From 8aa99f65974656d4f08f0aff127aec9317ac4547 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Sat, 14 Aug 2021 00:57:01 +0200
Subject: [PATCH] feat(openshift-image-registry): Add intial config for s3
 based registry

This patch adds the credentials needed for the image registry to the
cluster as well as the config to adjust to instruct the operator to use
it.
---
 .../cluster-config.yaml                       | 15 +++++
 .../s3-credentials.yaml                       | 60 +++++++++++++++++++
 2 files changed, 75 insertions(+)
 create mode 100644 clusters/okd4/openshift-image-registry/cluster-config.yaml
 create mode 100644 clusters/okd4/openshift-image-registry/s3-credentials.yaml

diff --git a/clusters/okd4/openshift-image-registry/cluster-config.yaml b/clusters/okd4/openshift-image-registry/cluster-config.yaml
new file mode 100644
index 000000000..3ffa55966
--- /dev/null
+++ b/clusters/okd4/openshift-image-registry/cluster-config.yaml
@@ -0,0 +1,15 @@
+apiVersion: imageregistry.operator.openshift.io/v1
+kind: Config
+metadata:
+  name: cluster
+  annotations:
+    kustomize.toolkit.fluxcd.io/prune: disabled
+spec:
+  managementState: Managed
+  storage:
+    managementState: Unmanaged
+    s3:
+      bucket: si-okd-registry
+      region: eu-central-003
+      regionEndpoint: s3.eu-central-003.backblazeb2.com
+      virtualHostedStyle: false
diff --git a/clusters/okd4/openshift-image-registry/s3-credentials.yaml b/clusters/okd4/openshift-image-registry/s3-credentials.yaml
new file mode 100644
index 000000000..b57cead4b
--- /dev/null
+++ b/clusters/okd4/openshift-image-registry/s3-credentials.yaml
@@ -0,0 +1,60 @@
+apiVersion: v1
+kind: Secret
+metadata:
+    name: image-registry-private-configuration-user
+    namespace: openshift-image-registry
+type: Opaque
+data:
+    REGISTRY_STORAGE_S3_ACCESSKEY: ENC[AES256_GCM,data:FVP4wUXXmdicHDct7RSmvEBo3/JSVroRiS6vjg9/PKGMuZ44,iv:YvoQSTREyfTiRA0yjZuGNuFk9g9RPcBhyf4IuXseK3s=,tag:yEPbv4eWXGtuw9Oi8gm8RQ==,type:str]
+    REGISTRY_STORAGE_S3_SECRETKEY: ENC[AES256_GCM,data:X6W0etxDCWK8fdxOcsT0RLylpgws41R6z+oYM4Ep/yD7qDCwGILhgb8pGY8=,iv:2yWHZaDq+1B9Y1Dvlc87ZS8dEM4OpR+owM66YPjDipQ=,tag:035WiPMu8DsqR7s4oDS8vA==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age: []
+    lastmodified: "2021-08-13T22:56:30Z"
+    mac: ENC[AES256_GCM,data:ofer7/EAvAzie/+DxsVuFItqX3ZKtjUnps6ZtqoEaVjWsiB7eS6WlfBRaftIXLeWC5g5y3xj17V/j6ThJJu/5uWKf3ljaCOZngu+fQ/hmS6piTlamuP5u7WlgNYe3zsvexHy23aQO6ILqQEgc43U3OFHzT5PVz0rX7Q/oRfejAU=,iv:KLIsoyrkDsdu0qh9u9a3Kua8Fb+3prKE5cpl/5RlzuI=,tag:/w/hZ187x/dvF2qySdw4Kw==,type:str]
+    pgp:
+        - created_at: "2021-08-13T22:55:58Z"
+          enc: |
+            -----BEGIN PGP MESSAGE-----
+
+            hQIMA1u//sli4/n1ARAA2IH94ioP3WfBzavZINIhV394JsrNrQWBDZkkDuknxZDG
+            uTK0LiLqVEZFLQjvSop41xOXR4H4OZ74KpaJ5C9nS4JUn9ieOaQncuIA6K81ONWC
+            K6VcpvMoLqkHKxy5XZVon25sCEEzj3+jbcUZHsYaUizFLjVHfek8DKjw2ohiXwti
+            7FwL4M2GIt4f79ZiRMMroJbU9IFAwHiGzbnMx+XT4YxK62pE5+tcFyyU+mMkzgJ6
+            lmug8/eoqwc424PY7+iJXvVNfbdSDXw5VPkmvv56dilqLw+Ojwx+siS+EKyYr1an
+            uMexsMcbVqWaMLPNga4Ctu742NB/IGw+QtvR3w4Nvui2q5EXVUlUc0iKi6QUWAy0
+            joAMqdXvlyyLP039STMPklfd5oNuIvym0Luar9ucKo2DZQTDLg3S42KabKYRrMCf
+            mkRY0HZgRQOHQPIdkLWRQxJ9BK+NJqd54WRLiDcXcLVKybYgS56mmYwTslSVDNOO
+            c7qjBmsHm+UbE8M4AcQ1yESIZvpamZwPCuSfzuAbs/qAnwMVAoF84/c9RZbbJ2Yq
+            PtJ9Z/8Z/QmKsK7zxJddPql18ST/zUZCc7lWM3RDCZ86zKLhMpilFBXjfIZ/zmWh
+            2DrvZrAs2qofuYst89FBKICQHoirkcXWbFogWKKjlGdaC2xytZMS9JHIK4qqNwrS
+            XgHBudSpsHoYVit8CLqtl4I76v+gwo4A+KWav0rHHcX1oiQxo/t9jvSlumH+YLHD
+            EULi7V1H+PQhfc4cFZHnWb0kpap/APSjGkx+IV8jvFkGVBWaQN84VDmrHyqJdxk=
+            =Na/5
+            -----END PGP MESSAGE-----
+          fp: 9D02A9AD73EF7F3D5F657AC2B392F6EB325E8C50
+        - created_at: "2021-08-13T22:55:58Z"
+          enc: |-
+            -----BEGIN PGP MESSAGE-----
+
+            wcFMA7kpg2bgzVHcARAANtQtckormdW+njfoPmtjJE/GOZA5NANTItahVA6UB5Vc
+            ydq5VxvVhHcFfaJWF8yr8suUz7cOqFoLjF3K95E/MF1n22qBNbZfOCV+iPIMOMUV
+            vzjCquPmfdhq+oSS9FrXj2E83hIaAipNRmEUb4q0PXGOw0tiJxqyi9uKd8II+QRM
+            3Juat0yX3NR+a1Cnm7MSJMFuvyee9nXw8m2WQacobbl8GDHq4YynaSgaWcz0NYcH
+            cBASANGhthVYGYw++5nj5QrVIXH8CVNmkc7U4/aPZ//ZqRuBbdMRhAq35cCREKHb
+            aPr8vMUr2DoTURVpYSeoSe1hybyCB4zokVzE4u/iEM/gpGYnlvBB4QLn+zxjaE2Y
+            wFGuNkuNo9fgdYkhzt9/6dgNpub43lpDCgwbUmv7cfF2MfAIwp18dgxmwVsMa3sA
+            qmAz2I7QxZVRzj5DKfchk0S6/E1dJfH3UIt8MAiJO0Dyg9UGKo7hqn8dt+hkAVlv
+            ZYWWcNVQY4ePLw9pAAVVA16hvQOLRbqvI7FL6ci3XqReyGVEF2Jt8en+u88PJ8l+
+            l5gp2VBMshJNqEiPmFqoU6C0LYE52XUUAyXEDLNx2Afp6DDIZlNEhc66ut9NpWo3
+            b6nPpQHuVhkplGJDvinkygMmtI0YOsDMHPmSxlWhQ/sT7GU86EDBDsoAJ9w6L2DS
+            5gHurxMX1P71CxIMCtNz4pePIeY2x/AVhbhCNFoe3UJHQ33g+J7t0XfVbt+VjKcj
+            LKet+Pl9O7xe07lcVEjpjxXkMX7fcOhrrI8gkY5h1I+qvOKp2fKJAA==
+            =3/xn
+            -----END PGP MESSAGE-----
+          fp: 286791FB6648539775DB31B8FCB98C2A3EC6F601
+    encrypted_regex: ^(data|stringData)$
+    version: 3.7.1
-- 
GitLab