3.0.0

This is a major release for kube-applier, redesigning the internals to work with kubernetes Custom Resources.

On a high level:

• A new CRD is introduced, Waybill: it defines the source of manifest files as well as options related to applying them (these were mostly defined as namespace annotations previously)
• There are no more "batch" runs. Each Waybill (which corresponds to a namespace) is applied independently of others.
• Improved performance with faster, parallel runs.
• Run results are captured in the status subresource and is accessible with kubectl.
• Various issues that can occur before an attempt is made to apply a namespace are surfaced as events and the last attempted run is retained in the status subresource.
• More flexible integration with strongbox for encrypted file support per namespace. Each Waybill can define its own keys to use for its sources.
• Use delegate ServiceAccounts for applying resources. The ServiceAccount of kube-applier has limited access to resources (see the ClusterRole provided in the "cluster" kustomize base).
• kustomize bases are provided for the kube-applier deployment and required cluster-level resources, as well as for client namespaces. Default values have been set where possible to make adoption as simple as possible, while allowing customization for more complex setups.
• Improved logs and metrics.
• Tests are not using mock interfaces anymore but build on the envtest package and run against a local apiserver.

3.0.0-rc.9

• Fix typo (#210)

3.0.0-rc.8

• Implement shared strongbox keyring whitelist (#208)
• Allow whitespace in strongbox keyring annotation (#209)

3.0.0-rc.7

• base/server: adjust resources for kube-applier pod (#207)

3.0.0-rc.6

• Update server manifest resources and git-sync #206

3.0.0-rc.5

• Set default for Waybill spec (#203)
• StrongboxKeyringSecretRef can point to another namespace (#204)

3.0.0-rc.4

• Capture run setup errors in kubernetes events (#197)
• Make repositoryPath optional (#199)
• Fix cleanup of temporary files (#200)
• Rename CRD base to cluster and add ClusterRole (#201)

3.0.0-rc.3

• Make delegateServiceAccountSecretRef optional (#193)
• Update CRD (#194)
• Fix command string sanitisation (#195)
• Change duration format in status page (#196)

3.0.0-rc.2

• Add delegateServiceAccountSecretRef field to the CRD (#190)
• Move the kustomize base (#191)
• Use a default for delegateServiceAccountSecretRef (#192)

3.0.0-rc.1

This is a major release for kube-applier, redesigning the internals to work with kubernetes Custom Resources.

On a high level:

• A new CRD is introduced, Waybill: it defines the source of manifest files as well as options related to applying them (these were mostly defined as namespace annotations previously)
• There are no more "batch" runs. Each Waybill (which corresponds to a namespace) is applied independently of others.
• Run results are captured in the status subresource and is accessible with kubectl.
• Improved logs and metrics.
• Tests are not using mock interfaces anymore but build on the envtest package and run against a local apiserver.
• More flexible integration with strongbox for encrypted file support per namespace.
• Improved performance (faster runs, lower resources on average)