Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backup additional resources #5224

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Backup additional resources #5224

wants to merge 1 commit into from
+6 −0

Conversation

gbenhaim
Copy link
Member

@gbenhaim gbenhaim commented Jan 5, 2025

Add additional resources to the backup as follows:

  1. rolebindings - users a allowed to create role binding for their service account. In addition, in clusters that doesn't use kubesaw, rolebindings are used for granting permissions to users.

  2. imagerepositories - the ImageRepository resources is created by the UI when onboarding a new component, thus it should be backed up as well.

  3. repositories - the Tekton repository resource is created by the build service if the component doesn't have the "build.appstudio.openshift.io/status" annotation. Since the components in the back have this annotation, the build service won't create the repository resources after restoring the components, thus the repository resource should be backed up as well.

  4. release resources - those are core Konflux resources thus they should be backed up as well.

@gbenhaim
Backup additional resources
02d6512 
Add additional resources to the backup as follows:

1. rolebindings - users a allowed to create role binding for their
service account. In addition, in clusters that doesn't use kubesaw,
rolebindings are used for granting permissions to users.

2. imagerepositories - the ImageRepository resources is created
by the UI when onboarding a new component, thus it should be backed
up as well.

3. repositories - the Tekton repository resource is created by the
build service if the component doesn't have the "build.appstudio.openshift.io/status"
annotation. Since the components in the back have this annotation,
the build service won't create the repository resources after restoring
the components, thus the repository resource should be backed up as well.

4. release resources - those are core Konflux resources thus they
should be backed up as well.

Signed-off-by: Gal Ben Haim <[email protected]>
@gbenhaim gbenhaim requested a review from hugares January 5, 2025 20:04
@openshift-ci openshift-ci bot requested review from elsony and skabashnyuk January 5, 2025 20:04
@openshift-ci openshift-ci bot added the approved label Jan 5, 2025
@gbenhaim gbenhaim requested review from bamachrn, manish-jangra and eisraeli and removed request for skabashnyuk and elsony January 5, 2025 20:05
@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Jan 5, 2025

@gbenhaim: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/appstudio-e2e-tests 02d6512 link true /test appstudio-e2e-tests

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

manish-jangra
manish-jangra approved these changes Jan 6, 2025
View reviewed changes
Copy link
Contributor

@manish-jangra manish-jangra left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good to me

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Jan 6, 2025
@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Jan 6, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: gbenhaim, manish-jangra

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:
  • OWNERS [gbenhaim,manish-jangra]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

hugares
hugares reviewed Jan 6, 2025
View reviewed changes
components/backup/base/member/schedules/backup-tenants-schedule.yaml
- repositories.pipelinesascode.tekton.dev
- releases.appstudio.redhat.com
- releaseplans.appstudio.redhat.com
- releaseplanadmissions.appstudio.redhat.com
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe backing up specific resources was a wrong approach to start with. We will always be in catch up mode, i.e. adding resource to back up after trying to recover them and realizing that they are not in the backup. Should we back up all resources in the namespaces that are not excluded instead?

We will use more storage but at least we will be sure that a new added resources will not be missing from backup

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hugares hugares hugares left review comments

@manish-jangra manish-jangra manish-jangra approved these changes

@bamachrn bamachrn Awaiting requested review from bamachrn

@eisraeli eisraeli Awaiting requested review from eisraeli

Assignees

@manish-jangra manish-jangra

Labels
approved lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@gbenhaim @hugares @manish-jangra