Update gatekeeper to 3.6.0

update "chart" (https://github.com/open-policy-agent/gatekeeper) from "v3.5.2" (5733cf33442d2c9485f59c181117c09e588da6cb) to "v3.6.0" (9503ef2307225c5f6e8d97e312efb008a26e36bb)

https://repo1.dso.mil/platform-one/big-bang/bigbang/-/issues/747

added 1 commit

• aec709cc - changelog updated

Compare with previous version

marked this merge request as ready

changed title from Draft: update "chart" to 3.6.0 to Update gatekeeper to 3.6.0

added statusreview label

added 6 commits

• aec709cc...7323f416 - 2 commits from branch main
• 8ab384a7 - Updated chart
• e83af3d9 - update "chart" (https://github.com/open-policy-agent/gatekeeper) from "v3.5.2"...
• ae63ac49 - changelog updated
• 6784376b - space

Compare with previous version

added 1 commit

• 93cb0a66 - space removed changelog

Compare with previous version

One of the big changes for 3.6.0 is ConstraintTemplate CRD moved to v1. How hard would it be to upgrade our ConstraintTemplates to use the v1 API spec? If it is easy, lets include it in this MR. If not, I can open up a new issue for it.

Due to the time it took to figure out the bug, determine we are accomplishing it with flux, and bypass it, perhaps this should be a new task? Although it may not be possible to make it a new task with the current error in upgrade

I was able to move our ConstraintTemplates to v1(had to add type to fix validation error) so install works. For upgrade to work locally, I had to k apply -f chart/crds. I believe the only missing piece for upgrade to work is mounting the crds to gatekeeper-update-crds-hook container. I can also take a look at this later today.

added 1 commit

• c25b51bb - Dependencies removed by kpt added back to chart

Compare with previous version

added 2 commits

• f75bfb18 - removed repeat appVersion line chart
• 4dae6532 - appVersion placement chart

Compare with previous version

added statusdoing label and removed statusreview label

added 1 commit

• 744ce565 - testing crdRepo

Compare with previous version

added 1 commit

• aa04356a - crdHook test

Compare with previous version

added 1 commit

• c1e9f3ea - crdHook test replacement

Compare with previous version

added 1 commit

• 012fdcf1 - Trying to create crdRepository image values

Compare with previous version

added 1 commit

• ad34e248 - testing crdRepositoryversions with tag

Compare with previous version

added 1 commit

• d269fb71 - removed tag from crdRepository -wasnt working

Compare with previous version

added 1 commit

• a633967e - udpated crdHook to accept new tag

Compare with previous version

added 1 commit

• f94c0dba - crdRepository tag test

Compare with previous version

added 1 commit

• 8247bff6 - crd change test

Compare with previous version

added 1 commit

• 42611ca6 - crd release update again

Compare with previous version

added 1 commit

• de5a8115 - extra tag removal

Compare with previous version

added 1 commit

• 6c02b518 - new kubectl version for crdRelease

Compare with previous version

added 1 commit

• 8cea6ab2 - testing original values with new syntax

Compare with previous version

added 1 commit

• 8ba300e4 - crd change

Compare with previous version

kubectl image and gatekeeeper-crd image output when "version" is passed

`[kubectl:v1.21.1] Client Version: version.Info{Major:"1", Minor:"21", GitVersion:"v1.21.1", GitCommit:"5e58841cce77d4bc13713ad2b91fa0d961e69192", GitTreeState:"archive", BuildDate:"2021-06-18T09:32:04Z", GoVersion:"go1.16.3", Compiler:"gc", Platform:"linux/amd64"} The connection to the server localhost:8080 was refused - did you specify the right host or port?

[Gatekeeper-crd] Client Version: version.Info{Major:"1", Minor:"21", GitVersion:"v1.21.1", GitCommit:"5e58841cce77d4bc13713ad2b91fa0d961e69192", GitTreeState:"clean", BuildDate:"2021-05-12T14:18:45Z", GoVersion:"go1.16.4", Compiler:"gc", Platform:"linux/amd64"} The connection to the server localhost:8080 was refused - did you specify the right host or port?`

added 1 commit

• 071ab56e - Changed to full URL for docker crd to test paths

Compare with previous version

added 1 commit

• c1bc44e6 - removed library from crd

Compare with previous version

added 1 commit

• 738c0ac7 - set crdRepo back to reg1 kubectl

Compare with previous version

added 1 commit

• 5d9368e8 - added image pull secrets to crds

Compare with previous version

added 1 commit

• 43e099e3 - missing indentation fixed

Compare with previous version

added 1 commit

• 3db9fd70 - added "end" to crds

Compare with previous version

added 1 commit

• 8c573b9e - changed indent

Compare with previous version

added 1 commit

• f34f1cec - removed end from crd

Compare with previous version

added 1 commit

• ae157581 - imagepullsecrets update

Compare with previous version

added 2 commits

• 9d1ab8bd - retry
• e03182a2 - imagePullSecrets update crd

Compare with previous version

added 1 commit

• 4f40939c - Indent update

Compare with previous version

added 1 commit

• 3258bb1b - Uppdated indent crds

Compare with previous version

added 1 commit

• 0206cb35 - moved imagePullSecrets

Compare with previous version

added 1 commit

• b30bb4c5 - removed string and left value crd imagepullsec

Compare with previous version

added 1 commit

• c3723d8f - imagePullSecrets CRD update

Compare with previous version

added 1 commit

• 737da604 - Reverted crds-hook

Compare with previous version

added 1 commit

• 521ac1dc - added volumes/sec/imagepullsec for crd

Compare with previous version

added 2 commits

• 9ccbf720 - crd reset
• 7f1a278d - crd svcAcct

Compare with previous version

added 1 commit

• e5818a62 - crd reset

Compare with previous version

added 1 commit

• 46a085a0 - added imagePullSec to crd-hook

Compare with previous version

added 1 commit

• 70f5826b - private-registry added to values

Compare with previous version