Changes
- general: upgrade Kubernetes to 1.19 (#1131) (@sagikazarmark)
- general: use Vault 1.5.4 (#1132)
- operator: Custom fluentd conf path (#1134) (@idgenchev)
- operator: drop helm2 support in the chart, fix linting issues (#1139)
- operator: Update values.yaml: fix typo (#1116) (@evgkrsk)
- operator: deploy configurer only if there is any externalConfig present (#1126)
- webhook: fix: move VAULT_ENV_FROM_PATH to mutateContainers (#1117) (@rocpatel)
- webhook: add support for GCR default credentials (#1120) (@viktorradnai)
- webhook: allow specifying pod securityContext and full container securityContext (#1119) (@dbeal-wiser)
- webhook: make secretNeedsMutation check work better for DockerConfigJsonKey (#1123)
- webhook: change the resource limit/requests of copy-vault-env and vault-agent to a sane value (#1124)
- webhook: fix secret caching and add test (#1137)
- vault-env: implement aws ec2 auth method (#1095)
- cli: replace gin with net/http to avoid dependency (#1118)
- cli: handle signals properly (#1129)
- configurer: exit early if possible before touching the API (#1125)
Note about Helm charts:
From 1.6.0 the operator chart is Helm 3 only (the other charts are still compatible with Helm 2, but only on best-effort basis).
Helm2 -> Helm3 migration
If you have installed the chart with Helm 2 and now you are trying to upgrade it with Helm3 you have to be careful because Helm 3 will delete the Vault CRD from your cluster during the upgrade from Helm 2 (see helm/helm#7279). To avoid that follow these steps:
# Make sure you are using Helm 3
helm version
# version.BuildInfo{Version:"v3.3.4", GitCommit:"a61ce5633af99708171414353ed49547cf05013d", GitTreeState:"clean", GoVersion:"go1.14.9"}
# Get the latest vault-operator chart
helm repo add banzaicloud-stable https://kubernetes-charts.banzaicloud.com
helm repo update
# Delete all Helm2 releases of the vault-operator manually wit kubectl to keep the resources in the cluster
kubectl delete configmaps -n kube-system vault-operator.v1
# Delete all resources except the Vault CRD
helm template vault-operator banzaicloud-stable/vault-operator | kubectl delete -f -
# Install the new Helm3 version of the chart
helm upgrade --install vault-operator banzaicloud-stable/charts/vault-operator