docker/quay
1
0
Fork 0
mirror of https://github.com/quay/quay.git synced 2026-01-27 18:42:52 +03:00
Code Activity
10,897 Commits 2,635 Branches 136 Tags
ba2aa54d3fc081c052d65c899b49f67dd6ca3ada
Commit Graph

45 Commits

Author SHA1 Message Date
Syed Mushtaq Ahmed
6356fbb1b9 deploy: Add ignore validation for py3 deployment (PROJQUAY-2542) (#1121) 
Add an environment variable to the deployment to disable config
validation
 2022-02-17 10:56:33 -05:00
Syed Mushtaq Ahmed
d43b41c58a deploy: Add GRPC service for builds (PROJQUAY-3189) (#1109) 
GRPC needs a different loadbalancer service for builders
The setting `BUILDMAN_HOSTNAME` will point to the new LB
 2022-02-10 18:42:16 -05:00
Syed Mushtaq Ahmed
293e0619de deploy: Add LB service with no proxy-protocol (PROJQUAY-2883) (#1006) 
This is required to support ALB. Without this service, the
default ELB endpoints forces the L4 proxy procotol which makes
Nginx see all the remote client IP as the IP of ALB. If the
request goes through an ELB without proxy-protocol enabled,
Nginx will parse the X-Forwarded-For header to get the remote
IP
 2021-12-01 09:58:22 -05:00
Syed Mushtaq Ahmed
1589351b74 deploy: Add clair back fill worker deployment manifests (#991) 2021-11-19 14:29:22 -05:00
Syed Mushtaq Ahmed
01d4136406 deploy: Update syslog image tag(PROJQUAY-2374) (#966) 
Set tag explicitly in the SaaS file
 2021-11-09 12:21:14 -05:00
Syed Mushtaq Ahmed
7458578d1a deploy: Seperate py3 deployment manifests (PROJQUAY-2374) (#931) 
This makes the deployment more readable via app-sre automation
 2021-11-08 15:47:23 -05:00
Syed Mushtaq Ahmed
173dfbfc8a deploy: Update quay deployment manifests for py3 canary (PROJQUAY-2373) (#902) 
This change adds the Deployment and Service resources required to
canary python3 in quay.io
 2021-10-13 15:51:24 -04:00
Syed Mushtaq Ahmed
ce3cb357bd deploy: update component label value for recovery (PROJQUAY-970) (#832) 
Adds new component label "app-recovery" for the recovery endpoint"
 2021-07-12 10:57:07 -04:00
Syed Mushtaq Ahmed
d6616e9e1f deploy: Add recovery endpoint deployment manifests (PROJQUAY-970) (#831) 
This change adds the deployment and service manifests for the recovery endpoint
that will be used for quay.io to recover accounts which have not already been
transitioned to RH SSO
 2021-07-09 16:13:49 -04:00
Syed Mushtaq Ahmed
242d4defc7 deployment: Change canary to blue deployment (PROJQUAY-1896) (#781) 
Updating from canary deployment to a blue-green style deployment
 2021-05-05 20:12:06 -04:00
Syed Mushtaq Ahmed
080010e8cd deployment: Add image tag param to the deploy file (PROJQUAY-1896) (#759) 
This change adds the parameter IMAGE_TAG_CANARY to the deployment
file quay-app.yaml to use a different image tag for the canary
deployment

Co-authored-by: Syed <syed@apache.org>
 2021-04-20 17:09:02 -04:00
Syed Mushtaq Ahmed
03c610d510 deployment: Add canary deployment to quay-app (PROJQUAY-1896) (#754) 
Adds a new deployment quay-app-canary to the deployment YAML file. This
will be picked up AppSRE when deploying quay.io. The canary deployment
can have a different image than the main deployment and can point to a
differnt config secret.

Co-authored-by: Syed <syed@apache.org>
 2021-04-20 11:07:11 -04:00
Tejas Parikh
bb5e2b5672 added quay worker env vars (#427) 2020-06-05 16:19:26 -04:00
Tejas Parikh
32330d690c added quay worker params to openshift template (#426) 2020-06-05 16:12:40 -04:00
Tejas Parikh
994c0fe097 OpenShift deploy template updates for log shipper (#425) 
This PR removes load balancer service that is no longer used. It also sets log stream name to pod name and makes ticker for syslog configurable.

[ci skip]
 2020-06-05 16:09:10 -04:00
Maor Friedman
b2b2fa6e95 quay-app template - update apiVersions and remove default readOnly (#411) 2020-06-05 14:08:39 -04:00
Maor Friedman
4f847d0efa add ServiceAccount with imagePullSecrets (#408) 2020-06-03 12:16:55 -04:00
Maor Friedman
fc95d2e2b9 fix value for DB_CONNECTION_POOLING (#386) 
* fix value for DB_CONNECTION_POOLING

* changing to true while we're at it
 2020-05-26 12:33:09 -04:00
Tejas Parikh
fd9975d20f [ci skip] param to allow us to disable conn pool (#384) 2020-05-19 13:31:10 -04:00
Jake Moshenko
6ed2b14825 Accept the entrypoint from the template. (#318) 
* Accept the entrypoint from the template.

* Add QUAY_ENTRYPOINT to the parameters section.
 2020-04-06 15:45:36 -04:00
Jake Moshenko
8dcc8ed394 Use the new registry-nomigrate entrypoint. (#314) 2020-04-03 13:23:48 -04:00
Kurtis Mullins
1b2d29d1e8 Revert "Revert "Remove the active migration for encrypted tokens now that it is complete"" 2020-01-27 11:22:22 -05:00
Tejas Parikh
50fed725bb Debug needs to be passed as string and not boolean 
[ci skip]

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2020-01-21 15:06:06 -05:00
Kurtis Mullins
90d0dbf3fb Revert "Remove the active migration for encrypted tokens now that it is complete" 2020-01-21 11:53:54 -05:00
Joseph Schorr
883a415dc4 Remove the active migration for encrypted tokens now that it is complete 
Fixes https://issues.redhat.com/browse/PROJQUAY-185
 2020-01-20 14:51:51 -05:00
Tejas Parikh
72dff0ef21 PROJQUAY-181: redirect http to https for quay.io 
[ci skip]

JIRA: https://issues.redhat.com/browse/PROJQUAY-181

http://quay.io should be redirected to https://quay.io

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2020-01-17 11:57:59 -05:00
Tejas Parikh
c90cd5d09e PROJQUAY-138: Enable proxy protocol for Quay application ELB 
[ci skip]

JIRA: https://issues.redhat.com/browse/PROJQUAY-138

Proxy protocol support must be enabled in the ELB so that quay app can get source IP address.

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2020-01-08 16:12:45 -05:00
Tejas Parikh
c7ee4ccaeb PROJQUAY-117 - Set ELB timeout to 3600 seconds 
[ci skip]

Default timeout on ELB is 60 seconds and this can cause issue when user is pushing container image with large (4GB+) layers.

JIRA: https://issues.redhat.com/browse/PROJQUAY-117

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-19 11:07:17 -05:00
Tejas Parikh
729a748125 removed extra ca certs mount 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-17 12:07:19 -05:00
Tejas Parikh
6b34f33030 mount extra ca certs in /conf/kube_extra_certs 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-17 11:50:16 -05:00
Tejas Parikh
10331e23e9 updated syslog port to string in openshift template 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-16 15:51:38 -05:00
Jake Moshenko
fdfc227f21 Merge pull request #92 from tparikh/projquay67 
PROJQUAY67 - added syslog sidecar to openshift template
 2019-12-16 13:51:34 -05:00
Jimmy Zelinskie
ba3d0bd636 openshift: use one template for all of quay 
This merges the monitoring work back into the single quay-app
deployment.

It'd only make sense to separate monitoring if it had its whole own
deployment including images etc...
 2019-12-16 12:36:20 -05:00
Jimmy Zelinskie
af868c46d0 deploy/openshift: template monitoring resources 2019-12-16 12:08:49 -05:00
Tejas Parikh
4c1ec7863e PROJQUAY67 - added syslog sidecar to openshift template 
Deploy a syslog sidecar with Quay app container and forward logs to AWS CloudWatch.

JIRA: https://issues.redhat.com/projects/PROJQUAY/issues/PROJQUAY-67

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-16 11:53:01 -05:00
Jimmy Zelinskie
2d7c0e0955 deploy: add prom service for OpenShift 2019-12-13 15:27:11 -05:00
Tejas Parikh
4200297bc7 mount the extra_ca_certs dir in /conf/stack 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-12 12:46:15 -05:00
Tejas Parikh
ae0116dc36 added metrics port to clusterip service 
JIRA: https://issues.redhat.com/browse/PROJQUAY-56

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-11 10:54:51 -05:00
Tejas Parikh
c3d0150b51 removed commented out code 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-10 13:45:25 -05:00
Tejas Parikh
43b25938ed PROJQUAY-39 modified quay liveness and readiness probes 
The Liveness and Readniess probes were not working because the connection to port 8443 was being rejected due to SSL cert issues. As the cert is setup for external domain name, requests to `localhost` were being rejected with `400` error code.

The modified check uses `curl` with `-k` (insecure) flag to check if the application is ready and later check if it is still live.

https://issues.redhat.com/browse/PROJQUAY-39

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-12-10 13:33:21 -05:00
Tejas Parikh
246597b43f PROJQUAY-23 - openshift template updated to allow custom namespace and config secret name 
Added environments for Quay container so user can provide a custom names for namespace and config secret.

Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-11-22 14:28:41 -05:00
Tejas Parikh
d0d68816f9 update QUAY_APP_DEPLOYMENT_PROGRESS_DEADLINE_SECONDS value for openshift deployment 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-11-19 16:08:27 -05:00
Tejas Parikh
f386e7acce updated memory limits and requests 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-11-18 15:10:12 -05:00
Tejas Parikh
c975807e50 added OpenShift template for Quay app 
Signed-off-by: Tejas Parikh <tparikh@redhat.com>
 2019-11-18 12:57:07 -05:00
Jimmy Zelinskie
9c0dd3b722 initial import for Open Source 🎉 2019-11-12 11:09:47 -05:00