Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Labels:
- operator
- tls

Activity Type:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Epic Link:
[Kueue Operator] Central TLS Profile consistency
Story Points:
None

Target Version:
None
Release Blocker:
None
Sprint:
None

Add optional TLSSecurityProfile field to KueueOperandSpec for operator-level TLS override.

File to modify:

pkg/apis/kueueoperator/v1/types.go

Implementation:

import (
    configv1 "github.com/openshift/api/config/v1"
)

type KueueOperandSpec struct {
    operatorv1.OperatorSpec `json:",inline"`
    // config is the desired configuration for the Kueue operator.
    // +required
    Config KueueConfiguration `json:"config"`
    // tlsSecurityProfile specifies TLS settings for the Kueue components.
    // When not specified, the cluster-wide APIServer TLS profile is used.
    // When the cluster-wide profile is also not specified, the Intermediate profile is used.
    // +optional
    TLSSecurityProfile *configv1.TLSSecurityProfile `json:"tlsSecurityProfile,omitempty"`
}

Additional tasks:

Run make generate to regenerate deepcopy functions
Run make manifests to update CRD YAML files
Update bundle manifests

Acceptance Criteria:

TLSSecurityProfile field added to Kueue CRD
CRD accepts Old, Intermediate, Modern, and Custom profile types
CRD manifests regenerated and committed

No upstream dependency - can start immediately

Assignee:: Harshal Patil

Reporter:: Harshal Patil

Contributors:: None

QA Contact:: None

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/12/11 3:19 PM

Updated:: 2025/12/11 3:30 PM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty