Jump to: navigation, search

StarlingX/Containers/Applications/app-vault

< StarlingX‎ | Containers‎ | Applications
Revision as of 21:40, 28 August 2024 by Michel.thebeau (talk | contribs) (Building)

Application: vault-armada-app

Source

Building

  • From the Debian Build environment:
VAULT_PKGS="python3-k8sapp-vault,vault-helm,vault-manager-helm,stx-vault-helm"
build-pkgs -c -p $VAULT

The packages contain:

  • python3-k8sapp-vault - sysinv integrations; helm and lifecycle
  • vault-helm - the build of upstream vault helm chart
  • vault-manager-helm - the build of Starlingx vault-manager helm chart
  • stx-vault-helm - the Starlingx application; metadata, fluxcd yaml

The final package stx-vault-helm contains the output of the others. The stx-vault-helm package is installed on the ISO. The installed application tarball is '/usr/local/share/applications/helm/vault-*.tgz'

Testing

Vault sanity should typically include:
* application lifecycle: upload, apply, remove, abort, delete, and update
* Vault with replicas=1 (AIO-SX) and replicas=3 (AIO-DX + worker or standard controller)
* Configure vault with CLI and REST API
* Workflow for applications that are Vault aware (REST API) and unaware (vault injector)
* Pod recovery
* Vault backup and restore
* Vault-manager features including: rekey, PVC conversion (upgrade)
* Download images from private registry; network isolation test