diff --git a/manifests/0000_10_config-operator_02_configmap.yaml b/manifests/0000_10_config-operator_02_configmap.yaml new file mode 100644 index 000000000..53c48e89b --- /dev/null +++ b/manifests/0000_10_config-operator_02_configmap.yaml @@ -0,0 +1,23 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: openshift-config-operator + name: openshift-config-operator-config + annotations: + include.release.openshift.io/hypershift: "true" + include.release.openshift.io/ibm-cloud-managed: "true" + include.release.openshift.io/self-managed-high-availability: "true" + include.release.openshift.io/single-node-developer: "true" +data: + config.yaml: | + apiVersion: operator.openshift.io/v1alpha1 + kind: GenericOperatorConfig + servingInfo: + cipherSuites: + - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 + - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 + - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 + - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 + - TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 + - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 + minTLSVersion: VersionTLS12 diff --git a/manifests/0000_10_config-operator_07_deployment.yaml b/manifests/0000_10_config-operator_07_deployment.yaml index 8633c4420..fd371c282 100644 --- a/manifests/0000_10_config-operator_07_deployment.yaml +++ b/manifests/0000_10_config-operator_07_deployment.yaml @@ -40,6 +40,9 @@ spec: - name: available-featuregates emptyDir: sizeLimit: 100Mi + - name: config + configMap: + name: openshift-config-operator-config initContainers: - name: openshift-api securityContext: @@ -77,6 +80,7 @@ spec: - operator - --operator-version=$(OPERATOR_IMAGE_VERSION) - --authoritative-feature-gate-dir=/available-featuregates + - --config=/var/run/configmaps/config/config.yaml ports: - containerPort: 8443 name: metrics @@ -104,6 +108,8 @@ spec: name: serving-cert - mountPath: /available-featuregates name: available-featuregates + - mountPath: /var/run/configmaps/config + name: config env: - name: IMAGE value: quay.io/openshift/origin-cluster-config-operator:v4.0