manageiq-appliance_console 10.0.2 → 11.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c77c3969c9b31bee15aad94e003edd06d4fb99238941b21f5c44692aadce73b6
-  data.tar.gz: 52b880b6340145ef461903cff77156b517d3c4bd1741297f4a117db730c11663
+  metadata.gz: 83413224da39d38ff2e7bf9b23bf07e72ff94707e0a3f7e0eac38d97e68f9d7f
+  data.tar.gz: 3279a7297f81051f6c6c24cca1ee43453ecbeb572d036962b68eaab9832be03d
 SHA512:
-  metadata.gz: 26aaea2c45e13480671cf748ba7ee8e04ff9f97aa86a54b3a69bb4b9b13e20ebe8ae9f9b0e68b3812e2f7bc251fcaf9ab580f9d2f751ccfff5b7842844d72bd5
-  data.tar.gz: 1dcd8005f8464ab40c569876b77c0adae900f07d242b7e411d2dc054d0c35af990c821805870add5641ff13091e6990fc178a94b89abcb1bad55f1107de58856
+  metadata.gz: a1f7eb0db244889910d2508881ca3ba8f777b8c2de2816986f8e62405dca372305da9a139d4ef778c24017b4de549dd285630f533b55d099c8c0a30e1416c14f
+  data.tar.gz: ad1659abd5e7553cd12980fd6e547f0c89dee006e524db84c0973ee1ab0ea24d35c9d481716975f15630b699527bed16949b099666a4d92f5b00182cd008cd82

data/.github/workflows/ci.yaml

@@ -1,21 +1,30 @@
----
 name: CI
 on:
-  push:
   pull_request:
+  push:
+    branches-ignore:
+    - dependabot/*
+    - renovate/*
   schedule:
   - cron: 0 0 * * 0
+  workflow_dispatch:
+concurrency:
+  group: "${{ github.workflow }}-${{ github.ref }}"
+  cancel-in-progress: true
+permissions:
+  contents: read
 jobs:
   ci:
     runs-on: ubuntu-latest
     strategy:
       matrix:
         ruby-version:
-        - '3.1'
+        - '3.2'
         - '3.3'
+        - '3.4'
         rails-version:
-        - '7.0'
-        - '7.1'
+        - '7.2'
+        - '8.0'
     services:
       postgres:
         image: manageiq/postgresql:13
@@ -23,17 +32,15 @@ jobs:
           POSTGRESQL_USER: root
           POSTGRESQL_PASSWORD: smartvm
           POSTGRESQL_DATABASE: vmdb_test
-        options: "--health-cmd pg_isready --health-interval 2s --health-timeout 5s
-          --health-retries 5"
+        options: "--health-cmd pg_isready --health-interval 2s --health-timeout 5s --health-retries 5"
         ports:
         - 5432:5432
     env:
       PGHOST: localhost
       PGPASSWORD: smartvm
-      TEST_RAILS_VERSION: ${{ matrix.rails-version }}
-      CC_TEST_REPORTER_ID: "${{ secrets.CC_TEST_REPORTER_ID }}"
+      TEST_RAILS_VERSION: "${{ matrix.rails-version }}"
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v6
     - name: Set up Ruby
       uses: ruby/setup-ruby@v1
       with:
@@ -41,7 +48,3 @@ jobs:
         bundler-cache: true
     - name: Run tests
       run: bundle exec rake
-    - name: Report code coverage
-      if: ${{ github.ref == 'refs/heads/master' && matrix.ruby-version == '3.3' && matrix.rails-version == '7.1' }}
-      continue-on-error: true
-      uses: paambaati/codeclimate-action@v9

data/CHANGELOG.md

@@ -4,12 +4,23 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 
 ## [Unreleased]
 
+## [11.0.0] - 2026-01-22
+### Added
+- Add support for Rails 8 [[#297](https://github.com/ManageIQ/manageiq-appliance_console/pull/297)]
+- Add options to authenticate to a container registry and pull an image [[#282](https://github.com/ManageIQ/manageiq-appliance_console/pull/282)]
+- Add support for Rails 7.2 and Ruby 3.4 [[#284](https://github.com/ManageIQ/manageiq-appliance_console/pull/284)]
+- Add option to use a dedicated volume for containers [[#281](https://github.com/ManageIQ/manageiq-appliance_console/pull/281)]
+
+### Removed
+- Drop Ruby 3.1 and Rails 7.1 [[#297](https://github.com/ManageIQ/manageiq-appliance_console/pull/297)]
+- Drop CodeClimate [[#296](https://github.com/ManageIQ/manageiq-appliance_console/pull/296)]
+
 ## [10.0.2] - 2025-05-08
-## Changed
+### Changed
 - Remove ping of IPA Server [[#278](https://github.com/ManageIQ/manageiq-appliance_console/pull/278)]
 
 ## [10.0.1] - 2024-11-27
-## Changed
+### Changed
 - Readline does not work with ruby 3.3 [[#270](https://github.com/ManageIQ/manageiq-appliance_console/pull/270)]
 
 ## [10.0.0] - 2024-11-19
@@ -307,7 +318,8 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 
 ## [1.0.0] - 2017-10-19
 
-[Unreleased]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v10.0.2...HEAD
+[Unreleased]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v11.0.0...HEAD
+[11.0.0]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v10.0.2...v11.0.0
 [10.0.2]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v10.0.1...v10.0.2
 [10.0.1]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v10.0.0...v10.0.1
 [10.0.0]: https://github.com/ManageIQ/manageiq-appliance_console/compare/v9.1.1...v10.0.0

data/Gemfile

@@ -5,10 +5,10 @@ gemspec
 
 minimum_version =
   case ENV['TEST_RAILS_VERSION']
-  when "7.0"
-    "~>7.0.8"
+  when "8.0"
+    "~>8.0.4"
   else
-    "~>6.1.4"
+    "~>7.2.3"
   end
 
 gem "activerecord", minimum_version

data/README.md

@@ -1,9 +1,7 @@
 # ManageIQ::ApplianceConsole
 
 [![Gem Version](https://badge.fury.io/rb/manageiq-appliance_console.svg)](http://badge.fury.io/rb/manageiq-appliance_console)
-[![CI](https://github.com/ManageIQ/manageiq-appliance_console/actions/workflows/ci.yaml/badge.svg)](https://github.com/ManageIQ/manageiq-appliance_console/actions/workflows/ci.yaml)
-[![Code Climate](https://codeclimate.com/github/ManageIQ/manageiq-appliance_console.svg)](https://codeclimate.com/github/ManageIQ/manageiq-appliance_console)
-[![Test Coverage](https://codeclimate.com/github/ManageIQ/manageiq-appliance_console/badges/coverage.svg)](https://codeclimate.com/github/ManageIQ/manageiq-appliance_console/coverage)
+[![CI](https://github.com/ManageIQ/manageiq-appliance_console/actions/workflows/ci.yaml/badge.svg?branch=master)](https://github.com/ManageIQ/manageiq-appliance_console/actions/workflows/ci.yaml)
 
 [![Chat](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/ManageIQ/manageiq-appliance_console?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
 

data/bin/appliance_console

@@ -382,6 +382,18 @@ To modify the configuration, use a web browser to access the management page.
         say("Failover Monitor Service configured successfully")
         press_any_key
 
+      when I18n.t("advanced_settings.containers_config")
+        say("#{selection}\n\n")
+        containers_config = ManageIQ::ApplianceConsole::ContainersConfiguration.new
+        if containers_config.ask_questions && containers_config.activate
+          say("Containers configuration configured")
+          press_any_key
+        else
+          say("Containers configuration unchanged")
+          press_any_key
+          raise MiqSignalError
+        end
+
       when I18n.t("advanced_settings.log_config")
         say("#{selection}\n\n")
         log_config = ManageIQ::ApplianceConsole::LogfileConfiguration.new

data/lib/manageiq/appliance_console/cli.rb

@@ -81,6 +81,18 @@ module ApplianceConsole
       options[:logdisk]
     end
 
+    def containers_disk?
+      options[:containers_storage_disk]
+    end
+
+    def container_registry?
+      options[:container_registry_uri]
+    end
+
+    def container_pull_image?
+      options[:container_pull_image]
+    end
+
     def extauth_opts?
       options[:extauth_opts]
     end
@@ -155,72 +167,79 @@ module ApplianceConsole
       self.options = Optimist.options(args) do
         banner "Usage: appliance_console_cli [options]"
 
-        opt :host,                        "/etc/hosts name",                                                :type => :string,  :short => 'H'
-        opt :region,                      "Region Number",                                                  :type => :integer, :short => "r"
-        opt :internal,                    "Internal Database",                                                                 :short => 'i'
-        opt :hostname,                    "Database Hostname",                                              :type => :string,  :short => 'h'
-        opt :port,                        "Database Port",                                                  :type => :integer,                :default => 5432
-        opt :username,                    "Database Username",                                              :type => :string,  :short => 'U', :default => "root"
-        opt :password,                    "Database Password",                                              :type => :string,  :short => "p"
-        opt :dbname,                      "Database Name",                                                  :type => :string,  :short => "d", :default => "vmdb_production"
-        opt :local_file,                  "Source/Destination file for DB dump/backup/restore",             :type => :string,  :shoft => "l"
-        opt :dump,                        "Perform a pg-dump"
-        opt :backup,                      "Perform a pg-basebackup"
-        opt :restore,                     "Restore a database dump/backup"
-        opt :standalone,                  "Run this server as a standalone database server",                :type => :bool,    :short => 'S'
-        opt :key,                         "Create encryption key",                                          :type => :boolean, :short => "k"
-        opt :fetch_key,                   "SSH host with encryption key",                                   :type => :string,  :short => "K"
-        opt :force_key,                   "Forcefully create encryption key",                               :type => :boolean, :short => "f"
-        opt :sshlogin,                    "SSH login",                                                      :type => :string,  :default => "root"
-        opt :sshpassword,                 "SSH password",                                                   :type => :string
-        opt :replication,                 "Configure database replication as primary or standby",           :type => :string,  :short => :none
-        opt :primary_host,                "Primary database host IP address",                               :type => :string,  :short => :none
-        opt :standby_host,                "Standby database host IP address",                               :type => :string,  :short => :none
-        opt :auto_failover,               "Configure Replication Manager (repmgrd) for automatic failover", :type => :bool,    :short => :none
-        opt :cluster_node_number,         "Database unique cluster node number",                            :type => :integer, :short => :none
-        opt :verbose,                     "Verbose",                                                        :type => :boolean, :short => "v"
-        opt :dbdisk,                      "Database Disk Path",                                             :type => :string
-        opt :logdisk,                     "Log Disk Path",                                                  :type => :string
-        opt :tmpdisk,                     "Temp storage Disk Path",                                         :type => :string
-        opt :uninstall_ipa,               "Uninstall IPA Client",                                           :type => :boolean, :default => false
-        opt :ipaserver,                   "IPA Server FQDN",                                                :type => :string
-        opt :ipaprincipal,                "IPA Server principal",                                           :type => :string,  :default => "admin"
-        opt :ipapassword,                 "IPA Server password",                                            :type => :string
-        opt :ipadomain,                   "IPA Server domain (optional)",                                   :type => :string
-        opt :iparealm,                    "IPA Server realm (optional)",                                    :type => :string
-        opt :ca,                          "CA name used for certmonger",                                    :type => :string,  :default => "ipa"
-        opt :http_cert,                   "install certs for http server",                                  :type => :boolean
-        opt :extauth_opts,                "External Authentication Options",                                :type => :string
-        opt :saml_config,                 "Configure Appliance for SAML Authentication",                    :type => :boolean, :default => false
-        opt :saml_client_host,            "Optional Appliance host used for SAML registration",             :type => :string
-        opt :saml_idp_metadata,           "The file path or URL of the SAML IDP Metadata",                  :type => :string
-        opt :saml_enable_sso,             "Optionally enable SSO with SAML Authentication",                 :type => :boolean, :default => false
-        opt :saml_unconfig,               "Unconfigure Appliance SAML Authentication",                      :type => :boolean, :default => false
-        opt :oidc_config,                 "Configure Appliance for OpenID-Connect Authentication",          :type => :boolean, :default => false
-        opt :oidc_url,                    "The OpenID-Connect Provider URL",                                :type => :string
-        opt :oidc_client_host,            "Optional Appliance host used for OpenID-Connect Authentication", :type => :string
-        opt :oidc_client_id,              "The OpenID-Connect Provider Client ID",                          :type => :string
-        opt :oidc_client_secret,          "The OpenID-Connect Provider Client Secret",                      :type => :string
-        opt :oidc_insecure,               "OpenID-Connect Insecure No SSL Verify (development)",            :type => :boolean, :default => false
-        opt :oidc_introspection_endpoint, "The OpenID-Connect Provider Introspect Endpoint",                :type => :string
-        opt :oidc_enable_sso,             "Optionally enable SSO with OpenID-Connect Authentication",       :type => :boolean, :default => false
-        opt :oidc_unconfig,               "Unconfigure Appliance OpenID-Connect Authentication",            :type => :boolean, :default => false
-        opt :server,                      "{start|stop|restart} actions on evmserverd Server",              :type => :string
-        opt :openscap,                    "Setup OpenScap",                                                 :type => :boolean, :default => false
-        opt :message_server_config,       "Subcommand to   Configure Appliance as a Kafka Message Server",  :type => :boolean, :default => false
-        opt :message_server_unconfig,     "Subcommand to Unconfigure Appliance as a Kafka Message Server",  :type => :boolean, :default => false
-        opt :message_client_config,       "Subcommand to   Configure Appliance as a Kafka Message Client",  :type => :boolean, :default => false
-        opt :message_client_unconfig,     "Subcommand to Unconfigure Appliance as a Kafka Message Client",  :type => :boolean, :default => false
-        opt :message_keystore_username,   "Message Server Keystore Username",                               :type => :string
-        opt :message_keystore_password,   "Message Server Keystore Password",                               :type => :string
-        opt :message_server_username,     "Message Server Username",                                        :type => :string
-        opt :message_server_password,     "Message Server password",                                        :type => :string
-        opt :message_server_port,         "Message Server Port",                                            :type => :integer
-        opt :message_server_use_ipaddr,   "Deprecated: Message Server Use Address",                         :type => :boolean, :default => false
-        opt :message_server_host,         "Message Server Hostname or IP Address",                          :type => :string
-        opt :message_truststore_path_src, "Message Server Truststore Path",                                 :type => :string
-        opt :message_ca_cert_path_src,    "Message Server CA Cert Path",                                    :type => :string
-        opt :message_persistent_disk,     "Message Persistent Disk Path",                                   :type => :string
+        opt :host,                          "/etc/hosts name",                                                :type => :string,  :short => 'H'
+        opt :region,                        "Region Number",                                                  :type => :integer, :short => "r"
+        opt :internal,                      "Internal Database",                                                                 :short => 'i'
+        opt :hostname,                      "Database Hostname",                                              :type => :string,  :short => 'h'
+        opt :port,                          "Database Port",                                                  :type => :integer,                :default => 5432
+        opt :username,                      "Database Username",                                              :type => :string,  :short => 'U', :default => "root"
+        opt :password,                      "Database Password",                                              :type => :string,  :short => "p"
+        opt :dbname,                        "Database Name",                                                  :type => :string,  :short => "d", :default => "vmdb_production"
+        opt :local_file,                    "Source/Destination file for DB dump/backup/restore",             :type => :string,  :shoft => "l"
+        opt :dump,                          "Perform a pg-dump"
+        opt :backup,                        "Perform a pg-basebackup"
+        opt :restore,                       "Restore a database dump/backup"
+        opt :standalone,                    "Run this server as a standalone database server",                :type => :bool,    :short => 'S'
+        opt :key,                           "Create encryption key",                                          :type => :boolean, :short => "k"
+        opt :fetch_key,                     "SSH host with encryption key",                                   :type => :string,  :short => "K"
+        opt :force_key,                     "Forcefully create encryption key",                               :type => :boolean, :short => "f"
+        opt :sshlogin,                      "SSH login",                                                      :type => :string,  :default => "root"
+        opt :sshpassword,                   "SSH password",                                                   :type => :string
+        opt :replication,                   "Configure database replication as primary or standby",           :type => :string,  :short => :none
+        opt :primary_host,                  "Primary database host IP address",                               :type => :string,  :short => :none
+        opt :standby_host,                  "Standby database host IP address",                               :type => :string,  :short => :none
+        opt :auto_failover,                 "Configure Replication Manager (repmgrd) for automatic failover", :type => :bool,    :short => :none
+        opt :cluster_node_number,           "Database unique cluster node number",                            :type => :integer, :short => :none
+        opt :verbose,                       "Verbose",                                                        :type => :boolean, :short => "v"
+        opt :dbdisk,                        "Database Disk Path",                                             :type => :string
+        opt :logdisk,                       "Log Disk Path",                                                  :type => :string
+        opt :tmpdisk,                       "Temp storage Disk Path",                                         :type => :string
+        opt :uninstall_ipa,                 "Uninstall IPA Client",                                           :type => :boolean, :default => false
+        opt :ipaserver,                     "IPA Server FQDN",                                                :type => :string
+        opt :ipaprincipal,                  "IPA Server principal",                                           :type => :string,  :default => "admin"
+        opt :ipapassword,                   "IPA Server password",                                            :type => :string
+        opt :ipadomain,                     "IPA Server domain (optional)",                                   :type => :string
+        opt :iparealm,                      "IPA Server realm (optional)",                                    :type => :string
+        opt :ca,                            "CA name used for certmonger",                                    :type => :string,  :default => "ipa"
+        opt :http_cert,                     "install certs for http server",                                  :type => :boolean
+        opt :extauth_opts,                  "External Authentication Options",                                :type => :string
+        opt :saml_config,                   "Configure Appliance for SAML Authentication",                    :type => :boolean, :default => false
+        opt :saml_client_host,              "Optional Appliance host used for SAML registration",             :type => :string
+        opt :saml_idp_metadata,             "The file path or URL of the SAML IDP Metadata",                  :type => :string
+        opt :saml_enable_sso,               "Optionally enable SSO with SAML Authentication",                 :type => :boolean, :default => false
+        opt :saml_unconfig,                 "Unconfigure Appliance SAML Authentication",                      :type => :boolean, :default => false
+        opt :oidc_config,                   "Configure Appliance for OpenID-Connect Authentication",          :type => :boolean, :default => false
+        opt :oidc_url,                      "The OpenID-Connect Provider URL",                                :type => :string
+        opt :oidc_client_host,              "Optional Appliance host used for OpenID-Connect Authentication", :type => :string
+        opt :oidc_client_id,                "The OpenID-Connect Provider Client ID",                          :type => :string
+        opt :oidc_client_secret,            "The OpenID-Connect Provider Client Secret",                      :type => :string
+        opt :oidc_insecure,                 "OpenID-Connect Insecure No SSL Verify (development)",            :type => :boolean, :default => false
+        opt :oidc_introspection_endpoint,   "The OpenID-Connect Provider Introspect Endpoint",                :type => :string
+        opt :oidc_enable_sso,               "Optionally enable SSO with OpenID-Connect Authentication",       :type => :boolean, :default => false
+        opt :oidc_unconfig,                 "Unconfigure Appliance OpenID-Connect Authentication",            :type => :boolean, :default => false
+        opt :server,                        "{start|stop|restart} actions on evmserverd Server",              :type => :string
+        opt :openscap,                      "Setup OpenScap",                                                 :type => :boolean, :default => false
+        opt :message_server_config,         "Subcommand to   Configure Appliance as a Kafka Message Server",  :type => :boolean, :default => false
+        opt :message_server_unconfig,       "Subcommand to Unconfigure Appliance as a Kafka Message Server",  :type => :boolean, :default => false
+        opt :message_client_config,         "Subcommand to   Configure Appliance as a Kafka Message Client",  :type => :boolean, :default => false
+        opt :message_client_unconfig,       "Subcommand to Unconfigure Appliance as a Kafka Message Client",  :type => :boolean, :default => false
+        opt :message_keystore_username,     "Message Server Keystore Username",                               :type => :string
+        opt :message_keystore_password,     "Message Server Keystore Password",                               :type => :string
+        opt :message_server_username,       "Message Server Username",                                        :type => :string
+        opt :message_server_password,       "Message Server password",                                        :type => :string
+        opt :message_server_port,           "Message Server Port",                                            :type => :integer
+        opt :message_server_use_ipaddr,     "Deprecated: Message Server Use Address",                         :type => :boolean, :default => false
+        opt :message_server_host,           "Message Server Hostname or IP Address",                          :type => :string
+        opt :message_truststore_path_src,   "Message Server Truststore Path",                                 :type => :string
+        opt :message_ca_cert_path_src,      "Message Server CA Cert Path",                                    :type => :string
+        opt :message_persistent_disk,       "Message Persistent Disk Path",                                   :type => :string
+        opt :containers_storage_disk,       "Containers Storage Disk Path",                                   :type => :string
+        opt :container_registry_uri,        "Container Registry URI",                                         :type => :string
+        opt :container_registry_username,   "Container Registry Username",                                    :type => :string
+        opt :container_registry_password,   "Container Registry Password",                                    :type => :string
+        opt :container_registry_authfile,   "Path of the authentication file for container registry auth",    :type => :string
+        opt :container_registry_tls_verify, "Verify certificates when contacting registries",                 :type => :boolean
+        opt :container_pull_image,          "Container Pull Image",                                           :type => :string
       end
       Optimist.die :region, "needed when setting up a local database" if region_number_required? && options[:region].nil?
       Optimist.die "Supply only one of --message-server-config, --message-server-unconfig, --message-client-config or --message-client-unconfig" if multiple_message_subcommands?
@@ -239,7 +258,8 @@ module ApplianceConsole
 
     def run
       Optimist.educate unless set_host? || key? || database? || db_dump? || db_backup? ||
-                              db_restore? || tmp_disk? || log_disk? ||
+                              db_restore? || tmp_disk? || log_disk? || containers_disk? ||
+                              container_registry? || container_pull_image? ||
                               uninstall_ipa? || install_ipa? || certs? || extauth_opts? ||
                               set_server_state? || set_replication? || openscap? ||
                               saml_config? || saml_unconfig? ||
@@ -261,6 +281,9 @@ module ApplianceConsole
       db_restore if db_restore?
       config_tmp_disk if tmp_disk?
       config_log_disk if log_disk?
+      config_containers_disk if containers_disk?
+      config_container_registry if container_registry?
+      config_container_pull_image if container_pull_image?
       uninstall_ipa if uninstall_ipa?
       install_ipa if install_ipa?
       install_certs if certs?
@@ -466,6 +489,33 @@ module ApplianceConsole
       end
     end
 
+    def config_containers_disk
+      containers_disk = disk_from_string(options[:containers_storage_disk])
+      if containers_disk
+        say("creating containers storage disk")
+        ManageIQ::ApplianceConsole::ContainersConfiguration.new(:disk => containers_disk).activate
+      else
+        report_disk_error(options[:containers_storage_disk])
+      end
+    end
+
+    def config_container_registry
+      if options[:container_registry_uri]
+        ManageIQ::ApplianceConsole::ContainersConfiguration.new(
+          :container_registry_uri        => options[:container_registry_uri],
+          :container_registry_username   => options[:container_registry_username],
+          :container_registry_password   => options[:container_registry_password],
+          :container_registry_authfile   => options[:container_registry_authfile],
+          :container_registry_tls_verify => options[:container_registry_tls_verify]
+        ).activate
+      end
+    end
+
+    def config_container_pull_image
+      container_image = options[:container_pull_image]
+      ManageIQ::ApplianceConsole::ContainersConfiguration.new(:container_image => container_image).activate if container_image
+    end
+
     def report_disk_error(missing_disk)
       choose_disk = disk.try(:path)
       if choose_disk

data/lib/manageiq/appliance_console/containers_configuration.rb

@@ -0,0 +1,134 @@
+require_relative 'manageiq_user_mixin'
+
+module ManageIQ
+  module ApplianceConsole
+    class ContainersConfiguration
+      include ManageIQ::ApplianceConsole::Prompts
+      include ManageIQ::ApplianceConsole::ManageiqUserMixin
+
+      CONTAINERS_ROOT_DIR = Pathname.new("/var/lib/manageiq/containers").freeze
+      CONTAINERS_VOL_NAME = "miq_containers".freeze
+
+      attr_accessor :registry_uri, :registry_username, :registry_password,
+                    :registry_authfile, :registry_certdir, :registry_tls_verify,
+                    :disk, :image
+
+      def initialize(options = {})
+        self.registry_uri        = options[:container_registry_uri]
+        self.registry_username   = options[:container_registry_username]
+        self.registry_password   = options[:container_registry_password]
+        self.registry_authfile   = options[:container_registry_authfile]
+        self.registry_tls_verify = options[:conatiner_registry_tls_verify]
+        self.image               = options[:container_image]
+        self.disk                = options[:disk]
+      end
+
+      def ask_questions
+        clear_screen
+        choose_disk               if use_new_disk?
+        choose_container_registry if authenticate_container_registry?
+        choose_container_image    if pull_container_image?
+        confirm_selection
+      end
+
+      def activate
+        activate_new_disk       if disk
+        activate_registry_login if registry_uri
+        activate_image_pull     if image
+        true
+      rescue AwesomeSpawn::CommandResultError => e
+        say(e.result.output)
+        say(e.result.error)
+        say("")
+        false
+      end
+
+      private
+
+      def use_new_disk?
+        agree("Configure a new disk for container storage? (Y/N):")
+      end
+
+      def choose_disk
+        self.disk = ask_for_disk("container disk")
+      end
+
+      def authenticate_container_registry?
+        agree("Authenticate to a container registry? (Y/N):")
+      end
+
+      def choose_container_registry
+        self.registry_uri      = ask_for_string("Registry")
+        self.registry_username = ask_for_string("Registry username")
+        self.registry_password = ask_for_password("Registry password")
+      end
+
+      def pull_container_image?
+        agree("Pull a container image? (Y/N):")
+      end
+
+      def choose_container_image
+        self.image = ask_for_string("Container image")
+      end
+
+      def confirm_selection
+        return false unless disk || registry_uri || image
+
+        clear_screen
+
+        if disk
+          say("\t#{disk.path} with #{disk.size.to_i / 1.gigabyte} GB will be configured as the new containers root disk.")
+        end
+
+        if registry_uri
+          say("Authenticating to container registry #{registry_uri}")
+        end
+
+        if image
+          say("Pull container image #{image}")
+        end
+
+        agree("Confirm continue with these updates (Y/N):")
+      end
+
+      def activate_new_disk
+        say("Initializing container storage disk")
+
+        FileUtils.mkdir_p(CONTAINERS_ROOT_DIR)
+        LogicalVolumeManagement.new(:disk => disk, :mount_point => CONTAINERS_ROOT_DIR, :name => CONTAINERS_VOL_NAME).setup
+        FileUtils.chown(manageiq_uid, manageiq_gid, CONTAINERS_ROOT_DIR)
+      end
+
+      def activate_registry_login
+        say("Authenticating to container registry #{registry_uri}...")
+
+        extra_opts   = {}
+        login_params = {}
+        login_params[:username]       = registry_username if registry_username
+        login_params[:authfile]       = registry_authfile if registry_authfile
+        login_params[:cert_dir]       = registry_certdir  if registry_certdir.present?
+        login_params[:tls_verify]     = nil               if registry_tls_verify
+
+        if registry_password
+          login_params[:password_stdin] = nil
+          extra_opts[:in_data] = "#{registry_password}\n"
+        end
+
+        podman!(:params => ["login", registry_uri, login_params], **extra_opts)
+      end
+
+      def activate_image_pull
+        say("Pulling container image #{image}...")
+
+        podman!(:params => ["image", "pull", image])
+      end
+
+      def podman!(options = {})
+        options[:params].unshift("podman", {:root => CONTAINERS_ROOT_DIR.join("storage").to_s})
+        options[:chdir] ||= "/home/manageiq"
+
+        run_as_manageiq!(options)
+      end
+    end
+  end
+end

data/lib/manageiq/appliance_console/database_configuration.rb

@@ -205,7 +205,7 @@ FRIENDLY
     def validate!
       pool = ModelWithNoBackingTable.establish_connection(settings_hash.delete_if { |_n, v| v.blank? })
       begin
-        pool.connection
+        pool.with_connection { |conn| conn.connect! && conn.connected? }
       ensure
         ModelWithNoBackingTable.remove_connection
       end

data/lib/manageiq/appliance_console/manageiq_user_mixin.rb

@@ -10,6 +10,11 @@ module ManageIQ
       def manageiq_gid
         @manageiq_gid ||= Process::GID.from_name("manageiq")
       end
+
+      def run_as_manageiq!(options = {})
+        options[:params].unshift({:user => "manageiq"})
+        AwesomeSpawn.run!("sudo", options)
+      end
     end
   end
 end

data/lib/manageiq/appliance_console/version.rb

@@ -1,5 +1,5 @@
 module ManageIQ
   module ApplianceConsole
-    VERSION = '10.0.2'.freeze
+    VERSION = '11.0.0'.freeze
   end
 end

data/lib/manageiq/appliance_console.rb

@@ -26,6 +26,7 @@ require 'manageiq/appliance_console/auth_utilities'
 require 'manageiq/appliance_console/certificate'
 require 'manageiq/appliance_console/certificate_authority'
 require 'manageiq/appliance_console/cli'
+require 'manageiq/appliance_console/containers_configuration'
 require 'manageiq/appliance_console/database_admin'
 require 'manageiq/appliance_console/database_configuration'
 require 'manageiq/appliance_console/database_replication'

data/locales/appliance/en.yml

@@ -10,6 +10,7 @@ en:
     - app_config
     - db_replication
     - log_config
+    - containers_config
     - failover_monitor
     - httpdauth
     - extauth_opts
@@ -26,6 +27,7 @@ en:
     app_config: Configure Application
     db_replication: Configure Database Replication
     log_config: Logfile Configuration
+    containers_config: Containers Configuration
     failover_monitor: Control Application Database Failover Monitor
     httpdauth: Configure External Authentication (httpd)
     extauth_opts: Update External Authentication Options

data/manageiq-appliance_console.gemspec

@@ -27,6 +27,13 @@ Gem::Specification.new do |spec|
   spec.add_runtime_dependency "bcrypt_pbkdf",            ">= 1.0", "< 2.0"
   spec.add_runtime_dependency "ed25519",                 ">= 1.2", "< 2.0"
   spec.add_runtime_dependency "highline",                "~> 2.1"
+
+  # These two dependencies can be removed for ruby 3.4 support once we upgrade highline:
+  #   abbrev is not in ruby 3.4 standard library and no longer a dependency in highline 3.0.1
+  #   reline is not in ruby 3.4 standard library and added as a runtime dependency in highline 3.1.0
+  spec.add_runtime_dependency "abbrev"
+  spec.add_runtime_dependency "reline"
+
   spec.add_runtime_dependency "i18n",                    ">= 0.8"
   spec.add_runtime_dependency "linux_admin",             "~> 4.0"
   spec.add_runtime_dependency "manageiq-password",       "< 2"

metadata

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: manageiq-appliance_console
 version: !ruby/object:Gem::Version
-  version: 10.0.2
+  version: 11.0.0
 platform: ruby
 authors:
 - ManageIQ Developers
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-05-08 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord
@@ -120,6 +119,34 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '2.1'
+- !ruby/object:Gem::Dependency
+  name: abbrev
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: reline
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: i18n
   requirement: !ruby/object:Gem::Requirement
@@ -317,20 +344,17 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 0.21.2
 description: ManageIQ Appliance Console
-email:
 executables:
 - appliance_console
 - appliance_console_cli
 extensions: []
 extra_rdoc_files: []
 files:
-- ".codeclimate.yml"
 - ".github/workflows/ci.yaml"
 - ".gitignore"
 - ".rspec"
 - ".rspec_ci"
 - ".rubocop.yml"
-- ".rubocop_cc.yml"
 - ".rubocop_local.yml"
 - ".whitesource"
 - ".yamllint"
@@ -346,6 +370,7 @@ files:
 - lib/manageiq/appliance_console/certificate.rb
 - lib/manageiq/appliance_console/certificate_authority.rb
 - lib/manageiq/appliance_console/cli.rb
+- lib/manageiq/appliance_console/containers_configuration.rb
 - lib/manageiq/appliance_console/database_admin.rb
 - lib/manageiq/appliance_console/database_configuration.rb
 - lib/manageiq/appliance_console/database_replication.rb
@@ -386,7 +411,6 @@ homepage: https://github.com/ManageIQ/manageiq-appliance_console
 licenses:
 - Apache-2.0
 metadata: {}
-post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -401,8 +425,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.22
-signing_key:
+rubygems_version: 3.6.9
 specification_version: 4
 summary: ManageIQ Appliance Console
 test_files: []

data/.codeclimate.yml

@@ -1,43 +0,0 @@
-prepare:
-  fetch:
-  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/.rubocop_base.yml
-    path: ".rubocop_base.yml"
-  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/.rubocop_cc_base.yml
-    path: ".rubocop_cc_base.yml"
-  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/styles/base.yml
-    path: styles/base.yml
-  - url: https://raw.githubusercontent.com/ManageIQ/manageiq-style/master/styles/cc_base.yml
-    path: styles/cc_base.yml
-plugins:
-  rubocop:
-    enabled: true
-    config: ".rubocop_cc.yml"
-    channel: rubocop-1-56-3
-  brakeman:
-    enabled: false
-  bundler-audit:
-    enabled: false
-  csslint:
-    enabled: false
-  duplication:
-    enabled: true
-    config:
-      languages:
-      - ruby
-      - javascript
-  eslint:
-    enabled: false
-    channel: eslint-3
-  fixme:
-    enabled: false
-  markdownlint:
-    enabled: false
-exclude_patterns:
-- ".git/"
-- "**.xml"
-- "**.yaml"
-- "**.yml"
-- locale/
-- spec/
-- tools/
-version: '2'

data/.rubocop_cc.yml

@@ -1,4 +0,0 @@
-inherit_from:
-- ".rubocop_base.yml"
-- ".rubocop_cc_base.yml"
-- ".rubocop_local.yml"