chore: kubezero-operators version bump

This commit is contained in:
Stefan Reimer 2024-02-06 16:01:54 +00:00
parent 298031052f
commit c8343dcbad
6 changed files with 859 additions and 400 deletions

View File

@ -0,0 +1,42 @@
# kubezero-operators
![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square)
Various operators supported by KubeZero
**Homepage:** <https://kubezero.com>
## Maintainers
| Name | Email | Url |
| ---- | ------ | --- |
| Stefan Reimer | <stefan@zero-downtime.net> | |
## Requirements
Kubernetes: `>= 1.26.0`
| Repository | Name | Version |
|------------|------|---------|
| https://cdn.zero-downtime.net/charts/ | kubezero-lib | >= 0.1.6 |
| https://helm.elastic.co | eck-operator | 2.11.1 |
| https://opensearch-project.github.io/opensearch-k8s-operator/ | opensearch-operator | 2.5.1 |
## Values
| Key | Type | Default | Description |
|-----|------|---------|-------------|
| eck-operator.enabled | bool | `false` | |
| eck-operator.installCRDs | bool | `false` | |
| eck-operator.nodeSelector."node-role.kubernetes.io/control-plane" | string | `""` | |
| eck-operator.tolerations[0].effect | string | `"NoSchedule"` | |
| eck-operator.tolerations[0].key | string | `"node-role.kubernetes.io/control-plane"` | |
| opensearch-operator.enabled | bool | `false` | |
| opensearch-operator.fullnameOverride | string | `"telemetry"` | |
| opensearch-operator.kubeRbacProxy.enable | bool | `false` | |
| opensearch-operator.nodeSelector."node-role.kubernetes.io/control-plane" | string | `""` | |
| opensearch-operator.tolerations[0].effect | string | `"NoSchedule"` | |
| opensearch-operator.tolerations[0].key | string | `"node-role.kubernetes.io/control-plane"` | |
----------------------------------------------
Autogenerated from chart metadata using [helm-docs v1.11.0](https://github.com/norwoodj/helm-docs/releases/v1.11.0)

View File

@ -1,5 +1,5 @@
apiVersion: v2 apiVersion: v2
appVersion: 2.9.0 appVersion: 2.11.1
description: Elastic Cloud on Kubernetes (ECK) operator description: Elastic Cloud on Kubernetes (ECK) operator
home: https://github.com/elastic/cloud-on-k8s home: https://github.com/elastic/cloud-on-k8s
icon: https://helm.elastic.co/icons/eck.png icon: https://helm.elastic.co/icons/eck.png
@ -18,4 +18,4 @@ maintainers:
name: Elastic name: Elastic
name: eck-operator name: eck-operator
type: application type: application
version: 2.9.0 version: 2.11.1

View File

@ -23,11 +23,18 @@ data:
{{- end }} {{- end }}
ca-cert-validity: {{ .Values.config.caValidity }} ca-cert-validity: {{ .Values.config.caValidity }}
ca-cert-rotate-before: {{ .Values.config.caRotateBefore }} ca-cert-rotate-before: {{ .Values.config.caRotateBefore }}
{{- with .Values.config.caDir }}
ca-dir: {{ . }}
{{- end }}
cert-validity: {{ .Values.config.certificatesValidity }} cert-validity: {{ .Values.config.certificatesValidity }}
cert-rotate-before: {{ .Values.config.certificatesRotateBefore }} cert-rotate-before: {{ .Values.config.certificatesRotateBefore }}
disable-config-watch: {{ .Values.config.disableConfigWatch }}
{{- with .Values.config.exposedNodeLabels }} {{- with .Values.config.exposedNodeLabels }}
exposed-node-labels: [{{ join "," . }}] exposed-node-labels: [{{ join "," . }}]
{{- end }} {{- end }}
{{- with .Values.config.ipFamily }}
ip-family: {{ . }}
{{- end }}
set-default-security-context: {{ .Values.config.setDefaultSecurityContext }} set-default-security-context: {{ .Values.config.setDefaultSecurityContext }}
kube-client-timeout: {{ .Values.config.kubeClientTimeout }} kube-client-timeout: {{ .Values.config.kubeClientTimeout }}
{{- with .Values.config.kubeClientQPS }} {{- with .Values.config.kubeClientQPS }}
@ -58,5 +65,12 @@ data:
{{- with .Values.managedNamespaces }} {{- with .Values.managedNamespaces }}
namespaces: [{{ join "," . }}] namespaces: [{{ join "," . }}]
{{- end }} {{- end }}
operator-namespace: {{ .Release.Namespace }}
enable-leader-election: {{ .Values.config.enableLeaderElection }} enable-leader-election: {{ .Values.config.enableLeaderElection }}
elasticsearch-observation-interval: {{ .Values.config.elasticsearchObservationInterval }} elasticsearch-observation-interval: {{ .Values.config.elasticsearchObservationInterval }}
{{- if not .Values.config.containerSuffix }}
ubi-only: {{ .Values.config.ubiOnly }}
{{- end }}
{{- with .Values.webhook.secret }}
webhook-secret: {{ . }}
{{- end }}

View File

@ -123,13 +123,13 @@ spec:
{{- end }} {{- end }}
{{- with .Values.nodeSelector }} {{- with .Values.nodeSelector }}
nodeSelector: nodeSelector:
{{- toYaml . | nindent 12 }} {{- toYaml . | nindent 8 }}
{{- end }} {{- end }}
{{- with .Values.affinity }} {{- with .Values.affinity }}
affinity: affinity:
{{- toYaml . | nindent 12 }} {{- toYaml . | nindent 8 }}
{{- end }} {{- end }}
{{- with .Values.tolerations }} {{- with .Values.tolerations }}
tolerations: tolerations:
{{- toYaml . | nindent 12 }} {{- toYaml . | nindent 8 }}
{{- end }} {{- end }}

View File

@ -128,6 +128,8 @@ webhook:
objectSelector: {} objectSelector: {}
# port is the port that the validating webhook binds to. # port is the port that the validating webhook binds to.
port: 9443 port: 9443
# secret specifies the Kubernetes secret to be mounted into the path designated by the certsDir value to be used for webhook certificates.
secret: ""
# hostNetwork allows a Pod to use the Node network namespace. # hostNetwork allows a Pod to use the Node network namespace.
# This is required to allow for communication with the kube API when using some alternate CNIs in conjunction with webhook enabled. # This is required to allow for communication with the kube API when using some alternate CNIs in conjunction with webhook enabled.
@ -178,15 +180,25 @@ config:
# caRotateBefore defines when to rotate a CA certificate that is due to expire. # caRotateBefore defines when to rotate a CA certificate that is due to expire.
caRotateBefore: 24h caRotateBefore: 24h
# caDir defines the directory containing a CA certificate (tls.crt) and its associated private key (tls.key) to be used for all managed resources.
# Setting this makes caRotateBefore and caValidity values ineffective.
caDir: ""
# certificatesValidity defines the validity period of certificates generated by the operator. # certificatesValidity defines the validity period of certificates generated by the operator.
certificatesValidity: 8760h certificatesValidity: 8760h
# certificatesRotateBefore defines when to rotate a certificate that is due to expire. # certificatesRotateBefore defines when to rotate a certificate that is due to expire.
certificatesRotateBefore: 24h certificatesRotateBefore: 24h
# disableConfigWatch specifies whether the operator watches the configuration file for changes.
disableConfigWatch: false
# exposedNodeLabels is an array of regular expressions of node labels which are allowed to be copied as annotations on Elasticsearch Pods. # exposedNodeLabels is an array of regular expressions of node labels which are allowed to be copied as annotations on Elasticsearch Pods.
exposedNodeLabels: [ "topology.kubernetes.io/.*", "failure-domain.beta.kubernetes.io/.*" ] exposedNodeLabels: [ "topology.kubernetes.io/.*", "failure-domain.beta.kubernetes.io/.*" ]
# ipFamily specifies the IP family to use. Possible values: IPv4, IPv6 and "" (auto-detect)
ipFamily: ""
# setDefaultSecurityContext determines whether a default security context is set on application containers created by the operator. # setDefaultSecurityContext determines whether a default security context is set on application containers created by the operator.
# *note* that the default option now is "auto-detect" to attempt to set this properly automatically when both running # *note* that the default option now is "auto-detect" to attempt to set this properly automatically when both running
# in an openshift cluster, and a standard kubernetes cluster. Valid values are as follows: # in an openshift cluster, and a standard kubernetes cluster. Valid values are as follows:
@ -211,6 +223,10 @@ config:
# Interval between observations of Elasticsearch health, non-positive values disable asynchronous observation. # Interval between observations of Elasticsearch health, non-positive values disable asynchronous observation.
elasticsearchObservationInterval: 10s elasticsearchObservationInterval: 10s
# ubiOnly specifies whether the operator will use only UBI container images to deploy Elastic Stack applications. UBI images are only available from 7.10.0 onward.
# Cannot be combined with the containerSuffix value.
ubiOnly: false
# Prometheus PodMonitor configuration # Prometheus PodMonitor configuration
# Reference: https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md#podmonitor # Reference: https://github.com/prometheus-operator/prometheus-operator/blob/master/Documentation/api.md#podmonitor
podMonitor: podMonitor:
@ -244,11 +260,11 @@ podMonitor:
# Globals meant for internal use only # Globals meant for internal use only
global: global:
# manifestGen specifies whether the chart is running under manifest generator. # manifestGen specifies whether the chart is running under manifest generator.
# This is used for tasks specific to generating the all-in-one.yaml file. # This is used for tasks specific to generating the all-in-one.yaml file.
manifestGen: false manifestGen: false
# createOperatorNamespace defines whether the operator namespace manifest should be generated when in manifestGen mode. # createOperatorNamespace defines whether the operator namespace manifest should be generated when in manifestGen mode.
# Usually we do want that to happen (e.g. all-in-one.yaml) but, sometimes we don't (e.g. E2E tests). # Usually we do want that to happen (e.g. all-in-one.yaml) but, sometimes we don't (e.g. E2E tests).
createOperatorNamespace: true createOperatorNamespace: true
# kubeVersion is the effective Kubernetes version we target when generating the all-in-one.yaml. # kubeVersion is the effective Kubernetes version we target when generating the all-in-one.yaml.
kubeVersion: 1.21.0 kubeVersion: 1.21.0