Changed
- Add default audit log config file to
KubeadmControlPlane.
Security
Changed
- Push to
giantswarmapp catalog.
- Push to
Changed
- Push to
giantswarmapp catalog.
Added
- Added some chart metadata
- Push to
Changed
- Use user id 1000.
Added
- Added
securityContextattribute to all deployments. - Add
application.giantswarm.io/values-schemaandapplication.giantswarm.io/readmeannotations to Chart.yaml; useapp-build-suiteto generateapplication.giantswarm.io/metadata.
Changed
- Run two replicas of
dex. - Update README for clarity.
- Added
- Update some role descriptions.
- Enhance log messages in the bootstrapping part, remove unneeded messages.
Added
- Add
externalresourcesresource that bindsread-default-catalogsandread-releasesroles for any subject with org-namespace access. - Add creation of
read-default-catalogsRole. - Add creation of
read-releasesClusterRole. - Improve logging for the
orgpermissions,clusternamespace, andrbaccontrollers.
- Add
- Make PDB version conditional based on available API.
Added
- Add cluster-namespace controller which ensures that RBAC resources to access resources in cluster namespaces can be granted to those with access to the clusters organization
- Add bootstrapping for the
read-cluster-appsandwrite-cluster-appsclusterRoles. - Add update option for
orgReadClusterRoleBindingresource.
Changed
- The
write_all_groupconfiguration key is now optional.
Added
- Add the
image_registrylabel exposing the image registry.
Changed
- Bump
golang,prometheus, andstarboarddependency versions. - Update Grafana dashboard to use plugin version 8.3.2 and the new label.
- Add the