From 7680e631e27030ebef95e8c3bba426e38b1a5865 Mon Sep 17 00:00:00 2001 From: Timo Riski Date: Thu, 18 Jan 2024 11:55:19 +0100 Subject: [PATCH 1/5] ci: add trunk upgrade action --- .github/workflows/trunk-upgrade.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/trunk-upgrade.yml diff --git a/.github/workflows/trunk-upgrade.yml b/.github/workflows/trunk-upgrade.yml new file mode 100644 index 00000000..b582c6fa --- /dev/null +++ b/.github/workflows/trunk-upgrade.yml @@ -0,0 +1,22 @@ +# https://github.com/trunk-io/trunk-action/tree/34242ec4eb8cf594887600f1f9b889e7c630ec18?tab=readme-ov-file#automatic-upgrades +name: trunk upgrade + +on: + schedule: + - cron: 0 8 * * 1-5 + workflow_dispatch: {} + +permissions: read-all + +jobs: + trunk_upgrade: + runs-on: ubuntu-latest + permissions: + contents: write # For trunk to create PRs + pull-requests: write # For trunk to create PRs + steps: + - uses: actions/checkout@v4 + - uses: actions/setup-go@v5 + with: + go-version-file: go.mod + - uses: trunk-io/trunk-action/upgrade@v1 From e0c9eac4f0c70c93eb262be75c3ac1556ef69165 Mon Sep 17 00:00:00 2001 From: Timo Riski Date: Thu, 18 Jan 2024 12:26:10 +0100 Subject: [PATCH 2/5] ci: allow trunk to write annotations MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ✖ Failed to post annotations to github: GitHub Error:403 Body: {"message":"Resource not accessible by integration","documentation_url": "https://docs.github.com/rest/checks/runs#create-a-check-run"} Error: Process completed with exit code 1. --- .github/workflows/lint.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 85241516..e357e466 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -18,6 +18,8 @@ jobs: - uses: wagoid/commitlint-github-action@v5 trunk: runs-on: ubuntu-latest + permissions: + checks: write # For trunk to post annotations steps: - uses: actions/checkout@v4 - uses: actions/setup-go@v5 From c0a6d0e070184aec1aae5a0b3f90de71b50592e1 Mon Sep 17 00:00:00 2001 From: Timo Riski Date: Thu, 18 Jan 2024 12:43:18 +0100 Subject: [PATCH 3/5] ci: fix running trunk in `generate` action --- .github/workflows/generate.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/generate.yml b/.github/workflows/generate.yml index c66c4939..29f81706 100644 --- a/.github/workflows/generate.yml +++ b/.github/workflows/generate.yml @@ -14,7 +14,7 @@ jobs: - name: Checkout repository uses: actions/checkout@v4 with: - ref: ${{ github.head_ref }} + fetch-depth: 0 - uses: actions/setup-go@v5 with: go-version-file: go.mod From d046271e2654d425fc2ad1d65bed2d9188e98cb1 Mon Sep 17 00:00:00 2001 From: Timo Riski Date: Thu, 18 Jan 2024 13:18:12 +0100 Subject: [PATCH 4/5] ci: add 'fetch-depth: 0' to every checkout action --- .github/workflows/force-sync-charts.yml | 2 ++ .github/workflows/generate.yml | 3 +-- .github/workflows/lint.yml | 6 ++++++ .github/workflows/pages.yml | 2 ++ .github/workflows/release.yml | 4 ++++ .github/workflows/tests.yml | 2 ++ .github/workflows/trunk-upgrade.yml | 2 ++ 7 files changed, 19 insertions(+), 2 deletions(-) diff --git a/.github/workflows/force-sync-charts.yml b/.github/workflows/force-sync-charts.yml index 8f75b4d8..0ace56a1 100644 --- a/.github/workflows/force-sync-charts.yml +++ b/.github/workflows/force-sync-charts.yml @@ -9,6 +9,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: BetaHuhn/repo-file-sync-action@v1 with: GH_PAT: ${{ secrets.AIVEN_CI_PAT__VALID_WHILE_ALEKS_IS_EMPLOYED }} diff --git a/.github/workflows/generate.yml b/.github/workflows/generate.yml index 29f81706..8c2f3bc0 100644 --- a/.github/workflows/generate.yml +++ b/.github/workflows/generate.yml @@ -11,8 +11,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.actor == 'dependabot[bot]' }} steps: - - name: Checkout repository - uses: actions/checkout@v4 + - uses: actions/checkout@v4 with: fetch-depth: 0 - uses: actions/setup-go@v5 diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index e357e466..c8891f80 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -22,6 +22,8 @@ jobs: checks: write # For trunk to post annotations steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: actions/setup-go@v5 with: go-version-file: go.mod @@ -34,6 +36,8 @@ jobs: security-events: write steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: github/codeql-action/init@v3 with: languages: go @@ -43,6 +47,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: karancode/kustomize-github-action@master with: kustomize_version: 4.3.0 diff --git a/.github/workflows/pages.yml b/.github/workflows/pages.yml index 7bbcb87e..c8f1b01b 100644 --- a/.github/workflows/pages.yml +++ b/.github/workflows/pages.yml @@ -12,6 +12,8 @@ jobs: steps: - name: Checkout uses: actions/checkout@v4 + with: + fetch-depth: 0 - name: Generate docs uses: addnab/docker-run-action@v3 with: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3823c1c3..c15a4471 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -10,6 +10,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - id: action_vars run: echo "tag=${GITHUB_REF#refs/tags/}" >> $GITHUB_OUTPUT - shell: bash @@ -61,6 +63,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: BetaHuhn/repo-file-sync-action@v1 with: GH_PAT: ${{ secrets.AIVEN_CI_PAT__VALID_WHILE_ALEKS_IS_EMPLOYED }} diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index a21a1782..f5803377 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -12,6 +12,8 @@ jobs: - 1.24.10 steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: actions/setup-go@v5 with: go-version-file: go.mod diff --git a/.github/workflows/trunk-upgrade.yml b/.github/workflows/trunk-upgrade.yml index b582c6fa..c657fb87 100644 --- a/.github/workflows/trunk-upgrade.yml +++ b/.github/workflows/trunk-upgrade.yml @@ -16,6 +16,8 @@ jobs: pull-requests: write # For trunk to create PRs steps: - uses: actions/checkout@v4 + with: + fetch-depth: 0 - uses: actions/setup-go@v5 with: go-version-file: go.mod From f66dfe054cc1bfbcb5150198468e9c394ee966ca Mon Sep 17 00:00:00 2001 From: Timo Riski Date: Thu, 18 Jan 2024 14:57:28 +0100 Subject: [PATCH 5/5] chore(userconfigs): generate files --- CHANGELOG.md | 12 ++++++++++++ .../userconfig/service/clickhouse/clickhouse.go | 3 ++- api/v1alpha1/userconfig/service/grafana/grafana.go | 9 ++++++++- .../service/grafana/zz_generated.deepcopy.go | 10 ++++++++++ api/v1alpha1/userconfig/service/kafka/kafka.go | 3 ++- .../service/kafka_connect/kafka_connect.go | 3 ++- .../userconfig/service/opensearch/opensearch.go | 3 ++- api/v1alpha1/userconfig/service/pg/pg.go | 2 +- api/v1alpha1/userconfig/service/redis/redis.go | 3 ++- .../templates/aiven.io_clickhouses.yaml | 2 +- .../templates/aiven.io_grafanas.yaml | 10 +++++++++- .../templates/aiven.io_kafkaconnects.yaml | 2 +- .../templates/aiven.io_kafkas.yaml | 2 +- .../templates/aiven.io_opensearches.yaml | 2 +- .../templates/aiven.io_postgresqls.yaml | 1 + .../templates/aiven.io_redis.yaml | 2 +- config/crd/bases/aiven.io_clickhouses.yaml | 2 +- config/crd/bases/aiven.io_grafanas.yaml | 10 +++++++++- config/crd/bases/aiven.io_kafkaconnects.yaml | 2 +- config/crd/bases/aiven.io_kafkas.yaml | 2 +- config/crd/bases/aiven.io_opensearches.yaml | 2 +- config/crd/bases/aiven.io_postgresqls.yaml | 1 + config/crd/bases/aiven.io_redis.yaml | 2 +- docs/docs/api-reference/clickhouse.md | 2 +- docs/docs/api-reference/grafana.md | 4 +++- docs/docs/api-reference/kafka.md | 2 +- docs/docs/api-reference/kafkaconnect.md | 2 +- docs/docs/api-reference/opensearch.md | 2 +- docs/docs/api-reference/postgresql.md | 2 +- docs/docs/api-reference/redis.md | 2 +- 30 files changed, 80 insertions(+), 26 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 0f03f7a3..2e72f24a 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -22,6 +22,18 @@ alerts about upcoming maintenance updates or warnings about service instability - Add `Redis` field `technicalEmails`, type `array`: Defines the email addresses that will receive alerts about upcoming maintenance updates or warnings about service instability +- Change `Clickhouse` field `userConfig.additional_backup_regions`: deprecated +- Add `Grafana` field `userConfig.auth_github.auto_login`, type `boolean`: Allow users to bypass the + login screen and automatically log in +- Add `Grafana` field `userConfig.auth_github.skip_org_role_sync`, type `boolean`: Stop automatically + syncing user roles +- Change `Grafana` field `userConfig.additional_backup_regions`: deprecated +- Change `KafkaConnect` field `userConfig.additional_backup_regions`: deprecated +- Change `Kafka` field `userConfig.additional_backup_regions`: deprecated +- Change `OpenSearch` field `userConfig.additional_backup_regions`: deprecated +- Change `PostgreSQL` field `userConfig.pg_version`: enum ~~`[11, 12, 13, 14, 15]`~~ → `[11, 12, 13, +14, 15, 16]` +- Change `Redis` field `userConfig.additional_backup_regions`: deprecated ## v0.16.1 - 2023-12-15 diff --git a/api/v1alpha1/userconfig/service/clickhouse/clickhouse.go b/api/v1alpha1/userconfig/service/clickhouse/clickhouse.go index 780e7cb6..7d3b0358 100644 --- a/api/v1alpha1/userconfig/service/clickhouse/clickhouse.go +++ b/api/v1alpha1/userconfig/service/clickhouse/clickhouse.go @@ -60,7 +60,8 @@ type PublicAccess struct { } type ClickhouseUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // +kubebuilder:validation:MaxItems=1024 diff --git a/api/v1alpha1/userconfig/service/grafana/grafana.go b/api/v1alpha1/userconfig/service/grafana/grafana.go index 41e881be..0919db9b 100644 --- a/api/v1alpha1/userconfig/service/grafana/grafana.go +++ b/api/v1alpha1/userconfig/service/grafana/grafana.go @@ -92,6 +92,9 @@ type AuthGithub struct { // Require users to belong to one of given organizations AllowedOrganizations []string `groups:"create,update" json:"allowed_organizations,omitempty"` + // Allow users to bypass the login screen and automatically log in + AutoLogin *bool `groups:"create,update" json:"auto_login,omitempty"` + // +kubebuilder:validation:MaxLength=1024 // +kubebuilder:validation:Pattern=`^[\040-\176]+$` // Client ID from provider @@ -102,6 +105,9 @@ type AuthGithub struct { // Client secret from provider ClientSecret string `groups:"create,update" json:"client_secret"` + // Stop automatically syncing user roles + SkipOrgRoleSync *bool `groups:"create,update" json:"skip_org_role_sync,omitempty"` + // +kubebuilder:validation:MaxItems=50 // Require users to belong to one of given team IDs TeamIds []int `groups:"create,update" json:"team_ids,omitempty"` @@ -292,7 +298,8 @@ type SmtpServer struct { } type GrafanaUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // Enable or disable Grafana legacy alerting functionality. This should not be enabled with unified_alerting_enabled. diff --git a/api/v1alpha1/userconfig/service/grafana/zz_generated.deepcopy.go b/api/v1alpha1/userconfig/service/grafana/zz_generated.deepcopy.go index 27af6676..a5da9fa7 100644 --- a/api/v1alpha1/userconfig/service/grafana/zz_generated.deepcopy.go +++ b/api/v1alpha1/userconfig/service/grafana/zz_generated.deepcopy.go @@ -95,6 +95,16 @@ func (in *AuthGithub) DeepCopyInto(out *AuthGithub) { *out = make([]string, len(*in)) copy(*out, *in) } + if in.AutoLogin != nil { + in, out := &in.AutoLogin, &out.AutoLogin + *out = new(bool) + **out = **in + } + if in.SkipOrgRoleSync != nil { + in, out := &in.SkipOrgRoleSync, &out.SkipOrgRoleSync + *out = new(bool) + **out = **in + } if in.TeamIds != nil { in, out := &in.TeamIds, &out.TeamIds *out = make([]int, len(*in)) diff --git a/api/v1alpha1/userconfig/service/kafka/kafka.go b/api/v1alpha1/userconfig/service/kafka/kafka.go index 642becb3..6e44029d 100644 --- a/api/v1alpha1/userconfig/service/kafka/kafka.go +++ b/api/v1alpha1/userconfig/service/kafka/kafka.go @@ -440,7 +440,8 @@ type TieredStorage struct { } type KafkaUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // Allow access to read Kafka topic messages in the Aiven Console and REST API. diff --git a/api/v1alpha1/userconfig/service/kafka_connect/kafka_connect.go b/api/v1alpha1/userconfig/service/kafka_connect/kafka_connect.go index 8dbe8f83..71bb08c0 100644 --- a/api/v1alpha1/userconfig/service/kafka_connect/kafka_connect.go +++ b/api/v1alpha1/userconfig/service/kafka_connect/kafka_connect.go @@ -124,7 +124,8 @@ type PublicAccess struct { } type KafkaConnectUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // +kubebuilder:validation:MaxItems=1024 diff --git a/api/v1alpha1/userconfig/service/opensearch/opensearch.go b/api/v1alpha1/userconfig/service/opensearch/opensearch.go index 5700543f..8e52b318 100644 --- a/api/v1alpha1/userconfig/service/opensearch/opensearch.go +++ b/api/v1alpha1/userconfig/service/opensearch/opensearch.go @@ -462,7 +462,8 @@ type Saml struct { } type OpensearchUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // +kubebuilder:validation:MaxLength=255 diff --git a/api/v1alpha1/userconfig/service/pg/pg.go b/api/v1alpha1/userconfig/service/pg/pg.go index d8667b29..407aeb6a 100644 --- a/api/v1alpha1/userconfig/service/pg/pg.go +++ b/api/v1alpha1/userconfig/service/pg/pg.go @@ -458,7 +458,7 @@ type PgUserConfig struct { // Enable the pg_stat_monitor extension. Enabling this extension will cause the cluster to be restarted.When this extension is enabled, pg_stat_statements results for utility commands are unreliable PgStatMonitorEnable *bool `groups:"create,update" json:"pg_stat_monitor_enable,omitempty"` - // +kubebuilder:validation:Enum="11";"12";"13";"14";"15" + // +kubebuilder:validation:Enum="11";"12";"13";"14";"15";"16" // PostgreSQL major version PgVersion *string `groups:"create,update" json:"pg_version,omitempty"` diff --git a/api/v1alpha1/userconfig/service/redis/redis.go b/api/v1alpha1/userconfig/service/redis/redis.go index 53391af4..2ee14a52 100644 --- a/api/v1alpha1/userconfig/service/redis/redis.go +++ b/api/v1alpha1/userconfig/service/redis/redis.go @@ -77,7 +77,8 @@ type PublicAccess struct { } type RedisUserConfig struct { // +kubebuilder:validation:MaxItems=1 - // Additional Cloud Regions for Backup Replication + // +kubebuilder:deprecatedversion:warning="additional_backup_regions is deprecated" + // Deprecated. Additional Cloud Regions for Backup Replication AdditionalBackupRegions []string `groups:"create,update" json:"additional_backup_regions,omitempty"` // +kubebuilder:validation:MaxItems=1024 diff --git a/charts/aiven-operator-crds/templates/aiven.io_clickhouses.yaml b/charts/aiven-operator-crds/templates/aiven.io_clickhouses.yaml index 5779dde0..16fb143e 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_clickhouses.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_clickhouses.yaml @@ -198,7 +198,7 @@ spec: description: OpenSearch specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/charts/aiven-operator-crds/templates/aiven.io_grafanas.yaml b/charts/aiven-operator-crds/templates/aiven.io_grafanas.yaml index 160acecf..082a3685 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_grafanas.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_grafanas.yaml @@ -212,7 +212,7 @@ spec: description: Cassandra specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 @@ -376,6 +376,11 @@ spec: type: string maxItems: 50 type: array + auto_login: + description: + Allow users to bypass the login screen and automatically + log in + type: boolean client_id: description: Client ID from provider maxLength: 1024 @@ -386,6 +391,9 @@ spec: maxLength: 1024 pattern: ^[\040-\176]+$ type: string + skip_org_role_sync: + description: Stop automatically syncing user roles + type: boolean team_ids: description: Require users to belong to one of given team diff --git a/charts/aiven-operator-crds/templates/aiven.io_kafkaconnects.yaml b/charts/aiven-operator-crds/templates/aiven.io_kafkaconnects.yaml index ee2ed732..03b0152d 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_kafkaconnects.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_kafkaconnects.yaml @@ -164,7 +164,7 @@ spec: description: KafkaConnect specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/charts/aiven-operator-crds/templates/aiven.io_kafkas.yaml b/charts/aiven-operator-crds/templates/aiven.io_kafkas.yaml index d93745eb..e845cdc8 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_kafkas.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_kafkas.yaml @@ -219,7 +219,7 @@ spec: description: Kafka specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/charts/aiven-operator-crds/templates/aiven.io_opensearches.yaml b/charts/aiven-operator-crds/templates/aiven.io_opensearches.yaml index 3595098a..44f1f054 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_opensearches.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_opensearches.yaml @@ -198,7 +198,7 @@ spec: description: OpenSearch specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/charts/aiven-operator-crds/templates/aiven.io_postgresqls.yaml b/charts/aiven-operator-crds/templates/aiven.io_postgresqls.yaml index a6497c73..9c2576f0 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_postgresqls.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_postgresqls.yaml @@ -761,6 +761,7 @@ spec: - "13" - "14" - "15" + - "16" type: string pgbouncer: description: PGBouncer connection pooling settings diff --git a/charts/aiven-operator-crds/templates/aiven.io_redis.yaml b/charts/aiven-operator-crds/templates/aiven.io_redis.yaml index f0ddc8d6..b7914c2b 100644 --- a/charts/aiven-operator-crds/templates/aiven.io_redis.yaml +++ b/charts/aiven-operator-crds/templates/aiven.io_redis.yaml @@ -198,7 +198,7 @@ spec: description: Redis specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/config/crd/bases/aiven.io_clickhouses.yaml b/config/crd/bases/aiven.io_clickhouses.yaml index 5779dde0..16fb143e 100644 --- a/config/crd/bases/aiven.io_clickhouses.yaml +++ b/config/crd/bases/aiven.io_clickhouses.yaml @@ -198,7 +198,7 @@ spec: description: OpenSearch specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/config/crd/bases/aiven.io_grafanas.yaml b/config/crd/bases/aiven.io_grafanas.yaml index 160acecf..082a3685 100644 --- a/config/crd/bases/aiven.io_grafanas.yaml +++ b/config/crd/bases/aiven.io_grafanas.yaml @@ -212,7 +212,7 @@ spec: description: Cassandra specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 @@ -376,6 +376,11 @@ spec: type: string maxItems: 50 type: array + auto_login: + description: + Allow users to bypass the login screen and automatically + log in + type: boolean client_id: description: Client ID from provider maxLength: 1024 @@ -386,6 +391,9 @@ spec: maxLength: 1024 pattern: ^[\040-\176]+$ type: string + skip_org_role_sync: + description: Stop automatically syncing user roles + type: boolean team_ids: description: Require users to belong to one of given team diff --git a/config/crd/bases/aiven.io_kafkaconnects.yaml b/config/crd/bases/aiven.io_kafkaconnects.yaml index ee2ed732..03b0152d 100644 --- a/config/crd/bases/aiven.io_kafkaconnects.yaml +++ b/config/crd/bases/aiven.io_kafkaconnects.yaml @@ -164,7 +164,7 @@ spec: description: KafkaConnect specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/config/crd/bases/aiven.io_kafkas.yaml b/config/crd/bases/aiven.io_kafkas.yaml index d93745eb..e845cdc8 100644 --- a/config/crd/bases/aiven.io_kafkas.yaml +++ b/config/crd/bases/aiven.io_kafkas.yaml @@ -219,7 +219,7 @@ spec: description: Kafka specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/config/crd/bases/aiven.io_opensearches.yaml b/config/crd/bases/aiven.io_opensearches.yaml index 3595098a..44f1f054 100644 --- a/config/crd/bases/aiven.io_opensearches.yaml +++ b/config/crd/bases/aiven.io_opensearches.yaml @@ -198,7 +198,7 @@ spec: description: OpenSearch specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/config/crd/bases/aiven.io_postgresqls.yaml b/config/crd/bases/aiven.io_postgresqls.yaml index a6497c73..9c2576f0 100644 --- a/config/crd/bases/aiven.io_postgresqls.yaml +++ b/config/crd/bases/aiven.io_postgresqls.yaml @@ -761,6 +761,7 @@ spec: - "13" - "14" - "15" + - "16" type: string pgbouncer: description: PGBouncer connection pooling settings diff --git a/config/crd/bases/aiven.io_redis.yaml b/config/crd/bases/aiven.io_redis.yaml index f0ddc8d6..b7914c2b 100644 --- a/config/crd/bases/aiven.io_redis.yaml +++ b/config/crd/bases/aiven.io_redis.yaml @@ -198,7 +198,7 @@ spec: description: Redis specific user configuration options properties: additional_backup_regions: - description: Additional Cloud Regions for Backup Replication + description: Deprecated. Additional Cloud Regions for Backup Replication items: type: string maxItems: 1 diff --git a/docs/docs/api-reference/clickhouse.md b/docs/docs/api-reference/clickhouse.md index fdd0dd43..cc8cf9e8 100644 --- a/docs/docs/api-reference/clickhouse.md +++ b/docs/docs/api-reference/clickhouse.md @@ -138,7 +138,7 @@ OpenSearch specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`ip_filter`](#spec.userConfig.ip_filter-property){: name='spec.userConfig.ip_filter-property'} (array of objects, MaxItems: 1024). Allow incoming connections from CIDR address block, e.g. `10.20.0.0/16`. See below for [nested schema](#spec.userConfig.ip_filter). - [`private_access`](#spec.userConfig.private_access-property){: name='spec.userConfig.private_access-property'} (object). Allow access to selected service ports from private networks. See below for [nested schema](#spec.userConfig.private_access). - [`privatelink_access`](#spec.userConfig.privatelink_access-property){: name='spec.userConfig.privatelink_access-property'} (object). Allow access to selected service components through Privatelink. See below for [nested schema](#spec.userConfig.privatelink_access). diff --git a/docs/docs/api-reference/grafana.md b/docs/docs/api-reference/grafana.md index d3bf3192..ed6865b8 100644 --- a/docs/docs/api-reference/grafana.md +++ b/docs/docs/api-reference/grafana.md @@ -146,7 +146,7 @@ Cassandra specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`alerting_enabled`](#spec.userConfig.alerting_enabled-property){: name='spec.userConfig.alerting_enabled-property'} (boolean). Enable or disable Grafana legacy alerting functionality. This should not be enabled with unified_alerting_enabled. - [`alerting_error_or_timeout`](#spec.userConfig.alerting_error_or_timeout-property){: name='spec.userConfig.alerting_error_or_timeout-property'} (string, Enum: `alerting`, `keep_state`). Default error or timeout setting for new alerting rules. - [`alerting_max_annotations_to_keep`](#spec.userConfig.alerting_max_annotations_to_keep-property){: name='spec.userConfig.alerting_max_annotations_to_keep-property'} (integer, Minimum: 0, Maximum: 1000000). Max number of alert annotations that Grafana stores. 0 (default) keeps all alert annotations. @@ -244,6 +244,8 @@ Github Auth integration. - [`allow_sign_up`](#spec.userConfig.auth_github.allow_sign_up-property){: name='spec.userConfig.auth_github.allow_sign_up-property'} (boolean). Automatically sign-up users on successful sign-in. - [`allowed_organizations`](#spec.userConfig.auth_github.allowed_organizations-property){: name='spec.userConfig.auth_github.allowed_organizations-property'} (array of strings, MaxItems: 50). Require users to belong to one of given organizations. +- [`auto_login`](#spec.userConfig.auth_github.auto_login-property){: name='spec.userConfig.auth_github.auto_login-property'} (boolean). Allow users to bypass the login screen and automatically log in. +- [`skip_org_role_sync`](#spec.userConfig.auth_github.skip_org_role_sync-property){: name='spec.userConfig.auth_github.skip_org_role_sync-property'} (boolean). Stop automatically syncing user roles. - [`team_ids`](#spec.userConfig.auth_github.team_ids-property){: name='spec.userConfig.auth_github.team_ids-property'} (array of integers, MaxItems: 50). Require users to belong to one of given team IDs. ### auth_gitlab {: #spec.userConfig.auth_gitlab } diff --git a/docs/docs/api-reference/kafka.md b/docs/docs/api-reference/kafka.md index 27088fd4..3ceb7225 100644 --- a/docs/docs/api-reference/kafka.md +++ b/docs/docs/api-reference/kafka.md @@ -139,7 +139,7 @@ Kafka specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`aiven_kafka_topic_messages`](#spec.userConfig.aiven_kafka_topic_messages-property){: name='spec.userConfig.aiven_kafka_topic_messages-property'} (boolean). Allow access to read Kafka topic messages in the Aiven Console and REST API. - [`custom_domain`](#spec.userConfig.custom_domain-property){: name='spec.userConfig.custom_domain-property'} (string, MaxLength: 255). Serve the web frontend using a custom CNAME pointing to the Aiven DNS name. - [`ip_filter`](#spec.userConfig.ip_filter-property){: name='spec.userConfig.ip_filter-property'} (array of objects, MaxItems: 1024). Allow incoming connections from CIDR address block, e.g. `10.20.0.0/16`. See below for [nested schema](#spec.userConfig.ip_filter). diff --git a/docs/docs/api-reference/kafkaconnect.md b/docs/docs/api-reference/kafkaconnect.md index 7340f051..c998da80 100644 --- a/docs/docs/api-reference/kafkaconnect.md +++ b/docs/docs/api-reference/kafkaconnect.md @@ -115,7 +115,7 @@ KafkaConnect specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`ip_filter`](#spec.userConfig.ip_filter-property){: name='spec.userConfig.ip_filter-property'} (array of objects, MaxItems: 1024). Allow incoming connections from CIDR address block, e.g. `10.20.0.0/16`. See below for [nested schema](#spec.userConfig.ip_filter). - [`kafka_connect`](#spec.userConfig.kafka_connect-property){: name='spec.userConfig.kafka_connect-property'} (object). Kafka Connect configuration values. See below for [nested schema](#spec.userConfig.kafka_connect). - [`private_access`](#spec.userConfig.private_access-property){: name='spec.userConfig.private_access-property'} (object). Allow access to selected service ports from private networks. See below for [nested schema](#spec.userConfig.private_access). diff --git a/docs/docs/api-reference/opensearch.md b/docs/docs/api-reference/opensearch.md index 928a4c4a..2ccbda77 100644 --- a/docs/docs/api-reference/opensearch.md +++ b/docs/docs/api-reference/opensearch.md @@ -139,7 +139,7 @@ OpenSearch specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`custom_domain`](#spec.userConfig.custom_domain-property){: name='spec.userConfig.custom_domain-property'} (string, MaxLength: 255). Serve the web frontend using a custom CNAME pointing to the Aiven DNS name. - [`disable_replication_factor_adjustment`](#spec.userConfig.disable_replication_factor_adjustment-property){: name='spec.userConfig.disable_replication_factor_adjustment-property'} (boolean). DEPRECATED: Disable automatic replication factor adjustment for multi-node services. By default, Aiven ensures all indexes are replicated at least to two nodes. Note: Due to potential data loss in case of losing a service node, this setting can no longer be activated. - [`index_patterns`](#spec.userConfig.index_patterns-property){: name='spec.userConfig.index_patterns-property'} (array of objects, MaxItems: 512). Index patterns. See below for [nested schema](#spec.userConfig.index_patterns). diff --git a/docs/docs/api-reference/postgresql.md b/docs/docs/api-reference/postgresql.md index 0c85f88f..d9c546ce 100644 --- a/docs/docs/api-reference/postgresql.md +++ b/docs/docs/api-reference/postgresql.md @@ -154,7 +154,7 @@ PostgreSQL specific user configuration options. - [`pg_read_replica`](#spec.userConfig.pg_read_replica-property){: name='spec.userConfig.pg_read_replica-property'} (boolean). Should the service which is being forked be a read replica (deprecated, use read_replica service integration instead). - [`pg_service_to_fork_from`](#spec.userConfig.pg_service_to_fork_from-property){: name='spec.userConfig.pg_service_to_fork_from-property'} (string, Immutable, MaxLength: 64). Name of the PG Service from which to fork (deprecated, use service_to_fork_from). This has effect only when a new service is being created. - [`pg_stat_monitor_enable`](#spec.userConfig.pg_stat_monitor_enable-property){: name='spec.userConfig.pg_stat_monitor_enable-property'} (boolean). Enable the pg_stat_monitor extension. Enabling this extension will cause the cluster to be restarted.When this extension is enabled, pg_stat_statements results for utility commands are unreliable. -- [`pg_version`](#spec.userConfig.pg_version-property){: name='spec.userConfig.pg_version-property'} (string, Enum: `11`, `12`, `13`, `14`, `15`). PostgreSQL major version. +- [`pg_version`](#spec.userConfig.pg_version-property){: name='spec.userConfig.pg_version-property'} (string, Enum: `11`, `12`, `13`, `14`, `15`, `16`). PostgreSQL major version. - [`pgbouncer`](#spec.userConfig.pgbouncer-property){: name='spec.userConfig.pgbouncer-property'} (object). PGBouncer connection pooling settings. See below for [nested schema](#spec.userConfig.pgbouncer). - [`pglookout`](#spec.userConfig.pglookout-property){: name='spec.userConfig.pglookout-property'} (object). System-wide settings for pglookout. See below for [nested schema](#spec.userConfig.pglookout). - [`private_access`](#spec.userConfig.private_access-property){: name='spec.userConfig.private_access-property'} (object). Allow access to selected service ports from private networks. See below for [nested schema](#spec.userConfig.private_access). diff --git a/docs/docs/api-reference/redis.md b/docs/docs/api-reference/redis.md index 17e1667e..7fa59529 100644 --- a/docs/docs/api-reference/redis.md +++ b/docs/docs/api-reference/redis.md @@ -141,7 +141,7 @@ Redis specific user configuration options. **Optional** -- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Additional Cloud Regions for Backup Replication. +- [`additional_backup_regions`](#spec.userConfig.additional_backup_regions-property){: name='spec.userConfig.additional_backup_regions-property'} (array of strings, MaxItems: 1). Deprecated. Additional Cloud Regions for Backup Replication. - [`ip_filter`](#spec.userConfig.ip_filter-property){: name='spec.userConfig.ip_filter-property'} (array of objects, MaxItems: 1024). Allow incoming connections from CIDR address block, e.g. `10.20.0.0/16`. See below for [nested schema](#spec.userConfig.ip_filter). - [`migration`](#spec.userConfig.migration-property){: name='spec.userConfig.migration-property'} (object). Migrate data from existing server. See below for [nested schema](#spec.userConfig.migration). - [`private_access`](#spec.userConfig.private_access-property){: name='spec.userConfig.private_access-property'} (object). Allow access to selected service ports from private networks. See below for [nested schema](#spec.userConfig.private_access).