chore: release v0.2.13

chore: bump version to 0.2.13
fix: use friendly name 'Sealed Secrets' in settings UI
2026-02-13 11:34:16 +00:00 · 2026-02-13 06:33:22 -05:00 · 2026-02-13 06:33:22 -05:00 · 2026-02-13 02:41:59 +00:00 · 2026-02-12 21:41:08 -05:00 · 2026-02-12 21:41:08 -05:00
11 changed files with 180 additions and 106 deletions
@@ -1,13 +1,13 @@
 # Artifact Hub package metadata file
 # https://github.com/artifacthub/hub/blob/master/docs/metadata/artifacthub-pkg.yml
-version: 0.2.8
+version: 0.2.13
 name: headlamp-sealed-secrets
 displayName: Sealed Secrets Plugin for Headlamp
 createdAt: "2026-02-12T00:00:00Z"
 description: A comprehensive Headlamp plugin for managing Bitnami Sealed Secrets with client-side encryption and RBAC-aware UI
 license: Apache-2.0
 homeURL: https://github.com/privilegedescalation/headlamp-sealed-secrets-plugin
-appVersion: 0.2.8
+appVersion: 0.2.13
 containersImages:
  - name: sealed-secrets-controller
    image: docker.io/bitnami/sealed-secrets-controller:v0.24.0
@@ -19,8 +19,8 @@ keywords:
  - encryption
  - security
 annotations:
-  headlamp/plugin/archive-url: "https://github.com/privilegedescalation/headlamp-sealed-secrets-plugin/releases/download/v0.2.8/headlamp-sealed-secrets-0.2.8.tar.gz"
+  headlamp/plugin/archive-url: "https://github.com/privilegedescalation/headlamp-sealed-secrets-plugin/releases/download/v0.2.13/headlamp-sealed-secrets-0.2.13.tar.gz"
-  headlamp/plugin/archive-checksum: sha256:83ba4a09a1b7cfc6ce422f0f62232959d1d4b087cf9f34f4d27241e6c9c838e3
+  headlamp/plugin/archive-checksum: sha256:f9d8038471ae323b8bd351b46886cc9276cf7fba8ebc76858f1842c31fd4ba7c
  headlamp/plugin/version-compat: ">=0.13.0"
  headlamp/plugin/distro-compat: "desktop,in-cluster,web,docker-desktop"
 links:
@@ -1,6 +1,6 @@
 {
  "name": "headlamp-sealed-secrets",
-  "version": "0.2.8",
+  "version": "0.2.13",
  "description": "Headlamp plugin for Bitnami Sealed Secrets - manage encrypted Kubernetes secrets",
  "files": [
    "dist",
@@ -35,6 +35,10 @@ abstract class BaseErrorBoundary extends Component<ErrorBoundaryProps, ErrorBoun
  componentDidCatch(error: Error, errorInfo: React.ErrorInfo) {
    console.error('Error caught by boundary:', error, errorInfo);
    console.error('Error type:', typeof error);
    console.error('Error keys:', Object.keys(error));
    console.error('Error message:', error.message);
    console.error('Error toString:', String(error));
    this.setState({ errorInfo });
  }
@@ -95,7 +99,14 @@ export class CryptoErrorBoundary extends BaseErrorBoundary {
              variant="body2"
              sx={{ mt: 2, fontFamily: 'monospace', fontSize: '0.875rem' }}
            >
-              Error: {this.state.error.message}
+              {(() => {
                try {
                  const msg = this.state.error.message || this.state.error.toString();
                  return `Error: ${String(msg)}`;
                } catch (e) {
                  return 'Error: [Unable to display error message]';
                }
              })()}
            </Typography>
          )}
        </Alert>
@@ -143,7 +154,14 @@ export class ApiErrorBoundary extends BaseErrorBoundary {
              variant="body2"
              sx={{ mt: 2, fontFamily: 'monospace', fontSize: '0.875rem' }}
            >
-              Error: {this.state.error.message}
+              {(() => {
                try {
                  const msg = this.state.error.message || this.state.error.toString();
                  return `Error: ${String(msg)}`;
                } catch (e) {
                  return 'Error: [Unable to display error message]';
                }
              })()}
            </Typography>
          )}
        </Alert>
@@ -182,7 +200,14 @@ export class GenericErrorBoundary extends BaseErrorBoundary {
              variant="body2"
              sx={{ mt: 2, fontFamily: 'monospace', fontSize: '0.875rem' }}
            >
-              Error: {this.state.error.message}
+              {(() => {
                try {
                  const msg = this.state.error.message || this.state.error.toString();
                  return `Error: ${String(msg)}`;
                } catch (e) {
                  return 'Error: [Unable to display error message]';
                }
              })()}
            </Typography>
          )}
        </Alert>
@@ -5,6 +5,7 @@
 * encrypted data, template, resulting Secret, and actions
 */
 import { Icon } from '@iconify/react';
 import { K8s } from '@kinvolk/headlamp-plugin/lib';
 import { Link } from '@kinvolk/headlamp-plugin/lib/CommonComponents';
 import {
@@ -13,7 +14,18 @@ import {
  SimpleTable,
  StatusLabel,
 } from '@kinvolk/headlamp-plugin/lib/CommonComponents';
-import { Box, Button, Dialog, DialogActions, DialogContent, DialogTitle } from '@mui/material';
+import {
  Alert,
  Box,
  Button,
  Dialog,
  DialogActions,
  DialogContent,
  DialogTitle,
  Drawer,
  IconButton,
  Typography,
 } from '@mui/material';
 import { useSnackbar } from 'notistack';
 import React from 'react';
 import { useParams } from 'react-router-dom';
@@ -46,7 +58,7 @@ function formatScope(scope: SealedSecretScope): string {
 */
 export function SealedSecretDetail() {
  const { namespace, name } = useParams<{ namespace: string; name: string }>();
-  const [sealedSecret] = SealedSecret.useGet(name, namespace);
+  const [sealedSecret, error] = SealedSecret.useGet(name, namespace);
  const [secret] = K8s.ResourceClasses.Secret.useGet(name, namespace);
  const [decryptKey, setDecryptKey] = React.useState<string | null>(null);
  const [deleteDialogOpen, setDeleteDialogOpen] = React.useState(false);
@@ -62,6 +74,22 @@ export function SealedSecretDetail() {
    }
  }, [namespace]);
  // Show error if fetch failed
  if (error) {
    return (
      <Box p={3}>
        <Alert severity="error">
          <Typography variant="h6" gutterBottom>
            Failed to load SealedSecret
          </Typography>
          <Typography variant="body2">
            {String(error)}
          </Typography>
        </Alert>
      </Box>
    );
  }
  // Show loading skeleton while data is being fetched
  if (!sealedSecret) {
    return <SealedSecretDetailSkeleton />;
@@ -94,16 +122,41 @@ export function SealedSecretDetail() {
    }
  }, [sealedSecret, enqueueSnackbar]);
-  const encryptedKeys = Object.keys(sealedSecret.spec.encryptedData || {});
+  // Safety check - should never happen due to early returns above, but be defensive
  if (!sealedSecret?.spec?.encryptedData) {
    return <SealedSecretDetailSkeleton />;
  }
  const encryptedKeys = Object.keys(sealedSecret.spec.encryptedData);
  const handleClose = () => {
    window.history.back();
  };
  return (
    <>
-      <Box>
+      <Drawer
-        <SectionBox
+        anchor="right"
-          title={
+        open
-            <Box display="flex" alignItems="center" justifyContent="space-between">
+        onClose={handleClose}
-              <span>{sealedSecret.metadata.name}</span>
+        PaperProps={{
-              <Box>
+          sx: {
            width: { xs: '100%', sm: '600px', md: '800px' },
            maxWidth: '100%',
          },
        }}
      >
        <Box>
          <SectionBox
            title={
              <Box display="flex" alignItems="center" justifyContent="space-between">
                <Box display="flex" alignItems="center" gap={1}>
                  <IconButton onClick={handleClose} edge="start" size="small">
                    <Icon icon="mdi:close" />
                  </IconButton>
                  <span>{sealedSecret.metadata.name}</span>
                </Box>
                <Box>
                {permissions?.canUpdate && (
                  <Button
                    variant="outlined"
@@ -131,15 +184,15 @@ export function SealedSecretDetail() {
            rows={[
              {
                name: 'Name',
-                value: sealedSecret.metadata.name,
+                value: String(sealedSecret.metadata.name || ''),
              },
              {
                name: 'Namespace',
-                value: sealedSecret.metadata.namespace,
+                value: String(sealedSecret.metadata.namespace || ''),
              },
              {
                name: 'Scope',
-                value: formatScope(sealedSecret.scope),
+                value: String(formatScope(sealedSecret.scope)),
              },
              {
                name: 'Sync Status',
@@ -151,16 +204,18 @@ export function SealedSecretDetail() {
              },
              {
                name: 'Status Message',
-                value: sealedSecret.syncMessage,
+                value: String(sealedSecret.syncMessage || 'Unknown'),
                hide: !sealedSecret.syncCondition,
              },
              {
                name: 'Age',
-                value: sealedSecret.getAge(),
+                value: String(sealedSecret.getAge() || ''),
              },
              {
                name: 'Created',
-                value: new Date(sealedSecret.metadata.creationTimestamp!).toLocaleString(),
+                value: sealedSecret.metadata.creationTimestamp
                  ? new Date(sealedSecret.metadata.creationTimestamp).toLocaleString()
                  : 'Unknown',
              },
            ]}
          />
@@ -207,16 +262,18 @@ export function SealedSecretDetail() {
              rows={[
                {
                  name: 'Secret Type',
-                  value: sealedSecret.spec.template.type || 'Opaque',
+                  value: String(sealedSecret.spec.template.type || 'Opaque'),
                },
                {
                  name: 'Labels',
-                  value: JSON.stringify(sealedSecret.spec.template.metadata?.labels || {}),
+                  value: String(JSON.stringify(sealedSecret.spec.template.metadata?.labels || {})),
                  hide: !sealedSecret.spec.template.metadata?.labels,
                },
                {
                  name: 'Annotations',
-                  value: JSON.stringify(sealedSecret.spec.template.metadata?.annotations || {}),
+                  value: String(
                    JSON.stringify(sealedSecret.spec.template.metadata?.annotations || {})
                  ),
                  hide: !sealedSecret.spec.template.metadata?.annotations,
                },
              ]}
@@ -234,7 +291,7 @@ export function SealedSecretDetail() {
                },
                {
                  name: 'Keys',
-                  value: Object.keys(secret.data || {}).join(', '),
+                  value: String(Object.keys(secret.data || {}).join(', ') || 'None'),
                },
                {
                  name: 'Link',
@@ -242,8 +299,8 @@ export function SealedSecretDetail() {
                    <Link
                      routeName="secret"
                      params={{
-                        namespace: secret.metadata.namespace,
+                        namespace: String(secret.metadata.namespace || ''),
-                        name: secret.metadata.name,
+                        name: String(secret.metadata.name || ''),
                      }}
                    >
                      View Secret
@@ -259,29 +316,30 @@ export function SealedSecretDetail() {
            </Box>
          )}
        </SectionBox>
-      </Box>
+        </Box>
-      {decryptKey && (
+        {decryptKey && (
-        <DecryptDialog
+          <DecryptDialog
-          sealedSecret={sealedSecret}
+            sealedSecret={sealedSecret}
-          secretKey={decryptKey}
+            secretKey={decryptKey}
-          onClose={() => setDecryptKey(null)}
+            onClose={() => setDecryptKey(null)}
-        />
+          />
-      )}
+        )}
-      <Dialog open={deleteDialogOpen} onClose={() => setDeleteDialogOpen(false)}>
+        <Dialog open={deleteDialogOpen} onClose={() => setDeleteDialogOpen(false)}>
-        <DialogTitle>Delete SealedSecret?</DialogTitle>
+          <DialogTitle>Delete SealedSecret?</DialogTitle>
-        <DialogContent>
+          <DialogContent>
-          Are you sure you want to delete the SealedSecret <strong>{name}</strong>? This will also
+            Are you sure you want to delete the SealedSecret <strong>{name}</strong>? This will also
-          delete the resulting Kubernetes Secret.
+            delete the resulting Kubernetes Secret.
-        </DialogContent>
+          </DialogContent>
-        <DialogActions>
+          <DialogActions>
-          <Button onClick={() => setDeleteDialogOpen(false)}>Cancel</Button>
+            <Button onClick={() => setDeleteDialogOpen(false)}>Cancel</Button>
-          <Button onClick={handleDelete} color="error">
+            <Button onClick={handleDelete} color="error">
-            Delete
+              Delete
-          </Button>
+            </Button>
-        </DialogActions>
+          </DialogActions>
-      </Dialog>
+        </Dialog>
      </Drawer>
    </>
  );
 }
@@ -13,11 +13,13 @@ import {
 } from '@kinvolk/headlamp-plugin/lib/CommonComponents';
 import { Box, Button } from '@mui/material';
 import React from 'react';
 import { useParams } from 'react-router-dom';
 import { usePermission } from '../hooks/usePermissions';
 import { SealedSecret } from '../lib/SealedSecretCRD';
 import { SealedSecretScope } from '../types';
 import { EncryptDialog } from './EncryptDialog';
 import { SealedSecretListSkeleton } from './LoadingSkeletons';
 import { SealedSecretDetail } from './SealedSecretDetail';
 import { VersionWarning } from './VersionWarning';
 /**
@@ -40,6 +42,7 @@ function formatScope(scope: SealedSecretScope): string {
 * SealedSecrets list view component
 */
 export function SealedSecretList() {
  const { namespace, name } = useParams<{ namespace?: string; name?: string }>();
  const [sealedSecrets, error, loading] = SealedSecret.useList();
  const [createDialogOpen, setCreateDialogOpen] = React.useState(false);
  const { allowed: canCreate } = usePermission(undefined, 'canCreate');
@@ -159,6 +162,8 @@ export function SealedSecretList() {
      </SectionBox>
      <EncryptDialog open={createDialogOpen} onClose={handleCloseDialog} />
      {namespace && name && <SealedSecretDetail />}
    </>
  );
 }
@@ -32,14 +32,24 @@ export function VersionWarning({ autoDetect = true, showDetails = false }: Versi
    setLoading(true);
    setError(null);
-    const result = await SealedSecret.detectApiVersion();
+    try {
      const result = await SealedSecret.detectApiVersion();
-    if (result.ok) {
+      if (result.ok) {
-      setDetectedVersion(result.value);
+        setDetectedVersion(result.value);
-      setError(null);
+        setError(null);
-    } else if (result.ok === false) {
+      } else if (result.ok === false) {
        setDetectedVersion(null);
        // Ensure error is always a string
        const errorMessage = typeof result.error === 'string'
          ? result.error
          : String(result.error);
        setError(errorMessage);
      }
    } catch (e) {
      // Catch any unexpected errors
      setDetectedVersion(null);
-      setError(result.error);
+      setError(e instanceof Error ? e.message : String(e));
    }
    setLoading(false);
@@ -67,8 +77,8 @@ export function VersionWarning({ autoDetect = true, showDetails = false }: Versi
        }>
          <strong>API Version Detection Failed</strong>
          <br />
-          {error}
+          {String(error)}
-          {error.includes('not found') && (
+          {String(error).includes('not found') && (
            <>
              <br />
              <br />
@@ -16,12 +16,12 @@
 import {
  registerDetailsViewSection,
  registerPluginSettings,
  registerRoute,
  registerSidebarEntry,
 } from '@kinvolk/headlamp-plugin/lib';
 import React from 'react';
 import { ApiErrorBoundary, GenericErrorBoundary } from './components/ErrorBoundary';
 import { SealedSecretDetail } from './components/SealedSecretDetail';
 import { SealedSecretList } from './components/SealedSecretList';
 import { SealingKeysView } from './components/SealingKeysView';
 import { SecretDetailsSection } from './components/SecretDetailsSection';
@@ -56,21 +56,13 @@ registerSidebarEntry({
  url: '/sealedsecrets/keys',
 });
 // "Settings" child entry
 registerSidebarEntry({
  parent: 'sealed-secrets',
  name: 'sealed-secrets-settings',
  label: 'Settings',
  url: '/sealedsecrets/settings',
 });
 /**
 * Register routes
 */
-// List view
+// List view with optional detail drawer
 registerRoute({
-  path: '/sealedsecrets',
+  path: '/sealedsecrets/:namespace?/:name?',
  sidebar: 'sealed-secrets-list',
  component: () => (
    <ApiErrorBoundary>
@@ -78,18 +70,6 @@ registerRoute({
    </ApiErrorBoundary>
  ),
  exact: true,
 });
 // Detail view
 registerRoute({
  path: '/sealedsecrets/:namespace/:name',
  sidebar: 'sealed-secrets-list',
  component: () => (
    <ApiErrorBoundary>
      <SealedSecretDetail />
    </ApiErrorBoundary>
  ),
  exact: true,
  name: 'sealedsecret',
 });
@@ -105,18 +85,6 @@ registerRoute({
  exact: true,
 });
 // Settings page
 registerRoute({
  path: '/sealedsecrets/settings',
  sidebar: 'sealed-secrets-settings',
  component: () => (
    <GenericErrorBoundary>
      <SettingsPage />
    </GenericErrorBoundary>
  ),
  exact: true,
 });
 /**
 * Register integration with Secret detail view
 *
@@ -132,3 +100,18 @@ registerDetailsViewSection(({ resource }) => {
  }
  return null;
 });
 /**
 * Register plugin settings
 *
 * Settings will appear in Settings → Plugins → Sealed Secrets
 */
 registerPluginSettings(
  'Sealed Secrets',
  () => (
    <GenericErrorBoundary>
      <SettingsPage />
    </GenericErrorBoundary>
  ),
  true // Display save button
 );
@@ -101,7 +101,9 @@ export class SealedSecret extends KubeObject<SealedSecretInterface> {
    if (!condition) {
      return 'Unknown';
    }
-    return condition.message || condition.reason || condition.status;
+    // Ensure we always return a string, not an object
    const message = condition.message || condition.reason || condition.status;
    return String(message || 'Unknown');
  }
  /**
@@ -120,20 +122,11 @@ export class SealedSecret extends KubeObject<SealedSecretInterface> {
    }
    const result = await tryCatchAsync(async () => {
-      // Query the CRD to get available versions
+      // Query the CRD to get available versions using Headlamp's API proxy
-      const response = await fetch(
+      const crd = await ApiProxy.request(
        '/apis/apiextensions.k8s.io/v1/customresourcedefinitions/sealedsecrets.bitnami.com'
      );
      if (!response.ok) {
        if (response.status === 404) {
          throw new Error('SealedSecrets CRD not found. Please install Sealed Secrets on the cluster.');
        }
        throw new Error(`Failed to fetch CRD: ${response.status} ${response.statusText}`);
      }
      const crd = await response.json();
      // Find the storage version (the version used for persistence)
      const storageVersion = crd.spec?.versions?.find((v: any) => v.storage === true);
Author	SHA1	Message	Date
github-actions[bot]	889504962d	chore: release v0.2.13	2026-02-13 11:34:16 +00:00
Chris Farhood	7b51df5ce5	chore: bump version to 0.2.13	2026-02-13 06:33:22 -05:00
Chris Farhood	a3b860c1f5	fix: use friendly name 'Sealed Secrets' in settings UI Changed plugin settings registration name from 'headlamp-sealed-secrets' to 'Sealed Secrets' for better user experience in Settings → Plugins. Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>	2026-02-13 06:33:22 -05:00
github-actions[bot]	4efe88cf6e	chore: release v0.2.12	2026-02-13 02:41:59 +00:00
Chris Farhood	0ded85fe23	chore: bump version to 0.2.12	2026-02-12 21:41:08 -05:00
Chris Farhood	b08df4fb76	feat: improve UX with drawer detail view and proper settings placement Major UX improvements: - Changed detail view from full page to drawer (slides from right) - Moved plugin settings from sidebar to Settings → Plugins (proper pattern) - Fixed React error #310 by adding defensive String() wrappers - Fixed syncMessage getter to always return string - Added safety checks for encryptedData access - Added error handling for useGet failures The drawer approach keeps the list visible while viewing details, matching Headlamp's design patterns. Settings are now properly located in the global Settings → Plugins section instead of cluttering the plugin's sidebar navigation. Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>	2026-02-12 21:41:08 -05:00
github-actions[bot]	905283f134	chore: release v0.2.10	2026-02-13 01:48:33 +00:00
Chris Farhood	9c62405a0c	fix: resolve 'Body is disturbed or locked' fetch error The error was caused by attempting to read the response body twice: - First with response.json() - Then with response.text() in the error handler This caused the 'Body is disturbed or locked' error that was being displayed as 'The string did not match the expected pattern'. Fix: Removed the duplicate response.text() call in error handler. Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>	2026-02-12 20:47:37 -05:00
github-actions[bot]	175310c4a6	chore: release v0.2.9	2026-02-13 01:19:45 +00:00
Chris Farhood	329d030c1a	fix: add defensive error handling for API version detection Ensure error messages are always strings before rendering to prevent React error #310 (invalid React child - object). Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>	2026-02-12 20:18:54 -05:00