lucasponce

# if running selinux
sudo setenforce 0

oc cluster up
oc login -u system:admin
oc adm policy add-cluster-role-to-user cluster-admin admin
oc login -u admin -p admin

oc adm policy add-scc-to-user anyuid -z istio-ingress-service-account -n istio-system
oc adm policy add-scc-to-user anyuid -z default -n istio-system

lucasponce

apiVersion: maistra.io/v1
kind: ServiceMeshControlPlane
metadata:
  name: full-install
spec:
  # NOTE, if you remove all children from an element, you should remove the
  # element too.  An empty element is interpreted as null and will override all
  # default values (i.e. no values will be specified for that element, not even
  # the defaults baked into the chart values.yaml).
  istio:

lucasponce

flag provided but not defined: -discoveryCacheDir
Usage of istio-operator:
  -alsologtostderr
    	log to standard error as well as files
  -alwaysPull
    	Whether to always pull the installer container
  -deploymentType string
    	The default deployment type
  -enable3scale
    	Whether to enable the 3scale adapter

lucasponce

KIALI=$HOME/Projects/gopath/src/github.com/kiali/kiali

KIALI_UI=$HOME/Projects/repos/kiali-ui

cd $KIALI_UI

export REACT_APP_RCUE=false
yarn build

cd $KIALI

lucasponce

apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
  name: servicemeshcontrolplanes.maistra.io
spec:
  group: maistra.io
  names:
    kind: ServiceMeshControlPlane
    listKind: ServiceMeshControlPlaneList
    plural: servicemeshcontrolplanes

lucasponce

apiVersion: maistra.io/v1
kind: ServiceMeshControlPlane
metadata:
  name: full-install
spec:
  # NOTE, if you remove all children from an element, you should remove the
  # element too.  An empty element is interpreted as null and will override all
  # default values (i.e. no values will be specified for that element, not even
  # the defaults baked into the chart values.yaml).
  istio:

lucasponce

[lponce@recopolis ~]$ oc describe pod istio-citadel-77df78fd9-jkzpj
Name:               istio-citadel-77df78fd9-jkzpj
Namespace:          istio-system
Priority:           0
PriorityClassName:  <none>
Node:               localhost/192.168.1.34
Start Time:         Wed, 07 Aug 2019 11:21:22 +0200
Labels:             app=security
                    chart=security
                    heritage=Tiller

lucasponce

apiVersion: authentication.istio.io/v1alpha1
kind: Policy
metadata:
  name: default
  namespace: travel-agency
spec:
  peers:
  - mtls: {}
---
apiVersion: networking.istio.io/v1alpha3

lucasponce

apiVersion: authentication.istio.io/v1alpha1
kind: MeshPolicy
metadata:
  name: default
spec:
  peers:
  - mtls: {}
---
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule

lucasponce

#!/bin/bash

echo "[1.0] Check pre-requisites"

# Check gcloud, kubectl, helm, istioctl, envsubst, curl commands
COMMANDS=(gcloud kubectl helm istioctl envsubst curl)
for CMD in "${COMMANDS[@]}"
do
	which "$CMD" >/dev/null 2>&1
	if [ ! "$?" == "0" ]; then