Latest Cozystack community meeting 2024-11-07
New Cozystack API Demo and a few more topics
https://youtu.be/Pt2OUFXB2gI
New Cozystack API Demo and a few more topics
https://youtu.be/Pt2OUFXB2gI
YouTube
Cozystack community meeting 2024-11-07
Cozystack is a free PaaS and framework for building clouds
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- v0.18 release announce
- API Demo
- Announce: we’re looking for feature sponsors: Dashboard…
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- v0.18 release announce
- API Demo
- Announce: we’re looking for feature sponsors: Dashboard…
❤3🔥3
Great news! Our new article has been published on the official Kubernetes blog. In this article, Andrei Kvapil shared how we implemented our own extension api-server in the open-source PaaS platform, Cozystack.
Feel free to share, repost and like this article😎
https://kubernetes.io/blog/2024/11/21/dynamic-kubernetes-api-server-for-cozystack
Feel free to share, repost and like this article😎
https://kubernetes.io/blog/2024/11/21/dynamic-kubernetes-api-server-for-cozystack
Kubernetes
How we built a dynamic Kubernetes API Server for the API Aggregation Layer in Cozystack
Hi there! I'm Andrei Kvapil, but you might know me as @kvaps in communities dedicated to Kubernetes and cloud-native tools. In this article, I want to share how we implemented our own extension api-server in the open-source PaaS platform, Cozystack.
Kubernetes…
Kubernetes…
❤6🔥5👍2
Our latest community meeting
https://youtu.be/DCpivn61mGQ
00:00:00 Introduction and Organizational Notes
00:00:41 Decision to Use Keycloak as the Default OIDC Server
00:02:11 Integration with Kubernetes and Default Roles
00:03:57 Discussion of Using Multiple Realms in Keycloak
00:07:56 Mapping Groups and Roles
00:10:38 Configuring Groups and Roles
00:12:50 Access to Keycloak
00:15:50 Implementation Details of Adding Keycloak to Cozystack
00:18:06 Configuring Kubernetes with Keycloak
00:19:19 Kubernetes Interface and Tenant Management
00:21:27 Configuration Issues
00:23:50 User Experience
00:26:39 Cluster Authentication
00:30:18 Automation and Interaction
00:32:30 Issues with kube-config
00:34:55 Retrieving Tokens for Kubernetes Access
00:36:24 Automating Keycloak Configuration
00:37:52 Issues with Keycloak Setup
00:41:54 Enabling Keycloak by Default
00:44:12 Issues with Updating Helm
https://youtu.be/DCpivn61mGQ
00:00:00 Introduction and Organizational Notes
00:00:41 Decision to Use Keycloak as the Default OIDC Server
00:02:11 Integration with Kubernetes and Default Roles
00:03:57 Discussion of Using Multiple Realms in Keycloak
00:07:56 Mapping Groups and Roles
00:10:38 Configuring Groups and Roles
00:12:50 Access to Keycloak
00:15:50 Implementation Details of Adding Keycloak to Cozystack
00:18:06 Configuring Kubernetes with Keycloak
00:19:19 Kubernetes Interface and Tenant Management
00:21:27 Configuration Issues
00:23:50 User Experience
00:26:39 Cluster Authentication
00:30:18 Automation and Interaction
00:32:30 Issues with kube-config
00:34:55 Retrieving Tokens for Kubernetes Access
00:36:24 Automating Keycloak Configuration
00:37:52 Issues with Keycloak Setup
00:41:54 Enabling Keycloak by Default
00:44:12 Issues with Updating Helm
YouTube
Cozystack community meeting 2024-11-21
Cozystack is a free PaaS and framework for building clouds
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- [article] Dynamic Kubernetes API Server for the API Aggregation Layer
https://kubernetes…
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- [article] Dynamic Kubernetes API Server for the API Aggregation Layer
https://kubernetes…
🔥3❤1🤝1
😎 TIC Talks. Platform Engineering: Kubernetes all the way down
Our speakers for this edition of TIC Talks bring unparalleled expertise to the table. Vadim Rutkovsky, Principal Software Engineer at Red Hat, has over a decade of experience shaping the Linux and Kubernetes ecosystem. His deep involvement in OpenShift and his work on tools that redefine how developers interact with Kubernetes offer a rare insider’s perspective on platform engineering at scale.
Joining him is Andrei Kvapil, founder of Ænix and a Kubernetes and Cloud Systems Architect with 15+ years of experience. Known for his work in data center automation and community advocacy, Andrei’s ability to tackle complex challenges in bare-metal Kubernetes environments makes him a sought-after voice in the DevOps and SRE world.
This meetup is a unique chance to learn directly from two industry leaders who have not only influenced the tools we use but continue to push the boundaries of what’s possible in modern infrastructure.
When and Where:
📅 Date: December 10, 2024
🕕 Time: 6:00 PM
📍 Location: Berlin
Details: https://www.meetup.com/de-DE/tech-internals-community/events/304792105
Our speakers for this edition of TIC Talks bring unparalleled expertise to the table. Vadim Rutkovsky, Principal Software Engineer at Red Hat, has over a decade of experience shaping the Linux and Kubernetes ecosystem. His deep involvement in OpenShift and his work on tools that redefine how developers interact with Kubernetes offer a rare insider’s perspective on platform engineering at scale.
Joining him is Andrei Kvapil, founder of Ænix and a Kubernetes and Cloud Systems Architect with 15+ years of experience. Known for his work in data center automation and community advocacy, Andrei’s ability to tackle complex challenges in bare-metal Kubernetes environments makes him a sought-after voice in the DevOps and SRE world.
This meetup is a unique chance to learn directly from two industry leaders who have not only influenced the tools we use but continue to push the boundaries of what’s possible in modern infrastructure.
When and Where:
📅 Date: December 10, 2024
🕕 Time: 6:00 PM
📍 Location: Berlin
Details: https://www.meetup.com/de-DE/tech-internals-community/events/304792105
👍5
We have updated the kubectl-node-shell plugin to v1.11.0
- Added options:
- Added variable:
- Added ability to attach volumes using the
Many thanks to @jmcshane, @huandu, and @bernardgut who added these wonderful features to the new version of the plugin.
The kubectl-node-shell plugin allows you to log into a node in a cluster without SSH, using only the Kubernetes API. This is convenient for debugging any managed Kubernetes cluster. For example, AWS does not provide SSH access to nodes when using managed K8s.
- Added options:
--no-mount, --no-net, --no-ipc, --no-uts to disable automatic entry into the specified Linux namespaces.- Added variable:
KUBECTL_NODE_SHELL_IMAGE_PULL_SECRET_NAME to specify a pullSecret for pulling the image.- Added ability to attach volumes using the
-m option; attached volumes can be found in the /opt-pvc directory.Many thanks to @jmcshane, @huandu, and @bernardgut who added these wonderful features to the new version of the plugin.
GitHub
Release v1.11.0 · kvaps/kubectl-node-shell
What's Changed
Add flags for netns attach by @jmcshane in #68
Add KUBECTL_NODE_SHELL_IMAGE_PULL_SECRET_NAME to customize imagePullSecrets by @huandu in #62
[Feature] Adding ability to mount CS...
Add flags for netns attach by @jmcshane in #68
Add KUBECTL_NODE_SHELL_IMAGE_PULL_SECRET_NAME to customize imagePullSecrets by @huandu in #62
[Feature] Adding ability to mount CS...
10🔥5❤4
🫡 Cozystack really needs your help
As you know, we want to donate Cozystack to the CNCF so that Cozystack will remain free forever and won't depend on the whims of a single vendor. However, we need the help of the entire community.
To get into the CNCF, we need to fill out the ADOPTERS.md file, among other things. Please send in your PR with your company or product/pet project where you use Cozystack. Alternatively, you can write the name of your company/product to @tym83, and he will make the PR himself.
Even if you haven't deployed Cozystack to production yet but have set up a dev cluster or are testing the platform's capabilities, your addition to this file can influence the decision of the committee that selects projects for the CNCF.
We always strive to rely on the community when making decisions about the development of the platform and believe that only the strength of the community can make an open-source product truly strong and in demand.
We will fill application form on 10th, December. Please, send your PRs before this date.
As you know, we want to donate Cozystack to the CNCF so that Cozystack will remain free forever and won't depend on the whims of a single vendor. However, we need the help of the entire community.
To get into the CNCF, we need to fill out the ADOPTERS.md file, among other things. Please send in your PR with your company or product/pet project where you use Cozystack. Alternatively, you can write the name of your company/product to @tym83, and he will make the PR himself.
Even if you haven't deployed Cozystack to production yet but have set up a dev cluster or are testing the platform's capabilities, your addition to this file can influence the decision of the committee that selects projects for the CNCF.
We always strive to rely on the community when making decisions about the development of the platform and believe that only the strength of the community can make an open-source product truly strong and in demand.
We will fill application form on 10th, December. Please, send your PRs before this date.
GitHub
cozystack/ADOPTERS.md at main · cozystack/cozystack
Free and Open Source PaaS-platform for seamless management of virtual machines, managed Kubernetes, and Databases-as-a-Service - cozystack/cozystack
👍5🔥3
Latest Cozystack community meeting
- Upcoming v0.19 release: Introducing OIDC-server, Introducing KubeSpan Support
- [discussion]: which methods do you prefer for IaC configuration: Terraform, Helm, Crossplane, CAPI, Pulumi, WebUI
00:00:00 Introduction and Agenda
00:00:42 Plans for the Next Cozystack Release: OIDC Server, Keycloak
00:01:30 Keycloak Integration
00:03:57 Configuring Kubernetes via OIDC
00:05:15 Setting Up Keycloak Operator
00:06:35 Support for Distributed Configuration
00:10:36 Questions and Open Floor
00:14:50 Conclusion
🎥 https://youtu.be/06_7LTG128g
📌 Join our community: https://t.me/cozystack
🗓 Add our meetings in your cal
- Upcoming v0.19 release: Introducing OIDC-server, Introducing KubeSpan Support
- [discussion]: which methods do you prefer for IaC configuration: Terraform, Helm, Crossplane, CAPI, Pulumi, WebUI
00:00:00 Introduction and Agenda
00:00:42 Plans for the Next Cozystack Release: OIDC Server, Keycloak
00:01:30 Keycloak Integration
00:03:57 Configuring Kubernetes via OIDC
00:05:15 Setting Up Keycloak Operator
00:06:35 Support for Distributed Configuration
00:10:36 Questions and Open Floor
00:14:50 Conclusion
🎥 https://youtu.be/06_7LTG128g
📌 Join our community: https://t.me/cozystack
🗓 Add our meetings in your cal
👍3
If you are using Cozystack in production or are just testing the platform, let us know—we'll create a group chat where you can ask us any questions directly.
We're interested in how engineers and companies are using the platform, what challenges they face, and what they feel is missing. This will be free for you.
We're interested in how engineers and companies are using the platform, what challenges they face, and what they feel is missing. This will be free for you.
Latest Cozystack community meeting
https://youtu.be/QeB7kziH6XQ
00:00 Introduction
00:46 New "Cozy Labels" Feature
01:42 User and Tenant Configuration
02:28 Tenant Management and API Server
04:00 Updates and Fixes
06:20 New Management Dashboard
12:01 Access to Clusters and Virtual Machines
14:17 Conclusion
Join the community:
Telegram group t.me/cozystack
https://youtu.be/QeB7kziH6XQ
00:00 Introduction
00:46 New "Cozy Labels" Feature
01:42 User and Tenant Configuration
02:28 Tenant Management and API Server
04:00 Updates and Fixes
06:20 New Management Dashboard
12:01 Access to Clusters and Virtual Machines
14:17 Conclusion
Join the community:
Telegram group t.me/cozystack
YouTube
Cozystack community meeting 2024-12-05
Cozystack is a free PaaS and framework for building clouds
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- Cozystack v0.19 release announcement
- OIDC-server https://cozystack.io/docs/oidc/
- Kubespan…
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- Cozystack v0.19 release announcement
- OIDC-server https://cozystack.io/docs/oidc/
- Kubespan…
👍5🔥2
Cozystack v0.20 Release: Terraform, Keycloak, and Stability & Security Improvements
This release focuses on enhancing stability while addressing a significant number of bugs and introducing new features:
- Kube-OVN updated to the latest stable release.
Improved logic in KubeVirt CCM, delivering more reliable load balancers for tenant Kubernetes clusters.
- Resolved user permissions issues in OIDC.
- Added a dedicated cluster admin group.
- Fixed alerts and dashboards in Grafana.
- NATs now supports enabling JetStream and passing configuration files.
- Introduced Terraform support for interacting with our API.
In v0.19, we introduced OIDC support, along with the integration of Keycloak. However, due to the need for stability improvements, we did not announce v0.19 separately. With this release, Keycloak is bundled with Cozystack, providing seamless OIDC support:
- Automatically configured with a "Cozy" realm, allowing the creation of local users and integration with external OIDC providers.
- Each tenant receives 4 default groups, and the tenant application offers an auto-generated kubeconfig file pre-configured for authentication via Keycloak.
- Added support for Keycloak as Code using the Keycloak Operator.
Automatic integration of Keycloak with Kubernetes clusters and the Kubernetes Dashboard.
- The Talm has been updated to v0.6.6, adding support for configuring the API Server for OIDC.
For more details, check out the project on GitHub.
Feel free to join our community spaces:
- Telegram
- Slack
- Community Meeting Calendar
This release focuses on enhancing stability while addressing a significant number of bugs and introducing new features:
- Kube-OVN updated to the latest stable release.
Improved logic in KubeVirt CCM, delivering more reliable load balancers for tenant Kubernetes clusters.
- Resolved user permissions issues in OIDC.
- Added a dedicated cluster admin group.
- Fixed alerts and dashboards in Grafana.
- NATs now supports enabling JetStream and passing configuration files.
- Introduced Terraform support for interacting with our API.
In v0.19, we introduced OIDC support, along with the integration of Keycloak. However, due to the need for stability improvements, we did not announce v0.19 separately. With this release, Keycloak is bundled with Cozystack, providing seamless OIDC support:
- Automatically configured with a "Cozy" realm, allowing the creation of local users and integration with external OIDC providers.
- Each tenant receives 4 default groups, and the tenant application offers an auto-generated kubeconfig file pre-configured for authentication via Keycloak.
- Added support for Keycloak as Code using the Keycloak Operator.
Automatic integration of Keycloak with Kubernetes clusters and the Kubernetes Dashboard.
- The Talm has been updated to v0.6.6, adding support for configuring the API Server for OIDC.
For more details, check out the project on GitHub.
Feel free to join our community spaces:
- Telegram
- Slack
- Community Meeting Calendar
11🔥12👍1
Have you ever wondered what the future holds for Kubernetes? Could it fade away under the weight of its complexity? Will we see alternatives emerge, or is Kubernetes destined to become "the next Linux"?
In our latest article, we take a shot at predicting Kubernetes' future. What’s your take on it? Share your thoughts in the comments and don’t forget to pass this along to your colleagues and friends!
https://blog.aenix.io/the-inevitable-future-of-kubernetes-why-the-orchestrator-should-follow-the-path-of-the-linux-367f49916712
In our latest article, we take a shot at predicting Kubernetes' future. What’s your take on it? Share your thoughts in the comments and don’t forget to pass this along to your colleagues and friends!
https://blog.aenix.io/the-inevitable-future-of-kubernetes-why-the-orchestrator-should-follow-the-path-of-the-linux-367f49916712
Medium
The Inevitable Future of Kubernetes: Why the Orchestrator Should Follow the Path of the Linux…
At KubeCon + CloudNativeCon in Chicago on November 9, Tim Hockin, one of the early developers of Kubernetes, delivered a talk (here’s a…
🔥4👍2😎1
Happy Holidays! Introducing the Pre-New Year Release of Cozystack v0.21
✉️ The dashboard now works directly with the Cozystack API instead of relying on FluxCD resources. This enhancement enables the platform to provide a user-friendly graphical interface while integrating with Kubernetes' standard RBAC model for managing deployment permissions.
Each tenant now includes four default groups:
Group members can access the platform via both Kubernetes and the dashboard.
While we maintain an API-driven philosophy, the dashboard remains an essential feature. It allows users to quickly configure services through a graphical interface, explore how they map to the API, and then transition to Infrastructure as Code (IaC) practices.
Key Dashboard Improvements
- Direct interaction with the Cozystack API instead of FluxCD resources.
- Application names in the catalog now reflect their corresponding Kind in the Cozystack API.
- Application prefixes removed—each app now uses its own Kind.
- Namespaces filtered by the tenant- prefix to display only user-specific namespaces while hiding system namespaces.
- Fixed icon rendering issues when OIDC is enabled.
- Cosmetic improvements, including corrected links to documentation.
Additional Updates
- Added authorization support for Redis.
- Refactored tenant roles and role bindings, removing permissions for HelmRelease resources and the kubeapps-admin group.
- Fixed Grafana startup issues and updated the plugin URL for VictoriaLogs.
- Updated OpenAPI specifications for List resources in the Cozystack API.
- Talos Linux upgraded to v1.8.4.
- linstor-ha-controller updated to v1.2.3, resolving high availability issues for virtual machines.
- Introduced configurable database size for Grafana.
- Enhanced resource management for VMCluster resources.
For more details, check out the project on GitHub.
Feel free to join our community spaces:
- Telegram
- Slack
- Community Meeting Calendar
P.S. Happy exploring with Cozystack v0.21! 🎄 Your friends and loved ones will appreciate it if you avoid updating Cozystack on the evening of December 31st! 😉
Each tenant now includes four default groups:
view: Read-only access.use: Access to virtual machines and service usage.admin: Ability to deploy core services (MySQL, PostgreSQL, Redis, Kubernetes, virtual machines, etc.).super-admin: Manage child tenants and deploy service-level components (monitoring, etcd, ingress, seaweedfs, etc.).Group members can access the platform via both Kubernetes and the dashboard.
While we maintain an API-driven philosophy, the dashboard remains an essential feature. It allows users to quickly configure services through a graphical interface, explore how they map to the API, and then transition to Infrastructure as Code (IaC) practices.
Key Dashboard Improvements
- Direct interaction with the Cozystack API instead of FluxCD resources.
- Application names in the catalog now reflect their corresponding Kind in the Cozystack API.
- Application prefixes removed—each app now uses its own Kind.
- Namespaces filtered by the tenant- prefix to display only user-specific namespaces while hiding system namespaces.
- Fixed icon rendering issues when OIDC is enabled.
- Cosmetic improvements, including corrected links to documentation.
Additional Updates
- Added authorization support for Redis.
- Refactored tenant roles and role bindings, removing permissions for HelmRelease resources and the kubeapps-admin group.
- Fixed Grafana startup issues and updated the plugin URL for VictoriaLogs.
- Updated OpenAPI specifications for List resources in the Cozystack API.
- Talos Linux upgraded to v1.8.4.
- linstor-ha-controller updated to v1.2.3, resolving high availability issues for virtual machines.
- Introduced configurable database size for Grafana.
- Enhanced resource management for VMCluster resources.
For more details, check out the project on GitHub.
Feel free to join our community spaces:
- Telegram
- Slack
- Community Meeting Calendar
P.S. Happy exploring with Cozystack v0.21! 🎄 Your friends and loved ones will appreciate it if you avoid updating Cozystack on the evening of December 31st! 😉
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
🎉8🔥6❤3
😎 Why companies and engineers choose us. A user review from our community
One of the main reasons I chose Cozystack was for this very reason. Cozy has done a great job at marrying applications with the rest of the K8s stack. Before, every time I installed Kubernetes I basically didn't know what to do with it after that. There's a ton of ways to install K8s quickly - but then what? For me, Cozy solves the "then what?" part. After installing it I've got a usable system. Sort of a desktop if you will. Cozy/Talos are the only ones I've found who are thinking like this and actually doing it. It's a great concept. I know there's Kubesphere, Otomi, Rancher etc. etc. but they seem like addons to K8s to me.
👍4🔥4
Latest Cozystack community meeting 2025-01-09
🎥 https://youtu.be/k1Iq_CYTeA8
Agenda
- Cozystack v0.21 release announcement
- 1000 stars on Github
- A new request for joining CNCF Sandbox
- Improve governance
- Roadmap for 2025: Cozystack Publick Roadmap
- Introducing a Cozystack-controller (for the next release)
- Introducing Talos 1.9.2 support (for the next release)
- [discussion] Gateway API implementation
- [discussion] Supporting other Operating Systems (not only Talos)
- [discussion] BGP
- Pull Requests that need attention: https://github.com/aenix-io/cozystack/pulls
- Bug scrub: https://github.com/aenix-io/etcd-operator/issues
Join the community: t.me/cozystack
🎥 https://youtu.be/k1Iq_CYTeA8
Agenda
- Cozystack v0.21 release announcement
- 1000 stars on Github
- A new request for joining CNCF Sandbox
- Improve governance
- Roadmap for 2025: Cozystack Publick Roadmap
- Introducing a Cozystack-controller (for the next release)
- Introducing Talos 1.9.2 support (for the next release)
- [discussion] Gateway API implementation
- [discussion] Supporting other Operating Systems (not only Talos)
- [discussion] BGP
- Pull Requests that need attention: https://github.com/aenix-io/cozystack/pulls
- Bug scrub: https://github.com/aenix-io/etcd-operator/issues
Join the community: t.me/cozystack
YouTube
Cozystack community meeting 2025-01-09
Cozystack is a free PaaS and framework for building clouds
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- Cozystack v0.21 release announcement
- 1000 stars on Github
- A new request for joining CNCF…
Agenda and notes: https://docs.google.com/document/d/18OtrmgeiRHGhufRAuWHZuZOOSNBZagouNvULDmeJ2F4/edit
- Cozystack v0.21 release announcement
- 1000 stars on Github
- A new request for joining CNCF…
❤3👍2
😍 1000 stars on GitHub!
We're excited to share a huge milestone for the Cozystack community and our platform users—we've hit 1,000 stars on GitHub in just one year! This is a clear sign of trust in our small but dedicated team of passionate engineers working to make a difference in the open-source world.
A big thank you for your support, feedback, questions, and mentions in chats and communities, as well as your issues and contributions. It's fitting that we reached this milestone at the start of a new year! We'll keep working hard to bring you more exciting features, releases, components, and the solid performance you've come to expect from Cozystack!
Cozystack GitHub: https://github.com/aenix-io/cozystack
We're excited to share a huge milestone for the Cozystack community and our platform users—we've hit 1,000 stars on GitHub in just one year! This is a clear sign of trust in our small but dedicated team of passionate engineers working to make a difference in the open-source world.
A big thank you for your support, feedback, questions, and mentions in chats and communities, as well as your issues and contributions. It's fitting that we reached this milestone at the start of a new year! We'll keep working hard to bring you more exciting features, releases, components, and the solid performance you've come to expect from Cozystack!
Cozystack GitHub: https://github.com/aenix-io/cozystack
1K👍9🔥6🎉3❤2🥰2👏2
New Talm v0.8.0 Release: The Configuration Manager for Talos Linux
https://github.com/aenix-io/talm/releases/tag/v0.8.0
- Improved patch handling: patches are now applied exclusively to the specified node type, which helps avoid errors when processing default values.
- Added --debug flag for template and apply operations, allowing users to debug the applied patches. Running Talm with the --debug command outputs patches and relevant arguments for talosctl.
- Removed support for .Values.Disks; all templates have been replaced with corresponding lookup functions.
- Added support for $patch: delete during diff generation. Now, patches like the following work without issues:
- Talos and Helm libraries updated to the latest versions.
- Resolved the ALPN issue when establishing a gRPC connection to the Talos API.
https://github.com/aenix-io/talm/releases/tag/v0.8.0
- Improved patch handling: patches are now applied exclusively to the specified node type, which helps avoid errors when processing default values.
- Added --debug flag for template and apply operations, allowing users to debug the applied patches. Running Talm with the --debug command outputs patches and relevant arguments for talosctl.
- Removed support for .Values.Disks; all templates have been replaced with corresponding lookup functions.
- Added support for $patch: delete during diff generation. Now, patches like the following work without issues:
machine:
nodeLabels:
node.kubernetes.io/exclude-from-external-load-balancers:
$patch: delete
- Talos and Helm libraries updated to the latest versions.
- Resolved the ALPN issue when establishing a gRPC connection to the Talos API.
GitHub
Release v0.8.0 · cozystack/talm
Changelog
3b7635c Fix ALPN connection issue
75d2a67 Introduce --debug option; fix $patch=delete (#31)
abf4854 Remove node.kubernetes.io/exclude-from-external-load-balancers label for Cozystack (#3...
3b7635c Fix ALPN connection issue
75d2a67 Introduce --debug option; fix $patch=delete (#31)
abf4854 Remove node.kubernetes.io/exclude-from-external-load-balancers label for Cozystack (#3...
🎉3👍1
Cozystack v0.22 Release: telemetry, patched Talos v1.9.1, new entities Workload и WorkloadMonitor
Main changes
In the latest release was added cozystack-controller and new entities:
Since different applications in Cozystack are managed by different operators, we decided to create a unified format for displaying the status of each service.
It works as follows:
During an application’s deployment, a
In the status of the
For applications without a fixed number of replicas, such as Kubernetes workers that can scale dynamically, it is possible not to specify the number of replicas in the WorkloadMonitor at all. In this case, it will simply count the total number of running instances.
This mechanism allows the use of any operators and pod management methods in Kubernetes and makes it easy to expand the platform by providing a unified interface for displaying the current status of the service.
For Kubernetes applications like Postgres, Monitoring, VirtualMachine, VMInstance, Redis, Etcd, and SeaweedFS, a
The Cozystack dashboard now displays the number of application replicas and the service level for each workload group.
Telemetry
Client and server telemetry have been implemented and released under the Apache License 2.0. Metrics collection has been implemented in accordance with the LF Telemetry Data Collection and Usage Policy and can be easily disabled with the single configuration option
Other changes
- The cluster-autoscaler component for Kubernetes and its configuration have been updated, allowing for more efficient scaling of clusters both up and down.
- MAINTAINERS file has been updated, listing project contributors and their areas of responsibility.
- A new service application called builder has been added to the platform, allowing you to build the platform directly within Kubernetes.
- For VictoriaMetrics, default resource requests and limits have been increased, and the ability to specify custom parameters has been added.
- Metrics collection from databases for Grafana and Alerta has been added.
- Alerts for the state of virtual machines have been added.
- Alerts for the state of Postgres clusters have been added.
- Metrics collection for KubeVirt has been configured and a Grafana dashboard added.
- In the Cozystack configuration, the option extra-keycloak-redirect-uri-for-dashboard has been added, allowing you to configure additional redirect URLs for Keycloak.
- Fixed a VMInstance bug that was blocking the connection of VMdisks to virtual machines.
Components updates
- Flux Operator upgraded from v0.10.0 to v0.12.0.
- Flux Instance chart updated from v0.9.0 to v0.12.0.
- Cilium updated to version v1.16.5.
- Kube-OVN updated to version v1.13.2.
- CNPG PostgreSQL Operator updated to version v1.25.0.
- Talos Linux has been updated. Due to several bugs upstream, the platform is currently delivered with a patched image v1.9.1.
For more details, check out the project on GitHub.
Feel free to join our community spaces
- Telegram
- Slack
- Community Meeting Calendar
Main changes
In the latest release was added cozystack-controller and new entities:
Workload and WorkloadMonitor, which allow monitoring the state of pods managed by operators and evaluating the service level according to predefined rules.Since different applications in Cozystack are managed by different operators, we decided to create a unified format for displaying the status of each service.
It works as follows:
During an application’s deployment, a
WorkloadMonitor is deployed alongside it, which watches the state of pods by selector. As soon as the selector finds a pod, a new entity is created for it: Workload, which displays the role of each pod and its status.In the status of the
WorkloadMonitor, you can see the number of existing replicas and the minimum number required to service the application. As soon as the number of workloads falls below the minReplicas value for the WorkloadMonitor, the service is marked as non-operational.For applications without a fixed number of replicas, such as Kubernetes workers that can scale dynamically, it is possible not to specify the number of replicas in the WorkloadMonitor at all. In this case, it will simply count the total number of running instances.
This mechanism allows the use of any operators and pod management methods in Kubernetes and makes it easy to expand the platform by providing a unified interface for displaying the current status of the service.
For Kubernetes applications like Postgres, Monitoring, VirtualMachine, VMInstance, Redis, Etcd, and SeaweedFS, a
WorkloadMonitor has been added to collect information about replicas and their operability.The Cozystack dashboard now displays the number of application replicas and the service level for each workload group.
Telemetry
Client and server telemetry have been implemented and released under the Apache License 2.0. Metrics collection has been implemented in accordance with the LF Telemetry Data Collection and Usage Policy and can be easily disabled with the single configuration option
`telemetry-enabled: false` in Cozystack. In future releases, a public dashboard with the collected information is planned. See documentation for more details.Other changes
- The cluster-autoscaler component for Kubernetes and its configuration have been updated, allowing for more efficient scaling of clusters both up and down.
- MAINTAINERS file has been updated, listing project contributors and their areas of responsibility.
- A new service application called builder has been added to the platform, allowing you to build the platform directly within Kubernetes.
- For VictoriaMetrics, default resource requests and limits have been increased, and the ability to specify custom parameters has been added.
- Metrics collection from databases for Grafana and Alerta has been added.
- Alerts for the state of virtual machines have been added.
- Alerts for the state of Postgres clusters have been added.
- Metrics collection for KubeVirt has been configured and a Grafana dashboard added.
- In the Cozystack configuration, the option extra-keycloak-redirect-uri-for-dashboard has been added, allowing you to configure additional redirect URLs for Keycloak.
- Fixed a VMInstance bug that was blocking the connection of VMdisks to virtual machines.
Components updates
- Flux Operator upgraded from v0.10.0 to v0.12.0.
- Flux Instance chart updated from v0.9.0 to v0.12.0.
- Cilium updated to version v1.16.5.
- Kube-OVN updated to version v1.13.2.
- CNPG PostgreSQL Operator updated to version v1.25.0.
- Talos Linux has been updated. Due to several bugs upstream, the platform is currently delivered with a patched image v1.9.1.
For more details, check out the project on GitHub.
Feel free to join our community spaces
- Telegram
- Slack
- Community Meeting Calendar
🔥12👏3❤1