mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-13 19:28:55 +00:00
Signed-off-by: Pradeep Lakshmi Narasimha <pradeep.vaishnav4@gmail.com>
This commit is contained in:
Pradeep Lakshmi Narasimha
GitHub
parent
9c644f78e8
commit
abc389eaf8
11 changed files with 17 additions and 11 deletions
|
|
@ -37,6 +37,8 @@ annotations:
|
|||
description: Add a key to preserve configmap settings during upgrade
|
||||
- kind: added
|
||||
description: Make admission reports breaker threshold configurable
|
||||
- kind: added
|
||||
description: ImagePullSecrets made globally configurable
|
||||
- kind: removed
|
||||
description: Deprecated configuration `features.reports.chunkSize` was removed
|
||||
dependencies:
|
||||
|
|
|
|||
|
|
@ -857,6 +857,7 @@ The chart values are organised per component.
|
|||
| Key | Type | Default | Description |
|
||||
|-----|------|---------|-------------|
|
||||
| global.image.registry | string | `nil` | Global value that allows to set a single image registry across all deployments. When set, it will override any values set under `.image.registry` across the chart. |
|
||||
| global.imagePullSecrets | list | `[]` | Global list of Image pull secrets When set, it will override any values set under `imagePullSecrets` under different components across the chart. |
|
||||
| global.caCertificates.data | string | `nil` | Global CA certificates to use with Kyverno deployments This value is expected to be one large string of CA certificates Individual controller values will override this global value |
|
||||
| global.caCertificates.volume | object | `{}` | Global value to set single volume to be mounted for CA certificates for all deployments. Not used when `.Values.global.caCertificates.data` is defined Individual controller values will override this global value |
|
||||
| global.extraEnvVars | list | `[]` | Additional container environment variables to apply to all containers and init containers |
|
||||
|
|
|
|||
|
|
@ -39,7 +39,7 @@ spec:
|
|||
annotations: {{ tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
spec:
|
||||
{{- with .Values.admissionController.imagePullSecrets }}
|
||||
{{- with .Values.admissionController.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -32,7 +32,7 @@ spec:
|
|||
annotations: {{ tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
spec:
|
||||
{{- with .Values.backgroundController.imagePullSecrets }}
|
||||
{{- with .Values.backgroundController.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -39,7 +39,7 @@ spec:
|
|||
annotations: {{ tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
spec:
|
||||
{{- with .Values.cleanupController.imagePullSecrets }}
|
||||
{{- with .Values.cleanupController.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -53,7 +53,7 @@ spec:
|
|||
done
|
||||
|
||||
COUNT=$(kubectl get clusterpolicyreports.wgpolicyk8s.io --no-headers=true | awk '/pol/{print $1}' | wc -l)
|
||||
|
||||
|
||||
if [ $COUNT -gt 0 ]; then
|
||||
echo "deleting $COUNT clusterpolicyreports"
|
||||
kubectl get clusterpolicyreports.wgpolicyk8s.io --no-headers=true | awk '/pol/{print $1}' | xargs kubectl delete clusterpolicyreports.wgpolicyk8s.io
|
||||
|
|
@ -64,7 +64,7 @@ spec:
|
|||
securityContext:
|
||||
{{- toYaml . | nindent 12 }}
|
||||
{{- end }}
|
||||
{{- with .Values.policyReportsCleanup.imagePullSecrets }}
|
||||
{{- with .Values.policyReportsCleanup.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -107,7 +107,7 @@ spec:
|
|||
securityContext:
|
||||
{{- toYaml . | nindent 12 }}
|
||||
{{- end }}
|
||||
{{- with .Values.crds.migration.imagePullSecrets }}
|
||||
{{- with .Values.crds.migration.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -83,8 +83,8 @@ spec:
|
|||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
restartPolicy: Never
|
||||
{{- with .Values.webhooksCleanup.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- with .Values.webhooksCleanup.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
containers:
|
||||
|
|
|
|||
|
|
@ -30,8 +30,8 @@ spec:
|
|||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
restartPolicy: Never
|
||||
{{- with .Values.webhooksCleanup.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- with .Values.webhooksCleanup.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
containers:
|
||||
|
|
|
|||
|
|
@ -32,7 +32,7 @@ spec:
|
|||
annotations: {{ tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
spec:
|
||||
{{- with .Values.reportsController.imagePullSecrets }}
|
||||
{{- with .Values.reportsController.imagePullSecrets | default .Values.global.imagePullSecrets }}
|
||||
imagePullSecrets:
|
||||
{{- tpl (toYaml .) $ | nindent 8 }}
|
||||
{{- end }}
|
||||
|
|
|
|||
|
|
@ -11,6 +11,9 @@ global:
|
|||
# -- (string) Global value that allows to set a single image registry across all deployments.
|
||||
# When set, it will override any values set under `.image.registry` across the chart.
|
||||
registry: ~
|
||||
# -- (list) Global list of Image pull secrets
|
||||
# When set, it will override any values set under `imagePullSecrets` under different components across the chart.
|
||||
imagePullSecrets: []
|
||||
|
||||
caCertificates:
|
||||
# -- Global CA certificates to use with Kyverno deployments
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue