Skip to content

[ProvazioController] Escalate provazio controller rbac to ensure full admission access #2169

[ProvazioController] Escalate provazio controller rbac to ensure full admission access

[ProvazioController] Escalate provazio controller rbac to ensure full admission access #2169

Workflow file for this run

name: CI
on: [push, pull_request]
jobs:
test:
name: Test charts
runs-on: ubuntu-latest
steps:
- uses: azure/setup-helm@v4
with:
version: '3.13.3'
- name: helm version
run: helm version
- uses: actions/checkout@v4
- name: Add Helm repos
run: make repo-add update-req
- name: Lint
run: make lint
- name: Test stable
run: make stable
- name: Test demo
run: make demo
helm-install-sanity:
name: Helm Chart Install Sanity
runs-on: ubuntu-latest
strategy:
matrix:
chart:
- coredns-updater
- dcgm-exporter
- dex-crds
- empty
- fuse-csi-driver
- gpu-feature-discovery
- iguazio-system
- mpi-operator
- node-feature-discovery
- pod-gpu-metrics-exporter
- prebaked-registry
- provazio
- pvc
- scaler
- spark-operator
- tenant
- tenant-creator
- tensorboard
- v3io-configs
- v3io-webapi
- v3iod
# Charts that require v3io storage driver to be installed
# - grafana
# - hive
# - jupyter
# - jupyterhub
# - mariadb
# - metrics-server-exporter
# - mlrun
# - pipelines
# - presto
# - registry-creds-handler
# - shell
# - spark
# - spark-history-server
# - v3io-framesd
# Other Problematic Charts
# - k8s-pod-headless-service-operator # requires manual setting image tag
# - mlrun-kit # mysql pod not starting in minikube in github workflows
steps:
- uses: actions/checkout@v4
- name: Check if chart changed
id: chart_changed
uses: tj-actions/changed-files@v41
with:
files: |
stable/${{ matrix.chart }}/
- name: Freeing up disk space
if: steps.chart_changed.outputs.any_changed == 'true'
run: |
chmod +x "${GITHUB_WORKSPACE}/hack/scripts/ci/free_space.sh"
"${GITHUB_WORKSPACE}/hack/scripts/ci/free_space.sh"
- uses: azure/setup-helm@v4
if: steps.chart_changed.outputs.any_changed == 'true'
with:
version: "v3.9.1"
- uses: manusa/[email protected]
if: steps.chart_changed.outputs.any_changed == 'true'
with:
minikube version: "v1.32.0"
kubernetes version: "v1.29.0"
driver: docker
github token: ${{ github.token }}
- name: Get latest chart dependencies
if: steps.chart_changed.outputs.any_changed == 'true'
run: |
cd stable/${{ matrix.chart }}
helm dependency update
cd -
- name: Install Helm Chart
if: steps.chart_changed.outputs.any_changed == 'true'
# the --devel flag is needed to install the latest unstable version of the chart
run: |
helm install ${{ matrix.chart }} \
--debug \
--devel \
--wait \
--timeout 600s \
./stable/${{ matrix.chart }}
- name: Output some logs in case of failure
if: ${{ failure() }}
# add set -x to print commands before executing to make logs reading easier
run: |
set -x
minikube ip
minikube logs
minikube kubectl -- --namespace ${NAMESPACE} logs --tail=-1
minikube kubectl -- --namespace ${NAMESPACE} get all
minikube kubectl -- --namespace ${NAMESPACE} get all -o yaml
minikube kubectl -- --namespace ${NAMESPACE} describe pods
minikube kubectl -- --namespace ${NAMESPACE} get cm
minikube kubectl -- --namespace ${NAMESPACE} get cm -o yaml
minikube kubectl -- --namespace ${NAMESPACE} get secrets
minikube kubectl -- --namespace ${NAMESPACE} get secrets -o yaml
minikube kubectl -- --namespace ${NAMESPACE} get pvc
minikube kubectl -- --namespace ${NAMESPACE} get pv
set +x