Ops Tools
448 results found
-
Authentication mode MONGODB-OIDC
Support for authentication: MONGODB-OIDC
security:
authentication:
enabled: true
modes:
- "MONGODB-OIDC"currently we get the following error wir kuberntes operator 1.26.0, OpsManager 7.0.7 and RS 7.0.11:
Unsupported value: "MONGODB-OIDC"8 votesWe're considering this for inclusion into Q4 (by end of January) - but we're currently reviewing priorities for a number of projects competing for attention.
-
Create an option to turn ON/OFF daily snapshots schedule from "Ops Manager- Continuous Backup - Edit snapshot schedule"
Currently, we have the option to take daily snapshots at different intervals (6 hrs, 8 hrs, 12, hrs, 24 hrs) but we do not have an option to not configure daily snapshots. While daily snapshots are considered essential, we have almost 200 replica sets of different DB sizes and the daily snapshots, tend interfere with itself due to large DB size and not completing itself in good time for the next day's daily snapshot to run. So if we turn off the daily snapshot or tune the frequency of the daily snapshots on select large replica sets, we will avoid…
10 votes -
Add specific label to Arbiter deployment to distinguish it label-wise
As per https://github.com/mongodb/mongodb-kubernetes-operator/issues/1442 we would like to request to either and/or:
a) have the operator add a new label to replica and arbiter statefulset deployments to distinguish them from each other
b) have the ability to add your own labels to specifically the replica OR the arbiter statefulset deploymentsHaving the ability to easily filter arbiter statefulsets from non-arbiter statefulsets would be great. This is useful for example for backup tools that run commands on pods based on a combination of labels, to exclude any arbiters from backup.
2 votes -
Identify the snapshot of each project and its size in S3 blockstore
Calculating the storage size consumed by snapshots for each projects deployments for the storage size consumed individually in S3 Blockstore. However, on the S3 snapshot store the data will be stored in the below format which doesn't include any project id to identify the specific project.
s3://bucket_name/0E3AA1971D5CF1CA52F9AF22A4228F10293AE9804D43FBF7EB5DDE38DB06B74A/5b27b0e4083826088f259f28_A s3://bucket_name/1860B12165FB7ED336DDAB9D306EF38E18FCBD36BF695904C497B825F83581DC/5b27b0e4083826088f259f28_A
This feature is helpful for the customers to understand and segregate the storage consumption by each deployments2 votes -
Allow conditions for all alerts based on DB/cluster name
We have a need to route alerts based on our database/cluster's impacted instead of having them apply to any in the current project. I know some of them can condition based on host name, which uses the cluster name, but most alert types have no similar option.
Examples would be:
Search Index Build Complete
Search Index Build FailedThese are sent without conditions and even the message does not indicate what cluster they are for (although you can guess based on the collection name provided).
We do not have the option to route these ourselves with a webhook, as the…
6 votes -
mongosync filtered sync update
Currently we cannot modify a filter that is in use without wiping all user data in the target cluster.
For exclusion filters, where we exclude collections NOT to copy, adding more collections to exclude should not require wiping all user data.
This is very cumbersome otherwise.1 vote -
Show better diff for changes to setParameter json blob
The "review and deploy" step only shows that there IS a diff in the setParameter json, but it does not make it clear what is actually changing.
It would be very helpful to show the diff between the two json payloads in an easy-to-read way.
1 vote -
Improve Enterprise Kubernetes Operator PVC expansion
The enterprise operator should be capable of performing all the steps necessary to increase the PVC after the end-user has adjusted the storage values within the MongoDB custom resource.
Reference:
https://www.mongodb.com/docs/kubernetes-operator/stable/tutorial/resize-pv-storage/Why is the Operator incapable of doing the steps starting from step 3 by itself if I simply do step 5?
So what we think should be the case:
We update the database resource with a new storage value.
Then should perform the following steps:
- Patch each persistence volume which can be found in the sts / pod spec.
- Remove the sts with --orphan because the name should be…
9 votes -
mongoimport should explain why documents fail schema validation
Currently, with mongoimport 100.9 and MongoDB 7.0 with schema validation enabled, mongoimport will only report that a document failed to import due to schema validation. It would be useful if it could explain why it violates the schema (e.g. which fields are missing, which datatypes are incorrect, etc.). This is similar to the feature request for MongoDB Compass2
1 vote -
Add support to convert a replica set to a sharded cluster in Kubernetes
Currently it is not possible to use Ops Manager UI or Kubernetes Operator to convert Replica Set to Sharded cluster. Error : changed not allowed.
2 votesPlanned - we have a requirement to have this completed in time for MongoDB 9.0. But no timeline (yet) for delivering this within that timeframe.
-
Operator crashes when it doesn't have permissions to watch a namespace
If one of many namespaces does not set the permissions for the operator to watch the namespace, it throws exceptions and goes to crashLoopBackOff state.
This is clearly a bug. One misconfigured namespace should never be able to take the operator down with it.1 voteThis is expected behavior and common among operators; it can't function and do what's needed if it lacks the permissions needed.
I know we have an open support case around this to try and understand more about your use case, and we're hoping that we'll be able to offer some guidance to avoid this problem and still achieve what you need. It may even be a new use case that we look to support.
-
Allow assigning users to an organization via api by adding a bypass parameter
Via the parameter
bypassInviteForExistingUsers
it is possible to a add a user to a project.
It is important to also have this feature for the Organization, so please add a parameterbypassOrgInviteForExistingUser
or similar to enable this.
Without it, we can not automate the creation of new environments.1 vote -
Allow configuring external applicationDatabase running on MongoDB Atlas
Allow configuring external applicationDatabase running outside of Kubernetes in the opsManager configuration.
1 vote -
Management capabilities for trusted CA certificates in the Admin UI
Currently it is a manual process per Ops Manager server to add trusted CA certificates to the Java TrustStore. This store is also overwritten on Ops Manager upgrades.
Similar to the S3 block store option to use a specific CA, it would be useful to manage trusted CA certificates for other endpoints such as HTTPS proxies, webhook alerts, and custom download URLs.
1 vote -
Need an alert for KMIP master key rotation
Currently opsmanager has manual rotation of KMIP master keys.
Enhancement required:
Need an alert from project level to rotate keys when nearing the schedule rotation just like SSL expiration alertsNeed for automation of this key rotation would be helpful. If fails, it needs to revert back changes and alert for human intervention.
1 vote -
Allow service spec changes via MongoDBCommunity CR
I aim to include extra sidecar containers, such as a metrics sidecar, allowing me to deploy an external metrics exporter alongside that would be scraped via service. I intend to configure annotations on the service for Prometheus automatic discovery, enabling the scraping of metrics and exposing the exporter container at the service level, similar to the one exposed when prometheus integration is enabled.
Updating the service spec is not currently possible, and as result, a lot of manual steps are required, like creating a custom service for each cluster, which points to the sidecar container with the required annotations in…
1 vote -
disable auth on metrics
Opentelemtry-Collector does not support secrets for ServiceMonitor/PodMonitor resources, which generates authorization issues while trying to scrape the metrics endpoint of MongoDB.
I'm looking for a way to disable the basic_auth on the metrics endpoint of MongoDB, I already tried a lot of ways, including an empty username/password, but nothing worked, any help would be highly appreciated.
1 vote -
Add an option to GUI to rotate Certificates
Add an option to GUI to rotate Certificates for each or all instances of replicaset for MongoDB.
Should include options:
1) rotate certificates for one instances on one server.
2) rotate certificates for all instances belonging to a replicaset.
3) rotate certificates for all instances on one server.
4) rotate certificates for all instances on all servers for a project.3 votes -
Add Public API Endpoint for Backup Snapshot Status
When a snapshot is ongoing, the only location to find information on the current status is in the UI on the backup page for a project.
An API endpoint with the same information as the UI would allow for automation and alerting tools if the snapshot creation is not performing as expected.
1 vote -
Backup Daemon should check for the available filesystem before starting a groom job
When a groom job starts, it might get stuck or fail if the available disk space is not enough to copy all live blocks to another directory.
It would be helpful if the Backup Daemon checks the available disk space before starting a groom job, and notifies the user:
1. via Ops Manager UI
2. report it in the logs
3. sends an alert that the upcoming/scheduled groom job would not start due to low disk space.5 votes
- Don't see your idea?