Skip to content

Commit 3c58298

Browse files
mertgonulhorsegegunespooknull
authored
K8SPSMDB-850 - Server Side Encryption Support (#1198)
* K8SPSMDB-850 - Server Side Encryption Support * fmt * manifests * update `cr.yamll` * update `restore.yaml` --------- Co-authored-by: Viacheslav Sarzhan <[email protected]> Co-authored-by: Ege Güneş <[email protected]> Co-authored-by: Andrii Dema <[email protected]>
1 parent 5b31035 commit 3c58298

File tree

13 files changed

+280
-9
lines changed

13 files changed

+280
-9
lines changed

config/crd/bases/psmdb.percona.com_perconaservermongodbbackups.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -119,6 +119,22 @@ spec:
119119
type: string
120120
region:
121121
type: string
122+
serverSideEncryption:
123+
properties:
124+
kmsKeyID:
125+
type: string
126+
sseAlgorithm:
127+
type: string
128+
sseCustomerAlgorithm:
129+
type: string
130+
sseCustomerKey:
131+
type: string
132+
required:
133+
- kmsKeyID
134+
- sseAlgorithm
135+
- sseCustomerAlgorithm
136+
- sseCustomerKey
137+
type: object
122138
storageClass:
123139
type: string
124140
uploadPartSize:

config/crd/bases/psmdb.percona.com_perconaservermongodbrestores.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -89,6 +89,22 @@ spec:
8989
type: string
9090
region:
9191
type: string
92+
serverSideEncryption:
93+
properties:
94+
kmsKeyID:
95+
type: string
96+
sseAlgorithm:
97+
type: string
98+
sseCustomerAlgorithm:
99+
type: string
100+
sseCustomerKey:
101+
type: string
102+
required:
103+
- kmsKeyID
104+
- sseAlgorithm
105+
- sseCustomerAlgorithm
106+
- sseCustomerKey
107+
type: object
92108
storageClass:
93109
type: string
94110
uploadPartSize:

config/crd/bases/psmdb.percona.com_perconaservermongodbs.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -258,6 +258,22 @@ spec:
258258
type: string
259259
region:
260260
type: string
261+
serverSideEncryption:
262+
properties:
263+
kmsKeyID:
264+
type: string
265+
sseAlgorithm:
266+
type: string
267+
sseCustomerAlgorithm:
268+
type: string
269+
sseCustomerKey:
270+
type: string
271+
required:
272+
- kmsKeyID
273+
- sseAlgorithm
274+
- sseCustomerAlgorithm
275+
- sseCustomerKey
276+
type: object
261277
storageClass:
262278
type: string
263279
uploadPartSize:

deploy/backup/restore.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,6 +13,11 @@ spec:
1313
# destination: s3://S3-BACKUP-BUCKET-NAME-HERE/BACKUP-DESTINATION
1414
# s3:
1515
# credentialsSecret: my-cluster-name-backup-s3
16+
# serverSideEncryption:
17+
# kmsKeyID: 1234abcd-12ab-34cd-56ef-1234567890ab
18+
# sseAlgorithm: AES256
19+
# sseCustomerAlgorithm: AES256
20+
# sseCustomerKey: Y3VzdG9tZXIta2V5
1621
# region: us-west-2
1722
# bucket: S3-BACKUP-BUCKET-NAME-HERE
1823
# endpointUrl: https://s3.us-west-2.amazonaws.com/

deploy/bundle.yaml

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -118,6 +118,22 @@ spec:
118118
type: string
119119
region:
120120
type: string
121+
serverSideEncryption:
122+
properties:
123+
kmsKeyID:
124+
type: string
125+
sseAlgorithm:
126+
type: string
127+
sseCustomerAlgorithm:
128+
type: string
129+
sseCustomerKey:
130+
type: string
131+
required:
132+
- kmsKeyID
133+
- sseAlgorithm
134+
- sseCustomerAlgorithm
135+
- sseCustomerKey
136+
type: object
121137
storageClass:
122138
type: string
123139
uploadPartSize:
@@ -231,6 +247,22 @@ spec:
231247
type: string
232248
region:
233249
type: string
250+
serverSideEncryption:
251+
properties:
252+
kmsKeyID:
253+
type: string
254+
sseAlgorithm:
255+
type: string
256+
sseCustomerAlgorithm:
257+
type: string
258+
sseCustomerKey:
259+
type: string
260+
required:
261+
- kmsKeyID
262+
- sseAlgorithm
263+
- sseCustomerAlgorithm
264+
- sseCustomerKey
265+
type: object
234266
storageClass:
235267
type: string
236268
uploadPartSize:
@@ -863,6 +895,22 @@ spec:
863895
type: string
864896
region:
865897
type: string
898+
serverSideEncryption:
899+
properties:
900+
kmsKeyID:
901+
type: string
902+
sseAlgorithm:
903+
type: string
904+
sseCustomerAlgorithm:
905+
type: string
906+
sseCustomerKey:
907+
type: string
908+
required:
909+
- kmsKeyID
910+
- sseAlgorithm
911+
- sseCustomerAlgorithm
912+
- sseCustomerKey
913+
type: object
866914
storageClass:
867915
type: string
868916
uploadPartSize:

deploy/cr.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -517,6 +517,11 @@ spec:
517517
# s3:
518518
# bucket: S3-BACKUP-BUCKET-NAME-HERE
519519
# credentialsSecret: my-cluster-name-backup-s3
520+
# serverSideEncryption:
521+
# kmsKeyID: 1234abcd-12ab-34cd-56ef-1234567890ab
522+
# sseAlgorithm: AES256
523+
# sseCustomerAlgorithm: AES256
524+
# sseCustomerKey: Y3VzdG9tZXIta2V5
520525
# region: us-west-2
521526
# prefix: ""
522527
# uploadPartSize: 10485760

deploy/crd.yaml

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -118,6 +118,22 @@ spec:
118118
type: string
119119
region:
120120
type: string
121+
serverSideEncryption:
122+
properties:
123+
kmsKeyID:
124+
type: string
125+
sseAlgorithm:
126+
type: string
127+
sseCustomerAlgorithm:
128+
type: string
129+
sseCustomerKey:
130+
type: string
131+
required:
132+
- kmsKeyID
133+
- sseAlgorithm
134+
- sseCustomerAlgorithm
135+
- sseCustomerKey
136+
type: object
121137
storageClass:
122138
type: string
123139
uploadPartSize:
@@ -231,6 +247,22 @@ spec:
231247
type: string
232248
region:
233249
type: string
250+
serverSideEncryption:
251+
properties:
252+
kmsKeyID:
253+
type: string
254+
sseAlgorithm:
255+
type: string
256+
sseCustomerAlgorithm:
257+
type: string
258+
sseCustomerKey:
259+
type: string
260+
required:
261+
- kmsKeyID
262+
- sseAlgorithm
263+
- sseCustomerAlgorithm
264+
- sseCustomerKey
265+
type: object
234266
storageClass:
235267
type: string
236268
uploadPartSize:
@@ -863,6 +895,22 @@ spec:
863895
type: string
864896
region:
865897
type: string
898+
serverSideEncryption:
899+
properties:
900+
kmsKeyID:
901+
type: string
902+
sseAlgorithm:
903+
type: string
904+
sseCustomerAlgorithm:
905+
type: string
906+
sseCustomerKey:
907+
type: string
908+
required:
909+
- kmsKeyID
910+
- sseAlgorithm
911+
- sseCustomerAlgorithm
912+
- sseCustomerKey
913+
type: object
866914
storageClass:
867915
type: string
868916
uploadPartSize:

deploy/cw-bundle.yaml

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -118,6 +118,22 @@ spec:
118118
type: string
119119
region:
120120
type: string
121+
serverSideEncryption:
122+
properties:
123+
kmsKeyID:
124+
type: string
125+
sseAlgorithm:
126+
type: string
127+
sseCustomerAlgorithm:
128+
type: string
129+
sseCustomerKey:
130+
type: string
131+
required:
132+
- kmsKeyID
133+
- sseAlgorithm
134+
- sseCustomerAlgorithm
135+
- sseCustomerKey
136+
type: object
121137
storageClass:
122138
type: string
123139
uploadPartSize:
@@ -231,6 +247,22 @@ spec:
231247
type: string
232248
region:
233249
type: string
250+
serverSideEncryption:
251+
properties:
252+
kmsKeyID:
253+
type: string
254+
sseAlgorithm:
255+
type: string
256+
sseCustomerAlgorithm:
257+
type: string
258+
sseCustomerKey:
259+
type: string
260+
required:
261+
- kmsKeyID
262+
- sseAlgorithm
263+
- sseCustomerAlgorithm
264+
- sseCustomerKey
265+
type: object
234266
storageClass:
235267
type: string
236268
uploadPartSize:
@@ -863,6 +895,22 @@ spec:
863895
type: string
864896
region:
865897
type: string
898+
serverSideEncryption:
899+
properties:
900+
kmsKeyID:
901+
type: string
902+
sseAlgorithm:
903+
type: string
904+
sseCustomerAlgorithm:
905+
type: string
906+
sseCustomerKey:
907+
type: string
908+
required:
909+
- kmsKeyID
910+
- sseAlgorithm
911+
- sseCustomerAlgorithm
912+
- sseCustomerKey
913+
type: object
866914
storageClass:
867915
type: string
868916
uploadPartSize:

e2e-tests/version-service/conf/crd.yaml

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -118,6 +118,22 @@ spec:
118118
type: string
119119
region:
120120
type: string
121+
serverSideEncryption:
122+
properties:
123+
kmsKeyID:
124+
type: string
125+
sseAlgorithm:
126+
type: string
127+
sseCustomerAlgorithm:
128+
type: string
129+
sseCustomerKey:
130+
type: string
131+
required:
132+
- kmsKeyID
133+
- sseAlgorithm
134+
- sseCustomerAlgorithm
135+
- sseCustomerKey
136+
type: object
121137
storageClass:
122138
type: string
123139
uploadPartSize:
@@ -231,6 +247,22 @@ spec:
231247
type: string
232248
region:
233249
type: string
250+
serverSideEncryption:
251+
properties:
252+
kmsKeyID:
253+
type: string
254+
sseAlgorithm:
255+
type: string
256+
sseCustomerAlgorithm:
257+
type: string
258+
sseCustomerKey:
259+
type: string
260+
required:
261+
- kmsKeyID
262+
- sseAlgorithm
263+
- sseCustomerAlgorithm
264+
- sseCustomerKey
265+
type: object
234266
storageClass:
235267
type: string
236268
uploadPartSize:
@@ -863,6 +895,22 @@ spec:
863895
type: string
864896
region:
865897
type: string
898+
serverSideEncryption:
899+
properties:
900+
kmsKeyID:
901+
type: string
902+
sseAlgorithm:
903+
type: string
904+
sseCustomerAlgorithm:
905+
type: string
906+
sseCustomerKey:
907+
type: string
908+
required:
909+
- kmsKeyID
910+
- sseAlgorithm
911+
- sseCustomerAlgorithm
912+
- sseCustomerKey
913+
type: object
866914
storageClass:
867915
type: string
868916
uploadPartSize:

0 commit comments

Comments
 (0)