Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release 1.1.0 #29

Merged
merged 181 commits into from
Oct 27, 2023
Merged

Release 1.1.0 #29

merged 181 commits into from
Oct 27, 2023

Conversation

raczu
Copy link
Member

@raczu raczu commented Oct 10, 2023
edited
Loading

Motivation

The main objective of this release is to improve the logic for handling and sending requests to NCM API, as well as simplifying the use of ncm-issuer for users. Therefore, a few features/improvements have been implemented.

Changes

  1. Prometheus metrics have been added, in order to be able to check how many CSR objects have been processed by the ncm-issuer. A breakdown into the given labels was used here: unrecognised, enrollment, renewal. The enrollment and renewal can be used for filtering to see how many CSR objects with a given label have been correctly processed (certificate_request_successes_total). The same applies to checking how many of them have an error (certificate_request_fails_total), but here you can also use label unrecognised. In the case of errors, there is also an additional label which determines whether ncm-issuer will try to process again given CSR. Additionally, it is possible to check processing time per CSR: certificate_request_time_seconds.
  2. To improve debugging in the case of any errors, a sidecar has been added, as well as the possibility of specifying logging verbosity level, for more information see: Troubleshooting section in README.
  3. The NCM API selection mechanism has been improved - it is now implemented using a first-alive algorithm.
  4. Improved the logic for sending the CSR to the NCM API and verifying whether a certificate has already been issued by NCM. This has reduced the number of unnecessary request to NCM API - CSR objects for which certificates have not yet been issued are queued and processed after a defined period of time.
  5. In order to apply the above features/improvements, a change in the definition of ClusterIssuer and Issuer have been made. The fields in their definition have been grouped into appropriate sections, and some of the old fields have received new, more user-friendly names - the old fields are still supported, but will be removed within a few releases. The new definition of ClusterIssuer and Issuer is described in Custom resource definitions (CRDs) section of README.
  6. Helm charts were changed to implement prometheus metrics and sidecar. Additionally, charts were refactored according to the best practices given by Helm.

LissaGreense and others added 30 commits March 3, 2023 13:43
@LissaGreense @raczu
Update README.md
012d95b
@LissaGreense @raczu
Changed module name to github package
825d333
@LissaGreense @raczu
unittests github action added
ec7edb1
@LissaGreense @raczu
Fixed status badge (#2)
e654d45 
* Update unit_test.yml

* Update README.md
@LissaGreense @raczu
Update README
0aa2e8e 
Added go report and terminal video
@misiektoja @raczu
Update of Helm values.yaml
8114260 
To include image loaded to public repo + change of default replica to 1 only.
@misiektoja @raczu
Update of README.md
f5e6106 
Just some small updates here and there ...
@misiektoja @raczu
Update README.md
7c09ed7
@grindsa @raczu
markdown linting and linkchecks
497163b
@grindsa @raczu
Linting of README.md
440b6b2
@misiektoja @raczu
Copy & paste error of grindsa
5c7e788
@misiektoja @raczu
Updates in the README.md
01bc428 
To include some things that came up after late-evening breaking of stuff by Grindsa ;-)
@LissaGreense @raczu
Update Dockerfile
8153348 
Fixed bug "cannot find package "."" that occurred after changing the module name
@grindsa @raczu
build workflow
d4cef60
@grindsa @raczu
enrollment tests
eaeda1b
@misiektoja @raczu
Update certmanager-application-test.yml
8a701d0 
Small typos corrected.
@misiektoja @raczu
Rename cert-ressource.yml to cert-resource.yml
ef6be45
@grindsa @raczu
workflow to test key algorithms and length
c23754d
@grindsa @raczu
enhanced workflow to test clusterissuer
24b54f4
@misiektoja @raczu
Update certmanager-application-test.yml
0da9522
@grindsa @raczu
Worflow to test SubAltName configuration
b68bf75
@grindsa @raczu
verify certificates via openssl
d0c35b2
@grindsa @raczu
Worflow to test CAHREF parameter
dd15818
@grindsa @raczu
exclude nokia.com from link checks
d31eea9
@grindsa @raczu
wf headline in lower cases
cff9f76
@grindsa @raczu
clientauth workflow
d8cec64
@grindsa @raczu
rename workflow
463cbab
@grindsa @raczu
removed exit command
3390a58
@LissaGreense @raczu
Updated go version to 1.17
15f3500
@LissaGreense @raczu
Updated go version in unitest workflow
93f471f
raczu added 5 commits October 12, 2023 19:51
@raczu
ci: fix env variable in clientauth
fe6a961
@raczu
ci: change way of pulling image in workflows
c1c26dd 
Previous way of pulling image somehow failed
for specific releases of k8s. The change was
made to fix it and instead of using local
registry image is now loading via microk8s.
@raczu
ci: fix pulling image from cache
c872a5a
@raczu
helm: fix issues with chart
be3258c
@raczu
ci: meet new helm charts requirements in workflows
b9c771f
@raczu raczu added scope: docs Indicates that PR relates to documentation changes. scope: code Indicates that issue or PR relates to code. type: feature PR's categorised as feature. type: cleanup/refactor PR's categorised as cleanup or refactor. scope: helm Indicates that issue or PR relates to Helm. labels Oct 13, 2023
@raczu raczu requested a review from misiektoja October 13, 2023 16:40
raczu and others added 15 commits October 18, 2023 19:52
@raczu
fix: metrics label after successful issuing crt
4e8cca7
@raczu
docs: add gha badges and more release notes
bb594c2
@misiektoja
Few changes here and there
2065406
@raczu
refactor: metrics monitor different action
b7e2204 
Previous prometheus metrics was focused to monitor CR resource,
however, they were supposed to monitor enrollment and renewal
operations of certificates that was sent to NCM API. Thus,
the new implementation was introduced to attempt to reflect
the number of CSRs and renewals operations sent to NCM and
count how many of them were processed succesfully or somehow
failed.
@raczu
Merge branch 'release-1.0.4' of github.com:nokia/ncm-issuer into rele…
b08dd10 
…ase-1.0.4
@raczu
fix: metrics names to satisfy golangci-lint
3c3be4a
@BbqGamer
Add github release actions - mkdocs and helm on gh-pages
07ea1f3
@raczu @BbqGamer
feat: add basic docs configuration and some files
36ddbfc
@BbqGamer
Modify workflow to generate release notes markdown files
45861ba
@raczu @BbqGamer
docs: add more sections to documentation
73c1386
@raczu @BbqGamer
docs: remove unused metadata
45c4389
@BbqGamer
Fix mkdocs actions
cc51e28
@BbqGamer
Hot fix actions
f589003
@BbqGamer
Delete Markdown link check action
2194396
@BbqGamer
Merge pull request #30 from BbqGamer/release-1.0.4
e23beba 
Add github release actions - mkdocs and helm on gh-pages
@raczu raczu requested a review from BbqGamer October 27, 2023 21:12
BbqGamer
BbqGamer approved these changes Oct 27, 2023
View reviewed changes
Copy link
Collaborator

@BbqGamer BbqGamer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@sonarqubecloud
Copy link

SonarCloud Quality Gate failed.    Quality Gate failed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 5 Code Smells

56.9% 56.9% Coverage
0.0% 0.0% Duplication

idea Catch issues before they fail your Quality Gate with our IDE extension sonarlint SonarLint

@raczu raczu merged commit dc03ada into main Oct 27, 2023
119 of 121 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BbqGamer BbqGamer BbqGamer approved these changes

@misiektoja misiektoja Awaiting requested review from misiektoja

Assignees

@raczu raczu

Labels
scope: code Indicates that issue or PR relates to code. scope: docs Indicates that PR relates to documentation changes. scope: helm Indicates that issue or PR relates to Helm. type: cleanup/refactor PR's categorised as cleanup or refactor. type: feature PR's categorised as feature.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@raczu @BbqGamer @LissaGreense @misiektoja @grindsa