Merge pull request #2 from movetokube/feat/operatorhub

Feat/operatorhub

Author: hitman99

README.md

@@ -1,4 +1,4 @@
-# PostgreSQL operator for Kubernetes
+# External PostgreSQL server operator for Kubernetes
 
 ## Features
 * creates a database

deploy/dev/postgres.yaml

@@ -2,6 +2,7 @@ apiVersion: v1
 kind: Service
 metadata:
   name: postgres
+  namespace: databases
 spec:
   selector:
     app: postgres
@@ -16,6 +17,7 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   name: postgres-config
+  namespace: databases
   labels:
     app: postgres
 data:
@@ -29,6 +31,7 @@ apiVersion: extensions/v1beta1
 kind: Deployment
 metadata:
   name: postgres
+  namespace: databases
 spec:
   replicas: 1
   template:

deploy/olm-catalog/ext-postgres-operator/0.2.0/ext-postgres-operator.crd.yaml

@@ -0,0 +1,36 @@
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: postgres.db.movetokube.com
+spec:
+  group: db.movetokube.com
+  names:
+    kind: Postgres
+    listKind: PostgresList
+    plural: postgres
+    singular: postgres
+  scope: Namespaced
+  validation:
+    openAPIV3Schema:
+      properties:
+        apiVersion:
+          description: 'APIVersion defines the versioned schema of this representation
+            of an object. Servers should convert recognized schemas to the latest
+            internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
+          type: string
+        kind:
+          description: 'Kind is a string value representing the REST resource this
+            object represents. Servers may infer this from the endpoint the client
+            submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
+          type: string
+        metadata:
+          type: object
+        spec:
+          type: object
+        status:
+          type: object
+  version: v1alpha1
+  versions:
+  - name: v1alpha1
+    served: true
+    storage: true

deploy/olm-catalog/ext-postgres-operator/0.2.0/ext-postgres-operator.package.yaml

@@ -0,0 +1,4 @@
+packageName: ext-postgres-operator
+channels:
+  - name: stable
+    currentCSV: ext-postgres-operator.v0.2.0

deploy/olm-catalog/ext-postgres-operator/0.2.0/ext-postgres-operator.v0.2.0.clusterserviceversion.yaml

@@ -0,0 +1,182 @@
+apiVersion: operators.coreos.com/v1alpha1
+kind: ClusterServiceVersion
+metadata:
+  annotations:
+    alm-examples: '[{"apiVersion":"db.movetokube.com/v1alpha1","kind":"Postgres","metadata":{"name":"my-db","namespace":"app"},"spec":{"database":"test-db","secretName":"my-secret"}}]'
+    capabilities: Basic Install
+    containerImage: movetokube/postgres-operator
+    description: Manage databases and roles in external PostgreSQL server or cluster
+    repository: https://github.com/movetokube/postgres-operator
+  name: ext-postgres-operator.v0.2.0
+  namespace: placeholder
+spec:
+  apiservicedefinitions: {}
+  customresourcedefinitions:
+    owned:
+    - description: Represents a resource for managing PostgreSQL database associated
+        role
+      displayName: postgres.db.movetokube.com
+      kind: Postgres
+      name: postgres.db.movetokube.com
+      version: v1alpha1
+  description: |-
+    ext-postgres-operator is an external PostgreSQL database operator. This is a very light-weight basic operator which
+    does not provide a PostgreSQL server, but rather manages databases inside an existing PostgreSQL database server (or cluster).
+    ### Features
+    This operator enables you to create roles and databases easily by defining simple Custom Resources. Operator's
+    features are as follows:
+
+    * Creates a database
+    * Creates a role which has admin access to the database
+    * Creates a secret role, password and postgres uri
+    * on CR deletion, reassigns all objects owned by role to **postgres** role, removes role and secret
+
+    ### Installation
+    This operator requires a Kubernetes Secret to be created in the **same namespace** as operator itself. Secret should
+    contain these keys: POSTGRES\_HOST, POSTGRES\_USER, POSTGRES\_PASS, POSTGRES\_URI\_ARGS.
+
+    Example
+    ```yaml
+    apiVersion: v1
+    kind: Secret
+    metadata:
+      name: ext-postgres-operator
+      namespace: operators
+    type: Opaque
+    data:
+      POSTGRES_HOST: postgres
+      POSTGRES_USER: postgres
+      POSTGRES_PASS: admin
+      POSTGRES_URI_ARGS:
+    ```
+
+    ### Custom Resources
+    Custom Resource is very simple for this operator, it only supports two keys in specification, which are defined below
+    * `spec.database` - name of PostgreSQL database that should be created (if it does not exist)
+    * `spec.secretName` - name of the secret that will contain `ROLE`, `PASSWORD` and `POSTGRES_URL`. The final secret
+    name will be format: **spec.secretName**-**CR.metadata.name**
+  displayName: Ext Postgres Operator
+  install:
+    spec:
+      clusterPermissions:
+      - rules:
+        - apiGroups:
+          - ""
+          resources:
+          - pods
+          - services
+          - endpoints
+          - persistentvolumeclaims
+          - events
+          - configmaps
+          - secrets
+          verbs:
+          - '*'
+        - apiGroups:
+          - apps
+          resources:
+          - deployments
+          - daemonsets
+          - replicasets
+          - statefulsets
+          verbs:
+          - '*'
+        - apiGroups:
+          - monitoring.coreos.com
+          resources:
+          - servicemonitors
+          verbs:
+          - get
+          - create
+        - apiGroups:
+          - apps
+          resourceNames:
+          - postgres-operator
+          resources:
+          - deployments/finalizers
+          verbs:
+          - update
+        - apiGroups:
+          - db.movetokube.com
+          resources:
+          - '*'
+          verbs:
+          - '*'
+        serviceAccountName: ext-postgres-operator
+      deployments:
+      - name: ext-postgres-operator
+        spec:
+          replicas: 1
+          selector:
+            matchLabels:
+              name: ext-postgres-operator
+          strategy: {}
+          template:
+            metadata:
+              labels:
+                name: ext-postgres-operator
+            spec:
+              containers:
+              - command:
+                - postgres-operator
+                env:
+                - name: WATCH_NAMESPACE
+                - name: POD_NAME
+                  valueFrom:
+                    fieldRef:
+                      fieldPath: metadata.name
+                - name: OPERATOR_NAME
+                  value: ext-postgres-operator
+                - name: POSTGRES_HOST
+                  valueFrom:
+                    secretKeyRef:
+                      key: POSTGRES_HOST
+                      name: ext-postgres-operator
+                - name: POSTGRES_USER
+                  valueFrom:
+                    secretKeyRef:
+                      key: POSTGRES_USER
+                      name: ext-postgres-operator
+                - name: POSTGRES_PASS
+                  valueFrom:
+                    secretKeyRef:
+                      key: POSTGRES_PASS
+                      name: ext-postgres-operator
+                - name: POSTGRES_URI_ARGS
+                  valueFrom:
+                    secretKeyRef:
+                      key: POSTGRES_URI_ARGS
+                      name: ext-postgres-operator
+                image: movetokube/postgres-operator:0.2
+                imagePullPolicy: Always
+                name: ext-postgres-operator
+                resources: {}
+              serviceAccountName: ext-postgres-operator
+    strategy: deployment
+  installModes:
+  - supported: true
+    type: OwnNamespace
+  - supported: true
+    type: SingleNamespace
+  - supported: false
+    type: MultiNamespace
+  - supported: true
+    type: AllNamespaces
+  keywords:
+  - postgres-operator
+  - postgres
+  - postgresql
+  - kubernetes
+  - database
+  labels:
+    name: ext-postgres-operator
+  links:
+  - name: movetokube.com
+    url: https://movetokube.com
+  maintainers:
+  - email: tomas@movetokube.com
+    name: Tomas Adomavicius
+  maturity: alpha
+  provider:
+    name: movetokube.com
+  version: 0.2.0

deploy/operator.yaml

@@ -1,22 +1,21 @@
 apiVersion: apps/v1
 kind: Deployment
 metadata:
-  name: postgres-operator
+  name: ext-postgres-operator
   namespace: operators
 spec:
   replicas: 1
   selector:
     matchLabels:
-      name: postgres-operator
+      name: ext-postgres-operator
   template:
     metadata:
       labels:
-        name: postgres-operator
+        name: ext-postgres-operator
     spec:
-      serviceAccountName: postgres-operator
+      serviceAccountName: ext-postgres-operator
       containers:
-        - name: postgres-operator
-          # Replace this with the built image name
+        - name: ext-postgres-operator
           image: movetokube/postgres-operator:0.2
           command:
           - postgres-operator
@@ -29,8 +28,24 @@ spec:
                 fieldRef:
                   fieldPath: metadata.name
             - name: OPERATOR_NAME
-              value: "postgres-operator"
-            - name: POSTGRES_URL
-              value: "postgresql://postgres:admin123@postgres:5432?sslmode=disable"
+              value: "ext-postgres-operator"
             - name: POSTGRES_HOST
-              value: "postgres:5432"
+              valueFrom:
+                secretKeyRef:
+                  name: ext-postgres-operator
+                  key: POSTGRES_HOST
+            - name: POSTGRES_USER
+              valueFrom:
+                secretKeyRef:
+                  name: ext-postgres-operator
+                  key: POSTGRES_USER
+            - name: POSTGRES_PASS
+              valueFrom:
+                secretKeyRef:
+                  name: ext-postgres-operator
+                  key: POSTGRES_PASS
+            - name: POSTGRES_URI_ARGS
+              valueFrom:
+                secretKeyRef:
+                  name: ext-postgres-operator
+                  key: POSTGRES_URI_ARGS

deploy/role.yaml

@@ -1,8 +1,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  creationTimestamp: null
-  name: postgres-operator
+  name: ext-postgres-operator
 rules:
 - apiGroups:
   - ""
@@ -25,17 +24,10 @@ rules:
   - statefulsets
   verbs:
   - '*'
-- apiGroups:
-  - monitoring.coreos.com
-  resources:
-  - servicemonitors
-  verbs:
-  - get
-  - create
 - apiGroups:
   - apps
   resourceNames:
-  - postgres-operator
+  - ext-postgres-operator
   resources:
   - deployments/finalizers
   verbs:

deploy/role_binding.yaml

@@ -1,12 +1,12 @@
 kind: ClusterRoleBinding
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
-  name: postgres-operator
+  name: ext-postgres-operator
 subjects:
 - kind: ServiceAccount
-  name: postgres-operator
+  name: ext-postgres-operator
   namespace: operators
 roleRef:
   kind: ClusterRole
-  name: postgres-operator
+  name: ext-postgres-operator
   apiGroup: rbac.authorization.k8s.io

deploy/secret.yaml

@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: ext-postgres-operator
+  namespace: operators
+type: Opaque
+data:
+  POSTGRES_HOST: cG9zdGdyZXMuZGF0YWJhc2Vz
+  POSTGRES_USER: cG9zdGdyZXM=
+  POSTGRES_PASS: YWRtaW4xMjM=
+  POSTGRES_URI_ARGS: c3NsbW9kZT1kaXNhYmxl

deploy/service_account.yaml

@@ -1,5 +1,5 @@
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: postgres-operator
+  name: ext-postgres-operator
   namespace: operators