Aperture-py

Changelog

List of aperture PRs merged since 2.12.1 release. For the full list of changes, see [list of changes][changes]

Changed default etcd log level to error (2515)


**Configuration Update:**
- Changed the default log level from "warn" to "error" in `EtcdConfig` struct, affecting the logging behavior of the `etcd` component across the system. This change is reflected in both agent and controller configurations.

> 🐇
> In the land of code, where logic intertwines,
> A rabbit hops, making changes in lines.
> From "warn" to "error", we elevate our sight,
> To catch only errors in our log's light.
> 🎉 Celebrate this shift, for it brings clarity,
> In our quest for flawless software parity! 🥕


Fixed helm template and config parsing issues (2513)

**Refactor:**
- Updated string parameters format and default values in `agent.md` and
`controller.md`.
- Added `omitempty` tag to `LogLevel` field in `LogConfig` struct
(`log.go`) and `Network` field in `ListenerConfig` struct
(`listener.go`), making these fields optional.

> 🐇💻
>
> In the land of code, where logic intertwines,
> A rabbit hops, leaving refactor signs.
> With each soft thump, a change takes form,
> Making our codebase far from norm.
> 'Omit if empty', a new chant we sing,
> To the tune of improvement, these changes bring. 🎉🥕

[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.12.1...releases/aperture-controller/v2.12.2-rc.1

Changelog

List of aperture PRs merged since 2.12.0 release. For the full list of changes, see [list of changes][changes]

Actually restart etcd watcher after its cancellation (2502)

Also, initial bootstrap now happens in background instead of in OnStart.

Probably resolves: 2477
Part of: 2464

Switched to non-root user in aperture docker images (2501)

Description of change

We have seen some Vulnerabilities related to use of root users being
used in the docker images.

**Security Enhancement:**
- Added a new user with specific UID and GID in Dockerfiles for
`aperture-agent` and `aperture-controller`, improving container security
by running with reduced privileges.
- Updated default values and validation rules for `PodSecurityContext`
and `ContainerSecurityContext` in `common_types.go`.
- Introduced `RunAsGroup` field in the security context of agent daemon
set, controller deployment, and several containers to specify group ID.

**Test Update:**
- Adjusted tests to reflect changes in security context.

> 🎉 "In the land of code, where logic intertwines,
> A rabbit hopped forth, leaving tracks in the lines.
> With a twitch of its nose, and a flick of its ear,
> It enhanced security, banishing fear.
> Now each Docker runs with less privilege in sight,
> Making our software a much safer delight! 🐇💻🔒"

fix pre-commit (2504)

coderabbitai: ignore

[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.12.0...releases/aperture-controller/v2.12.1

Changelog

List of aperture PRs merged since 2.12.0 release. For the full list of changes, see [list of changes][changes]

Actually restart etcd watcher after its cancellation (2502)

Also, initial bootstrap now happens in background instead of in OnStart.

Probably resolves: 2477
Part of: 2464

Switched to non-root user in aperture docker images (2501)

Description of change

We have seen some Vulnerabilities related to use of root users being
used in the docker images.

**Security Enhancement:**
- Added a new user with specific UID and GID in Dockerfiles for
`aperture-agent` and `aperture-controller`, improving container security
by running with reduced privileges.
- Updated default values and validation rules for `PodSecurityContext`
and `ContainerSecurityContext` in `common_types.go`.
- Introduced `RunAsGroup` field in the security context of agent daemon
set, controller deployment, and several containers to specify group ID.

**Test Update:**
- Adjusted tests to reflect changes in security context.

> 🎉 "In the land of code, where logic intertwines,
> A rabbit hopped forth, leaving tracks in the lines.
> With a twitch of its nose, and a flick of its ear,
> It enhanced security, banishing fear.
> Now each Docker runs with less privilege in sight,
> Making our software a much safer delight! 🐇💻🔒"

fix pre-commit (2504)

coderabbitai: ignore

[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.12.0...releases/aperture-controller/v2.12.1-rc.2

Changelog

List of aperture PRs merged since 2.12.0 release. For the full list of changes, see [list of changes][changes]

Actually restart etcd watcher after its cancellation (2502)

Also, initial bootstrap now happens in background instead of in OnStart.

Probably resolves: 2477
Part of: 2464

Switched to non-root user in aperture docker images (2501)

Description of change

We have seen some Vulnerabilities related to use of root users being
used in the docker images.

**Security Enhancement:**
- Added a new user with specific UID and GID in Dockerfiles for
`aperture-agent` and `aperture-controller`, improving container security
by running with reduced privileges.
- Updated default values and validation rules for `PodSecurityContext`
and `ContainerSecurityContext` in `common_types.go`.
- Introduced `RunAsGroup` field in the security context of agent daemon
set, controller deployment, and several containers to specify group ID.

**Test Update:**
- Adjusted tests to reflect changes in security context.

> 🎉 "In the land of code, where logic intertwines,
> A rabbit hopped forth, leaving tracks in the lines.
> With a twitch of its nose, and a flick of its ear,
> It enhanced security, banishing fear.
> Now each Docker runs with less privilege in sight,
> Making our software a much safer delight! 🐇💻🔒"

fix pre-commit (2504)

coderabbitai: ignore

[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.12.0...releases/aperture-controller/v2.12.1-rc.1

Changelog

List of aperture PRs merged since 2.11.0 release. For the full list of changes, see [list of changes][changes]

Add logger for http server ErrorLogs (2495)


Export parsing group status function (2494)

**Refactor:**
- Removed the `printLeafStatus` function in
`cmd/aperturectl/cmd/status/root.go` and replaced it with a call to
`status.ParseGroupStatus`.

**New Feature:**
- Introduced a new function `ParseGroupStatus` in
`pkg/status/status.go`. This function parses a `GroupStatus` response
and returns a map of status paths to values, improving the handling of
different message types.

Update koanf to v2 (2493)

Release Notes

**Chore**: Updated the `koanf` package to version 2
(`github.com/knadh/koanf/v2`) in `pkg/config/koanf-unmarshaller.go`.
This update enhances configuration management without altering any
existing functionality or interfaces.

> 🎉📦
> A package updated, a chore well done,
> In the world of code, we've had some fun.
> With `koanf` v2, we stride ahead,
> Making strides where others dread.
> No change in function, no cause for alarm,
> Just better config, with its own charm. 🎉📦

Silence the 'lease keepalive response queue is full' warning (2487)

Temporary workaround for https://github.com/fluxninja/cloud/issues/10613
until it's properly fixed.

rename fluxninja cloud to aperture cloud (2481)

Renaming FluxNinja Cloud to Aperture Cloud

Release Notes

Documentation:
- Rebranded the platform from "FluxNinja" to "Aperture" across all
documentation and code comments.
- Updated all references, links, and diagrams in the documentation to
reflect the new name.

Refactor:
- Renamed all instances of "FluxNinja Cloud Controller" to "Aperture
Cloud Controller" in the codebase.
- Updated the `--api-key` option description from "FluxNinja Cloud API
Key" to "Aperture Cloud API Key" across all command-line tools.

> 🎉 Celebrate, for Aperture is here! 🥳
> No more FluxNinja, have no fear. 🚀
> With a new name, we rise anew, 🌅
> To the cloud, we remain true. ☁️
> So let's embrace this change with cheer,
> For a brighter future is near! 🌟

---------

Co-authored-by: Tanveer Gill <tanveer.gillfluxninja.com>

Fix temp directory in blueprint generate apply (2480)

Release Notes

Refactor:
- Enhanced the `setupOutputDir` function in
`cmd/aperturectl/cmd/blueprints/generate.go`. It now handles various
scenarios for output directory setup, providing better user interaction
and error handling.

New Feature:
- Introduced case-insensitive user input in `createValuesFile` function
in `cmd/aperturectl/cmd/blueprints/common.go`, improving usability.

> 🎉 Here's to the code that's ever so bright,
> Making changes from morning till night.
> With every refactor, it shines like a star, ✨
> No matter if the users are near or far.
> Case-insensitive, it now stands tall,
> Ready to serve one and all! 🥳

Update documentation to mention grpc/http2 endpoint address (2479)

Release Notes

**Documentation**: Updated the descriptions and instructions for
connecting to FluxNinja Cloud Controller in various configuration files.
The `endpoint` should now be a `grpc/http2` address for cloud
connections, while self-hosted controllers can use `http(s)://`.

> 🎉 Here's to the code that we tweak and refine,
> To make our software truly divine.
> With each PR, we take a step,
> Towards goals that we have adeptly set.
> Today we've made our docs more clear,
> For FluxNinja users far and near.
> So raise your glasses, give a cheer,
> For another successful code review here! 🥂

Make ETCD Client log level configurable (2474)


[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.11.0...releases/aperture-controller/v2.12.0

Changelog

List of aperture PRs merged since 2.11.0 release. For the full list of changes, see [list of changes][changes]

Add logger for http server ErrorLogs (2495)


Export parsing group status function (2494)

**Refactor:**
- Removed the `printLeafStatus` function in
`cmd/aperturectl/cmd/status/root.go` and replaced it with a call to
`status.ParseGroupStatus`.

**New Feature:**
- Introduced a new function `ParseGroupStatus` in
`pkg/status/status.go`. This function parses a `GroupStatus` response
and returns a map of status paths to values, improving the handling of
different message types.

Update koanf to v2 (2493)

Release Notes

**Chore**: Updated the `koanf` package to version 2
(`github.com/knadh/koanf/v2`) in `pkg/config/koanf-unmarshaller.go`.
This update enhances configuration management without altering any
existing functionality or interfaces.

> 🎉📦
> A package updated, a chore well done,
> In the world of code, we've had some fun.
> With `koanf` v2, we stride ahead,
> Making strides where others dread.
> No change in function, no cause for alarm,
> Just better config, with its own charm. 🎉📦

Silence the 'lease keepalive response queue is full' warning (2487)

Temporary workaround for https://github.com/fluxninja/cloud/issues/10613
until it's properly fixed.

rename fluxninja cloud to aperture cloud (2481)

Renaming FluxNinja Cloud to Aperture Cloud

Release Notes

Documentation:
- Rebranded the platform from "FluxNinja" to "Aperture" across all
documentation and code comments.
- Updated all references, links, and diagrams in the documentation to
reflect the new name.

Refactor:
- Renamed all instances of "FluxNinja Cloud Controller" to "Aperture
Cloud Controller" in the codebase.
- Updated the `--api-key` option description from "FluxNinja Cloud API
Key" to "Aperture Cloud API Key" across all command-line tools.

> 🎉 Celebrate, for Aperture is here! 🥳
> No more FluxNinja, have no fear. 🚀
> With a new name, we rise anew, 🌅
> To the cloud, we remain true. ☁️
> So let's embrace this change with cheer,
> For a brighter future is near! 🌟

---------

Co-authored-by: Tanveer Gill <tanveer.gillfluxninja.com>

Fix temp directory in blueprint generate apply (2480)

Release Notes

Refactor:
- Enhanced the `setupOutputDir` function in
`cmd/aperturectl/cmd/blueprints/generate.go`. It now handles various
scenarios for output directory setup, providing better user interaction
and error handling.

New Feature:
- Introduced case-insensitive user input in `createValuesFile` function
in `cmd/aperturectl/cmd/blueprints/common.go`, improving usability.

> 🎉 Here's to the code that's ever so bright,
> Making changes from morning till night.
> With every refactor, it shines like a star, ✨
> No matter if the users are near or far.
> Case-insensitive, it now stands tall,
> Ready to serve one and all! 🥳

Update documentation to mention grpc/http2 endpoint address (2479)

Release Notes

**Documentation**: Updated the descriptions and instructions for
connecting to FluxNinja Cloud Controller in various configuration files.
The `endpoint` should now be a `grpc/http2` address for cloud
connections, while self-hosted controllers can use `http(s)://`.

> 🎉 Here's to the code that we tweak and refine,
> To make our software truly divine.
> With each PR, we take a step,
> Towards goals that we have adeptly set.
> Today we've made our docs more clear,
> For FluxNinja users far and near.
> So raise your glasses, give a cheer,
> For another successful code review here! 🥂

Make ETCD Client log level configurable (2474)


[changes]: https://github.com/fluxninja/aperture/compare/releases/aperture-controller/v2.11.0...releases/aperture-controller/v2.12.0-rc.2