.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/test/chart/templates/exemption4.yaml b/src/test/chart/templates/exemption4.yaml index 716f2da3c..29797a723 100644 --- a/src/test/chart/templates/exemption4.yaml +++ b/src/test/chart/templates/exemption4.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/test/chart/templates/exemption5.yaml b/src/test/chart/templates/exemption5.yaml index 8609e35d5..25d080889 100644 --- a/src/test/chart/templates/exemption5.yaml +++ b/src/test/chart/templates/exemption5.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/test/chart/templates/package.yaml b/src/test/chart/templates/package.yaml index 1ecbb9024..c9fa7b778 100644 --- a/src/test/chart/templates/package.yaml +++ b/src/test/chart/templates/package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/test/podinfo-values.yaml b/src/test/podinfo-values.yaml index b0d579582..1dc56093d 100644 --- a/src/test/podinfo-values.yaml +++ b/src/test/podinfo-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Values set to intentionally violate pepr policies securityContext: runAsUser: 0 diff --git a/src/test/tasks.yaml b/src/test/tasks.yaml index 6974f1835..080ccdc2e 100644 --- a/src/test/tasks.yaml +++ b/src/test/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate description: Test app used for UDS Core validation diff --git a/src/test/zarf.yaml b/src/test/zarf.yaml index 9b1da3c4b..90195beae 100644 --- a/src/test/zarf.yaml +++ b/src/test/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-test-apps diff --git a/src/vector/chart/Chart.yaml b/src/vector/chart/Chart.yaml index 127f5993a..c620cf6fa 100644 --- a/src/vector/chart/Chart.yaml +++ b/src/vector/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-vector-config description: Vector configuration for UDS diff --git a/src/vector/chart/templates/uds-exemption.yaml b/src/vector/chart/templates/uds-exemption.yaml index 0f950b0c9..c78054815 100644 --- a/src/vector/chart/templates/uds-exemption.yaml +++ b/src/vector/chart/templates/uds-exemption.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Exemption metadata: diff --git a/src/vector/chart/templates/uds-package.yaml b/src/vector/chart/templates/uds-package.yaml index 330b5ad13..e4ac9d9c9 100644 --- a/src/vector/chart/templates/uds-package.yaml +++ b/src/vector/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/vector/chart/values.yaml b/src/vector/chart/values.yaml index 54fe8e5b3..c4bf61c2a 100644 --- a/src/vector/chart/values.yaml +++ b/src/vector/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + additionalNetworkAllow: [] # Examples: # - direction: Egress diff --git a/src/vector/common/zarf.yaml b/src/vector/common/zarf.yaml index dee368f28..631dce2c9 100644 --- a/src/vector/common/zarf.yaml +++ b/src/vector/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-vector-common diff --git a/src/vector/oscal-component.yaml b/src/vector/oscal-component.yaml index 0ee90d65a..6a3eb7bc3 100644 --- a/src/vector/oscal-component.yaml +++ b/src/vector/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: ff959bdb-7be9-49b3-9dc2-c41b34e7017d metadata: diff --git a/src/vector/tasks.yaml b/src/vector/tasks.yaml index 0afb98ef4..f044c85d5 100644 --- a/src/vector/tasks.yaml +++ b/src/vector/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/vector/values/registry1-values.yaml b/src/vector/values/registry1-values.yaml index acec1e706..95187afb4 100644 --- a/src/vector/values/registry1-values.yaml +++ b/src/vector/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry1.dso.mil/ironbank/opensource/timberio/vector tag: 0.41.1 diff --git a/src/vector/values/unicorn-values.yaml b/src/vector/values/unicorn-values.yaml index 6c424e865..5a6d40405 100644 --- a/src/vector/values/unicorn-values.yaml +++ b/src/vector/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: cgr.dev/du-uds-defenseunicorns/vector tag: 0.41.1 diff --git a/src/vector/values/upstream-values.yaml b/src/vector/values/upstream-values.yaml index c483095db..8954e9d7d 100644 --- a/src/vector/values/upstream-values.yaml +++ b/src/vector/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: timberio/vector tag: 0.41.1-distroless-static diff --git a/src/vector/values/values.yaml b/src/vector/values/values.yaml index 2c2c9de7a..aff279fe7 100644 --- a/src/vector/values/values.yaml +++ b/src/vector/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Run as an agent daemonset role: "Agent" diff --git a/src/vector/zarf.yaml b/src/vector/zarf.yaml index 0accaacec..4a6b4da8c 100644 --- a/src/vector/zarf.yaml +++ b/src/vector/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-vector diff --git a/src/velero/chart/Chart.yaml b/src/velero/chart/Chart.yaml index 968fbbba9..291b632a8 100644 --- a/src/velero/chart/Chart.yaml +++ b/src/velero/chart/Chart.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: v2 name: uds-velero-config description: Velero configuration for UDS diff --git a/src/velero/chart/templates/uds-package.yaml b/src/velero/chart/templates/uds-package.yaml index 47de74ea6..c096f7222 100644 --- a/src/velero/chart/templates/uds-package.yaml +++ b/src/velero/chart/templates/uds-package.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + apiVersion: uds.dev/v1alpha1 kind: Package metadata: diff --git a/src/velero/chart/values.yaml b/src/velero/chart/values.yaml index 3d19de62c..5ec83f081 100644 --- a/src/velero/chart/values.yaml +++ b/src/velero/chart/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + storage: internal: enabled: false diff --git a/src/velero/common/zarf.yaml b/src/velero/common/zarf.yaml index 741323e41..ca0d88458 100644 --- a/src/velero/common/zarf.yaml +++ b/src/velero/common/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-velero-common diff --git a/src/velero/oscal-component.yaml b/src/velero/oscal-component.yaml index 95251ff9e..4d149c77b 100644 --- a/src/velero/oscal-component.yaml +++ b/src/velero/oscal-component.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + component-definition: uuid: D73CF4E6-D893-4BDE-A195-C4DE782DF63B metadata: diff --git a/src/velero/tasks.yaml b/src/velero/tasks.yaml index 727bba3b1..9a27a47e9 100644 --- a/src/velero/tasks.yaml +++ b/src/velero/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: validate actions: diff --git a/src/velero/values/registry1-values.yaml b/src/velero/values/registry1-values.yaml index a861a4176..07357ca8d 100644 --- a/src/velero/values/registry1-values.yaml +++ b/src/velero/values/registry1-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: registry1.dso.mil/ironbank/opensource/velero/velero tag: v1.14.1 diff --git a/src/velero/values/unicorn-values.yaml b/src/velero/values/unicorn-values.yaml index bad19c684..68c72a20e 100644 --- a/src/velero/values/unicorn-values.yaml +++ b/src/velero/values/unicorn-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: cgr.dev/du-uds-defenseunicorns/velero-fips tag: 1.14.1-dev diff --git a/src/velero/values/upstream-values.yaml b/src/velero/values/upstream-values.yaml index 7346283f9..8b7cd9fe6 100644 --- a/src/velero/values/upstream-values.yaml +++ b/src/velero/values/upstream-values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + image: repository: velero/velero tag: v1.14.1 diff --git a/src/velero/values/values.yaml b/src/velero/values/values.yaml index dfd9e45c0..1cbe8d9a3 100644 --- a/src/velero/values/values.yaml +++ b/src/velero/values/values.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + credentials: useSecret: true name: "velero-bucket-credentials" diff --git a/src/velero/zarf.yaml b/src/velero/zarf.yaml index bfe54baa7..4814bc8dc 100644 --- a/src/velero/zarf.yaml +++ b/src/velero/zarf.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + kind: ZarfPackageConfig metadata: name: uds-core-velero diff --git a/tasks.yaml b/tasks.yaml index edd6a127c..5405c3118 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variables: - name: FLAVOR default: upstream diff --git a/tasks/create.yaml b/tasks/create.yaml index 84a2a3c3f..248cbbb18 100644 --- a/tasks/create.yaml +++ b/tasks/create.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - common: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.0.0/tasks/create.yaml diff --git a/tasks/deploy.yaml b/tasks/deploy.yaml index b5a06c121..5c5d83d5c 100644 --- a/tasks/deploy.yaml +++ b/tasks/deploy.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - utils: utils.yaml diff --git a/tasks/iac.yaml b/tasks/iac.yaml index dab156a2c..8c13e5ffe 100644 --- a/tasks/iac.yaml +++ b/tasks/iac.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variables: - name: CLUSTER_NAME - name: K8S_DISTRO diff --git a/tasks/lint.yaml b/tasks/lint.yaml index 2534d874b..f5702ee1c 100644 --- a/tasks/lint.yaml +++ b/tasks/lint.yaml @@ -1,8 +1,9 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - - remote: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.0.0/tasks/lint.yaml + - remote: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.1.0/tasks/lint.yaml tasks: - name: fix @@ -35,3 +36,13 @@ tasks: actions: - description: Lula Lint OSCAL task: remote:oscal + + - name: license + actions: + - description: Lint for the SPDX license identifier being in source files + task: remote:license + + - name: fix-license + actions: + - description: Add the SPDX license identifier to source files + task: remote:fix-license diff --git a/tasks/publish.yaml b/tasks/publish.yaml index bccd4b8e4..97441d4f4 100644 --- a/tasks/publish.yaml +++ b/tasks/publish.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - utils: utils.yaml - test: test.yaml diff --git a/tasks/setup.yaml b/tasks/setup.yaml index 218ddf1f4..6bed84f72 100644 --- a/tasks/setup.yaml +++ b/tasks/setup.yaml @@ -1,6 +1,7 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + tasks: - name: create-k3d-cluster actions: diff --git a/tasks/test.yaml b/tasks/test.yaml index b8ee306ec..449fddbf2 100644 --- a/tasks/test.yaml +++ b/tasks/test.yaml @@ -1,11 +1,12 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + includes: - create: ./create.yaml - setup: ./setup.yaml - deploy: ./deploy.yaml - - compliance: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.0.0/tasks/compliance.yaml + - compliance: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.1.0/tasks/compliance.yaml - base-layer: ../packages/base/tasks.yaml tasks: diff --git a/tasks/utils.yaml b/tasks/utils.yaml index e16cf4a41..298551e72 100644 --- a/tasks/utils.yaml +++ b/tasks/utils.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + variables: - name: BASE_REPO default: "ghcr.io/defenseunicorns/packages" diff --git a/zarf-config.yaml b/zarf-config.yaml index 3f217b9eb..1e942db6a 100644 --- a/zarf-config.yaml +++ b/zarf-config.yaml @@ -1,5 +1,6 @@ # Copyright 2024 Defense Unicorns # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial + # Disable until UDS CLI isn't super noisy no_progress: true