flux2
flux2 copied to clipboard
fluxcd
Open and extensible continuous delivery solution for Kubernetes. Powered by GitOps Toolkit.
### Describe the bug Given a Kubeconfig YAML as string with a default context provided: ```sh $: echo "$kubeconfig" apiVersion: v1 clusters: - cluster: certificate-authority-data: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUMvakNDQWVhZ0F3SUJBZ0lCQURBTkJna3Foa2lHOXcwQkFRc0ZBREFWTVJNd0VRWURWUVFERXdwcmRXSmwKY201bGRHVnpNQjRYRFRJeU1Ea3dOekl6TkRReU4xb1hEVE15TURrd05ESXpORFF5TjFvd0ZURVRNQkVHQTFVRQpBeE1LYTNWaVpYSnVaWFJsY3pDQ0FTSXdEUVlKS29aSWh2Y05BUUVCQlFBRGdnRVBBRENDQVFvQ2dnRUJBS2dICk5SUjlTd1p0RVRTZHZWNlhFczdJKzNlNHNXZjVUaXNxZWk2TVY2Q0Jtbml5QURmTGtjN2M5NGFSdms5alVNU3oKa1RDdk5VdmhOTGRIOXBscXhlN2NiR2g1Rit4TTNaUUM4cEY4T09NUUQ5Mm93a0QwVVRORHU1ZWNGak95V3ZxZQprT0VyWTd0RnhSdVp4NEdWQWljaENkd1dqY05mb2JVQ05VWFkvcVI1SWFyWkZqcnErZFJEOXUvczU0M0VUdHFPCisvcWRMUG9UaEhwWCtpQnFSdzZtS09zaDRGNW9GSUhNTWR2REZ4WlhIbVFha0hMRXlFRU9oL2hmRXN2NytVMG0KcmtmYWJTSURuSXZQWUhMNXpnQUg0RUZtWUlXNG53ZWI5WFJWTDBJenc2UkpTbXROL29mVnZqRnJTMEpvY3FoKwp3VjZIby94a1NiTHZpWFpxYzFFQ0F3RUFBYU5aTUZjd0RnWURWUjBQQVFIL0JBUURBZ0trTUE4R0ExVWRFd0VCCi93UUZNQU1CQWY4d0hRWURWUjBPQkJZRUZQSmtrc0VuTHQzbTJnUTNGMWVlcERkTHVKaGtNQlVHQTFVZEVRUU8KTUF5Q0NtdDFZbVZ5Ym1WMFpYTXdEUVlKS29aSWh2Y05BUUVMQlFBRGdnRUJBRzJXVjlhQVZzRkN5UFZNOVRBcgpvdWhpdkx2ZzF4V3Q4WHdKMjlPc21ZWUZwSnBuY0ltdlJOempZaStWRmE2VGxKdjNQSnFxTDN1aXZCUzh0L1J1CmFFSmEvRjZ6K3dWV1Y2WVMzekI1TU0wNVZGZTRLWUU2MzJoSDR6UEkyZXMyemNPdzlBbkx1b2EzbGlLNi9WeEgKcWEwdFlwV3AyczVBay9mVm5rcDdscHN3TndOaWxlQXliT3pMMEM3TXRveHRCNStwZHRXWFVoMTZkc3FBMnE1SQpzSDgzVjJjZ1dHUGdHMExNL0l5ZWxzOERjeEVDYlhpNHZCdzk4UVBOeXl5S05YUjE0U21OWkJEckFkQndRSmFWClphUW5GMG5kSWdBQ2phZmZnQnFBUGRyUUhXcW5jaGQ5dis1bGFSZkVMWXhoSUZLU04vMXFONXAvczJZRDI0TFYKcHhnPQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg== server: https://127.0.0.1:51363 name: kind-test-capi-enabled-cluster...
Some Flux controllers allow Flux users to trust remote servers on a per-object basis. For example, Source Controller support CA Bundles to be set at object level, so that TLS...
Before Flux becomes GA we should review all settings across the controller flags and object fields that are security-sensitive. On the back of this review we should: - Ensure they...
Across Flux controllers the use of non-TLS based connections is not consistent. Controllers that deals only with `http` and `https` schemes have no way to block use of the `http`...
In the run-up to maturing flux APIs, we should review all CRD validation and ensure that they align with expected input. Controllers: - [ ] source-controller - [ ] kustomize-controller...
This is an umbrella issue used to track high-level initiatives in our [Maintainer's Focus board](https://github.com/orgs/fluxcd/projects/6/views/17?layout=board&filterQuery=label%3Aumbrella-issue). **Pre GA Tasks** - [ ] Adopt Kubernetes [kstatus](https://github.com/kubernetes-sigs/cli-utils/tree/v0.25.0/pkg/kstatus#conditions) standard conditions - [ ] https://github.com/fluxcd/flux2/issues/1601...
Azure Workload Identity is the next generation of workload contextual authentication, which [replaces the existing Azure Pod Identity](https://cloudblogs.microsoft.com/opensource/2022/01/18/announcing-azure-active-directory-azure-ad-workload-identity-for-kubernetes/). The features in which Flux has Azure Workload Identity supported and documented:...
### Describe the bug We use an on premise azure devops instance and a EKS cluster, we installed flux when the installer was on version 0.28 and worked perfectly. Now...
Use case: We have around 25 Helm charts we deploy in our cluster with Flux using Helm Resources. In about 80% of the dependencies we put into place, we are...
This is an umbrella issue used to track high-level initiatives in our [Maintainer's Focus board](https://github.com/orgs/fluxcd/projects/6/views/17?layout=board&filterQuery=label%3Aumbrella-issue). **Pre GA Tasks** - [ ] https://github.com/fluxcd/flux2/issues/2417 **Post GA Tasks** - [ ] #3003 -...