chore(deps): update helm release mariadb-operator to v0.38.1 #363
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
e5fc648 to
1f9e3d6
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
3 times, most recently
from
905adfe to
735d68b
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
735d68b to
3c301e2
Compare
|
depends on #434 |
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
3c301e2 to
ba7774e
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
2 times, most recently
from
d2e430f to
23b9cd7
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
4 times, most recently
from
129217d to
d0cfce6
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
d0cfce6 to
59f60cd
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
2 times, most recently
from
7f4f6f4 to
28002e4
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
2 times, most recently
from
6f391e5 to
51c715a
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
4 times, most recently
from
4dab2b2 to
e2957c3
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
e2957c3 to
dcccf40
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
143f0f6 to
7fe72ba
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
7fe72ba to
46d244d
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
46d244d to
2899ff4
Compare
renovate
bot
changed the title
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
3 times, most recently
from
0ba1b09 to
7d7d642
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
2 times, most recently
from
c77a3c2 to
85f8b0b
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
85f8b0b to
3cd46fb
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
3cd46fb to
b4bae65
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
b4bae65 to
b1af94f
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
b1af94f to
c5539f8
Compare
renovate
bot
changed the title
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
c5539f8 to
eb471e1
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
3 times, most recently
from
2efba98 to
57f7632
Compare
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
57f7632 to
6890270
Compare
renovate
bot
changed the title
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
renovate
bot
force-pushed
the
renovate/mariadb-operator-0.x
branch
from
6890270 to
5c126f8
Compare
renovate
bot
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
0.20.0->0.38.1Release Notes
mariadb-operator/mariadb-operator (mariadb-operator)
v0.38.1Compare Source
Run and operate MariaDB in a cloud native way
v0.38.0Compare Source
Run and operate MariaDB in a cloud native way
v0.37.1Compare Source
mariadb-operator0.37.1 is here! 🦭We're excited to introduce TLS 🔐 support in this release, one of the major features of
mariadb-operatorso far! ✨ Check out the TLS docs, our example catalog and the release notes below to start using it.Issue certificates for
MariaDBandMaxScaleIssuing and configuring TLS certificates for your instances has never been easier, you just need to set
tls.enabled=true:A self-signed Certificate Authority (CA) will be automatically generated to issue leaf certificates for your instances. The operator will also manage a CA bundle that your applications can use in order to establish trust.
TLS will be enabled by default in
MariaDB, but it will not enforced. You can enforce TLS connections by settingtls.required=trueto ensure that all connections are encrypted. In the case ofMaxScale, TLS will only be enabled if you explicitly settls.enabled=trueor the referredMariaDB(viamariaDbRef) instance enforces TLS.Native integration with cert-manager
cert-manager is the de facto standard for managing certificates in Kubernetes. This certificate controller simplifies the automatic provisioning, management, and renewal of certificates. It supports a variety of certificate backends (e.g. in-cluster, Hashicorp Vault), which are configured using
IssuerorClusterIssuerresources.In your
MariaDBandMaxScaleresources, you can directly referenceClusterIssuerorIssuerobjects to seamlessly issue certificates:Under the scenes, the operator will create cert-manager's
Certificateresources with all the required Subject Alternative Names (SANs) required by your instances. These certificates will be automatically managed by cert-manager and the CA bundle will be updated by the operator so you can establish trust with your instances.The advantage of this approach is that you can use any of the cert-manager's certificate backends, such as the in-cluster CA or HashiCorp Vault, and potentially reuse the same
Issuer/ClusterIssuerwith multiple instances.Certificate rotation
Whether the certificates are managed by the operator or by cert-manager, they will be automatically renewed before expiration. Additionally, the operator will update the CA bundle whenever the CAs are rotated, temporarily retaining the old CA in the bundle to ensure a seamless update process.
In both scenarios, the standard update strategies apply, allowing you to control how the
Podsare restarted during certificate rotation.TLS requirements for
UsersWe have extended our
UserSQL resource to include TLS-specific requirements for user connections over TLS. For example, if you want to enforce the use of a valid x509 certificate for a user to connect:To restrict the subject of the user's certificate and/or require a specific issuer, you may set:
If any of these TLS requirements are not satisfied, the user will be unable to connect to the instance.
Automatic updates when Galera options are changed
Whenever Galera options are changed, for example, adding
providerOptions:apiVersion: k8s.mariadb.com/v1alpha1 kind: MariaDB metadata: name: mariadb-galera spec: ... galera: enabled: true + providerOptions: + gcs.fc_limit: '64'An update is now automatically triggered, and the
Podsare restarted according to the configured update strategy.Community contributions
Huge thanks to our awesome contributors! 🙇
We value your feedback! If you encounter any issues or have suggestions, please open an issue on GitHub. Your input is crucial to improve
mariadb-operator🦭.Join us on Slack: MariaDB Community Slack.
What's Changed
MaxScaleby @mmontes11 in https://github.com/mariadb-operator/mariadb-operator/pull/1143Full Changelog: mariadb-operator/mariadb-operator@0.37.0...0.37.1
v0.37.0Compare Source
mariadb-operator0.37.0 is here! 🦭We're excited to introduce TLS 🔐 support in this release, one of the major features of
mariadb-operatorso far! ✨ Check out the TLS docs, our example catalog and the release notes below to start using it.Issue certificates for
MariaDBandMaxScaleIssuing and configuring TLS certificates for your instances has never been easier, you just need to set
tls.enabled=true:A self-signed Certificate Authority (CA) will be automatically generated to issue leaf certificates for your instances. The operator will also manage a CA bundle that your applications can use in order to establish trust.
TLS will be enabled by default in
MariaDB, but it will not enforced. You can enforce TLS connections by settingtls.required=trueto ensure that all connections are encrypted. In the case ofMaxScale, TLS will only be enabled if you explicitly settls.enabled=trueor the referredMariaDB(viamariaDbRef) instance enforces TLS.Native integration with cert-manager
cert-manager is the de facto standard for managing certificates in Kubernetes. This certificate controller simplifies the automatic provisioning, management, and renewal of certificates. It supports a variety of certificate backends (e.g. in-cluster, Hashicorp Vault), which are configured using
IssuerorClusterIssuerresources.In your
MariaDBandMaxScaleresources, you can directly referenceClusterIssuerorIssuerobjects to seamlessly issue certificates:Under the scenes, the operator will create cert-manager's
Certificateresources with all the required Subject Alternative Names (SANs) required by your instances. These certificates will be automatically managed by cert-manager and the CA bundle will be updated by the operator so you can establish trust with your instances.The advantage of this approach is that you can use any of the cert-manager's certificate backends, such as the in-cluster CA or HashiCorp Vault, and potentially reuse the same
Issuer/ClusterIssuerwith multiple instances.Certificate rotation
Whether the certificates are managed by the operator or by cert-manager, they will be automatically renewed before expiration. Additionally, the operator will update the CA bundle whenever the CAs are rotated, temporarily retaining the old CA in the bundle to ensure a seamless update process.
In both scenarios, the standard update strategies apply, allowing you to control how the
Podsare restarted during certificate rotation.TLS requirements for
UsersWe have extended our
UserSQL resource to include TLS-specific requirements for user connections over TLS. For example, if you want to enforce the use of a valid x509 certificate for a user to connect:To restrict the subject of the user's certificate and/or require a specific issuer, you may set:
If any of these TLS requirements are not satisfied, the user will be unable to connect to the instance.
Automatic updates when Galera options are changed
Whenever Galera options are changed, for example, adding
providerOptions:apiVersion: k8s.mariadb.com/v1alpha1 kind: MariaDB metadata: name: mariadb-galera spec: ... galera: enabled: true + providerOptions: + gcs.fc_limit: '64'An update is now automatically triggered, and the
Podsare restarted according to the configured update strategy.Community contributions
Huge thanks to our awesome contributors! 🙇
We value your feedback! If you encounter any issues or have suggestions, please open an issue on GitHub. Your input is crucial to improve
mariadb-operator🦭.Join us on Slack: MariaDB Community Slack.
What's Changed
0.37.0by @mmontes11 in https://github.com/mariadb-operator/mariadb-operator/pull/1118New Contributors
Full Changelog: mariadb-operator/mariadb-operator@0.36.0...0.37.0
v0.36.0Compare Source
Run and operate MariaDB in a cloud native way
v0.35.1Compare Source
Run and operate MariaDB in a cloud native way
v0.35.0Compare Source
Run and operate MariaDB in a cloud native way
v0.34.0Compare Source
Run and operate MariaDB in a cloud native way
v0.33.0Compare Source
Run and operate MariaDB in a cloud native way
v0.32.0Run and operate MariaDB in a cloud native way
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.