Simone Gotti

Currently task pods runs with the default service account but, to avoid pods being able to talk with the underlying k8s cluster api the account secrets aren't mounted. An additional...

Currently the k8s driver starts task pods in the same namespace where it's deployed. Add an option to define in which namespace the task pods should be executed

Currently we have initial event streaming for runs events provided by the runservice. It's currently used by the notification service. Its api and implementation could be improved a lot: -...

Define an agola config file format (like kube config) with multiple "contexts" (referencing an agola api url, token etc...) and add the agola related commands to use the config file...

The secret and variable logic has already been designed to handle external secrets providers (like hashicorp vault). The idea is to be able to support multiple user defined secrets providers...

Now we can restart a run from scratch or from failed tasks. What's not yet implemented is restarting a run from a user defined list of tasks that can be...

The microservice nature of agola will in future let use shard configstore resource and runservice runs to achieve a greater scaling. Since this is a complex argument let's write a...

If a user, org, projectgroup, project etc... is removed, the child resources should be garbage collected. Currently, on the read side, the child resources without a parent should already be...

If a project is related to a user linked account that is invalid (i.e. removed) the "projects" api should report this (and this should displayed in the ui).

Currently we can do oauth2 auth using the remote source (gitea, gitlab, github). Also provide an external (not related to git remote sources) oidc auth