-
Notifications
You must be signed in to change notification settings - Fork 54
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add annotation for setting access mode on automounted configmap/secret files #1074
Conversation
5efb0ec
to
4c9a214
Compare
Codecov ReportPatch coverage:
Additional details and impacted files@@ Coverage Diff @@
## main #1074 +/- ##
==========================================
+ Coverage 51.48% 54.16% +2.67%
==========================================
Files 76 76
Lines 6606 6680 +74
==========================================
+ Hits 3401 3618 +217
+ Misses 2939 2778 -161
- Partials 266 284 +18
... and 2 files with indirect coverage changes Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. ☔ View full report in Codecov by Sentry. |
4c9a214
to
af1e3ab
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Tested out the sample configmaps/secrets and was able to execute them as expected. Code looks good to me as well. I'll let you add the automated tests and re-review then.
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: amisevsk, AObuchow, ibuziuk The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
New changes are detected. LGTM label has been removed. |
/retest |
Prow tests are failing due to kislyuk/yq#165 |
Add annotation controller.devfile.io/mount-access-mode: "<access-mode>" To allow configuring the access mode for files mounted from a configmap or secret. This allows mounting e.g. a script in a configmap as executable Signed-off-by: Angel Misevski <[email protected]>
Support setting access mode on automount configmaps/secrets when they are ultimately merged into a projected volume. In order to do this, it is necessary to attach the access mode to each item in each configmap/secret. Signed-off-by: Angel Misevski <[email protected]>
Signed-off-by: Angel Misevski <[email protected]>
Signed-off-by: Angel Misevski <[email protected]>
6635a50
to
a311d86
Compare
/retest |
What does this PR do?
Adds secret/configmap automount annotation
that can be used to configure file permissions on files mounted from the secret/configmap. Access mode is propagated into merged projected volumes as well.
What issues does this PR fix or reference?
Closes #1072
Is it tested? How?
To test manually, see files below
yaml resources
/tmp/access-mode/configmap/
):/tmp/access-mode/secret/
):/tmp/access-mode/projected/
):PR Checklist
/test v8-devworkspace-operator-e2e, v8-che-happy-path
to trigger)v8-devworkspace-operator-e2e
: DevWorkspace e2e testv8-che-happy-path
: Happy path for verification integration with Che