Skip to content

Commit

Permalink
🔅 Helm chart update
Browse files Browse the repository at this point in the history 
Signed-off-by: trust-git-bot <[email protected]>
  • Loading branch information
@trust-git-bot
trust-git-bot committed Nov 13, 2024
1 parent f4c2271 commit 6350930
Show file tree
Hide file tree
Showing 13 changed files with 515 additions and 0 deletions.
5 changes: 5 additions & 0 deletions helm/Chart.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
name: "trustify-operator"
version: "1.0.0-SNAPSHOT"
apiVersion: "v2"
appVersion: "latest"
10 changes: 10 additions & 0 deletions helm/README.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
## Configuration

The following values are configurable:

- `watchNamespaces` - namespaces to be watched, either:
- a list of comma-separated namespace names
- `JOSDK_ALL_NAMESPACES` to watch all namespaces
- `JOSDK_WATCH_CURRENT` to watch only the namespace in which the operator is deployed
- `version` - the current version of the application.

203 changes: 203 additions & 0 deletions helm/crds/trustifies.org.trustify-v1.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,203 @@
# Generated by Fabric8 CRDGenerator, manual edits might get overwritten!
apiVersion: "apiextensions.k8s.io/v1"
kind: "CustomResourceDefinition"
metadata:
name: "trustifies.org.trustify"
spec:
group: "org.trustify"
names:
kind: "Trustify"
plural: "trustifies"
singular: "trustify"
scope: "Namespaced"
versions:
- name: "v1alpha1"
schema:
openAPIV3Schema:
properties:
spec:
properties:
db:
description: "In this section you can find all properties related\
\ to connect to a database."
properties:
externalDatabase:
description: "Use external database."
type: "boolean"
host:
description: "The host of the database."
type: "string"
name:
description: "The database name."
type: "string"
passwordSecret:
description: "The reference to a secret holding the password of\
\ the database user."
properties:
key:
type: "string"
name:
type: "string"
optional:
type: "boolean"
type: "object"
port:
description: "The port of the database."
type: "string"
pvcSize:
description: "Size of the PVC to create. Valid only if externalDatabase=false"
type: "string"
resourceLimits:
description: "In this section you can configure resource limits\
\ settings. Valid only if externalDatabase=false"
properties:
cpuLimit:
description: "Limit CPU."
type: "string"
cpuRequest:
description: "Requested CPU."
type: "string"
memoryLimit:
description: "Limit Memory."
type: "string"
memoryRequest:
description: "Requested memory."
type: "string"
type: "object"
usernameSecret:
description: "The reference to a secret holding the username of\
\ the database user."
properties:
key:
type: "string"
name:
type: "string"
optional:
type: "boolean"
type: "object"
type: "object"
dbImage:
description: "Custom Trustify DB Server image to be used. For internal\
\ use only"
type: "string"
hostname:
description: "In this section you can configure hostname and related\
\ properties."
properties:
hostname:
description: "Hostname for the server."
type: "string"
type: "object"
http:
description: "In this section you can configure features related to\
\ HTTP and HTTPS"
properties:
tlsSecret:
description: "A secret containing the TLS configuration for HTTPS.\
\ Reference: https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets."
type: "string"
type: "object"
imagePullPolicy:
description: "Custom Image Pull Policy for images managed by the Operator"
type: "string"
imagePullSecrets:
description: "Secret(s) that might be used when pulling an image from\
\ a private container image registry or repository."
items:
properties:
name:
type: "string"
type: "object"
type: "array"
oidc:
description: "In this section you can configure Oidc settings."
properties:
enabled:
description: "Enable Oidc Auth."
type: "boolean"
serverClientId:
description: "Oidc client id for the Server."
type: "string"
serverUrl:
description: "Oidc server url."
type: "string"
uiClientId:
description: "Oidc client id for the UI."
type: "string"
type: "object"
serverImage:
description: "Custom Trustify Server image to be used. For internal\
\ use only"
type: "string"
serverResourceLimits:
description: "In this section you can configure resource limits settings\
\ for the Server."
properties:
cpuLimit:
description: "Limit CPU."
type: "string"
cpuRequest:
description: "Requested CPU."
type: "string"
memoryLimit:
description: "Limit Memory."
type: "string"
memoryRequest:
description: "Requested memory."
type: "string"
type: "object"
storage:
description: "In this section you can configure Storage settings."
properties:
compression:
description: "Storage compression."
enum:
- "NONE"
- "ZSTD"
type: "string"
filesystem:
properties:
pvcSize:
description: "Size of the PVC to create."
type: "string"
type: "object"
s3:
properties:
accessKey:
description: "Access key."
type: "string"
bucket:
description: "Bucket name."
type: "string"
region:
description: "Region name."
type: "string"
secretKey:
description: "Secret key."
type: "string"
type: "object"
type:
description: "Storage type."
enum:
- "FILESYSTEM"
- "S3"
type: "string"
type: "object"
type: "object"
status:
properties:
conditions:
items:
properties:
status:
type: "string"
type:
type: "string"
type: "object"
type: "array"
type: "object"
type: "object"
served: true
storage: true
subresources:
status: {}
Empty file added helm/templates/additional-crd-role-binding.yaml
View file
Empty file.
90 changes: 90 additions & 0 deletions helm/templates/deployment.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,90 @@
---
apiVersion: "apps/v1"
kind: "Deployment"
metadata:
annotations:
app.quarkus.io/quarkus-version: "3.15.1"
app.quarkus.io/vcs-uri: "https://github.com/trustification/trustify-operator.git"
prometheus.io/scrape: "true"
prometheus.io/path: "/q/metrics"
prometheus.io/port: "8080"
prometheus.io/scheme: "http"
labels:
app.kubernetes.io/name: "trustify-operator"
app.kubernetes.io/managed-by: "quarkus"
name: "trustify-operator"
spec:
replicas: 1
selector:
matchLabels:
app.kubernetes.io/name: "trustify-operator"
template:
metadata:
annotations:
app.quarkus.io/quarkus-version: "3.15.1"
app.quarkus.io/vcs-uri: "https://github.com/trustification/trustify-operator.git"
prometheus.io/scrape: "true"
prometheus.io/path: "/q/metrics"
prometheus.io/port: "8080"
prometheus.io/scheme: "http"
labels:
app.kubernetes.io/managed-by: "quarkus"
app.kubernetes.io/name: "trustify-operator"
spec:
containers:
- env:
- name: "KUBERNETES_NAMESPACE"
valueFrom:
fieldRef:
fieldPath: "metadata.namespace"
- name: "RELATED_IMAGE_TRUSTIFY_SERVER"
value: "ghcr.io/trustification/trustd:latest"
- name: "RELATED_IMAGE_DB"
value: "quay.io/sclorg/postgresql-15-c9s:latest"
- name: "QUARKUS_OPERATOR_SDK_CONTROLLERS_TRUSTIFY_NAMESPACES"
value: {{ .Values.watchNamespaces }}
image: "ghcr.io/runner/trustify-operator:{{ .Chart.AppVersion }}"
imagePullPolicy: "Always"
livenessProbe:
failureThreshold: 3
httpGet:
path: "/q/health/live"
port: 8080
scheme: "HTTP"
initialDelaySeconds: 5
periodSeconds: 10
successThreshold: 1
timeoutSeconds: 10
name: "trustify-operator"
ports:
- containerPort: 8080
name: "http"
protocol: "TCP"
readinessProbe:
failureThreshold: 3
httpGet:
path: "/q/health/ready"
port: 8080
scheme: "HTTP"
initialDelaySeconds: 5
periodSeconds: 10
successThreshold: 1
timeoutSeconds: 10
resources:
limits:
cpu: "250m"
memory: "256Mi"
requests:
cpu: "50m"
memory: "64Mi"
startupProbe:
failureThreshold: 3
httpGet:
path: "/q/health/started"
port: 8080
scheme: "HTTP"
initialDelaySeconds: 5
periodSeconds: 10
successThreshold: 1
timeoutSeconds: 10
serviceAccountName: "trustify-operator"
16 changes: 16 additions & 0 deletions helm/templates/generic-crd-cluster-role-binding.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: {{ .Chart.Name }}-crd-validating-role-binding
labels:
app.kubernetes.io/name: {{ .Chart.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/managed-by: quarkus
roleRef:
kind: ClusterRole
apiGroup: rbac.authorization.k8s.io
name: {{ .Chart.Name }}-crd-validating-cluster-role
subjects:
- kind: ServiceAccount
name: {{ .Chart.Name }}
namespace: {{ .Release.Namespace }}
16 changes: 16 additions & 0 deletions helm/templates/generic-crd-cluster-role.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: {{ .Chart.Name }}-crd-validating-cluster-role
labels:
app.kubernetes.io/name: {{ .Chart.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/managed-by: quarkus
rules:
- apiGroups:
- apiextensions.k8s.io
resources:
- customresourcedefinitions
verbs:
- get
- list
18 changes: 18 additions & 0 deletions helm/templates/service.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
apiVersion: v1
kind: Service
metadata:
labels:
app.kubernetes.io/name: {{ .Chart.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/managed-by: quarkus
name: {{ .Chart.Name }}
spec:
ports:
- name: http
port: 80
protocol: TCP
targetPort: 8080
selector:
app.kubernetes.io/name: {{ .Chart.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }}
type: ClusterIP
8 changes: 8 additions & 0 deletions helm/templates/serviceaccount.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
apiVersion: v1
kind: ServiceAccount
metadata:
labels:
app.kubernetes.io/managed-by: quarkus
app.kubernetes.io/name: {{ .Chart.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }}
name: {{ .Chart.Name }}
Loading

0 comments on commit 6350930

Please sign in to comment.