Skip to content

Commit

Permalink
remove etcdencryption and etcdencryptionsetid from the project. Will …
Browse files Browse the repository at this point in the history 
…implement in the future
  • Loading branch information
Jonathan Chang committed Feb 24, 2025
1 parent ae6684d commit 59ce0ca
Show file tree
Hide file tree
Showing 19 changed files with 18 additions and 90 deletions.
10 changes: 3 additions & 7 deletions ...ement/examples/2024-06-10-preview/HcpOpenShiftClusters_CreateOrUpdate_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,6 @@
"api": {
"visibility": "public"
},
"etcdEncryption": true,
"disableUserWorkloadMonitoring": true,
"proxy": {
"httpProxy": "sjjbjvkimlvtwdnwjodcajidcoompt",
Expand All @@ -38,8 +37,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"externalAuth": {
"enabled": true
Expand Down Expand Up @@ -96,8 +94,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "https://oidc.contoso.com",
"externalAuth": {
Expand Down Expand Up @@ -215,8 +212,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "https://oidc.contoso.com",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...uster.Management/examples/2024-06-10-preview/HcpOpenShiftClusters_Get_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions .../examples/2024-06-10-preview/HcpOpenShiftClusters_ListByResourceGroup_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,8 +46,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...t/examples/2024-06-10-preview/HcpOpenShiftClusters_ListBySubscription_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...er.Management/examples/2024-06-10-preview/HcpOpenShiftClusters_Update_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,8 +70,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
12 changes: 0 additions & 12 deletions api/redhatopenshift/HcpCluster.Management/hcpCluster-models.tsp
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,12 +77,6 @@ model HcpOpenShiftClusterProperties {
@visibility("read")
api: ApiProfile;

/** Enables customer ETCD encryption, set during creation
* When set to true, `platform.etcdEncryptionSetId` must be set
*/
@visibility("create", "read")
etcdEncryption?: boolean = false;

/** Disable user workload monitoring */
@visibility("create", "update")
disableUserWorkloadMonitoring?: boolean = false;
Expand Down Expand Up @@ -300,12 +294,6 @@ model PlatformProfile {
/** ResourceId for the network security group attached to the cluster subnet */
networkSecurityGroupId?: NetworkSecurityGroupResourceId;

/** The id of the disk encryption set to be used for etcd.
* Configure this when `etcdEncryption` is set to true
* Is used the https://learn.microsoft.com/en-us/azure/storage/common/customer-managed-keys-overview
*/
etcdEncryptionSetId?: string;

/** The configuration that the operators of the cluster have to authenticate to Azure */
operatorsAuthentication: OperatorsAuthenticationProfile;
}
Expand Down
10 changes: 3 additions & 7 deletions ...eview/2024-06-10-preview/examples/HcpOpenShiftClusters_CreateOrUpdate_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,6 @@
"api": {
"visibility": "public"
},
"etcdEncryption": true,
"disableUserWorkloadMonitoring": true,
"proxy": {
"httpProxy": "sjjbjvkimlvtwdnwjodcajidcoompt",
Expand All @@ -38,8 +37,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"externalAuth": {
"enabled": true
Expand Down Expand Up @@ -96,8 +94,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "https://oidc.contoso.com",
"externalAuth": {
Expand Down Expand Up @@ -215,8 +212,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "https://oidc.contoso.com",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...clusters/preview/2024-06-10-preview/examples/HcpOpenShiftClusters_Get_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions .../2024-06-10-preview/examples/HcpOpenShiftClusters_ListByResourceGroup_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,8 +46,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...w/2024-06-10-preview/examples/HcpOpenShiftClusters_ListBySubscription_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
3 changes: 1 addition & 2 deletions ...sters/preview/2024-06-10-preview/examples/HcpOpenShiftClusters_Update_MaximumSet_Gen.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,8 +70,7 @@
"managedResourceGroup": "nhyhywrxupo",
"subnetId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/virtualNetworks/hcp-network-example/subnets/example-subnet",
"outboundType": "loadBalancer",
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example",
"etcdEncryptionSetId": "mrhumnvbsnnzduuhw"
"networkSecurityGroupId": "/subscriptions/FDEA43EA-0230-4A7D-BDEE-F3AFF2183B1D/resourceGroups/resourceGroupName/providers/Microsoft.Network/networkSecurityGroups/nsg-example"
},
"issuerUrl": "pqfgpubcuaaovvpeqal",
"externalAuth": {
Expand Down
13 changes: 0 additions & 13 deletions ...rce-manager/Microsoft.RedHatOpenShift/hcpclusters/preview/2024-06-10-preview/openapi.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1382,15 +1382,6 @@
"description": "Shows the cluster API server profile",
"readOnly": true
},
"etcdEncryption": {
"type": "boolean",
"description": "Enables customer ETCD encryption, set during creation\nWhen set to true, `platform.etcdEncryptionSetId` must be set",
"default": false,
"x-ms-mutability": [
"read",
"create"
]
},
"disableUserWorkloadMonitoring": {
"type": "boolean",
"description": "Disable user workload monitoring",
Expand Down Expand Up @@ -1913,10 +1904,6 @@
"$ref": "#/definitions/NetworkSecurityGroupResourceId",
"description": "ResourceId for the network security group attached to the cluster subnet"
},
"etcdEncryptionSetId": {
"type": "string",
"description": "The id of the disk encryption set to be used for etcd.\nConfigure this when `etcdEncryption` is set to true\nIs used the https://learn.microsoft.com/en-us/azure/storage/common/customer-managed-keys-overview"
},
"operatorsAuthentication": {
"$ref": "#/definitions/OperatorsAuthenticationProfile",
"description": "The configuration that the operators of the cluster have to authenticate to Azure"
Expand Down
6 changes: 1 addition & 5 deletions frontend/pkg/frontend/ocm.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,7 +103,6 @@ func ConvertCStoHCPOpenShiftCluster(resourceID *azcorearm.ResourceID, cluster *a
URL: cluster.API().URL(),
Visibility: convertListeningToVisibility(cluster.API().Listening()),
},
EtcdEncryption: cluster.EtcdEncryption(),
DisableUserWorkloadMonitoring: cluster.DisableUserWorkloadMonitoring(),
Proxy: api.ProxyProfile{
HTTPProxy: cluster.Proxy().HTTPProxy(),
Expand All @@ -116,7 +115,6 @@ func ConvertCStoHCPOpenShiftCluster(resourceID *azcorearm.ResourceID, cluster *a
SubnetID: cluster.Azure().SubnetResourceID(),
OutboundType: convertOutboundTypeCSToRP(cluster.Azure().NodesOutboundConnectivity().OutboundType()),
NetworkSecurityGroupID: cluster.Azure().NetworkSecurityGroupResourceID(),
EtcdEncryptionSetID: "",
},
IssuerURL: "",
ExternalAuth: api.ExternalAuthConfigProfile{
Expand Down Expand Up @@ -186,7 +184,6 @@ func (f *Frontend) BuildCSCluster(resourceID *azcorearm.ResourceID, requestHeade
clusterBuilder := arohcpv1alpha1.NewCluster()

// FIXME HcpOpenShiftCluster attributes not being passed:
// PlatformProfile.EtcdEncryptionSetID (no CS equivalent?)
// ExternalAuth (TODO, complicated)

// These attributes cannot be updated after cluster creation.
Expand Down Expand Up @@ -215,8 +212,7 @@ func (f *Frontend) BuildCSCluster(resourceID *azcorearm.ResourceID, requestHeade
MachineCIDR(hcpCluster.Properties.Network.MachineCIDR).
HostPrefix(int(hcpCluster.Properties.Network.HostPrefix))).
API(arohcpv1alpha1.NewClusterAPI().
Listening(convertVisibilityToListening(hcpCluster.Properties.API.Visibility))).
EtcdEncryption(hcpCluster.Properties.EtcdEncryption)
Listening(convertVisibilityToListening(hcpCluster.Properties.API.Visibility)))

azureBuilder := arohcpv1alpha1.NewAzure().
TenantID(requestHeader.Get(arm.HeaderNameHomeTenantID)).
Expand Down
1 change: 0 additions & 1 deletion frontend/utils/create.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -62,7 +62,6 @@ func CreateJSONFile() error {
API: api.APIProfile{
Visibility: api.Visibility("public"),
},
EtcdEncryption: false,
DisableUserWorkloadMonitoring: false,
Proxy: api.ProxyProfile{},
Platform: api.PlatformProfile{
Expand Down
Loading

0 comments on commit 59ce0ca

Please sign in to comment.