61b9fc22f6
Packaged new Helm chart version ( #745 )
...
Signed-off-by: Jorge Turrado <jorge.turrado@mail.schwarz>
Co-authored-by: Jorge Turrado <jorge.turrado@mail.schwarz>
2025-04-07 14:12:04 +02:00
8d922478ce
feat: support `BoundServiceAccountToken` triggerAuth provider ( #701 )
...
* Update CRDs for BoundServiceAccountToken triggerAuth source
Signed-off-by: Max Cao <macao@redhat.com>
* Add serviceAccountTokenCreationRoles helm chart array value
The array allows users to supply KEDA with the names and namespaces of service accounts that they would like the keda-operator to request tokens from. These service account tokens are then used in turn for the boundServiceAccountToken trigger source.
Signed-off-by: Max Cao <macao@redhat.com>
---------
Signed-off-by: Max Cao <macao@redhat.com>
2025-03-26 14:20:04 +01:00
5fa7af8ba5
add pod annotations ( #742 )
...
Signed-off-by: Theis Ferré Hjortkjær <daetfh@egmont.com>
2025-03-09 18:45:25 +01:00
7c4a10b288
http-add-on: add `app.kubernetes.io/name` label ( #740 )
...
* http-add-on: add `app.kubernetes.io/name` label
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
* fix: unify component label for interceptor services
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
---------
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2025-03-03 09:01:13 +01:00
9fdd709e08
chore(deps): bump the all-updates group with 3 updates ( #738 )
...
Bumps the all-updates group with 3 updates: [actions/checkout](https://github.com/actions/checkout ), [Azure/setup-helm](https://github.com/azure/setup-helm ) and [helm/kind-action](https://github.com/helm/kind-action ).
Updates `actions/checkout` from 2 to 4
- [Release notes](https://github.com/actions/checkout/releases )
- [Commits](https://github.com/actions/checkout/compare/v2...v4 )
Updates `Azure/setup-helm` from 3 to 4
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Commits](https://github.com/azure/setup-helm/compare/v3...v4 )
Updates `helm/kind-action` from 1.2.0 to 1.12.0
- [Release notes](https://github.com/helm/kind-action/releases )
- [Commits](https://github.com/helm/kind-action/compare/v1.2.0...v1.12.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: all-updates
- dependency-name: Azure/setup-helm
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: all-updates
- dependency-name: helm/kind-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: all-updates
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-22 09:47:33 +01:00
2292a9dd5b
chore: enable dependabot for GH actions ( #736 )
...
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2025-02-22 08:06:29 +01:00
61c460d581
release http-add-on v0.10.0 ( #737 )
...
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
2025-02-21 16:54:38 +01:00
5eb596154b
chore: update actions and kubernetes versions in CI workflows ( #735 )
...
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2025-02-21 12:25:23 +01:00
5a84b2df4a
KEDA: sync CRDs with the core ( #734 )
...
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2025-02-21 12:25:07 +01:00
d41f0af75c
HTTP Add-On: add `stackTracesEnabled` logging option ( #732 )
...
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2025-02-19 17:18:50 +01:00
ce04163bc4
fix: add forgotten crds.additionalAnnotations to crd-clustercloudeventsources.yaml ( #709 )
...
Signed-off-by: François Blondel <francois.blondel@diva-e.com>
Co-authored-by: François Blondel <francois.blondel@diva-e.com>
2025-02-06 10:59:42 +01:00
40926158e5
feat: support disabling docker legacy service links creation in keda containers ( #725 )
...
* Disable docker legacy service links
Signed-off-by: Gabi Davar <grizzly.nyo@gmail.com>
* switch default to true
Signed-off-by: Gabi Davar <grizzly.nyo@gmail.com>
---------
Signed-off-by: Gabi Davar <grizzly.nyo@gmail.com>
2025-01-26 14:26:56 +01:00
213d205ce6
Add webhook timeouts ( #731 )
...
Signed-off-by: be0x74a <be0x74a@gmail.com>
2025-01-24 20:51:01 +01:00
33070ca215
fix(rbac): add missing eventing.keda.sh permissions ( #714 )
...
Add r/w permissions for cloudeventsources and clustercloudeventsources
in the minimal-rbac ClusterRole template.
These are required to prevent a crashloop when shipping the operator
with the `watchNamespace` property.
Fixes #6084
Signed-off-by: Gaston Festari <cilindrox@gmail.com>
2025-01-23 00:17:12 +01:00
3e58b2affe
add keda default labels to cert-manager objects ( #724 )
...
Signed-off-by: Gabi Davar <grizzly.nyo@gmail.com>
2025-01-08 13:31:54 +01:00
f8fe1c28dc
Ship HTTP Add-on v0.9.0 ( #721 )
...
Signed-off-by: Jorge Turrado <jorge_turrado@hotmail.es>
2024-12-26 18:38:08 +01:00
c523cd1766
Prepare v2.16.1 ( #719 )
...
Signed-off-by: Jorge Turrado <jorge.turrado@scrm.lidl>
2024-12-24 20:41:02 +01:00
8d75dd0674
add: helm values for --enable-webhook-patching flag ( #715 )
...
* add: helm values for --enable-webhook-patching flag
Signed-off-by: krishna sindhur <krishna.sindhur@thinkbyte.ai>
* add: helm values for --enable-webhook-patching flag
Signed-off-by: krishna sindhur <krishna.sindhur@thinkbyte.ai>
---------
Signed-off-by: krishna sindhur <krishna.sindhur@thinkbyte.ai>
2024-12-16 21:50:00 +00:00
c445ec15dd
fix(cert-manager): Ensure there is at least one leaf certificate renewal when renewing the CA ( #712 )
...
* fix(cert-manager): Ensure there is at least one leaf certificate renewal when renewing the CA
The renewBefore value for the root ca was simply too low barely giving the leaf certificate any time
to renew itself. This leads to the root ca expiring before the leaf certificates expires.
By removing the renewBefore values we go back to the 2/3 default and as long as the leaf certificate
is only valid for half of the root it should be fine.
Signed-off-by: Miguel Sacristán Izcue <miguel_tete17@hotmail.com>
* set default `renewBefore` for CA to one third of duration
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
---------
Signed-off-by: Miguel Sacristán Izcue <miguel_tete17@hotmail.com>
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
Co-authored-by: Jan Wozniak <wozniak.jan@gmail.com>
2024-12-04 14:46:46 +01:00
3ad2830549
Prepare v2.16 ( #704 )
...
Co-authored-by: Jorge Turrado <jorge.turrado@scrm.lidl>
2024-11-07 10:52:57 +00:00
5e0a8d5c95
Update cloudeventsource type list ( #683 )
...
Co-authored-by: Jorge Turrado Ferrero <Jorge_turrado@hotmail.es>
2024-11-07 08:18:08 +01:00
8216f7e144
fix: metrics-server pod should define a command like other components ( #694 )
2024-11-07 08:17:31 +01:00
d57aae4fd3
Add appProtocol to services collecting metrics using mTLS ( #688 )
2024-11-07 08:16:17 +01:00
73f6a7b598
Update status about triggers and authentications types ( #700 )
...
Co-authored-by: Jorge Turrado Ferrero <Jorge_turrado@hotmail.es>
2024-11-07 07:14:55 +00:00
d62619761f
fix: Replace wildcards in RBAC objects with explicit resources and verbs ( #682 )
...
Co-authored-by: Jorge Turrado Ferrero <Jorge_turrado@hotmail.es>
2024-11-07 08:13:35 +01:00
5dd510ed72
Reverting setting HPA namespace variable ( #698 )
...
Co-authored-by: Jorge Turrado Ferrero <Jorge_turrado@hotmail.es>
2024-11-07 08:13:04 +01:00
c8b2b33660
chore: Bump k8s versions used for unit tests ( #702 )
...
* chore: Bump k8s versions used for unit tests
Signed-off-by: Jorge Turrado <jorge_turrado@hotmail.es>
* replace kube-prometheus-stack with prometheus-crds
Signed-off-by: Jorge Turrado <jorge_turrado@hotmail.es>
---------
Signed-off-by: Jorge Turrado <jorge_turrado@hotmail.es>
2024-11-07 07:51:50 +01:00
c0d3bd5d46
http-add-on: support portName on HTTPScaledObject ( #697 )
...
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
2024-10-25 10:29:52 +02:00
86b12cb2ab
chore: prepare 2.15.2 release ( #692 )
...
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
2024-10-17 12:19:13 +02:00
86cd9b1c60
Adding RBAC namespace selection for metrics server ( #674 )
...
* Added required namespace variable and values file entry, updated docs
Signed-off-by: Nils <kurt.rotzke@gmail.com>
* Added required namespace variable and values file entry, updated docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
* Updated helm-docs
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
---------
Signed-off-by: Nils <kurt.rotzke@gmail.com>
Signed-off-by: Nils Bergmüller <kurt.rotzke@gmail.com>
2024-10-14 10:57:15 +02:00
714d29f258
Add Secret GET to keda-operator minimal RBAC ( #689 )
...
Signed-off-by: Jan Wozniak <wozniak.jan@gmail.com>
2024-09-23 16:49:51 +02:00
53a1d02fed
add topology spread constraints to interceptor ( #684 )
...
Signed-off-by: Noah Yoshida <noahcy117@gmail.com>
2024-09-18 13:11:18 +02:00
a8d5aa3569
istio compatibility with appProtocol: https ( #678 )
...
Despite Istio docs stating that setting the name of the port to https
should result in the protocol being https (TLS not intercepted),
it doesn't appear to work for us, and only works by explicitly setting
appProtocol.
https://istio.io/latest/docs/ops/configuration/traffic-management/protocol-selection/#explicit-protocol-selection
Signed-off-by: Sean Liao <sean+git@liao.dev>
2024-09-09 09:24:08 +00:00
3ab87fb3c8
Create rolebinding for .Release.Namespace implicitly ( #643 )
...
* Create rolebinding for .Release.Namespace implicitly
Signed-off-by: Jirka Kremser <jiri.kremser@gmail.com>
* Operator should be able to list and watch secrets in the release ns (certs)
Signed-off-by: Jirka Kremser <jiri.kremser@gmail.com>
---------
Signed-off-by: Jirka Kremser <jiri.kremser@gmail.com>
2024-09-02 23:49:40 +02:00
2d8e903fb5
Add a pdb template for the http-add-on interceptor ( #662 )
...
There is no pod disruption budget on the http addon interceptors, which
means that during node rollover, there might not be any interceptors
available to add requests to its queue. Since the queues themselves are
in memory, that means that there would be dropped requests.
Closes #658
Signed-off-by: Aaron Batilo <AaronBatilo@gmail.com>
2024-09-02 23:42:43 +02:00
ee13a9cee3
Introduce ClusterCloudEventSource ( #644 )
...
Signed-off-by: SpiritZhou <iammrzhouzhenghan@gmail.com>
2024-09-02 21:13:03 +00:00
12433cf661
Update cloudeventsource with scaledjob event type ( #680 )
...
Signed-off-by: SpiritZhou <iammrzhouzhenghan@gmail.com>
2024-08-19 22:52:18 +00:00
1c39d0a7b1
chore(keda): Remove outdated comment ( #679 )
...
Signed-off-by: Jorge Turrado Ferrero <Jorge_turrado@hotmail.es>
2024-08-19 08:00:13 +02:00
1373262f4a
chore: Prepare v2.15.1 ( #676 )
...
Signed-off-by: Jorge Turrado <jorge_turrado@hotmail.es>
2024-08-12 12:48:25 +02:00
1b568092be
Prepare and ship v2.15 ( #671 )
...
Signed-off-by: Jorge Turrado <jorge.turrado@scrm.lidl>
2024-08-01 14:25:01 +02:00
c71fb32951
Ship release v2.14.3 ( #670 )
...
Signed-off-by: Jorge Turrado <jorge.turrado@scrm.lidl>
2024-07-31 20:15:13 +02:00
cfc06340a0
respect service.type ( #667 )
...
Signed-off-by: zyue110026 <98426905+zyue110026@users.noreply.github.com>
2024-07-31 15:34:11 +02:00
59bca22f77
fix: add forgotten crds.additionalAnnotations to crd-cloudeventsources.yaml ( #668 )
...
Signed-off-by: François Blondel <francois.blondel@diva-e.com>
Co-authored-by: François Blondel <francois.blondel@diva-e.com>
2024-07-31 15:32:34 +02:00
6e4d3620da
fix: broken "| default" logic for automountServiceAccountToken ( #665 )
...
When setting (.Values.serviceAccount.operator).automountServiceAccountToken to boolean false, the "| default" part kicks in.
Fix is strongly inspired from https://github.com/helm/helm/issues/12080#issuecomment-1555147255
Signed-off-by: François Blondel <francois.blondel@diva-e.com>
Co-authored-by: François Blondel <francois.blondel@diva-e.com>
2024-07-31 15:31:59 +02:00
5d6d5d1490
Add missing quotes for interceptor's TLS-related env vars ( #663 )
...
Signed-off-by: Jirka Kremser <jiri.kremser@gmail.com>
2024-07-16 14:34:13 +02:00
8b3a8ec6e4
Correct default registry value in values.yaml ( #660 )
2024-07-10 14:42:57 +02:00
fcc7b2fb68
http-add-on: ability to specify number of operator replicas ( #661 )
...
Signed-off-by: Zbynek Roubalik <zroubalik@gmail.com>
2024-07-10 14:40:15 +02:00
1286024d80
Comment out new option in helm values, because it breaks the old versions of keda (the cmd arg does not exist for them), this way the default value is still correctly applied for new keda version because they have the fallback implemented also in the golang code ( #659 )
...
Signed-off-by: Jirka Kremser <jiri.kremser@gmail.com>
2024-07-02 12:51:25 +02:00
8a1ad4e6d2
chore: Update comments and suggested defaults ( #651 )
...
Signed-off-by: Kamil Aliev <kamilaliev@hotmail.com>
2024-06-27 10:17:59 +02:00
3b04c40187
fix: labels on cloudeventsources CRD should be the same as other CRDs ( #656 )
...
Signed-off-by: Joel Dimbernat <joel.dimbernat@shipfix.com>
2024-06-25 21:39:55 +02:00
Jorge Turrado Ferrero