fix(deps): update module github.com/sap/component-operator-runtime to v0.3.67 #115
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
![renovate-approve[bot]](https://avatars.githubusercontent.com/in/7394?s=60&v=4){kind=small}
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.3.66->v0.3.67Release Notes
sap/component-operator-runtime (github.com/sap/component-operator-runtime)
v0.3.67Compare Source
(Potentially) incompatible changes
The type
reconciler.ReconcilerOptionsis changed:CreateMissingNamespacesis replaced with a new attributeMissingNamespacesPolicythat can have the valuesCreate(default) orDoNotCreate. The default behavior is backwards compatible; only people who explicitly have set the old attribute have to adopt the new notation in the obvious way.FinalizerandFieldOwnerin the reconciler options. If unset it defaults to the reconciler name passed toreconciler.NewReconciler(), which makes that change backwards compatible.The interface
component.PolicyConfigurationwas enhanced by an additional methodGetMissingNamespacesPolicy() reconciler.MissingNamespacesPolicy. People who implemented that interface explicitly have to add this method to their implementation. Most people however probably just includecomponent.PolicySpecinto their component's spec type. They don't have to react, but should regenerate their CRD manifest, in order to expose the new fieldspec.missingNamespacesPolicywhich is now contained incomponent.PolicySpec.The type
component.ReconcilerOptionsis changed in a way similar toreconciler.ReconcilerOptions(that is, the attributeCreateMissingNamespacesis replaced byMissingNamespacesPolicyand new attributesFinalizerandFieldOwnerare added). In addition, there is a new optionDefaultServiceAccountwhich allows the name of a service account that can be used during the reconciliation of a component to impersonate the client used to reconcile the dependent objects, as long as the component does not explicitly specify an impersonation or kubeconfig (by implementing theImpersonationConfigurationorClientConfigurationinterfaces); note that the specifiedDefaultServiceAccountalways refers to themetadata.namespaceor the component.When a component resource is reconciled, two Kubernetes API clients are constructed:
ImpersonationConfigurationinterface), and an impersonation user or groups are specified by the component resource, then the specified user and groups are used to impersonate the controller's kubeconfig. Otherwise, if aDefaultServiceAccountis defined in the reconciler's options, then that service account (relative to the componentsmetadata.namespace) is used to impersonate the controller's kubeconfig. Otherwise, the controller's kubeconfig itself is used to build the local client. The local client is passed to generators via their context. For example, theHelmGeneratorandKustomizeGeneratorprovided by component-operator-runtime use the local client to realize thelocalLookupandmustLocalLookuptemplate functions.ClientConfigurationinterface), then that kubeconfig is used to build the target client. Otherwise, a local client is used (possibly impersonated), created according the the logic described above. The target client is used to manage dependent objects, and is passed to generators via their context. For example, theHelmGeneratorandKustomizeGeneratorprovided by component-operator-runtime use the target client to realize thelookupandmustLookuptemplate functions.This changes the previous impersonation logic a little bit. Other than before, no impersonation happens at all if a kubeconfig is specified (through
ClientConfiguration). In addition, relative service accounts returned byGetImpersonationUser()(that is: a user of the formsystem:serviceaccounts::name, setting an empty namespace), now will be interpreted always relative to themetadata.namespaceof the component resource; previously, the namespace specified by aPlacementConfigurationimplementation was considered as well; this is no longer the case.The
clntparameter of theHelmGeneratorandKustomizeGeneratorconstructors is now ignored (and will be removed in a future release). Instead, these generators always use the local client, constructed as described above.Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.