<div dir="ltr">including aerogear-dev</div><div class="gmail_extra"><br><div class="gmail_quote">On 13 December 2017 at 08:55, Craig Brookes <span dir="ltr"><<a href="mailto:cbrookes@redhat.com" target="_blank">cbrookes@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hey guys,<div><br></div><div><b>tldr</b></div><div><b>- Use a combination of configmaps and secrets to store public (ie client config) vs secret (ie credentials) when provisioning services via an APB</b></div><div><b>- Use proposals for these kind of changes (ie where they are larger changes, breaking changes or changes in technical direction that have cross cutting concerns.)</b></div><div><b>- As we have many pieces, setup aerogear/proposals repo.</b></div><div><br></div><div>I would like to suggest that we make use of a mixture of configmap and secrets during the provision of a mobile "aware" service.</div><div>Currently when we provision a service we must also create a secret with a label: mobile:enabled and at least two pieces of information:</div><div>- uri</div><div>- name</div><div>but it often contains more (such as username and password etc)</div><div><div>This secret is used by the UI to represent that the service is present in the namespace and to display the credential information that allows the developer to sign into the service.</div><div></div></div><div>During the PoC this secret was also used to populate the mobile client config. This meant filtering out fields that we did not want the mobile client to have access to.</div><div>My suggestion is that we move to using an additional configmap labeled "mobile:enabled" that contains the public information that can be exposed to the mobile client as configuration and a secret still labeled "mobile:enabled" to capture other information such as the credentials for logging into the service.</div><div><br></div><div> This really amounts to a proposal. Which brings me to the second question. Where to keep proposals? I would like us to standardise on have a public record of technical changes. These proposals should capture the following:</div><div>1) What</div><div>2) Why</div><div>3) How</div><div>As an example here is a proposal that I put together for the ansible service broker:</div><div><a href="https://github.com/openshift/ansible-service-broker/blob/master/docs/proposals/last-operation-description.md" target="_blank">https://github.com/openshift/<wbr>ansible-service-broker/blob/<wbr>master/docs/proposals/last-<wbr>operation-description.md</a></div><div>This shows the kind of level of detail that I believe we should be capturing.</div><div>When is a proposal necessary? In my experience they are often used for larger changes, breaking changes or changes in technical direction that have cross cutting concerns. So in the case of my change outlined above, it is a breaking change that both the CLI and UI need to be aware of along with the developers of service APBs and so it should be a proposal.</div><div>In the ansible service broker case the proposal is kept in the docs dir of the repo, however for something larger like Kubernetes they have a separate repo <a href="https://github.com/kubernetes/community" target="_blank">https://github.com/<wbr>kubernetes/community</a>. </div><div>We could do something similar: aerogear/proposals with directories for each area </div><div>- core</div><div> - ui</div><div> - cli</div><div> - ide-extenstions</div><div>- services</div><div> - apbs</div><div> - push</div><div> - sync</div><div>...</div><div><br></div><div>I think this would allow the owner or gatekeeper of the proposal to be clearly identified.</div><div><br></div><div>Interested in hearing thoughts and opinions</div><span class="HOEnZb"><font color="#888888"><div><br></div><div><br></div><div><br></div><div>-- <br><div class="m_4830167983071781500gmail_signature"><div dir="ltr">Craig Brookes<div>RHMAP </div><div>@maleck13 Github</div></div></div>
</div></font></span></div>
<br>______________________________<wbr>_________________<br>
feedhenry-dev mailing list<br>
<a href="mailto:feedhenry-dev@redhat.com">feedhenry-dev@redhat.com</a><br>
<a href="https://www.redhat.com/mailman/listinfo/feedhenry-dev" rel="noreferrer" target="_blank">https://www.redhat.com/<wbr>mailman/listinfo/feedhenry-dev</a><br>
<br></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr">David Martin<div>Red Hat Mobile</div><div>Twitter: <span style="font-size:12.8px">@irldavem</span></div><div><span style="font-size:12.8px">IRC: @irldavem (feedhenry, mobile-internal)</span></div></div></div></div></div>
</div>