Loading...

XML

Word

Printable

Details

Type: Feature Request
Resolution: Done
Priority: Minor
Fix Version/s: None
Affects Version/s: None
Component/s: Documentation
Labels:
- documentation
- template-error

Blocked:
False
Ready:
False
Hierarchy Progress:
0
Hierarchy Progress Bar:

0% 0%
Release Note Text:
Undefined

SFDC Cases Counter:
SFDC Cases Links:

Description

Document URL:
https://docs.openshift.com/container-platform/4.6/applications/projects/configuring-project-creation.html#modifying-template-for-new-projects_configuring-project-creation

Section Number and Name:
Modifying the template for new projects - Point Number 6.

Describe the issue:
While creating a custom template for the project we need to make sure that the project resource comes first and then the project related resources. If we create a template the other way around by mentioning the project related resource in the first place and then the project resource, those project related resource won't get created.

Suggestions for improvement:
Need to specify that project resource should be given as the first object.

Additional information:
For example here are two YAML files, one of them is working and the other one is not.

Working YAML
~~~~~
[test46cluster@upi-0 ~]$ cat template.yaml
apiVersion: template.openshift.io/v1
kind: Template
metadata:
creationTimestamp: null
name: project-request
objects:

apiVersion: project.openshift.io/v1
kind: Project
metadata:
annotations:
openshift.io/description: ${PROJECT_DESCRIPTION}
openshift.io/display-name: ${PROJECT_DISPLAYNAME}
openshift.io/requester: ${PROJECT_REQUESTING_USER}
creationTimestamp: null
name: ${PROJECT_NAME}
spec: {}
status: {}
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
creationTimestamp: null
name: admin
namespace: ${PROJECT_NAME}
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: admin
subjects:
apiGroup: rbac.authorization.k8s.io
kind: User
name: ${PROJECT_ADMIN_USER}
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-from-same-namespace
spec:
podSelector:
ingress:
from:
podSelector: {}
parameters:
name: PROJECT_NAME
name: PROJECT_DISPLAYNAME
name: PROJECT_DESCRIPTION
name: PROJECT_ADMIN_USER
name: PROJECT_REQUESTING_USER
~~~~~

Non-Working YAML
~~~~~
[test46cluster@upi-0 ~]$ cat template2.yaml
apiVersion: template.openshift.io/v1
kind: Template
metadata:
creationTimestamp: null
name: project-request
objects:

apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-from-same-namespace
spec:
podSelector:
ingress:
from:
podSelector: {}
apiVersion: project.openshift.io/v1
kind: Project
metadata:
annotations:
openshift.io/description: ${PROJECT_DESCRIPTION}
openshift.io/display-name: ${PROJECT_DISPLAYNAME}
openshift.io/requester: ${PROJECT_REQUESTING_USER}
creationTimestamp: null
name: ${PROJECT_NAME}
spec: {}
status: {}
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
creationTimestamp: null
name: admin
namespace: ${PROJECT_NAME}
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: admin
subjects:
apiGroup: rbac.authorization.k8s.io
kind: User
name: ${PROJECT_ADMIN_USER}
parameters:
name: PROJECT_NAME
name: PROJECT_DISPLAYNAME
name: PROJECT_DESCRIPTION
name: PROJECT_ADMIN_USER
name: PROJECT_REQUESTING_USER
~~~~~

Attachments

Activity

People

Assignee:: Alex Dellapenta

Reporter:: Rejeeb Abdul Rahiman (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2021/03/18 5:40 AM

Updated:: 2023/11/07 5:23 PM

Resolved:: 2021/03/18 6:00 AM