- Ensure releases are enqueued on clone change only weaveworks/flux#2081
- Reorder start of processes on boot and verify informer cache sync early, to prevent the operator from hanging on boot weaveworks/flux#2103
- Use openssh-client rather than openssh in container image weaveworks/flux#2142
- Enable pprof to ease profiling weaveworks/flux#2095
- Add notes about production setup Tiller weaveworks/flux#2146
Thanks @2opremio, @willholley ,@runningman84, @stefanprodan, @squaremo, @rossf7, @hiddeco for contributing.
- During the lookup of
HelmReleases for a mirror, ensure the resource has a git chart source before comparing the mirror name weaveworks/flux#2027
Thanks to @puzza007, @squaremo, @2opremio, @stefanprodan, @hiddeco for reporting the issue, patching and reviewing it.
- Make sure client-go logs to stderr weaveworks/flux#1945
- Prevent garbage collected
HelmReleases from getting upgraded weaveworks/flux#1906
- Enqueue release update on git chart source changes and improve mirror change calculations weaveworks/flux#1906, weaveworks/flux#2005
- The operator now checks if the
HelmReleasespec has changed after it performed a dry-run, this prevents scenarios where it could enroll an older revision of aHelmReleasewhile a newer version was already known weaveworks/flux#1906 - Stop logging broadcasted Kubernetes events weaveworks/flux#1906
- Log and return early if release is not upgradable weaveworks/flux#2008
- Update client-go to
v1.11weaveworks/flux#1929 - Move images to DockerHub and have a separate pre-releases image repo weaveworks/flux#1949, weaveworks/flux#1956
- Support
armandarm64builds weaveworks/flux#1950 - Retry keyscan when building images, to mitigate for occasional timeouts weaveworks/flux#1971
Thanks @brezerk, @jpds, @stefanprodan, @2opremio, @hiddeco, @squaremo, @dholbach, @bboreham, @bricef and @stevenpall for their contributions to this release, and anyone who I have missed during this manual labour.
This release bumps the Helm API package and binary to v2.13.0;
although we have tested and found it to be backwards compatible, we
recommend running Tiller >=2.13.0 from now on.
- Detect changes made to git chart source in
HelmReleaseweaveworks/flux#1865 - Cleanup git chart source clone on
HelmReleaseremoval weaveworks/flux#1865 - Add
chartFileRefoption tovaluesFromto support using a non-default values yamel from a git-sourced Helm chart weaveworks#1909 - Reimplement
--git-poll-intervalto control polling interval of git mirrors for chart sources weaveworks/flux#1910
- Bump Helm API package and binary to
v2.13.0weaveworks/flux#1828 - Verify scanned keys in same build step as scan weaveworks/flux#1908
- Use Helm operator image from build in e2e tests weaveworks/flux#1910
Thanks to @hpurmann, @2opremio, @arturo-c, @squaremo, @stefanprodan, @hiddeco, and others for their contributions to this release, feedback, and bringing us one step closer to a GA-release.
- Prevent panic on
.spec.valuesinHelmReleasedue to merge attempt on uninitialized value weaveworks/flux#1867
- Run signal listener in a goroutine instead of deferring weaveworks/flux#1680
- Make chart operations insensitive to (missing) slashes in Helm repository URLs weaveworks/flux#1735
- Annotating resources outside of the
HelmReleasenamespace weaveworks/flux#1757
- The
HelmReleaseCRD now supports askipDepUpdateto instruct the operator to not update dependencies for charts from a git source weaveworks/flux#1712 weaveworks/flux#1823 - Azure DevOps Git host support weaveworks/flux#1729
- The UID of the
HelmReleaseis now used as dry run release name weaveworks/flux#1745 - Removed deprecated
--git-poll-intervalflag weaveworks/flux#1757 - Sync hook to instruct the operator to refresh Git mirrors weaveworks/flux#1776
- Docker image is now based on Alpine
3.9weaveworks/flux#1801 .spec.valuesin theHelmReleaseCRD is no longer mandatory weaveworks/flux#1824- With
valuesFromit is now possible to load values from secrets, config maps and URLs weaveworks/flux#1836
Thanks to @captncraig, @2opremio, @squaremo, @hiddeco, @endrec, @ahmadiq, @nmaupu, @samisq, @yinzara, @stefanprodan, and @sarath-p for their contributions.
- Add option to limit the Helm operator to a single namespace weaveworks/flux#1664
Without the contributions of @brandon-bethke-neudesic, @errordeveloper, @ncabatoff, @stefanprodan, @squaremo, and feedback of our #flux inhabitants this release would not have been possible -- thanks to all of you!
HelmReleasenow has aresetValuesfield which when set totrueresets the values to the ones built into the chart weaveworks/flux#1628- The operator now exposes a HTTP webserver (by default on port
:3030) with Prometheus metrics on/metricsand a health check endpoint on/healthzweaveworks/flux#1653
A thousand thanks to @davidkarlsen, @hiddeco, @ncabatoff, @stefanprodan, @squaremo and others for their contributions leading to this release.
- Respect proxy env entries for git operations weaveworks/flux#1556
- Reimplement git timeout after accidentally removing it in
0.5.0weaveworks/flux#1565 - Mark
--git-poll-intervalflag as deprecated weaveworks/flux#1565 - Only update chart dependencies if a
requirements.yamlexists weaveworks/flux{#1561, #1606}
HelmReleasenow has atimeoutfield (defaults to300s), giving you control over the amount of time it may take for Helm to install or upgrade your chart weaveworks/flux#1566- The Helm operator flag docs have been updated weaveworks/flux#1594
- Added tests to ensure Helm dependencies update behaviour is always as expected weaveworks/flux#1562
Thanks to @stephenmoloney, @sfrique, @mgazza, @stefanprodan, @squaremo, @rade and @hiddeco for their contributions.
- Helm releases will now stay put when an upgrade fails or the Kubernetes API connectivity is flaky, instead of getting purged weaveworks/flux#1530
Thanks to @sfrique, @brantb and @squaremo for helping document the issues leading to this bug fix, @stefanprodan for actually squashing the bug and all others that may have gone unnoticed while writing this release note.
WARNING: this release of the Helm operator is not backward-compatible:
- It uses a new custom resource
HelmRelease, and will ignoreFluxHelmReleaseresources - Some command-line arguments have changed, so the deployment manifests must also be updated
To use it, you will need to migrate custom resources to the new format supported by this version. See the upgrade guide.
This version of the Helm operator supports HelmRelease custom resources, which each specify a chart and values to use in a Helm release, as in previous versions. The main improvement is that you are now able to specify charts from Helm repos, as well as from git repo, per resource (rather than a single git repo, which is supplied to the operator).
All of these were added in weaveworks/flux#1382.
See the Helm operator guide for details.
- You can now release charts from arbitrary Helm repos
- You can now release charts from arbitrary git repos
Thanks to @demikl, @dholbach, @hiddeco, @mellana1, @squaremo, @stefanprodan, @stephenmoloney, @whereismyjetpack and others who made suggestions, logged problems, and tried out nightly builds.
This release improves support for TLS connections to Tiller; in
particular it makes it much easier to get server certificate
verification (--tiller-tls-verify) to work.
It also adds the ability to supply additional values to
FluxHelmRelease resources by attaching Kubernetes secrets. This
helps with a few use cases:
- supplying the same default values to several releases
- providing secrets (e.g., a password) to a chart that expects them as values
- using values files without inlining them into FluxHelmReleases
NB It is advised that you deploy the operator alongside Tiller v2.10 or more recent. To properly support TLS, the operator now includes code from Helm v2.10, and this may have difficulty connecting to older versions of Tiller.
- Make
--tiller-tls-verifywork as intended, by giving better instructions, and adding the argument--tiller-tls-hostnamewhich lets you specify the hostname that TLS should expect in the certificate weaveworks/flux#1484
- You can now create secrets containing a
values.yamlfile, and attach them to aFluxHelmReleaseas additional values to use weaveworks/flux#1468
Thanks to @hiddeco, @Smirl, @stefanprodan, @arthurk, @the-fine, @wstrange, @sfitts, @squaremo, @mpareja, @stephenmoloney, @justinbarrick, @pcfens for contributions to the PRs and issues leading to this release, as well as the inhabitants of #flux for high-quality, helpful discussion.
This release adds dependency handling to the Helm operator.
NB The helm operator will now update dependencies for charts by
default, which means you no longer need to vendor them. You can
switch this behaviour off with the flag --update-chart-deps=false.
- Improve chance of graceful shutdown weaveworks/flux#1439 and weaveworks/flux#1438
- The operator now runs
helm dep buildfor charts before installing or upgrading releases. This will use a lockfile if present, and update the dependencies according torequirements.yamlotherwise weaveworks/flux#1450 - A new flag
--git-timeoutcontrols how long the Helm operator will allow for git operations weaveworks/flux#1416 - The Helm operator image now includes the Helm command-line client,
which makes it easier to troubleshoot problems using
kubectl exec(as part of weaveworks/flux#1450)
This is a patch release that allows helm-op to recover from a failed release install. If a chart is broken, Tiller will reserve the name and mark the release as failed. If at a later time the chart is fixed, helm-op can't install it anymore because the release name is in use. Purging the release after each failed install allows helm-op to keep retrying the install.
- Purge release if install fails weaveworks/flux#1344
In large part this release simplifies and improves the Helm operator machinery, without changing its effect.
This release drops the -alpha suffix, but remains <1.0 and should
(still) be considered unready for production use.
- Use the same git implementation as fluxd, fixing a number of problems with SSH known_hosts and git URLs and so on weaveworks/flux#1240
- Always check that a chart release will be a change, before releasing weaveworks/flux#1254
- Add validation to the FluxHelmRelease custom resource definition,
giving the kind the short name
fhrweaveworks/flux#1253 - Detect chart release differences more reliably weaveworks/flux#1272
- Check for more recent versions and report in logs when out of date weaveworks/flux#1276
See getting started with Helm and the Helm chart instructions for information on installing the Flux with the Helm operator.
- Support using TLS connections to Tiller weaveworks/flux#1200
- Avoid continual, spurious installs in newer Kubernetes weaveworks/flux#1193
- Make it easier to override SSH config (and
known_hosts) weaveworks/flux#1188 - Annotate resources created by a Helm release with the name of the FluxHelmRelease custom resource, so they can be linked weaveworks/flux#1134
- Purge release when FluxHelmRelease is deleted, so restoring the resource can succeed weaveworks/flux#1106
- Correct permissions on baked-in SSH config weaveworks/flux#1098
- Test coverage for releasesync package weaveworks/flux#1089).
It is now possible to install Flux and the Helm operator using the helm chart in this repository.
First versioned release of the Flux Helm operator. The target features are:
- release Helm charts as specified in FluxHelmRelease resources
- these refer to charts in a single git repo, readable by the operator
- update releases when either the FluxHelmRelease resource or the chart (in git) changes
See https://github.com/weaveworks/flux/blob/helm-0.1.0-alpha/site/helm/ for more detailed explanations.