From 4d391b456a6ea6704041406b5330b0b323eb7ebf Mon Sep 17 00:00:00 2001 From: Andrii Dema Date: Fri, 13 Sep 2024 00:04:50 +0300 Subject: [PATCH] K8SPSMDB-1132: add `spec.secrets.keyFile` field https://perconadev.atlassian.net/browse/K8SPSMDB-1132 --- charts/psmdb-db/README.md | 12 ++++++++---- charts/psmdb-db/values.yaml | 1 + charts/psmdb-operator/crds/crd.yaml | 2 ++ 3 files changed, 11 insertions(+), 4 deletions(-) diff --git a/charts/psmdb-db/README.md b/charts/psmdb-db/README.md index fa077971..e0edb781 100644 --- a/charts/psmdb-db/README.md +++ b/charts/psmdb-db/README.md @@ -3,18 +3,22 @@ This chart deploys Percona Server for MongoDB Cluster on Kubernetes controlled by Percona Operator for MongoDB. Useful links: + - [Operator Github repository](https://github.com/percona/percona-server-mongodb-operator) - [Operator Documentation](https://www.percona.com/doc/kubernetes-operator-for-psmongodb/index.html) ## Pre-requisites -* Percona Operator for MongoDB running in your Kubernetes cluster. See installation details [here](https://github.com/percona/percona-helm-charts/blob/main/charts/psmdb-operator) or in the [Operator Documentation](https://www.percona.com/doc/kubernetes-operator-for-psmongodb/helm.html). -* Kubernetes 1.27+ -* Helm v3 + +- Percona Operator for MongoDB running in your Kubernetes cluster. See installation details [here](https://github.com/percona/percona-helm-charts/blob/main/charts/psmdb-operator) or in the [Operator Documentation](https://www.percona.com/doc/kubernetes-operator-for-psmongodb/helm.html). +- Kubernetes 1.27+ +- Helm v3 # Chart Details + This chart will deploy Percona Server for MongoDB Cluster in Kubernetes. It will create a Custom Resource, and the Operator will trigger the creation of corresponding Kubernetes primitives: StatefulSets, Pods, Secrets, etc. ## Installing the Chart + To install the chart with the `psmdb` release name using a dedicated namespace (recommended): ```sh @@ -65,6 +69,7 @@ The chart can be customized using the following configurable parameters: | | | `secrets.users` | The name of the Secrets object for the MongoDB users required to run the operator | `""` | | `secrets.encryptionKey` | Set secret for data at rest encryption key | `""` | +| `secrets.keyFile` | Specifies a secret key file for authenticating MongoDB instances | `""` | | `secrets.vault` | Specifies a secret object to provide integration with HashiCorp Vault | `""` | | `secrets.ldapSecret` | Specifies a secret object for LDAP over TLS connection between MongoDB and OpenLDAP server | `""` | | `secrets.sse` | The name of the Secrets object for server side encryption credentials | `""` | @@ -261,7 +266,6 @@ The chart can be customized using the following configurable parameters: | `backup.tasks` | Backup working schedule | `{}` | | `systemUsers` | PSMDB operator system users | `{}` | - Specify parameters using `--set key=value[,key=value]` argument to `helm install` Notice that you can use multiple replica sets only with sharding enabled. diff --git a/charts/psmdb-db/values.yaml b/charts/psmdb-db/values.yaml index b91e5240..5a7562e5 100644 --- a/charts/psmdb-db/values.yaml +++ b/charts/psmdb-db/values.yaml @@ -68,6 +68,7 @@ secrets: {} # If not set the operator generates the default secret with name -secrets # users: my-cluster-name-secrets # encryptionKey: my-cluster-name-mongodb-encryption-key + # keyFile: my-cluster-name-mongodb-keyfile # vault: my-cluster-name-vault # ldapSecret: my-ldap-secret # sse: my-cluster-name-sse diff --git a/charts/psmdb-operator/crds/crd.yaml b/charts/psmdb-operator/crds/crd.yaml index 6c2ee036..2168bc07 100644 --- a/charts/psmdb-operator/crds/crd.yaml +++ b/charts/psmdb-operator/crds/crd.yaml @@ -8860,6 +8860,8 @@ spec: properties: encryptionKey: type: string + keyFile: + type: string ldapSecret: type: string sse: