From 09499b2bbbba407eab0e7f8e8b1489041b0a1d2f Mon Sep 17 00:00:00 2001 From: Stefan Reimer Date: Fri, 15 May 2020 17:23:25 +0100 Subject: [PATCH] Enable rollingUpdate support kiam, turn off iptables support --- charts/kubezero-kiam/Chart.yaml | 2 +- charts/kubezero-kiam/values.yaml | 11 ++++++++++- 2 files changed, 11 insertions(+), 2 deletions(-) diff --git a/charts/kubezero-kiam/Chart.yaml b/charts/kubezero-kiam/Chart.yaml index f11c886..4381f27 100644 --- a/charts/kubezero-kiam/Chart.yaml +++ b/charts/kubezero-kiam/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: kubezero-kiam description: KubeZero Umbrella Chart for Kiam type: application -version: 0.1.3 +version: 0.2.0 home: https://kubezero.com icon: https://cdn.zero-downtime.net/assets/logo_small.png keywords: diff --git a/charts/kubezero-kiam/values.yaml b/charts/kubezero-kiam/values.yaml index 66c2255..1f91f82 100644 --- a/charts/kubezero-kiam/values.yaml +++ b/charts/kubezero-kiam/values.yaml @@ -1,5 +1,7 @@ kiam: server: + image: + tag: "v3.6-rc1" # kiam.server.assumeRoleArn -- kiam server IAM role to assume, required as we run the agents next to the servers normally assumeRoleArn: arn:aws:iam::123456789012:role/kiam-server-role useHostNetwork: true @@ -15,6 +17,7 @@ kiam: deployment: enabled: true replicas: 1 + updateStrategy: RollingUpdate tolerations: - key: node-role.kubernetes.io/master effect: NoSchedule @@ -27,8 +30,14 @@ kiam: level: warn agent: + image: + tag: "v3.6-rc1" + gatewayTimeoutCreation: "5s" + updateStrategy: RollingUpdate + # IP tables set on each node at boot, see CloudBender host: - iptables: true + iptables: false + interface: "cali+" whiteListRouteRegexp: '^/latest/(meta-data/instance-id|dynamic)' sslCertHostPath: /etc/ssl/certs tlsSecret: kiam-agent-tls