Merge pull request #9 from pluralsh/global-pull-credentials

Add ability to set up additional global pull credentials

Author: davidspek

api/platform/v1alpha1/registrycredential_types.go

@@ -0,0 +1,65 @@
+package v1alpha1
+
+import (
+	"fmt"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// PasswordSecretRef the password secret reference
+type PasswordSecretRef struct {
+	// The Secret to select from.
+	corev1.LocalObjectReference `json:",inline"`
+
+	// Key for Secret data
+	Key string `json:"key"`
+}
+
+// RegistryCredentialSpec is a specification of registry credentials
+type RegistryCredentialSpec struct {
+	// Registry username
+	Username string `json:"username"`
+
+	// Registry user email address
+	Email string `json:"email"`
+
+	// Registry FQDN
+	Server string `json:"server"`
+
+	// The password Secret to select from
+	PasswordSecretRef PasswordSecretRef `json:"password"`
+}
+
+// RegistryCredentialStatus defines the observed state of RegistryCredential
+type RegistryCredentialStatus struct {
+	// INSERT ADDITIONAL STATUS FIELD - define observed state of cluster
+	// Important: Run "make" to regenerate code after modifying this file
+}
+
+//+kubebuilder:object:root=true
+//+kubebuilder:subresource:status
+
+type RegistryCredential struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   RegistryCredentialSpec   `json:"spec"`
+	Status RegistryCredentialStatus `json:"status,omitempty"`
+}
+
+//+kubebuilder:object:root=true
+
+// RegistryCredentialList contains a list of RegistryCredential
+type RegistryCredentialList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []RegistryCredential `json:"items"`
+}
+
+func (r *RegistryCredential) GetPasswordSecretName() string {
+	return fmt.Sprintf("registry-secret-%s", r.Name)
+}
+
+func init() {
+	SchemeBuilder.Register(&RegistryCredential{}, &RegistryCredentialList{})
+}

api/platform/v1alpha1/zz_generated.deepcopy.go

@@ -0,0 +1,81 @@
+
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: registrycredentials.platform.plural.sh
+spec:
+  group: platform.plural.sh
+  names:
+    kind: RegistryCredential
+    listKind: RegistryCredentialList
+    plural: registrycredentials
+    singular: registrycredential
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: RegistryCredentialSpec is a specification of registry credentials
+            properties:
+              email:
+                description: Registry user email address
+                type: string
+              password:
+                description: The password Secret to select from
+                properties:
+                  key:
+                    description: Key for Secret data
+                    type: string
+                  name:
+                    description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                      TODO: Add other useful fields. apiVersion, kind, uid?'
+                    type: string
+                required:
+                - key
+                type: object
+              server:
+                description: Registry FQDN
+                type: string
+              username:
+                description: Registry username
+                type: string
+            required:
+            - email
+            - password
+            - server
+            - username
+            type: object
+          status:
+            description: RegistryCredentialStatus defines the observed state of RegistryCredential
+            type: object
+        required:
+        - spec
+        type: object
+    served: true
+    storage: true
+    subresources:
+      status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []

config/crd/bases/platform.plural.sh_registrycredentials.yaml

@@ -2,5 +2,6 @@ package controllers
 
 const (
 	managedLabel     = "app.kubernetes.io/managed-by"
+	secretTypeLabel  = "platform.plural.sh/type"
 	ignoreAnnotation = "platform.plural.sh/ignore"
 )