diff --git a/config/default/images.env b/config/default/images.env index 40e8c0da1..298cee6e5 100644 --- a/config/default/images.env +++ b/config/default/images.env @@ -1,4 +1,4 @@ -RELATED_IMAGE_TRILLIAN_LOG_SIGNER=registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:ee9be1a0edbe52d31fcf9755ac3ec3aeb2d5e8388e47ac8c2e2d83125fd50c44 +RELATED_IMAGE_TRILLIAN_LOG_SIGNER=registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:f882a10cf796cb3652d43bdc6e6033891290983427b679fc60fd812d7ccd2fcb RELATED_IMAGE_TRILLIAN_LOG_SERVER=registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:99285a83df8fd97e4fb0338feb35aa556171890154a00ec24ee7473ac8241d32 RELATED_IMAGE_TRILLIAN_DB=registry.redhat.io/rhtas/trillian-database-rhel9@sha256:1921a746556119f6e0d6a41dfb528555e38eda4ff046ebb889e7f8a66c13cd03 RELATED_IMAGE_TRILLIAN_NETCAT=registry.redhat.io/openshift4/ose-tools-rhel9@sha256:33582d1bf64c7273392950088b28025b5d063ac324be3fc1060513e47ed40b98 diff --git a/config/manifests/bases/rhtas-operator.clusterserviceversion.yaml b/config/manifests/bases/rhtas-operator.clusterserviceversion.yaml index 28d3dbfa4..624452c1a 100644 --- a/config/manifests/bases/rhtas-operator.clusterserviceversion.yaml +++ b/config/manifests/bases/rhtas-operator.clusterserviceversion.yaml @@ -68,8 +68,7 @@ spec: and trustworthiness of their software supply chains. displayName: Red Hat Trusted Artifact Signer icon: - - base64data: |- - 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 + - base64data: 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 mediatype: image/svg+xml install: spec: diff --git a/config/rbac/role.yaml b/config/rbac/role.yaml index 75328770d..79603d5fd 100644 --- a/config/rbac/role.yaml +++ b/config/rbac/role.yaml @@ -110,6 +110,16 @@ rules: - patch - update - watch +- apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - create + - get + - patch + - update + - watch - apiGroups: - monitoring.coreos.com resources: diff --git a/internal/controller/trillian/actions/logsigner/deployment.go b/internal/controller/trillian/actions/logsigner/deployment.go index 9c44739b8..a64c03c87 100644 --- a/internal/controller/trillian/actions/logsigner/deployment.go +++ b/internal/controller/trillian/actions/logsigner/deployment.go @@ -62,7 +62,8 @@ func (i deployAction) Handle(ctx context.Context, instance *rhtasv1alpha1.Trilli Namespace: instance.Namespace, }, }, - trillianUtils.EnsureServerDeployment(instance, images.Registry.Get(images.TrillianLogSigner), actions.LogsignerDeploymentName, actions.RBACSignerName, labels, "--force_master=true"), + trillianUtils.EnsureServerDeployment(instance, images.Registry.Get(images.TrillianLogSigner), actions.LogsignerDeploymentName, actions.RBACSignerName, labels, + "--election_system=k8s", "--lock_namespace=$(NAMESPACE)", "--lock_holder_identity=$(POD_NAME)"), ensure.ControllerReference[*apps.Deployment](instance, i.Client), ensure.Labels[*apps.Deployment](slices.Collect(maps.Keys(labels)), labels), deployment.Proxy(), diff --git a/internal/controller/trillian/actions/logsigner/rbac.go b/internal/controller/trillian/actions/logsigner/rbac.go index 3d1c50798..05901f1f3 100644 --- a/internal/controller/trillian/actions/logsigner/rbac.go +++ b/internal/controller/trillian/actions/logsigner/rbac.go @@ -5,8 +5,17 @@ import ( "github.com/securesign/operator/internal/action" "github.com/securesign/operator/internal/action/rbac" "github.com/securesign/operator/internal/controller/trillian/actions" + rbacv1 "k8s.io/api/rbac/v1" ) func NewRBACAction() action.Action[*rhtasv1alpha1.Trillian] { - return rbac.NewAction[*rhtasv1alpha1.Trillian](actions.LogSignerComponentName, actions.RBACSignerName) + return rbac.NewAction[*rhtasv1alpha1.Trillian]( + actions.LogSignerComponentName, actions.RBACSignerName, + rbac.WithRule[*rhtasv1alpha1.Trillian]( + rbacv1.PolicyRule{ + APIGroups: []string{"coordination.k8s.io"}, + Resources: []string{"leases"}, + Verbs: []string{"create", "get", "update", "watch", "patch"}, + }), + ) } diff --git a/internal/controller/trillian/trillian_controller.go b/internal/controller/trillian/trillian_controller.go index 713700271..995835598 100644 --- a/internal/controller/trillian/trillian_controller.go +++ b/internal/controller/trillian/trillian_controller.go @@ -61,6 +61,7 @@ func NewReconciler(c client.Client, scheme *runtime.Scheme, recorder record.Even //+kubebuilder:rbac:groups=rhtas.redhat.com,resources=trillians,verbs=get;list;watch;create;update;patch;delete //+kubebuilder:rbac:groups=rhtas.redhat.com,resources=trillians/status,verbs=get;update;patch //+kubebuilder:rbac:groups=rhtas.redhat.com,resources=trillians/finalizers,verbs=update +//+kubebuilder:rbac:groups=coordination.k8s.io,resources=leases,verbs=get;watch;create;update;patch // Reconcile is part of the main kubernetes reconciliation loop which aims to // move the current state of the cluster closer to the desired state. diff --git a/internal/controller/trillian/utils/server-deployment.go b/internal/controller/trillian/utils/server-deployment.go index 3fe26b501..66dab1765 100644 --- a/internal/controller/trillian/utils/server-deployment.go +++ b/internal/controller/trillian/utils/server-deployment.go @@ -125,6 +125,22 @@ func EnsureServerDeployment(instance *v1alpha1.Trillian, image string, name stri }, } + podNameEnv := kubernetes.FindEnvByNameOrCreate(container, "POD_NAME") + podNameEnv.ValueFrom = &core.EnvVarSource{ + FieldRef: &core.ObjectFieldSelector{ + APIVersion: "v1", + FieldPath: "metadata.name", + }, + } + + namespaceEnv := kubernetes.FindEnvByNameOrCreate(container, "NAMESPACE") + namespaceEnv.ValueFrom = &core.EnvVarSource{ + FieldRef: &core.ObjectFieldSelector{ + APIVersion: "v1", + FieldPath: "metadata.namespace", + }, + } + port := kubernetes.FindPortByNameOrCreate(container, "8091-tcp") port.ContainerPort = actions.ServerPort port.Protocol = core.ProtocolTCP