config/default/kustomization.yaml at main · evan.jarrett.net/secret-service-operator

evan.jarrett.net / secret-service-operator
fork
Kubernetes Operator that creates Service Endpoints from Secrets
fork
secret-service-operator / config / default / kustomization.yaml
at main 151 lines 5.2 kB view raw
wrap content
Evan Jarrett attempt to upgrade the operator sdk 1y ago
b180b7c1
  1# Adds namespace to all resources.
  2namespace: secret-service-operator-system
  3
  4# Value of this field is prepended to the
  5# names of all resources, e.g. a deployment named
  6# "wordpress" becomes "alices-wordpress".
  7# Note that it should also match with the prefix (text before '-') of the namespace
  8# field above.
  9namePrefix: secret-service-operator-
 10
 11# Labels to add to all resources and selectors.
 12#labels:
 13#- includeSelectors: true
 14#  pairs:
 15#    someName: someValue
 16
 17resources:
 18- ../crd
 19- ../rbac
 20- ../manager
 21# [WEBHOOK] To enable webhook, uncomment all the sections with [WEBHOOK] prefix including the one in
 22# crd/kustomization.yaml
 23#- ../webhook
 24# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER'. 'WEBHOOK' components are required.
 25#- ../certmanager
 26# [PROMETHEUS] To enable prometheus monitor, uncomment all sections with 'PROMETHEUS'.
 27#- ../prometheus
 28# [METRICS] Expose the controller manager metrics service.
 29- metrics_service.yaml
 30# [NETWORK POLICY] Protect the /metrics endpoint and Webhook Server with NetworkPolicy.
 31# Only Pod(s) running a namespace labeled with 'metrics: enabled' will be able to gather the metrics.
 32# Only CR(s) which requires webhooks and are applied on namespaces labeled with 'webhooks: enabled' will
 33# be able to communicate with the Webhook Server.
 34#- ../network-policy
 35
 36# Uncomment the patches line if you enable Metrics, and/or are using webhooks and cert-manager
 37patches:
 38# [METRICS] The following patch will enable the metrics endpoint using HTTPS and the port :8443.
 39# More info: https://book.kubebuilder.io/reference/metrics
 40- path: manager_metrics_patch.yaml
 41  target:
 42    kind: Deployment
 43
 44# [WEBHOOK] To enable webhook, uncomment all the sections with [WEBHOOK] prefix including the one in
 45# crd/kustomization.yaml
 46#- path: manager_webhook_patch.yaml
 47
 48# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER'.
 49# Uncomment 'CERTMANAGER' sections in crd/kustomization.yaml to enable the CA injection in the admission webhooks.
 50# 'CERTMANAGER' needs to be enabled to use ca injection
 51#- path: webhookcainjection_patch.yaml
 52
 53# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER' prefix.
 54# Uncomment the following replacements to add the cert-manager CA injection annotations
 55#replacements:
 56#  - source: # Add cert-manager annotation to ValidatingWebhookConfiguration, MutatingWebhookConfiguration and CRDs
 57#      kind: Certificate
 58#      group: cert-manager.io
 59#      version: v1
 60#      name: serving-cert # this name should match the one in certificate.yaml
 61#      fieldPath: .metadata.namespace # namespace of the certificate CR
 62#    targets:
 63#      - select:
 64#          kind: ValidatingWebhookConfiguration
 65#        fieldPaths:
 66#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
 67#        options:
 68#          delimiter: '/'
 69#          index: 0
 70#          create: true
 71#      - select:
 72#          kind: MutatingWebhookConfiguration
 73#        fieldPaths:
 74#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
 75#        options:
 76#          delimiter: '/'
 77#          index: 0
 78#          create: true
 79#      - select:
 80#          kind: CustomResourceDefinition
 81#        fieldPaths:
 82#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
 83#        options:
 84#          delimiter: '/'
 85#          index: 0
 86#          create: true
 87#  - source:
 88#      kind: Certificate
 89#      group: cert-manager.io
 90#      version: v1
 91#      name: serving-cert # this name should match the one in certificate.yaml
 92#      fieldPath: .metadata.name
 93#    targets:
 94#      - select:
 95#          kind: ValidatingWebhookConfiguration
 96#        fieldPaths:
 97#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
 98#        options:
 99#          delimiter: '/'
100#          index: 1
101#          create: true
102#      - select:
103#          kind: MutatingWebhookConfiguration
104#        fieldPaths:
105#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
106#        options:
107#          delimiter: '/'
108#          index: 1
109#          create: true
110#      - select:
111#          kind: CustomResourceDefinition
112#        fieldPaths:
113#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
114#        options:
115#          delimiter: '/'
116#          index: 1
117#          create: true
118#  - source: # Add cert-manager annotation to the webhook Service
119#      kind: Service
120#      version: v1
121#      name: webhook-service
122#      fieldPath: .metadata.name # namespace of the service
123#    targets:
124#      - select:
125#          kind: Certificate
126#          group: cert-manager.io
127#          version: v1
128#        fieldPaths:
129#          - .spec.dnsNames.0
130#          - .spec.dnsNames.1
131#        options:
132#          delimiter: '.'
133#          index: 0
134#          create: true
135#  - source:
136#      kind: Service
137#      version: v1
138#      name: webhook-service
139#      fieldPath: .metadata.namespace # namespace of the service
140#    targets:
141#      - select:
142#          kind: Certificate
143#          group: cert-manager.io
144#          version: v1
145#        fieldPaths:
146#          - .spec.dnsNames.0
147#          - .spec.dnsNames.1
148#        options:
149#          delimiter: '.'
150#          index: 1
151#          create: true
Configure Feed

Configure Feed
