Conversation
* setting agg mds job to default "false" * lint fix
…rator. (uc-cdis#514) * Creating proper resoures to allow for GCP to use External Secrets Operator. * updating common chart * version bump * version bump * updating logic * syntax fix * lint fix
update docs link to point to new Gen3 docs
update docs links to new gen3 docs site
update docs link to point to new docs site
update old support email address to new @gen3.org address
Update docs links to new Gen3 docs site
…#528) * add info to indexd prefix comment Add explanation that the slash after the prefix is required * Update Chart.yaml increment indexd chart version * Update Chart.yaml increment indexd dep version and gen3 chart version * Update README.md increment gen3 version * Update README.md increment indexd version and update prefix comment * Update common dependency version to 0.1.33 --------- Co-authored-by: EliseCastle23 <109446148+EliseCastle23@users.noreply.github.com>
- includes "create fence client" step for ohdsi-webapi
Override flag: will create the Helm "ohdsi-webapi-config" secret even if Secrets Manager is enabled (see global.ExternalSecrets.deploy). This is for when we need to override the global Secrets Manager flag for this service.
…ore/update_funnel_netpol
Update funnel network policies to enable task isolation and secure hosts
…migration Add single table indexd migration job
fix(karpenter-alias): Updated karpenter to allow usage of an ami alias
Fix: set readinessProbe.address to "" so the healthz server binds on all interfaces
update external-secrets.yaml
Update default Helm values: bump multiple service images and tags (arborist, fence, revproxy/nginx, gearbox, gearbox-middleware, guppy, pcdcanalysistools, peregrine, portal/windmill, sheepdog) and align pullPolicies. Disable gearbox by default and remove numerous volume/volumeMount and podSecurityContext entries to simplify dev defaults. Update pcdc globals (dictionaryUrl -> 20260113, add arborist/manifest/fence URLs) and add amanuensis configuration and enablement. Also adjust amanuensis image/pullPolicy and fence USER_YAML/tag changes to use fence 3.8.4. These changes streamline local/dev Helm defaults and prepare services for 2026 image versions.
Introduce a context-aware refactor of common Helm templates to support chartNameOverride and use a passed-in root context for lookups. Move DB initialization manifests into gearbox-middleware (add templates/db-init.yaml) and wire common.db-secret, common.db_setup_job, common.db_setup_sa, push-secret and bootstrap templates to accept a chart override. Update external-secrets templates to include base64Authz and service env secrets and adjust secret naming/resolution to use the new context/override. Switch gearbox and portal images to local test repositories/pullPolicy and expose a global.gearboxMatchingImage used by gearbox and gearbox-middleware (also add an initContainer to run DB migrations). Add postgres configuration to gearbox-middleware values.yaml and enable gearbox/gearbox-middleware by default in the default values. Remove jwt-keys templates and related volume mounts/secret references. Also tidy Chart.yaml dependencies for gearbox-middleware.
add values to gearbox.env
sync pcdc with cdis and changes for running with gen3 in cloud
Switch default image references to quay.io builds and set appropriate tags/pullPolicies in gearbox-default-values.yaml (backend, frontend, middleware). Remove the ENABLE_PHI option from the gearbox chart (values.yaml, templates/deployment.yaml, and README) and simplify the gearboxG3auto/gearboxMiddlewareG3auto default secret maps in the Helm READMEs. Minor cleanup of commented legacy image entries.
Add S3_PROD_BUCKET_NAME environment variable to the gearbox deployment and include PROD_PROMOTION_ROLE_ARN in the gearbox credentials secret. Wire these to the gearboxG3auto Helm values (s3ProdBucketName, prodPromotionRoleArn) and perform a small values.yaml formatting cleanup. This enables configuring the production S3 bucket name and promotion role ARN via Helm values.
Helm: refactor DB setup, external secrets, images
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
16 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.