Commit Graph

1039 Commits

Author SHA1 Message Date
7fcdbfc2cd feat: aws-ebs and aws-efs csi driver upgrades, migrate to use service account tokens for AWS access 2021-07-01 16:41:31 +02:00
f5297c353a feat: ArgoCD version bump to 2.X 2021-07-01 16:40:23 +02:00
e5f6d9bdde fix: patch for apiserver dashboard cpu metrics 2021-07-01 15:09:51 +02:00
0afaefde58 fix: fix build automation for metrics 2021-07-01 13:36:35 +02:00
031896616b fix: update grafana dashboards to match new prometheus labels 2021-07-01 12:36:35 +02:00
563cf4add7 feat: metrics version bump 2021-06-30 18:26:06 +02:00
5e9d2bc168 chore: minor fix for dashboard utility script 2021-06-30 12:47:50 +02:00
97b94a4ffa feat: convert all kubezero modules to use service account tokens 2021-06-30 12:37:05 +02:00
09cc9e25cc feat: convert cert-manager to use service account tokens rather than kiam, version bump of cert-manager 2021-06-30 12:34:02 +02:00
bab6c90185 feat: Version bump of all things kubezero-logging to tackle logging hickups 2021-06-30 12:32:37 +02:00
f43a780464 fix: JWT aud for istio, cleanup 2021-06-29 17:39:44 +02:00
b378f7ffc3 fix: Switch fluentd ES to file buffer 2021-06-15 16:53:18 +02:00
2ae200700b feat: Add Redis Grafana Dashboard 2021-06-15 13:03:52 +02:00
e3233074c1 feat: kube-prometheus-stack version upgrade incl. latest state metrics and dashboards for the metrics systems themselves, fix for gathering all prometheus rules across all namespaces 2021-06-01 18:40:34 +02:00
260e4b88b3 chore: more logging tuning 2021-05-28 17:16:58 +02:00
7e61463b21 feat: kubeadm for v1.20.1 2021-05-28 17:16:36 +02:00
94165efff3 chore: update helm-docs 2021-05-17 12:13:03 +02:00
c2f0dd4cd3 fix: allow dashes in chart names for grafana dashboards 2021-05-17 12:05:47 +02:00
d053b3484c fix: performance tuning for logging pipeline / fluentd 2021-05-17 12:04:46 +02:00
8c44fc3943 chore: silence argocd for webhook caBundle 2021-05-14 00:15:53 +02:00
10b43888a3 fix: remove custom CRDs handling for logging, fixed in chart itself 2021-05-14 00:11:56 +02:00
117ee6be49 fix: fix broken CRDs handling for ECK operator 2021-05-14 00:11:13 +02:00
2e72673c01 feat: add custom my.cnf for MariaDB to kubezero-sql 2021-05-13 17:39:02 +02:00
567a7f94ff fix: bump eck operator to 1.5.0 as 1.4.1 could not upgrade ES due to license issues 2021-05-13 16:44:45 +02:00
21c9176cb7 fix: minor performance tuning for logging pipeline 2021-05-13 16:21:16 +02:00
018bca4958 chore: fix typo 2021-05-12 22:30:03 +02:00
e4ab333320 feat: add istio support to mariadb-galera 2021-05-12 22:27:53 +02:00
d40dfea5f3 feat: add mysql dashboard to kubezero-sql 2021-05-12 18:41:31 +02:00
b1a277c8d5 feat: initial kuberzero-sql module incl. MariaDB-Galera 2021-05-12 18:11:40 +02:00
fb95ba9024 chore: checkin diffs to sync desktop 2021-05-12 16:32:33 +02:00
f0ed7d5ecb feat: metrics version bump, re-add latest node-exporter dashboard 2021-05-11 10:07:38 +02:00
81428a29df feat: add grafana dashboard to kubezero-mq for rabbitmq 2021-05-05 19:06:12 +02:00
27147fc62c feat: add rabbitmq support to kubezero-mq 2021-05-05 18:35:43 +02:00
8ccd23ba0b chore: rename kubezero-nats to kubezero-mq 2021-05-05 14:05:17 +02:00
0599c43dee chore: remove NATS from KubeZero platform 2021-05-05 13:11:16 +02:00
32c7c04735 feat: add file backed persistence and grafana dashboard to NATS 2021-05-04 15:00:24 +02:00
477dc955f5 chore: Istio cleanup 2021-05-02 19:21:33 +02:00
4bbddb4368 fix: Istio tcp keepalive tweaks to make AWS NLB happy again 2021-04-30 21:09:20 +02:00
10b5697b66 feat: add custom landing page to metrics 2021-04-27 11:17:50 +02:00
d78a63ae00 fix: fix metrics for Istio 2021-04-26 17:19:11 +02:00
e28b68e860 fix: make kiam grafana dashboard optional 2021-04-26 17:12:31 +02:00
320dd670ca Add CoreDNS and etcd dashboards 2021-04-26 17:07:17 +02:00
10492add9b feat: add Kiam Grafana dashboard 2021-04-26 17:06:42 +02:00
2ab696c19e fix: fix naming of kubernetes grafana dashboards, make decompress work for all dashboards 2021-04-26 16:46:35 +02:00
421ab21a6b feat: use kube-mixin dashboards directly 2021-04-26 16:27:19 +02:00
9be889efed chore: update ES dashboard DS 2021-04-25 22:29:55 +02:00
8ddf39b383 feat: Add Grafana dashboards for logging 2021-04-25 22:19:06 +02:00
5af45ade23 fix: Fix datasource in Istio Grafana dashboards 2021-04-25 21:25:06 +02:00
af5092475d fix: adjust datasource and encoding of grafana dashboard tooling 2021-04-25 21:24:39 +02:00
4bf189a1e9 feat: kubezero-metrics version bump, new Grafana dashboard management tooling for KubeZero, add ability to for compressed dashboards in configmaps 2021-04-25 11:59:54 +02:00
a3d47cdb12 feat: Add Istio Grafana dashboards, enable metrics 2021-04-25 11:58:17 +02:00
a78ad7a7f9 feat: integrating metrics support for Istio with KubeZero metrics 2021-04-22 15:43:10 +02:00
1133902b5d fix: add missing standard labels to custom Istio resources 2021-04-22 12:00:13 +02:00
6e173070a8 feat: First version of KubeZero NATS module 2021-04-22 11:59:18 +02:00
63ecf315d7 chore: Rename timemachine to timecapsule 2021-04-21 16:13:40 +02:00
401f024be6 feat: introduce ingress proxy recommended hardening/uning settings 2021-04-20 16:33:45 +02:00
64dd6160cb feat: improved update strategy and timing to reduce 5XX during istio ingress deployments 2021-04-20 12:49:29 +02:00
fd35a46b66 fix: enable crds for aws-ebs-csi-driver to make snapshots work 2021-04-19 13:19:30 +02:00
f1cb2dbb66 feat: Map gemini controller to controller nodes, fix ebs storageclass, integrate timemachine into kubezero 2021-04-19 12:46:42 +02:00
b9c341a55b feat: First version of KubeZero Timemachine backup solutions 2021-04-19 11:31:28 +02:00
31a3848172 fix: re-add terminationtimeout settings for istio as new way doesnt seem to work yet 2021-04-16 13:55:04 +02:00
1b22720d4b chore: sync resources between public and private ingress 2021-04-16 13:49:55 +02:00
1f68cea76b fix: increase default memory limit to ingress envoy to 512MB, enable podDisruptionBudgets on demand 2021-04-16 13:41:31 +02:00
33133f359c refactor: Move Istio config to new place 2021-04-16 12:38:57 +02:00
321c2fe58b fix: Upgrade Istio to 1.9.3 due to various security issues upstream 2021-04-16 11:41:13 +02:00
adb54b7663 feat: first stab at Kubernetes 1.20 kubeadm config 2021-04-15 15:51:46 +02:00
882165cc58 fix: adjust deployment strategy to replace for Grafana because we enabled persistence 2021-04-15 15:16:28 +02:00
bb53c8cf35 feat: kube-prometheus-stack version bump, adjust filesytem alerts 2021-04-15 15:03:52 +02:00
f9dbcee502 feat: add runtimeclass for crio, reorg kubeadm for 1.20 2021-04-14 16:05:16 +02:00
f2d7d7821f fix: loosen kiam memory limits slightly to prevent OOM endless loops 2021-04-09 13:44:48 +02:00
4f9524c8b7 feat: add support for volumeAttributes to aws-efs-csi-driver to allow to disable buggy TLS encryption 2021-04-08 16:19:51 +02:00
c912860b60 chore: fluent-bit version bump to fix excessive logging 2021-04-07 12:00:53 +02:00
9a362607c1 fix: use evictionHard to reserve node memory to avoid systemd mess 2021-04-04 16:52:18 +02:00
2dc912cf9a chore: chart dep fix 2021-04-01 14:51:14 +02:00
a3eebeaf61 fix: Use latest livenessprobe for aws-efs-csi-driver to tackle memory leak 2021-04-01 14:46:36 +02:00
e758795467 feat: Version bump of aws-ebs-csi-driver 2021-04-01 14:15:43 +02:00
784ac2a4fb style: use quote function in kubeadm helm template 2021-04-01 12:35:56 +02:00
6536a655a4 feat: enable GenericEphemeralVolume feature gate 2021-03-30 16:18:46 +02:00
9391958a3a refactor: Unifi feature-gate handling in kubeadm chart 2021-03-30 14:50:37 +02:00
c1a1aea29f fix: Set Redis cluster proxy policy to PREFER_MASTER 2021-03-26 17:35:21 +01:00
1a1f5e7cd6 chore: Bump Istio version from 1.9.1 to 1.9.2 2021-03-26 17:34:43 +01:00
eca69f8b5f Reduce fluent-bit memory consumption under backpressure 2021-03-26 10:56:17 +01:00
4d015cc4c6 Update chart READMEs 2021-03-25 16:32:49 +01:00
ae5e5e1c5f Ensure we use our version of the aws-efs chart 2021-03-24 13:17:27 +01:00
9f0e8a422c Ensure we use our version of the aws-efs chart 2021-03-24 13:08:17 +01:00
383fafce43 Ensure we use our version of the aws-efs chart 2021-03-24 13:06:31 +01:00
2adde8f713 Ensure we use our version of the aws-efs chart 2021-03-24 13:05:36 +01:00
6300826394 Fix resources location 2021-03-24 12:21:03 +01:00
019b5b0ac4 Fix resources location 2021-03-24 12:17:19 +01:00
48d3d269e7 Add custom support for nodeaffinity and resources to aws-efs-csi-driver 2021-03-24 12:11:47 +01:00
6ea7500e41 ArgoCD version bump 2021-03-23 16:21:14 +01:00
92a3bc06a3 Redis proxy upgrade to match Istio 1.9 2021-03-22 17:00:54 +01:00
f85d842267 Add more resources to metrics 2021-03-22 12:05:02 +01:00
27c1be4085 Add more resources to metrics 2021-03-22 11:41:26 +01:00
a2355df60f Remove unsupported resources from aws-efs 2021-03-22 11:17:56 +01:00
13aaae8a54 Version bump aws-efs-csi-driver 2021-03-22 11:14:27 +01:00
1b3dbe36eb Version bump of kube-prometheus stack 2021-03-22 10:23:27 +01:00
ec87dd7dcc Some tool tweaks 2021-03-19 16:16:13 +01:00
1018270620 Add nodeAffinity to all logging components, add resources to fluent-bit, tuning 2021-03-19 16:15:58 +01:00
419d43cf9f Kubelet tuning 2021-03-18 14:31:10 +01:00
3f204b5e04 Bugfixes for control plane, proper calico cpu requests 2021-03-17 17:29:44 +01:00
de2602c3d5 Updates for etcd 1.19 2021-03-15 11:51:56 +01:00
6fe69c9a38 Bump kiam-server memory limit 2021-03-11 09:05:26 +01:00
64a0736dfd Bump ECK operator to 1.4.1 2021-03-11 09:00:47 +01:00
cde586a0df Reduce fluentd chunk size and increase retry timeout 2021-03-10 10:44:51 +01:00
22a1e8d171 Update fluentd.patch for helm chart 2021-03-10 10:34:17 +01:00
e666d1079a Upgrade fluentd to use new upstream helm and image 2021-03-10 10:32:12 +01:00
0d6d22b0d4 Disable metadata via kubelet for now 2021-03-09 10:33:40 +01:00
9dc2881f15 Remove unnecessary docker mount 2021-03-07 12:47:06 +01:00
05b2edf089 Switch fluent-bit to use kubelet rather than kube-api 2021-03-07 12:38:53 +01:00
e991e7247a Initial aws-node-termination still disabled, local-volume tweaks for new tag layout 2021-03-05 18:18:45 +01:00
50ffcf28eb Version upgrade ES/Kibana and Fluentbit, various tunings 2021-03-05 16:53:02 +01:00
532710b77b remove cpu limit for aws-iam-auth, enable cpufs kubelet feature flag 2021-03-05 14:00:00 +01:00
f38fe4f790 More request tuning for aws-ebs-csi 2021-03-05 13:58:54 +01:00
4a9eb00f9d aws-ebs-csi-driver version bump, remove cpu limts 2021-03-05 10:32:42 +01:00
6e85de3722 remove default cpu limmits for kiam 2021-03-05 10:22:54 +01:00
ef3e8f4535 aws-ebs-csi-driver version bump introducing readiness probes 2021-03-03 10:59:12 +01:00
3df6229722 remove patch left overs 2021-03-02 11:37:02 +01:00
65eabacf49 Slightly increase cpu limits for aws-ebs 2021-03-02 11:32:00 +01:00
948764eca7 Version bump charts 2021-03-02 11:28:13 +01:00
80ea9488f6 aws-ebs-csi-driver version bump and resource limits 2021-03-02 11:22:34 +01:00
cbeb7b9704 Istio version bump due to security release 2021-03-02 10:33:12 +01:00
9531073c36 Prometheus-stack version bump 2021-02-26 22:25:43 +01:00
491057ed65 Minor version bump of aws-ebs-csi-driver to update livenessprobe 2021-02-26 01:18:32 +01:00
c3a36a2d7d Fix gateway protocol 2021-02-26 00:35:21 +01:00
97ec77f3b7 Update ingress default config 2021-02-26 00:24:12 +01:00
b6e92ceba2 Upgrade Istio to 1.9 2021-02-25 23:44:33 +01:00
4a7f7f8187 Reduce loglevel for efs driver 2021-02-25 00:23:50 +01:00
3758a86553 Version bump for aws-efs-csi-driver, use upstream helm chart 2021-02-25 00:17:50 +01:00
d858146a1d Version bump for aws-ebs-csi driver, enable volume resize, snapshot, patch for loglevel and leader election 2021-02-24 20:36:34 +01:00
064012d083 Version bump of ArgoCD required for Kube > 1.18 latest charts 2021-02-24 00:10:14 +01:00
1218033166 Further tuning of fluentd throughput 2021-02-22 21:34:45 +01:00
eb4f22c5c2 Fix kubelet config 2021-02-22 21:32:41 +01:00
62a8f82f01 Version bump cert-manager 2021-02-22 21:32:12 +01:00
d969e53d40 Make kubeadm config work on bare-metal, minor tuning 2021-02-22 14:41:32 +01:00
8e8f747686 Kubeadm chart for 1.19, improved tooling 2021-02-12 11:04:16 +00:00
19d10828f6 README updates 2021-01-26 13:47:33 +00:00
fc45e7fd0b Istio minor version bump 2021-01-26 12:54:56 +00:00
9ca8920387 Fix changed key for kiam 2021-01-21 13:35:20 +00:00
7587564da0 Version bump for aws-ebs-csi and kiam, ES bugfix bump, fluentd tuning 2021-01-21 12:31:06 +00:00
d28e18766a CI/CD tools update 2021-01-21 10:53:53 +00:00
adefd7433b Reduce logLevel of prometheus adapter 2021-01-20 15:31:00 +00:00
da6a1fdf51 Reduce loglevel of prometheus adapter 2021-01-20 15:22:28 +00:00
a26b652690 Allow custom memory overwrites for ES cluster 2021-01-18 17:18:30 +00:00
d7091434db Add basic mapping for aws-iam-auth 2021-01-11 20:41:12 +00:00
ce7645cb57 Split out crds for aws-iam-authenticator 2021-01-04 18:13:36 +00:00
4fe40a1345 Add aws-iam-authenticator support 2021-01-04 14:56:41 +00:00
924310ca5b Remove stable repo 2021-01-03 16:33:13 +01:00
67f1157848 Integrate and patch prometheus-stack chart to customize alerts 2020-12-17 16:46:15 -08:00
4892d6c073 Switch to gp3 as default EBS class, version bump for metrics components 2020-12-17 15:36:23 -08:00
fdcb6f7e6f Remove repositories to make argo happy 2020-12-17 12:24:12 -08:00
214bfec2a4 Remove repositories to make argo happy 2020-12-17 12:22:48 -08:00
38b2d56da9 Re-add fluentd chart until we migrate off 2020-12-17 12:17:19 -08:00
521bb2a5c1 Istio version bump, ingress terminationgraceperiod patch, aws-ebs version bump 2020-12-16 03:40:14 -08:00
79dc6e9413 EBS driver version bump 2020-12-10 07:06:31 -08:00
3820858046 More logging tuning 2020-12-10 06:44:58 -08:00
89dc890c74 More logging tuning 2020-12-10 06:36:26 -08:00
a8314d4074 Lua fix fluent-bit 2020-12-08 07:15:00 -08:00
77a7ba2ed6 Integrare fluent-bit into logging to allow better config 2020-12-08 07:05:25 -08:00
f78c382be6 Use upstream released chart for aws-ebs-csi 2020-12-07 15:01:40 -08:00
5909fcd841 Fix empty CRDs, only deploy eck-operator if needed 2020-12-07 13:06:00 -08:00
835aae9df8 Re-enable geoip lookups 2020-12-07 04:33:33 -08:00
b30b41ab15 Disable CRDs from eck-operator defaults 2020-12-05 14:16:33 -08:00
a31a945094 Adjust argo ingnores for latest eck webhooks 2020-12-05 14:08:40 -08:00
2a56489273 ECK fixes for Kube 1.18, Redis cluster support incl. Enyoy proxy 2020-12-04 06:05:35 -08:00
33495c83de Add helm version check to bootstrap.sh 2020-12-03 02:04:08 -08:00
8fcbcb680b Minor version bump for redis, added redis-cluster support 2020-12-02 07:23:17 -08:00
83b9b566db Switch all metrics logs to json 2020-12-02 06:24:07 -08:00
89780039fc Fix service names in metrics 2020-12-02 04:30:17 -08:00
ee83391296 Add alertmanager istio config for metrics, metrics values reorg 2020-12-02 03:53:19 -08:00
a510dd06d9 More fixes and upgrade docs 2020-12-01 07:46:04 -08:00
2be387b87b ArgoCd naming fixes 2020-11-30 09:30:06 -08:00
0e7a2e70d6 More fixes 2020-11-30 04:13:52 -08:00
b0f53257ac cert-manager version bump, local-path-provisioner fixes 2020-11-30 11:34:44 +00:00
59ff3cb015 Add local-path-provisioner, re-org bootstrap 2020-11-30 01:52:11 -08:00
4b48da5935 Metrics update 2020-11-28 23:54:40 +00:00
e27692430e More bugfixes, ingress certs 2020-11-28 15:01:20 -08:00
09d2b52f74 More fixes 2020-11-27 08:19:44 -08:00
10db0f09d0 Add missing .helmignore 2020-11-26 15:31:40 -08:00
052efd077c Latest fixes, fluent-bit version bump 2020-11-26 09:37:10 -08:00
c8a903110f More fixes now adding ArgoCD 2020-11-26 05:21:10 -08:00
ec6d7a4d11 Another argo tweak 2020-11-24 07:29:38 -08:00
5b317db251 Bug fixes and argo tweaks 2020-11-24 07:18:14 -08:00
32ed7cf3a0 Revert Kube version check to make argo work 2020-11-24 06:51:48 -08:00
cd24b9fa1a First try adding argoCD day 2 2020-11-24 06:44:57 -08:00
35b1570d18 Update of various components, new aroless bootstrap working 2020-11-21 04:24:57 -08:00
cd0e559678 First steps of argoless bootstrap 2020-11-03 12:51:57 +00:00
b6929002dc Minor version bump for prometheus-stack, remove default CPU limit 2020-10-27 14:13:52 +00:00
53b638da5e Update docs, bump argo-cd parallel jobs 2020-10-27 11:54:44 +00:00
9e76512fcc Remove argocd from control plane 2020-10-21 14:18:02 +01:00
74c47d7391 Enable json logs for argo-cd finally 2020-10-21 13:29:49 +01:00
d7006faa60 Bump argo-cd chart version 2020-10-21 13:14:23 +01:00
4fb425676d Bump argo-cd version 2020-10-21 13:12:23 +01:00
8874c9869d Revert more prometheus-adapter config 2020-10-21 13:05:08 +01:00
72a917bdae Revert prometheus adapter changes 2020-10-21 12:51:15 +01:00
44d08c7abc More EFS fixes, cert-manager version bump 2020-10-21 04:37:33 -07:00
19d915cb92 Adjust prometheus URLs 2020-10-09 18:41:43 -07:00
509f8d59fb First stab at new prometheus charts 2020-10-09 17:58:44 -07:00
05993ab6b0 Cleanup 2020-10-09 12:38:20 -07:00
5781494eda Minor tweak to aws efs upate tooling 2020-10-09 11:15:19 -07:00
fea850afcc Actually update the default version of aws ebs to 0.7.0 2020-10-09 11:14:51 -07:00
004503d633 AWS EBS driver version bump 2020-10-09 10:53:32 -07:00
d7132ca90c Revert minimal kube version due to issues with argocd 2020-10-09 07:43:05 -07:00
959d61ef66 Add multi PV support to EFS 2020-10-09 07:30:25 -07:00
54335c4c0a Update EFS tooling to track releases 2020-10-08 07:52:34 -07:00
4285db835d Typo 2020-10-07 09:11:22 -07:00
a951e7d9a0 New Lua function to nest entries into kube.<namespace>.* 2020-10-07 09:09:24 -07:00
cb3c6a93ba fluent-bit tag improvements 2020-10-05 17:27:58 -07:00
b0286ff858 Add some spaces 2020-10-05 09:03:47 -07:00
846d7d2d87 More logging fixes, try to decode json at the source 2020-10-05 09:01:50 -07:00
42f8a5a0b5 Disable json logging, crashed Argo 2020-10-05 08:43:18 -07:00
31f86360d9 Revert ArgoCd 1.7.7 2020-10-05 08:27:37 -07:00
baa9b69265 Latest argocd 2020-10-05 04:31:00 -07:00
5854468f09 Derp 2020-10-05 04:09:03 -07:00
c556df65ff Updated helm-docs, fluentd SSL handled by Istio, ES&Istio tuning 2020-10-05 03:50:23 -07:00
4aeb23d8cc Disable borken json parsing for now 2020-10-02 14:46:07 -07:00
bbd6d25429 Disable borken json parsing for now 2020-10-02 14:41:40 -07:00
1aba6fcbe6 Fix the warning due to double CRDs 2020-10-02 10:44:15 -07:00
cd5b38bb6c Istio version bump, make http10 support optional, enable redis,mysql protocol support 2020-10-02 10:38:09 -07:00
4cb3bd01c5 Minor fluent-bit tuning 2020-10-01 12:32:21 -07:00
84a80f3b97 Fluentd tuning 2020-10-01 10:14:04 -07:00
ea2391a212 Fluentd tuning 2020-10-01 10:11:48 -07:00
fad0597302 Disable pipeline still cpu issues 2020-09-28 04:54:47 -07:00
8de44f18d4 Reenable fluentd ingest pipeline again 2020-09-28 04:45:39 -07:00
d30ca895ec Make the kiam annotate namespace job optional 2020-09-18 16:18:59 +01:00
0939405c7a Logging fixes for NOT using nameoverride 2020-09-18 16:12:52 +01:00
2c600c2fd0 Slightly allow ArgoCD a bit more processing 2020-09-18 14:21:39 +01:00
8af14e3e8e Bump argocd to 1.7.5 as 1.7.4 has a deadlock CPU issue 2020-09-18 13:09:18 +01:00
df20d07d10 Add EnvoyFilter to enable tcp keepalive for all Ingress Envoys 2020-09-17 22:25:09 +01:00
d61752703e Revert TCP keepalive for fluentd listener 2020-09-17 19:44:34 +01:00
bcf8093b84 Enable TCP keepalive for fluentd listener 2020-09-17 19:24:24 +01:00
ec18529956 TCP keepalive tuning for Istio 2020-09-17 17:54:57 +01:00
a0873631c4 Set global meshpolicy to prevent upgrade to http2 by default 2020-09-16 16:50:48 +01:00
0b2b5acff7 Another argocd resource tweak 2020-09-15 11:48:07 +01:00
628a7e7ac9 Introduce resources for at least the argocd controller 2020-09-15 11:15:55 +01:00
93723e6a6a Docs update 2020-09-14 17:26:39 +01:00
c9a5691acf fluent-bit version bump 2020-09-14 17:26:19 +01:00
2171a4211e New bootstrap flow 2020-09-14 16:06:53 +01:00
f9770ce483 Latest deploy bootstrap tweaks 2020-09-14 15:24:40 +01:00
189899c296 Disable default poddisruptionbudgets, replace with individual todo 2020-09-11 18:21:00 +01:00
94a0db6a80 Still double CRDs 2020-09-11 16:03:22 +01:00
8460310eb8 Istio is really picky 2020-09-11 16:01:15 +01:00
efdcbe741e Move ports > 1024 as we run non-root 2020-09-11 15:45:04 +01:00
47c96ba6c5 Set JSON for access logs 2020-09-11 15:39:47 +01:00
812da69ae3 Remove xp settings 2020-09-11 15:32:14 +01:00
990bf89eab Re-enable JSON access logs 2020-09-11 15:28:51 +01:00
b873f1389e Re-enable access logs 2020-09-11 15:22:34 +01:00
3c79677715 Remove deprecated fields for 1.7 2020-09-11 15:20:51 +01:00
a83f87ad15 Remove deprecated fields for 1.7 2020-09-11 15:18:30 +01:00
6c90669fd8 Remove deprecated fields for 1.7 2020-09-11 15:15:53 +01:00
3c7f1a8f74 Version bump Istio to 1.7.1 2020-09-11 15:06:38 +01:00
bf4deda82e Remove double CRD for Istio 2020-09-11 14:42:25 +01:00
428fa56b17 more istio cleanup 2020-09-11 12:37:22 +01:00
5cd030d0db more istio cleanup 2020-09-11 12:32:46 +01:00
90a5038d31 more istio cleanup 2020-09-11 12:23:08 +01:00
6015b4ee9b Minot istio tweaks 2020-09-11 12:08:58 +01:00
2577ba826c Fix math in resources calc 2020-09-11 11:07:49 +01:00
0c6f4d06e3 Make ES heap configurable, set resources accordingly 2020-09-11 11:00:51 +01:00
a3a1f0bb8f Istio version bump to 1.6.9 2020-09-10 16:44:49 +01:00
d4b6a78c3b Add resources to Kiam 2020-09-10 14:22:47 +01:00
13c81dab53 Another prometheus resources tweak to prevent being killed during restarts 2020-09-10 14:09:23 +01:00
ec1adab48e Adjust and limit Prometheus resources 2020-09-10 14:01:28 +01:00
2b8bf02f37 ArgoCD version bump to 1.7.4 2020-09-10 13:44:48 +01:00
7c08700e71 Change log tag for audit log to not collide with regular tags 2020-09-09 20:59:03 +01:00
862fb4be9d Calico version bump to 3.16.1 2020-09-09 14:17:02 +01:00
777fe64f01 Dont remove other fields for valid json 2020-09-08 15:41:20 +01:00
8217fdd623 Fix fluentd parsing of json 2020-09-08 15:34:16 +01:00
75002ce2eb Fix fluentd typo 2020-09-08 15:07:17 +01:00
b49a864cbb Update fluentd to latest quay.io image, add json parser for message 2020-09-08 15:05:31 +01:00
1546415746 Remove CRD property to fix OutofSync Argo 2020-09-08 13:44:31 +01:00
6be2f0697f Handle empty message events 2020-09-08 13:40:09 +01:00
d04e7fa0f1 Add Lua functions to reassemble partial cri-o logs 2020-09-08 13:12:21 +01:00
48045d7afc Fluent-bit version bump and support for api audit logs 2020-09-08 12:40:28 +01:00
88725c33be Move scrape username to its own secret as eck operator cleans up otherwise 2020-09-04 01:13:39 +01:00
b8dcdc89d3 Enabled scraping etcd 2020-09-02 15:05:57 +01:00
1fec29b05f More fluentd tuning 2020-08-27 01:13:34 +01:00
28e3ce4f8e Disable ingest pipeline until we know what breaks / jams in ES 2020-08-27 01:03:35 +01:00
3e55e27bf1 Revert ES fixes as servicemonitor is retarted 2020-08-26 23:02:47 +01:00
51d9dc48fc Hardcode es user for now 2020-08-26 22:50:51 +01:00
8b82972d06 fluentd / ES fixes 2020-08-26 18:13:21 +01:00
b376544424 Fix default value 2020-08-25 14:46:22 +01:00
982685aa4b Make Istio Ingress hosts specific matching the cert 2020-08-25 14:45:56 +01:00
6adcddf4d6 Revert default fluentd image, latest has issues 2020-08-24 11:38:47 +01:00
1f0d7fae29 Increase default read-timeout for fluentd 2020-08-23 17:47:28 +01:00
6a34a198f4 Use quay.io fluentd-es image until we roll our own 2020-08-23 17:41:37 +01:00
6620416047 Fix default fluentd hostname 2020-08-23 15:50:14 +01:00
256877b736 Remove Cri parser as it is already incl. upstream now 2020-08-22 19:24:58 +01:00
94622b4f9a Update docs 2020-08-22 18:27:31 +01:00
7310235fa2 Add fluent-bit support to kuberzero-logging, istio fixes 2020-08-22 18:27:18 +01:00
123d7ce946 Refactor argo apps factory 2020-08-21 20:39:55 +01:00
715e1d6c69 Switch istio ingress to http healthchecks, more tuning 2020-08-21 14:17:47 +01:00
f30df54c73 Also apply improved healthcehck handling and draining to public ingress 2020-08-20 18:32:01 +01:00
2f258a3194 Apply graceful shutdown fixes interim like Contour 2020-08-20 17:38:18 +01:00
be013b67ce Add graceful shutdown to Ingress gateway, might need istio 1.7 to actually work though 2020-08-20 16:55:47 +01:00
233e53c928 Set Istio idle timeout to 1h 2020-08-20 16:12:41 +01:00
96a6132a43 Set Istio idle timeout 2020-08-20 15:55:49 +01:00
f1ef778075 Disable default syncPolicy, use values instead 2020-08-20 11:40:08 +01:00
4fcf2c0ed3 Revert to default images 2020-08-18 13:13:30 +01:00
2f48198ffb Fix istio to service mapping 2020-08-18 12:45:15 +01:00
3e581471ff Revert ot quay image, disable plugins 2020-08-18 12:36:56 +01:00
09886b10b2 Disable persistence by default 2020-08-18 12:08:49 +01:00
695318eada Add missing fluentd secrets 2020-08-18 11:58:37 +01:00
51921f3d47 Disable statefulset for fluentd being broken upstream 2020-08-18 11:41:09 +01:00
d36bf246d6 Add fluentd to logging 2020-08-18 11:34:34 +01:00
05da44c191 Make old ECK resources optional 2020-08-17 13:12:07 +01:00
b2e6911ca8 Make argocd metrics work 2020-08-16 19:25:07 +01:00
c09e471474 Wire up prometheus metrics for argo-cd 2020-08-16 15:49:57 +01:00
6f981eabc0 EBS-CSI version bump, reduce ArgoCD concurrency to reduce load spikes, sync from 180s to 300s 2020-08-15 23:37:45 +01:00
7be12de4e8 Add cert-manager state handling for argo 2020-08-15 15:59:57 +01:00
56ef55ef7a Exlude stateuful service objects to prevent double scrapes 2020-08-15 14:49:30 +01:00
bef01e96ab Exlude stateuful service objects to prevent double scrapes 2020-08-15 14:45:43 +01:00
dd8337660f Add label for servicemonitor 2020-08-15 14:33:41 +01:00
58658bbc01 More logging fixes 2020-08-15 14:25:07 +01:00
4d5a6b72d1 Fix optional prometheus support 2020-08-15 13:24:14 +01:00
943a2080b7 More logging fixes 2020-08-14 23:02:30 +01:00
bbab7de883 Adjust scrape internal for kiam to match others, and servicemonitor for agents 2020-08-14 22:31:34 +01:00
770222bcd7 Add proper label for kiam servicemonitors 2020-08-14 17:39:05 +01:00
aa9dbe455f Add elastic-system ns to kubezero 2020-08-14 17:12:06 +01:00
30d69401b1 Bugfix for prometheus service for calico 2020-08-14 17:10:25 +01:00
afe2e4a34c Bugfix release for Calico, README updates 2020-08-14 17:05:25 +01:00
64dbb4e4a6 More logging fixes... ready for first trial 2020-08-14 15:52:10 +01:00
8c1f45cae1 Various logging fixes to get a first version of ES and Kibana running 2020-08-13 19:44:50 +01:00
8880b983ac Add rabbitmq ingress gateway def 2020-08-11 15:09:48 +01:00
9359ee62c0 Add logging as default ns to look for servicemonitors 2020-08-10 13:53:41 +01:00
74599ddf1b Make sure nodeselector is a string 2020-08-10 13:28:45 +01:00
665fc68f7e make nodeselector for private ingress configurable 2020-08-10 13:20:36 +01:00
5d9f2a5226 Version bump of aws-ebs csi driver to 0.6.0 2020-08-10 12:33:53 +01:00
ede6d6513f Update all charts to use latest lib 2020-08-07 17:02:22 +01:00
706b23d547 New istio naming schema for virtualservices 2020-08-06 19:07:06 +01:00
24ebdf360f Various deps updates, Istio to 1.6.7 2020-08-06 18:43:59 +01:00
2b75664215 Extend shared library for naming functions 2020-08-06 17:21:27 +00:00
5e17b545a9 Add default labels 2020-08-06 17:15:32 +00:00
f32cca216b Add latest docs 2020-08-06 12:38:40 +01:00
2a6449a0b2 Add optional istio ingress policies to metrics 2020-08-06 11:34:32 +00:00
5a46bc784f Add custom prometehus-operator settings 2020-08-06 11:52:16 +01:00
396c16d6ad Controller and scheduler use self-signed certs 2020-08-05 15:58:37 +01:00
c5e38dcc83 Add cert-manager backup support in bootstrap, enable schedule and controller metrics 2020-08-05 15:42:15 +01:00
167c10d957 ArgoCd version bump 2020-08-05 13:29:50 +01:00
c877d9c470 Finally fix go templating awkwardness 2020-08-05 01:05:05 +01:00
c64ef24b0c Volume features need more testing <1.17 2020-08-05 01:00:11 +01:00
e4fa7d57a4 Fix Go template specialness 2020-08-05 00:56:31 +01:00
a600591b28 Enable Volumesnapshot/resize, disable leader election of single instance 2020-08-05 00:50:26 +01:00
9dab68e0d3 Disable kubelet cadadvisor metrics 2020-08-04 14:45:42 +01:00
14be15423a Enable kube_proxy metrics as a trial 2020-08-04 10:08:10 +01:00
199f734f75 Add node_exporter relabel for adapter 2020-08-04 01:38:26 +01:00
5b8ea0e5cd Adapter config from kube-prometheus 2020-08-03 22:19:16 +01:00
bfbb478006 Adapter config from kube-prometheus 2020-08-03 22:15:05 +01:00
9503aa7a9b Disable default rules for the adapter 2020-08-03 21:29:24 +01:00
c0587f6fdf Temp add custom prometheus url 2020-08-03 20:56:52 +01:00
b982254fe0 Temp add custom prometheus url 2020-08-03 20:52:57 +01:00
1f6aaf308f Fix scopt for adapter rules 2020-08-03 18:53:18 +01:00
56d20b0683 Try default settings fro adapter 2020-08-03 18:47:11 +01:00
f9055d49fa Disable unreachable metrics for now 2020-08-03 18:30:33 +01:00
e8b0428e41 Add istio for prometheus 2020-08-03 17:44:58 +01:00
03506a40c9 Frist mostly working version 2020-08-03 17:15:12 +01:00
d825f9f7b8 Add all the rules minus alertmanager 2020-08-03 17:01:39 +01:00
6461fc7036 Config fixes, svc name fix 2020-08-03 16:34:57 +01:00
3b36e4939f Add istio support for metrics grafana 2020-08-03 16:24:32 +01:00
a32698e993 Add Grafana 2020-08-03 16:08:16 +01:00
1419deb729 Fix scope of prometheus options 2020-08-03 15:51:44 +01:00
94e5799ba4 Revert to default Prometheus version 2020-08-03 15:43:56 +01:00
2b325c77a3 Enable operator on release ns 2020-08-03 13:57:14 +01:00
72e831c028 Enable operator on release ns 2020-08-03 13:50:32 +01:00
1948ed7094 Add basic Prometheus itself 2020-08-03 13:26:00 +01:00
3a4d0a6a90 Enable node_exporter 2020-08-03 13:16:48 +01:00
8f31607377 Latest deploy, add prometheus adapter to metrics 2020-08-03 13:06:07 +01:00
87f1a3c8d3 Disable webhooks for now, latest operator 2020-07-31 01:32:44 +01:00
a6bb7e2425 Add webhooks and set tolerations 2020-07-31 01:18:07 +01:00
9deafa7f3e Let Argo take care of CRDs 2020-07-30 18:56:46 +01:00
e4fb576a55 Add montoring and logging NS to kubezero argo project 2020-07-30 18:27:43 +01:00
987ad6aef0 Move metrics to monitoring NS 2020-07-30 18:26:11 +01:00
676273f7e2 Add draft metrics chart 2020-07-30 18:18:32 +01:00
8f5ba87b9a Initial metrics chart 2020-07-30 17:19:48 +01:00
62013253f8 minor bootstrap fix 2020-07-30 17:19:04 +01:00
b6775e1ef5 Convert argo-cd ACL to DENY policy 2020-07-29 18:02:18 +01:00
826d1ff187 Apparently no patch levels in requirements 2020-07-29 15:12:06 +01:00
a6cc459c46 More cleanup, kiam doc update 2020-07-29 15:07:41 +01:00
2b5103c6ee Calico cleanup, add efs-csi 2020-07-29 14:46:55 +01:00
bbc60e778f Tweaks for aws-ebs-csi-driver, added initial aws-efs-csi-driver 2020-07-24 15:40:24 +01:00
47809b452f Remove duplicate CRD 2020-07-24 12:31:22 +01:00
b75bbbfa34 Helm bugfixes 2020-07-24 12:24:21 +01:00
5b9d02db18 Allow Argo-CD to listen on public ingress, add argo-cd istio policy 2020-07-24 11:07:25 +00:00
84b7be318d Add LoadBalancer support to private ingress 2020-07-24 10:31:01 +00:00
0906fed564 Make private Ingress optional but enabled by default 2020-07-23 15:01:34 +00:00
40164dd02b Make kubezero work on baremetal 2020-07-23 14:52:11 +00:00
16cb90730e Another round of Istio fixes 2020-07-22 20:25:18 +01:00
9aff2d271a More istio bootstrap tweaks 2020-07-22 20:11:34 +01:00
251844a44a Fix jsonpointers 2020-07-22 16:28:27 +01:00
eec89f9300 Add more excludes to improve ArgoCD integration with Istio 2020-07-22 16:18:00 +01:00
60fd7b33d0 Bugfix, move CRDs into plain manifest to help bootstrapping 2020-07-22 16:01:36 +01:00
3b1eb3a014 Fix private ingress gateways affinity 2020-07-22 00:11:38 +01:00
4430207673 More Istio 1.6 tuning 2020-07-22 00:08:19 +01:00
0c88f62889 Add KubeZero default Istio config 2020-07-21 18:30:21 +01:00
545ab623dc Add sync waves to cert-manager 2020-07-16 14:09:00 +01:00
62a528691a Derp 2020-07-15 18:15:18 +01:00
55eace6924 More minor fixed for new Istio integration 2020-07-15 18:13:23 +01:00
0f93e973c9 Make calico nodes a little more tolerant to CPU spikes 2020-07-15 17:13:40 +01:00
bb90238623 Set proper istio-operator values 2020-07-15 16:17:47 +01:00
5eca427e36 We skip Istio 1.5, hook into deploy flow 2020-07-15 15:21:49 +01:00
ca110d6245 Make IPPool optional to fix bootstrap issues, doc fixes 2020-07-15 11:44:43 +01:00
de862c7a7e Update docs 2020-07-14 20:49:20 +01:00
11d4e8be62 Fix handling of CRDs for bootstrapping calico 2020-07-14 20:48:58 +01:00
5340daf3a0 Revert istio-operator to 1.5 as we cannot skip versions during upgrades 2020-07-14 18:17:08 +01:00
b35358b0d2 Istio-operator to 1.6 2020-07-14 18:01:13 +01:00
343deb1aff Add istio namespace to kubezero project 2020-07-14 17:41:27 +01:00
d7d4047bfe Add Istio into kubezero, disabled by default 2020-07-14 17:39:12 +01:00
5661a5d7c3 Fix local-path-provisioner, map istio-operator to control plane 2020-07-14 17:30:43 +01:00
74ce5cc45c Kiam minor version bump, first draft of istio chart 2020-07-14 16:58:14 +01:00
011fb4b1fb Convert local-static-provisioner into Umbrella Helm chart 2020-07-09 16:17:23 +01:00
3c8739216b Fix crd for ippool 2020-07-09 12:19:58 +01:00
987281afdf Map calico controller to controller nodes, add IPPool 2020-07-09 12:01:01 +01:00
f7f0c47f7e missing default values 2020-07-08 21:03:55 +01:00
834841d6e5 Derp 2020-07-08 17:09:52 +01:00
afccab68e9 Disable prune for migration 2020-07-08 16:59:25 +01:00
412040b096 Reenable pruning for calico 2020-07-08 15:17:35 +01:00
c47a089156 Improve app logic 2020-07-08 14:52:13 +01:00
491398c722 Make calico migration explicit 2020-07-07 14:28:32 +01:00
301b972787 Disable prune of retain is set 2020-07-07 13:54:45 +01:00
06c295b4f4 Calico migration bug fixes 2020-07-07 13:50:08 +01:00
5dd801bbda Add options migration to calico 2020-07-07 13:17:20 +01:00
88ed108e92 Bug fix for calico chart, tweaks 2020-07-06 14:42:37 +01:00
3689f9aaeb First version of calico as helm chart 2020-07-06 12:32:24 +01:00
967f27baac New calico config without flannel 2020-07-05 23:42:23 +01:00
bf71344007 Version bump for argo-cd 2020-06-30 15:05:45 +01:00
774b5bb815 Bump kiam version and kiam chart upstream 2020-06-30 14:59:33 +01:00
308ac2a02a Allow kiam patch to run on controlles 2020-06-30 14:56:20 +01:00
6ed08d9739 New cleaned up KubeZero layout 2020-06-25 13:52:07 +01:00
8d88f6b062 Minor cleanup 2020-06-19 12:24:22 +01:00
819ebf4cf8 Revert annotations for cert-manager, enable selfheal for cert-manager to work around bootstrap issues 2020-06-14 17:59:56 +01:00
2602953c01 Make sure the self-signed resources are applied AFTER cert-manager itself 2020-06-08 15:19:35 +01:00
80ab077733 Bump Chart version of kubezero-app due to updated Calico 2020-06-03 16:18:03 +01:00
e2a261dcc8 Update logo URL 2020-06-03 16:17:04 +01:00
e7405ecb67 Move QUICKSTART.md 2020-06-03 15:46:25 +01:00
3d84ca4fd9 Latest Calico, add QUICKSTART draft 2020-06-03 15:45:01 +01:00
cb1c37b992 Update README 2020-05-19 16:54:07 +01:00
1b2f50627a Add aws-ebs-csi-driver into root app, rename module properly 2020-05-19 16:25:29 +01:00
b3fe628d26 First version of aws-ebs-csi-driver umbrella chart, updated docs 2020-05-19 15:13:41 +01:00
52bf39d803 Update README.md 2020-05-19 13:44:01 +01:00
863dd331d0 Use common label for main chart 2020-05-19 12:16:22 +01:00
3f20f36b17 Remove name label 2020-05-19 12:15:40 +01:00
d2e7ae41c1 Switch root app to use common labels 2020-05-19 12:07:58 +01:00
fe60e8f362 Add labels via central lib to cert-manager 2020-05-19 11:57:24 +01:00
32dcca79a9 Add labels to certs 2020-05-19 11:48:15 +01:00
76b61b5482 Switch kiam to use helm lib 2020-05-19 11:28:38 +01:00
1464f6e875 Fix lib namespace 2020-05-19 11:26:27 +01:00
3ac338113f Add draft for central helm library 2020-05-19 11:14:11 +01:00
a8c2cacce4 Looks like we need to allow read as well 2020-05-18 18:25:41 +01:00
9003ff81a7 Add ServiceAccount and roles to allow namespace annotation 2020-05-18 18:12:02 +01:00
584b093dd9 First trial of sync hook to annotate system ns 2020-05-18 16:24:57 +01:00
f962e7cb4c Update docs for kiam chart 2020-05-18 14:56:37 +01:00
040f7eedeb Enable rollingUpdate support kiam, turn off iptables support 2020-05-15 17:23:25 +01:00
20c3fe37e6 Remove kube-system NS, move to annoted via sync hook later on 2020-05-15 16:48:32 +01:00
48dbdea6a1 Fix secret names to match cert-manager 2020-05-15 16:35:33 +01:00
9d02c2d96d First kiam implementation incl. docs 2020-05-15 16:07:01 +01:00
93528227f7 Fix handling global values 2020-05-15 11:22:15 +01:00
78807457c3 Move defaultrepo options into global 2020-05-15 10:38:06 +01:00
aa8d21ed05 First draft of Kiam chart, various fixes and improvements, cascade delete enabled by default 2020-05-14 18:24:51 +01:00
90f4e3e203 Fix non DNS conform reosurce names 2020-05-14 11:48:55 +01:00
e42b1b1129 Add icons to all charts 2020-05-14 11:44:25 +01:00
fe0bafe27e Enabled auto-sync and prune for kubezero apps by default 2020-05-11 12:27:13 +01:00
d53ab3ec62 Fix wrong namespace for cert-manager 2020-05-07 12:26:43 +01:00
1753dbcbac cert-manager 0.15 has support for CRDs, remove copy in umbrella chart 2020-05-07 00:38:30 +01:00
10b756d40b Bump cert-manager to 0.15, enable CRDs 2020-05-07 00:33:28 +01:00
3dcdc6f97b Remove Chart.lock files to test ArgoCD/Helm3 bug 2020-05-06 19:02:59 +01:00
5e496ddb70 Upgrade argoCd chart and argo to 1.5.4 2020-05-06 18:39:14 +01:00
5f72117d91 Fix new path to naming schema 2020-05-06 18:23:52 +01:00
46774f5df4 New consitent naming scheme for umbrella charts/artifacts 2020-05-06 18:20:53 +01:00
3259b1362d Prefix umbrella charts with kubezero 2020-05-06 16:32:55 +01:00
0c87dd6043 Bugix for wrong helm values format 2020-05-06 16:24:33 +01:00
2590164435 Workaround for restircted naming scheme in Argo 2020-05-06 16:21:57 +01:00
df61aa094f Allow values being passed down to implementation charts 2020-05-06 15:47:51 +01:00
47a7abb628 cert-manager: Add Cluster-issuer 2020-05-06 15:03:33 +01:00
f80e16ee3e fix typo 2020-05-05 15:39:52 +01:00
889731ec66 Renaming, addition of draft cert-manager, templating 2020-05-05 15:21:09 +01:00
d0852fb193 More README update 2020-05-04 14:46:55 +01:00
fb2252f602 Introduce helm-docs, add initial cert-manager 2020-05-04 14:29:21 +01:00
1cb6adb821 Fix prefixPath 2020-05-04 12:21:17 +01:00
4a3ce8d101 Improved root-app value handling 2020-05-04 12:10:15 +01:00
f460ef6276 Rename https rather than http service 2020-05-03 00:02:32 +01:00
2d87822e96 Remove argocd namespace resource 2020-05-02 23:46:39 +01:00
da73cacf0d Fix argo-cd chart name 2020-05-02 23:31:49 +01:00
dbe5576df0 Optionally bootstrap kubezero app-of-apps into argocd 2020-05-02 23:27:23 +01:00
bd6deff411 Add proper labels to istio vs 2020-05-02 16:41:14 +01:00
39b40eadde Workaround for alias not working recursively, use argo-cd and index hack instead 2020-05-02 16:27:07 +01:00
8bd1352582 More bugfixing 2020-05-02 00:28:49 +01:00
964af1a592 Bug fix 2020-05-01 18:53:23 +01:00
6759d73ef1 Add calical and local-volume-provisioner, adjust urls 2020-05-01 18:14:40 +01:00
69defeb3c2 Add Helm Repo tooling 2020-05-01 16:33:41 +01:00
23c646c587 Initial commit 2020-05-01 14:57:31 +01:00