tegridy-io
diff --git a/‎.cruft.json‎
Lines changed: 2 additions & 2 deletions b/‎.cruft.json‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/release.yaml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/release.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/test.yaml‎
Lines changed: 2 additions & 0 deletions b/‎.github/workflows/test.yaml‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎Makefile.vars.mk‎
Lines changed: 3 additions & 3 deletions b/‎Makefile.vars.mk‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎class/defaults.yml‎
Lines changed: 7 additions & 1 deletion b/‎class/defaults.yml‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎component/main.jsonnet‎
Lines changed: 108 additions & 0 deletions b/‎component/main.jsonnet‎
Lines changed: 108 additions & 0 deletions
diff --git a/‎docs/modules/ROOT/pages/.vale.ini‎
Lines changed: 1 addition & 0 deletions b/‎docs/modules/ROOT/pages/.vale.ini‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎tests/create-db.yml‎
Lines changed: 10 additions & 0 deletions b/‎tests/create-db.yml‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎tests/golden/create-db/cockroach-operator/apps/cockroach-operator.yaml‎ b/‎tests/golden/create-db/cockroach-operator/apps/cockroach-operator.yaml‎
diff --git a/‎tests/golden/create-db/cockroach-operator/cockroach-operator/10_kustomize/cockroach-operator/admissionregistration.k8s.io_v1_mutatingwebhookconfiguration_cockroach-operator-mutating-webhook-configuration.yaml‎
Lines changed: 26 additions & 0 deletions b/‎tests/golden/create-db/cockroach-operator/cockroach-operator/10_kustomize/cockroach-operator/admissionregistration.k8s.io_v1_mutatingwebhookconfiguration_cockroach-operator-mutating-webhook-configuration.yaml‎
Lines changed: 26 additions & 0 deletions
@@ -1,13 +1,13 @@
 {
   "template": "https://github.com/projectsyn/commodore-component-template.git",
-  "commit": "73f964d1a9b834a772169d1ffe2b4406f90b2472",
+  "commit": "dcae06138d227340acb8056d0d031f32d75c09b5",
   "checkout": "main",
   "context": {
     "cookiecutter": {
       "name": "CockroachDB Operator",
       "slug": "cockroach-operator",
       "parameter_key": "cockroach_operator",
-      "test_cases": "defaults",
+      "test_cases": "defaults create-db",
       "add_lib": "n",
       "add_pp": "n",
       "add_golden": "y",
 
@@ -13,7 +13,7 @@ jobs:
           fetch-depth: "0"
       - name: Build changelog from PRs with labels
         id: build_changelog
-        uses: mikepenz/release-changelog-builder-action@v3
+        uses: mikepenz/release-changelog-builder-action@v4
         with:
           configuration: ".github/changelog-configuration.json"
           # PreReleases still get a changelog, but the next full release gets a diff since the last full release,
 
@@ -33,6 +33,7 @@ jobs:
       matrix:
         instance:
           - defaults
+          - create-db
     defaults:
       run:
         working-directory: ${{ env.COMPONENT_NAME }}
@@ -48,6 +49,7 @@ jobs:
       matrix:
         instance:
           - defaults
+          - create-db
     defaults:
       run:
         working-directory: ${{ env.COMPONENT_NAME }}
 
@@ -34,10 +34,10 @@ YAMLLINT_CONFIG ?= .yamllint.yml
 YAMLLINT_IMAGE  ?= docker.io/cytopia/yamllint:latest
 YAMLLINT_DOCKER ?= $(DOCKER_CMD) $(DOCKER_ARGS) $(root_volume) $(YAMLLINT_IMAGE)
 
-VALE_CMD  ?= $(DOCKER_CMD) $(DOCKER_ARGS) $(root_volume) --volume "$${PWD}"/docs/modules:/pages docker.io/vshn/vale:2.1.1
+VALE_CMD  ?= $(DOCKER_CMD) $(DOCKER_ARGS) $(root_volume) --volume "$${PWD}"/docs/modules:/pages ghcr.io/vshn/vale:2.15.5
 VALE_ARGS ?= --minAlertLevel=error --config=/pages/ROOT/pages/.vale.ini /pages
 
-ANTORA_PREVIEW_CMD ?= $(DOCKER_CMD) run --rm --publish 35729:35729 --publish 2020:2020 $(antora_git_volume) --volume "${PWD}/docs":/preview/antora/docs docker.io/vshn/antora-preview:3.0.1.1 --style=syn --antora=docs
+ANTORA_PREVIEW_CMD ?= $(DOCKER_CMD) run --rm --publish 35729:35729 --publish 2020:2020 $(antora_git_volume) --volume "${PWD}/docs":/preview/antora/docs ghcr.io/vshn/antora-preview:3.1.2.3 --style=syn --antora=docs
 
 COMMODORE_CMD  ?= $(DOCKER_CMD) $(DOCKER_ARGS) $(git_volume) $(root_volume) docker.io/projectsyn/commodore:latest
 COMPILE_CMD    ?= $(COMMODORE_CMD) component compile . $(commodore_args)
@@ -50,4 +50,4 @@ KUBENT_IMAGE    ?= ghcr.io/doitintl/kube-no-trouble:latest
 KUBENT_DOCKER   ?= $(DOCKER_CMD) $(DOCKER_ARGS) $(root_volume) --entrypoint=/app/kubent $(KUBENT_IMAGE)
 
 instance ?= defaults
-test_instances = tests/defaults.yml
+test_instances = tests/defaults.yml tests/create-db.yml
@@ -11,4 +11,10 @@ parameters:
       operator:
         registry: docker.io
         repository: cockroachdb/cockroach-operator
-        tag: v2.10.0
+        tag: v2.11.0
+      cockroach:
+        registry: docker.io
+        repository: cockroachdb/cockroach
+        tag: v23.1.8
+
+    databases: {}
@@ -5,6 +5,114 @@ local inv = kap.inventory();
 // The hiera parameters for the component
 local params = inv.parameters.cockroach_operator;
 
+local database(name) = [
+  // namespace
+  kube.Namespace(params.databases[name].namespace),
+  // database
+  kube._Object('crdb.cockroachlabs.com/v1alpha1', 'CrdbCluster', name + '-database') {
+    assert params.databases[name].nodes >= 3 : 'Parameter nodes should be >= 3.',
+    metadata+: {
+      labels+: {
+        'app.kubernetes.io/component': 'database',
+        'app.kubernetes.io/managed-by': 'commodore',
+        'app.kubernetes.io/name': name + '-database',
+      },
+      namespace: params.databases[name].namespace,
+    },
+    spec+: {
+      nodes: params.databases[name].nodes,
+      image: {
+        name: '%(registry)s/%(repository)s:%(tag)s' % params.images.cockroach,
+        pullPolicy: 'IfNotPresent',
+      },
+      tlsEnabled: true,
+      dataStore: {
+        pvc: {
+          spec: {
+            accessModes: [ params.databases[name].storage.accessMode ],
+            storageClassName: params.databases[name].storage.storageClass,
+            resources: {
+              requests: { storage: params.databases[name].storage.size },
+            },
+            volumeMode: 'Filesystem',
+          },
+        },
+      },
+      affinity: {
+        podAntiAffinity: {
+          requiredDuringSchedulingIgnoredDuringExecution: [
+            {
+              labelSelector: {
+                matchExpressions: [
+                  {
+                    key: 'app.kubernetes.io/name',
+                    operator: 'In',
+                    values: [ name + '-database' ],
+                  },
+                ],
+              },
+              topologyKey: 'kubernetes.io/hostname',
+            },
+          ],
+        },
+      },
+    },
+  },
+  // client
+  kube.Deployment(name + '-database-client') {
+    metadata+: {
+      labels+: {
+        'app.kubernetes.io/component': 'client',
+        'app.kubernetes.io/managed-by': 'commodore',
+        'app.kubernetes.io/name': name + '-database-client',
+      },
+      namespace: params.databases[name].namespace,
+    },
+    spec+: {
+      replicas: 1,
+      template+: {
+        spec+: {
+          serviceAccountName: 'default',
+          securityContext: {
+            seccompProfile: { type: 'RuntimeDefault' },
+          },
+          containers_:: {
+            default: kube.Container('client') {
+              image: '%(registry)s/%(repository)s:%(tag)s' % params.images.cockroach,
+              env_:: {
+                COCKROACH_CERTS_DIR: '/cockroach/certs-dir',
+                COCKROACH_HOST: name + '-database-public',
+              },
+              command: [ 'sleep', 'infinity' ],
+              securityContext: {
+                allowPrivilegeEscalation: false,
+                capabilities: { drop: [ 'ALL' ] },
+              },
+              volumeMounts_:: {
+                certs: { mountPath: '/cockroach/certs-dir' },
+              },
+            },
+          },
+          volumes_:: {
+            certs: {
+              secret: {
+                secretName: name + '-database-root',
+                items: [
+                  { key: 'ca.crt', path: 'ca.crt' },
+                  { key: 'tls.crt', path: 'client.root.crt' },
+                  { key: 'tls.key', path: 'client.root.key' },
+                ],
+              },
+            },
+          },
+        },
+      },
+    },
+  },
+];
+
 // Define outputs below
 {
+  ['20_db_' + name]: database(name)
+  for name in std.objectFields(params.databases)
 }
@@ -0,0 +1 @@
+# Vale config
@@ -0,0 +1,10 @@
+parameters:
+  cockroach_operator:
+    databases:
+      apps:
+        namespace: app-database
+        nodes: 3
+        storage:
+          accessMode: ReadWriteOnce
+          storageClass: ''
+          size: 5Gi
@@ -0,0 +1,26 @@
+apiVersion: admissionregistration.k8s.io/v1
+kind: MutatingWebhookConfiguration
+metadata:
+  creationTimestamp: null
+  name: cockroach-operator-mutating-webhook-configuration
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: cockroach-operator-webhook-service
+      namespace: syn-cockroach-operator
+      path: /mutate-crdb-cockroachlabs-com-v1alpha1-crdbcluster
+  failurePolicy: Fail
+  name: mcrdbcluster.kb.io
+  rules:
+  - apiGroups:
+    - crdb.cockroachlabs.com
+    apiVersions:
+    - v1alpha1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - crdbclusters
+  sideEffects: None