Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: allow mounting an existing kubeconfig and setting of KCP_ENABLED environment variable #1

Merged
merged 2 commits into from
Oct 24, 2024
Merged

feat: allow mounting an existing kubeconfig and setting of KCP_ENABLED environment variable #1

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
e6cb64c
feat: allow mounting an existing kubeconfig and setting of KCP_ENABLE…
nexus49 Oct 24, 2024
b72c80e
chore: bumping version
nexus49 Oct 24, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1,2 @@
.idea
.vscode/settings.json
2 changes: 1 addition & 1 deletion charts/account-operator/Chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ apiVersion: v2
name: account-operator
description: A Helm chart for Kubernetes
type: application
version: 0.1.16
version: 0.1.17
appVersion: "0.60.0"
dependencies:
- name: account-operator-crds
Expand Down
18 changes: 18 additions & 0 deletions charts/account-operator/templates/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,25 @@ spec:
requests:
cpu: {{ .Values.deployment.resources.requests.cpu }}
memory: {{ .Values.deployment.resources.requests.memory }}
env:
- name: KCP_ENABLED
value: "{{ .Values.kcp.enabled }}"
{{- if .Values.kubeconfigSecret }}
- name: KUBECONFIG
value: /api-kubeconfig/kubeconfig
{{- end }}
{{- if .Values.kubeconfigSecret }}
volumeMounts:
- name: external-api-server
mountPath: /api-kubeconfig
{{- end }}
terminationGracePeriodSeconds: 10
volumes:
{{- if .Values.kubeconfigSecret }}
- name: external-api-server
secret:
secretName: {{ .Values.kubeconfigSecret }}
{{- end }}



151 changes: 151 additions & 0 deletions charts/account-operator/tests/__snapshot__/deployment_test.yaml.snap
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,6 +93,9 @@ operator match the snapshot:
- --leader-elect
- --log-level=
- --health-probe-bind-address=:8081
env:
- name: KCP_ENABLED
value: "false"
image: ghcr.io/openmfp/account-operator:0.0.0
livenessProbe:
httpGet:
Expand Down Expand Up @@ -125,6 +128,154 @@ operator match the snapshot:
runAsNonRoot: true
serviceAccountName: RELEASE-NAME-account-operator
terminationGracePeriodSeconds: 10
volumes: null
4: |
apiVersion: v1
imagePullSecrets:
- name: github
kind: ServiceAccount
metadata:
name: RELEASE-NAME-account-operator
namespace: NAMESPACE
operator match the snapshot (with kubeconfigSecret):
1: |
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: RELEASE-NAME-account-operator
rules:
- apiGroups:
- core.openmfp.io
resources:
- accounts
verbs:
- create
- delete
- get
- list
- patch
- update
- watch
- apiGroups:
- coordination.k8s.io
resources:
- leases
verbs:
- create
- delete
- get
- list
- patch
- update
- watch
- apiGroups:
- core.openmfp.io
resources:
- accounts
- accounts/status
verbs:
- create
- delete
- get
- list
- patch
- update
- watch
- apiGroups:
- ""
resources:
- namespaces
- events
verbs:
- get
- list
- watch
- create
- update
- patch
- delete
2: |
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: RELEASE-NAME-account-operator
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: RELEASE-NAME-account-operator
subjects:
- kind: ServiceAccount
name: RELEASE-NAME-account-operator
namespace: NAMESPACE
3: |
apiVersion: apps/v1
kind: Deployment
metadata:
name: RELEASE-NAME-account-operator
namespace: NAMESPACE
spec:
revisionHistoryLimit: 3
selector:
matchLabels:
service: RELEASE-NAME-account-operator
template:
metadata:
annotations:
sidecar.istio.io/inject: "false"
labels:
control-plane: controller-manager
service: RELEASE-NAME-account-operator
spec:
containers:
- args:
- operator
- --leader-elect
- --log-level=
- --health-probe-bind-address=:8081
env:
- name: KCP_ENABLED
value: "false"
- name: KUBECONFIG
value: /api-kubeconfig/kubeconfig
image: ghcr.io/openmfp/account-operator:0.0.0
livenessProbe:
httpGet:
path: /healthz
port: 8081
initialDelaySeconds: 15
periodSeconds: 20
name: manager
ports:
- containerPort: 8080
name: metrics
protocol: TCP
- containerPort: 8081
name: health-port
protocol: TCP
readinessProbe:
httpGet:
path: /readyz
port: 8081
initialDelaySeconds: 5
periodSeconds: 10
resources:
limits:
cpu: 260m
memory: 512Mi
requests:
cpu: 150m
memory: 128Mi
securityContext:
runAsNonRoot: true
volumeMounts:
- mountPath: /api-kubeconfig
name: external-api-server
serviceAccountName: RELEASE-NAME-account-operator
terminationGracePeriodSeconds: 10
volumes:
- name: external-api-server
secret:
secretName: kubeconfig
4: |
apiVersion: v1
imagePullSecrets:
Expand Down
5 changes: 5 additions & 0 deletions charts/account-operator/tests/deployment_test.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,5 +8,10 @@ chart:
appVersion: 0.0.0
tests:
- it: operator match the snapshot
asserts:
- matchSnapshot: {}
- it: operator match the snapshot (with kubeconfigSecret)
set:
kubeconfigSecret: "kubeconfig"
asserts:
- matchSnapshot: {}
5 changes: 5 additions & 0 deletions charts/account-operator/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,3 +22,8 @@ deployment:
requests:
cpu: 150m
memory: 128Mi

kcp:
enabled: false

kubeconfigSecret: ""
Loading