airship/airshipctl
Code Issues Proposed changes
e2c56108ee
airshipctl/manifests/function
History
Alexey Odinokov e2c56108ee Nextgen secrets implementation with separation per cluster 
1. Extending templater with kyaml functions and creating combined catalogue
to be able to request/update the existing resources.
This is based on 'everything is transformer' concept introduced in kustomize 4.x
That includes gathering all secrets into 1 variable catalogue and
special mechanism to regenerate/merge with manual secrets.

2. Implementing 'catalogue per cluster' approach for secrets.

3. Rearranging secrets so it's possible to use:
pgp (each person may have his own key), age, Hachicorp Vault and etc
and the list of people who can decrypt documents is set in a special file.
Since in some cases there should be a separate list of people who can decrypt
data - this list is set for each cluster (ephemeral and target) separatelly.

Closes: #586
Change-Id: I038f84dd138d5ad4a35f4862c61ff2124c2fd530
2021-09-03 20:46:15 +00:00
..
airshipctl-base-catalogues Bump to latest version of image-builder 2021-08-13 15:11:44 -05:00
airshipctl-cleanup Switching to the approach with cleanup by selector 2021-04-14 15:44:51 +00:00
airshipctl-schemas Added phase helper to power off ephemeral baremetal node 2021-08-24 15:42:24 +00:00
baremetal-operator Move CAPI resources to target-infra namespace 2021-06-03 23:40:00 +00:00
bootstrap Added phase helper to power off ephemeral baremetal node 2021-08-24 15:42:24 +00:00
cabpk Move clustetctl to KRM 2021-07-17 22:06:43 -05:00
cacpk Move clustetctl to KRM 2021-07-17 22:06:43 -05:00
capd Image override for CAPD components 2020-12-16 02:28:10 +00:00
capg/v0.3.0 Repair validate-site job 2021-02-08 23:54:57 -06:00
capi Move clustetctl to KRM 2021-07-17 22:06:43 -05:00
capm3 move ipam from url to local 2021-03-12 17:00:06 -06:00
capo/v0.3.1 Image override for CAPO components 2021-01-18 21:04:46 +00:00
capz Image override for CAPZ components 2021-01-12 19:47:10 +00:00
cert-manager Fix the schema issue with cert-manager images 2021-06-10 22:30:26 +00:00
clusterctl Move clustetctl to KRM 2021-07-17 22:06:43 -05:00
cni adding installation registry to version catalogue 2021-07-12 16:46:12 +00:00
ephemeral Nextgen secrets implementation with separation per cluster 2021-09-03 20:46:15 +00:00
flux Update flux components 2021-07-09 15:08:49 -05:00
generate-secrets-example Switching airshipctl and krm-functions to kustomize 4.2.0 2021-07-22 17:06:32 +00:00
hardwareprofile-example Externalize KRM function versions 2021-05-26 20:18:49 +00:00
helm-operator Externalize KRM function versions 2021-05-26 20:18:49 +00:00
hostgenerator-m3 skip generating etherenet_mac_address when null 2021-08-26 20:58:35 +00:00
hwcc Externalize KRM function versions 2021-05-26 20:18:49 +00:00
k8scontrol Nextgen secrets implementation with separation per cluster 2021-09-03 20:46:15 +00:00
k8scontrol-capd Update docker base template (CAPD) 2021-03-04 18:05:20 +00:00
k8scontrol-capg Change target cluster name for CAPG provider 2020-12-07 18:06:00 +00:00
k8scontrol-capo Change target cluster name for capo 2020-10-30 14:06:33 +00:00
k8scontrol-capz Azure provider integration - K8S-Control & Workers 2020-11-18 11:53:47 -06:00
phase-helpers Merge "Use executor with timeout for initinfra-networking phases" 2021-08-18 22:44:15 +00:00
templater-helpers Nextgen secrets implementation with separation per cluster 2021-09-03 20:46:15 +00:00
workers-capd Add validation phases 2021-04-22 11:37:12 -05:00
workers-capg Add validation phases 2021-04-22 11:37:12 -05:00
workers-capm3 Nextgen secrets implementation with separation per cluster 2021-09-03 20:46:15 +00:00
workers-capo Add validation phases 2021-04-22 11:37:12 -05:00
workers-capz Add validation phases 2021-04-22 11:37:12 -05:00