redhat-openshift-ecosystem · DavidCampbellAtOracle · Nov 2, 2023
diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicloudmanagers.yaml
@@ -0,0 +1,100 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  creationTimestamp: null
+  name: ocicloudmanagers.ccm.oraclecloud.com
+spec:
+  group: ccm.oraclecloud.com
+  names:
+    kind: OCICloudManager
+    listKind: OCICloudManagerList
+    plural: ocicloudmanagers
+    singular: ocicloudmanager
+  scope: Cluster
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: OCICloudManager is the Schema for the ocicloudmanagers API
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: Spec defines the desired state of OCICloudManager
+            properties:
+              compartment:
+                description: Compartment configures Compartment within which the cluster
+                  resides.
+                type: string
+              driverNamespace:
+                description: Namespace to isntall drivers
+                type: string
+              loadBalancer:
+                properties:
+                  securityList:
+                    description: Specification of which security lists to modify per
+                      subnet. This does not apply if security list management is off.
+                    type: string
+                  securityListManagementMode:
+                    description: |-
+                      SecurityListManagementMode configures how security lists are managed by the CCM.
+                      If you choose to have security lists managed by the CCM, ensure you have setup the following additional OCI policy:
+                      Allow dynamic-group [your dynamic group name] to manage security-lists in compartment [your compartment name]
+
+                      "All" (default): Manage all required security list rules for load balancer services.
+                      "Frontend":      Manage only security list rules for ingress to the load
+                                       balancer. Requires that the user has setup a rule that
+                                       allows inbound traffic to the appropriate ports for kube
+                                       proxy health port, node port ranges, and health check port ranges.
+                                       E.g. 10.82.0.0/16 30000-32000.
+                      "None":          Disables all security list management. Requires that the
+                                       user has setup a rule that allows inbound traffic to the
+                                       appropriate ports for kube proxy health port, node port
+                                       anges, and health check port ranges. E.g. 10.82.0.0/16 30000-32000.
+                                       Additionally requires the user to mange rules to allow
+                                       inbound traffic to load balancers.
+                    type: string
+                  subnet:
+                    type: string
+                required:
+                - subnet
+                - securityListManagementMode
+                type: object
+              vcn:
+                description: Vcn configures the Virtual Cloud Network (VCN) within
+                  which the cluster resides.
+                type: string
+            required:
+            - compartment
+            - vcn
+            - loadBalancer
+            - driverNamespace
+            type: object
+          status:
+            description: Status defines the observed state of OCICloudManager
+            type: object
+            x-kubernetes-preserve-unknown-fields: true
+        type: object
+        x-kubernetes-validations:
+        - rule: has(self.metadata.name)
+        - rule: self.metadata.name == 'ocicloudmanager'
+    served: true
+    storage: true
+    subresources:
+      status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: null
+  storedVersions: null
diff --git a/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml b/operators/oracle-oci-ccm-operator/0.0.10/manifests/ccm.oraclecloud.com_ocicsidrivers.yaml
@@ -0,0 +1,68 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  creationTimestamp: null
+  name: ocicsidrivers.ccm.oraclecloud.com
+spec:
+  group: ccm.oraclecloud.com
+  names:
+    kind: OCICsiDriver
+    listKind: OCICsiDriverList
+    plural: ocicsidrivers
+    singular: ocicsidriver
+  scope: Cluster
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: OCICsiDriver is the Schema for the ocicsidrivers API
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: Spec defines the desired state of OCICloudManager
+            properties:
+              compartment:
+                description: Compartment configures Compartment within which the cluster
+                  resides.
+                type: string
+              driverNamespace:
+                description: Namespace to isntall drivers
+                type: string
+              vcn:
+                description: Vcn configures the Virtual Cloud Network (VCN) within
+                  which the cluster resides.
+                type: string
+            required:
+            - compartment
+            - vcn
+            - driverNamespace
+            type: object
+          status:
+            description: Status defines the observed state of OCICsiDriver
+            type: object
+            x-kubernetes-preserve-unknown-fields: true
+        type: object
+        x-kubernetes-validations:
+        - rule: has(self.metadata.name)
+        - rule: self.metadata.name == 'ocicsidriver'
+    served: true
+    storage: true
+    subresources:
+      status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: null
+  storedVersions: null
diff --git a/...ator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml b/...ator/0.0.10/manifests/oci-ccm-operator-controller-manager-metrics-service_v1_service.yaml
@@ -0,0 +1,23 @@
+apiVersion: v1
+kind: Service
+metadata:
+  creationTimestamp: null
+  labels:
+    app.kubernetes.io/component: kube-rbac-proxy
+    app.kubernetes.io/created-by: oci-ccm-operator
+    app.kubernetes.io/instance: controller-manager-metrics-service
+    app.kubernetes.io/managed-by: kustomize
+    app.kubernetes.io/name: service
+    app.kubernetes.io/part-of: oci-ccm-operator
+    control-plane: controller-manager
+  name: oci-ccm-operator-controller-manager-metrics-service
+spec:
+  ports:
+  - name: https
+    port: 8443
+    protocol: TCP
+    targetPort: https
+  selector:
+    control-plane: controller-manager
+status:
+  loadBalancer: {}
diff --git a/...0/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml b/...0/manifests/oci-ccm-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml
@@ -0,0 +1,17 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  creationTimestamp: null
+  labels:
+    app.kubernetes.io/component: kube-rbac-proxy
+    app.kubernetes.io/created-by: oci-ccm-operator
+    app.kubernetes.io/instance: metrics-reader
+    app.kubernetes.io/managed-by: kustomize
+    app.kubernetes.io/name: clusterrole
+    app.kubernetes.io/part-of: oci-ccm-operator
+  name: oci-ccm-operator-metrics-reader
+rules:
+- nonResourceURLs:
+  - /metrics
+  verbs:
+  - get