* chore(goreleaser): publish to discord and brew
* chore: rename caos to zitadel
* chore: remove console and grpc upload
* chore: access to tap repo
* fix(goreleaser): token to access tap repo
* ci: don't run on tags anymore
* ci: also test docker builds
* .releaserc.js entry and wf dispatch for prerel
* .releaserc.js entry and wf dispatch for prerel
* create prerelease
* create prereleases
* fix syntax
* fix: release
* test before tag
* temporarily disable tests
* fix: prerelease
* fix: add --rm-dist flag
* fix: push to zitadel-common
* fix: gcr login
* fix: release
* fix: ignore generated assets.md
* fix: don't use go-releaser before hooks
* build grpc client before testing
* fix: use docker buildkit
* debug
* debug
* fix: debug
* fix: debug
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* fix: run action steps in $GOPATH
* unignore
* fix: unignore
* fix: unignore
* build base
* fix: ignore
* no mod proxy
* fix: test using goreleaser before hook
* fix: build without having a git tag
* fix: build without having a git tag
* fix: push to ghcr
* fix: login to ghcr
* fix: login to ghcr if releasing
* fix: permit to write packages
* fix: aesthetics
* fix: login using base64 encoded key
* fix: publish images with short sha and tag
* fix: read masterkey from file for start-from-init
* fix: release if workflow_dispatch or main
* ci: only test before tag
* fix: no workdir, login action for gcr
* fix: review
* fix: run on PR
* push amd64 images to gcr
* not working
* test ci
* correct path
* test
* test
* test
* remove k8s & test
* test
* test image
* typo
* test
* fix
* test
* fix
* test
* fix
* fix windows
* fix
* fix
* fix codecov
* fix with arch
* test
* test
* test
* test
* trial
* trial
* trial
* trial
* trial
* trial
* trial
* try
* try
* first improvement
* trial
* improve
* improve
* improve
* use bash
* trial
* random test
* wip
* test with goreleaser and semrel
* fix typo
* trial
* add buildx
* define default
* force buildkit
* use buildx
* debug GH docker
* use images
* debug docker
* work around image name issues
* trial
* test
* test with prebuilt image
* fix
* use load
* test
* use only docker
* trial
* test
* use load
* test
* test with docker driver
* trial
* trial
* trial
* use arm
* upload artifacts
* try to cache grpc base
* try to use a cache
* fall back
* test
* fix
* improve
* upload artifacts
* fix
* name things
* add tag if poc
* args for protos
* remove v2 build
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat: comprehensive sentry instrumentation
* test: pass
* fix: only fetch zitadel dsn in zitadel-operator
* chore: use dns for sentry environment as soon as parsed
* fix: trust ca certs
* ci: update orbos
* docs: add usage data explanation
* fix: dont send validation errors
* docs: improve ingestion data explanation
* style: rename flag --disable-ingestion to --disable-analytics
* fix: pass --disable-analytics flag to self deployments
* fix: destroy command for sentry
* fix: update orbos
* fix: only switch environment if analytics is enabled
* fix: ensure SENTRY_DSN is always set
* test: test empty sentry dsn
* ci: invalidate build caches
* chore: use zitadel-dev if no version is passed
* chore: combine dev releases in sentry
* refactor: only check for semrel if sentry is enabled
* early prototyp
* fix some errors
* remove docker image cache
* add comment
* add false
* typo
* test cache speed
* upload artifact
* remove tag
* seperate after build step
* debug
* debug
* debug
* debug
* debug
* test gh
* test
* test
* test
* test
* test golang
* test go
* test with release image
* fix
* use scratch to export
* test
* fix path
* ref
* typo
* debug
* test
* debug
* speed up docker
* test
* debug
* debug
* try scope
* test cache
* restore cache
* reenable operator build
* fix duplicate
* fix buildpush version
* test cache
* improve caching
* test release IF
* only run console and zitadel without dispatch
* test with reworked operator
* testing without release step
* lint yaml
* fix if
* improve wording
* enable release step & only notify sentry on main
* console from file system
* update docker file paths
* remove migration line
* add statik for operator
* console files using go 1.15
* fix console default path
* improve code QL
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat(send sentry release): send sentry release
* fix(moved step and added releasetag): moved step and added releasetag
* fix(corrected var name): corrected var name
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* chore(workflow): push images only on CAOS repositories
* chore(workflow): push images only on CAOS repositories
* chore(workflow): push images only on CAOS repositories
* chore(workflow): push images only on CAOS repositories
* chore(workflow): push images only on not forked repositories
* print full repo name
* print full repo name
* print full repo name
* print full repo name
* print full repo name
* print full event
* print full event
* print full event
* use separate workflows for release and PR
* use separate workflows for release and PR
* Update zitadel.yml
* use different files for hashing the keys
* use correct path for docker and hash the dockerfile
* use codecov within steps
* proper indenting
* rename steps
* fix duplicate name
* move dockerignore
* rename things
* codecov as pre step before the build
* ignore cache path
* debug
* Update .dockerignore
* debug
* debug
* debug
* debug
* debug
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat(crd): add crd mode for operators (#1329)
* feat(operator): add base for zitadel operator
* fix(operator): changed pipeline to release operator
* fix(operator): fmt with only one parameter
* fix(operator): corrected workflow job name
* fix(zitadelctl): added restore and backuplist command
* fix(zitadelctl): scale for restore
* chore(container): use scratch for deploy container
* fix(zitadelctl): limit image to scratch
* fix(migration): added migration scripts for newer version
* fix(operator): changed handling of kubeconfig in operator logic
* fix(operator): changed handling of secrets in operator logic
* fix(operator): use new version of zitadel
* fix(operator): added path for migrations
* fix(operator): delete doublets of migration scripts
* fix(operator): delete subpaths and integrate logic into init container
* fix(operator): corrected path in dockerfile for local migrations
* fix(operator): added migrations for cockroachdb-secure
* fix(operator): delete logic for ambassador module
* fix(operator): added read and write secret commands
* fix(operator): correct and align operator pipeline with zitadel pipeline
* fix(operator): correct yaml error in operator pipeline
* fix(operator): correct action name in operator pipeline
* fix(operator): correct case-sensitive filename in operator pipeline
* fix(operator): upload artifacts from buildx output
* fix(operator): corrected attribute spelling error
* fix(operator): combined jobs for operator binary and image
* fix(operator): added missing comma in operator pipeline
* fix(operator): added codecov for operator image
* fix(operator): added codecov for operator image
* fix(testing): code changes for testing and several unit-tests (#1009)
* fix(operator): usage of interface of kubernetes client for testing and several unit-tests
* fix(operator): several unit-tests
* fix(operator): several unit-tests
* fix(operator): changed order for the operator logic
* fix(operator): added version of zitadelctl from semantic release
* fix(operator): corrected function call with version of zitadelctl
* fix(operator): corrected function call with version of zitadelctl
* fix(operator): add check output to operator release pipeline
* fix(operator): set --short length everywhere to 12
* fix(operator): zitadel setup in job instead of exec with several unit tests
* fix(operator): fixes to combine newest zitadel and testing branch
* fix(operator): corrected path in Dockerfile
* fix(operator): fixed unit-test that was ignored during changes
* fix(operator): fixed unit-test that was ignored during changes
* fix(operator): corrected Dockerfile to correctly use env variable
* fix(operator): quickfix takeoff deployment
* fix(operator): corrected the clusterrolename in the applied artifacts
* fix: update secure migrations
* fix(operator): migrations (#1057)
* fix(operator): copied migrations from orbos repository
* fix(operator): newest migrations
* chore: use cockroach-secure
* fix: rename migration
* fix: remove insecure cockroach migrations
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix: finalize labels
* fix(operator): cli logging concurrent and fixe deployment of operator during restore
* fix: finalize labels and cli commands
* fix: restore
* chore: cockroachdb is always secure
* chore: use orbos consistent-labels latest commit
* test: make tests compatible with new labels
* fix: default to sa token for start command
* fix: use cockroachdb v12.02
* fix: don't delete flyway user
* test: fix migration test
* fix: use correct table qualifiers
* fix: don't alter sequence ownership
* fix: upgrade flyway
* fix: change ownership of all dbs and tables to admin user
* fix: change defaultdb user
* fix: treat clientid status codes >= 400 as errors
* fix: reconcile specified ZITADEL version, not binary version
* fix: add ca-certs
* fix: use latest orbos code
* fix: use orbos with fixed race condition
* fix: use latest ORBOS code
* fix: use latest ORBOS code
* fix: make migration and scaling around restoring work
* fix(operator): move zitadel operator
* chore(migrations): include owner change migration
* feat(db): add code base for database operator
* fix(db): change used image registry for database operator
* fix(db): generated mock
* fix(db): add accidentally ignored file
* fix(db): add cockroachdb backup image to pipeline
* fix(db): correct pipeline and image versions
* fix(db): correct version of used orbos
* fix(db): correct database import
* fix(db): go mod tidy
* fix(db): use new version for orbos
* fix(migrations): include migrations into zitadelctl binary (#1211)
* fix(db): use statik to integrate migrations into binary
* fix(migrations): corrections unit tests and pipeline for integrated migrations into zitadelctl binary
* fix(migrations): correction in dockerfile for pipeline build
* fix(migrations): correction in dockerfile for pipeline build
* fix(migrations): dockerfile changes for cache optimization
* fix(database): correct used part-of label in database operator
* fix(database): correct used selectable label in zitadel operator
* fix(operator): correct lables for user secrets in zitadel operator
* fix(operator): correct lables for service test in zitadel operator
* fix: don't enable database features for user operations (#1227)
* fix: don't enable database features for user operations
* fix: omit database feature for connection info adapter
* fix: use latest orbos version
* fix(crd): corrected logic to get database connection and other info
* fix(crd): corrected yaml tags and start for zitadel operator
* fix(crd): move some dependencies and use consistent structure
* fix(crd): corrected unit-tests
* fix(crd): corrected main files for debug starts
* chore(pipeline): use correct version for zitadelctl build
* fix(crd): correct calculating of current db state for zitadel operator
* fix(crd): use binary version for deployment of crd mode operators
* fix(crd): add gitops attribute for reconciling
* fix(crd): corrected crd with newest version
* fix(migration): collect cleanup functions and only use them if all jobs are successful
* fix(zitadelctl): import gcp auth to connect to gke cluster
* feat: Add read and writesecret options for crd mode (#1435)
* fix: don't require orbconfig for crd mode
* test: pass
* fix(zitadelctl): import gcp auth to connect to gke cluster
* feat: add read and writesecret option for crd mode
* test: fix
* fix: make all crd secrets writable
* fix: use in-cluster configs for in-cluster operators
* chore: remove unnecessary debug files
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix: Crdoperatormerge review (#1385)
* fix: don't require orbconfig for crd mode
* test: pass
* fix(zitadelctl): import gcp auth to connect to gke cluster
* fix: ensure caos-system namespace
* fix: apply orbconfig at takeoff
* docs: improve help for creating an orbconfig
* docs: describe orbconfig properties
* docs: add --gitops to help message example
* fix(pipeline): correct upload of artifacts in dev releases
* test: pass
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix(test): corrected falsely merged tests
* chore: update orbos library
* fix: only handle exactly named and namespaced crd resource
* fix: print errors, check correct crd namespace
* fix: validate bucket secret
* chore: compile
* fix(operator): corrected secret handling when unused secrets are not defined
* fix(operator): corrected handling of jobs
* fix: dont print logs when readsecret path is provided
* fix(operator): corrected handling of jobs and sort for mounted volumes
* fix(operator): sort for volumes
* fix(operator): change orboos import to newest release
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
(cherry picked from commit fa9bd5a8e7)
* fix(operator): Standard timeout handling (#1458)
* fix: always use standard time.Duration
* fix: give backup and restore more time
* fix: give backup and restore jobs more time
(cherry picked from commit 7468b7d1e8)
* fix go mod
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
