djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Adjust nullable values for concierge schema

Browse Source
This commit is contained in:
Benjamin A. Petersen 2023-09-18 15:07:20 -04:00
parent 63434b1a8e
commit a861bb4daa
No known key found for this signature in database
GPG Key ID: EF6EF83523A4BE46
2 changed files with 8 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
deploy/concierge/values.yaml
View File

@ -22,8 +22,9 @@ into_namespace: my-preexisting-namespace
#@ resources that were dynamically created by controllers at runtime \ #@ resources that were dynamically created by controllers at runtime \
#@ 2. Or, deleting all resources by label, which does not assume that there was a static install-time yaml namespace." #@ 2. Or, deleting all resources by label, which does not assume that there was a static install-time yaml namespace."
#@schema/desc custom_labels_desc #@schema/desc custom_labels_desc
#@schema/type any=True
#@schema/nullable #@schema/nullable
custom_labels: {myCustomLabelName: myCustomLabelValue, otherCustomLabelName: otherCustomLabelValue} custom_labels: {} #! {myCustomLabelName: myCustomLabelValue, otherCustomLabelName: otherCustomLabelValue}
#@schema/desc "Specify how many replicas of the Pinniped server to run." #@schema/desc "Specify how many replicas of the Pinniped server to run."
replicas: 2 replicas: 2
@ -60,10 +61,8 @@ discovery_url: https://example.com
#@ The defaults are set to expire the cert about every 30 days, and to rotate it \ #@ The defaults are set to expire the cert about every 30 days, and to rotate it \
#@ about every 25 days." #@ about every 25 days."
#@schema/desc api_serving_certificate_desc #@schema/desc api_serving_certificate_desc
#@schema/nullable
api_serving_certificate_duration_seconds: 2592000 api_serving_certificate_duration_seconds: 2592000
#@schema/desc api_serving_certificate_desc #@schema/desc api_serving_certificate_desc
#@schema/nullable
api_serving_certificate_renew_before_seconds: 2160000 api_serving_certificate_renew_before_seconds: 2160000
#! Specify the verbosity of logging: info ("nice to know" information), debug (developer information), trace (timing information), #! Specify the verbosity of logging: info ("nice to know" information), debug (developer information), trace (timing information),
@ -92,7 +91,6 @@ api_group_suffix: pinniped.dev
#@schema/desc "Customize CredentialIssuer.spec.impersonationProxy to change how the concierge handles impersonation." #@schema/desc "Customize CredentialIssuer.spec.impersonationProxy to change how the concierge handles impersonation."
#@schema/nullable
impersonation_proxy_spec: impersonation_proxy_spec:
#! options are "auto", "disabled" or "enabled". #! options are "auto", "disabled" or "enabled".
#! If auto, the impersonation proxy will run only if the cluster signing key is not available #! If auto, the impersonation proxy will run only if the cluster signing key is not available
@ -107,6 +105,7 @@ impersonation_proxy_spec:
#@schema/desc external_endpoint_desc #@schema/desc external_endpoint_desc
#@schema/nullable #@schema/nullable
external_endpoint: 1.2.3.4:5678 external_endpoint: 1.2.3.4:5678
#@schema/desc "The impersonation proxy service configuration"
service: service:
#! Options are "LoadBalancer", "ClusterIP" and "None". #! Options are "LoadBalancer", "ClusterIP" and "None".
#! LoadBalancer automatically provisions a Service of type LoadBalancer pointing at #! LoadBalancer automatically provisions a Service of type LoadBalancer pointing at
@ -117,11 +116,14 @@ impersonation_proxy_spec:
#! None does not provision either and assumes that you have set the external_endpoint #! None does not provision either and assumes that you have set the external_endpoint
#! and set up your own ingress to connect to the impersonation proxy. #! and set up your own ingress to connect to the impersonation proxy.
#@schema/desc "Options are 'LoadBalancer', 'ClusterIP' and 'None'." #@schema/desc "Options are 'LoadBalancer', 'ClusterIP' and 'None'."
#@schema/nullable
type: LoadBalancer type: LoadBalancer
#@schema/desc "The annotations that should be set on the ClusterIP or LoadBalancer Service." #@schema/desc "The annotations that should be set on the ClusterIP or LoadBalancer Service."
#@schema/nullable
annotations: annotations:
{service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "4000"} {service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "4000"}
#@schema/desc "When mode LoadBalancer is set, this will set the LoadBalancer Service's Spec.LoadBalancerIP." #@schema/desc "When mode LoadBalancer is set, this will set the LoadBalancer Service's Spec.LoadBalancerIP."
#@schema/nullable
load_balancer_ip: 1.2.3.4:5678 load_balancer_ip: 1.2.3.4:5678
#@ https_proxy_desc = "Set the standard golang HTTPS_PROXY and NO_PROXY environment variables on the Supervisor containers. \ #@ https_proxy_desc = "Set the standard golang HTTPS_PROXY and NO_PROXY environment variables on the Supervisor containers. \

3
deploy/supervisor/values.yaml
View File

@ -22,8 +22,9 @@ into_namespace: my-preexisting-namespace
#@ resources that were dynamically created by controllers at runtime \ #@ resources that were dynamically created by controllers at runtime \
#@ 2. Or, deleting all resources by label, which does not assume that there was a static install-time yaml namespace." #@ 2. Or, deleting all resources by label, which does not assume that there was a static install-time yaml namespace."
#@schema/desc custom_labels_desc #@schema/desc custom_labels_desc
#@schema/type any=True
#@schema/nullable #@schema/nullable
custom_labels: {myCustomLabelName: myCustomLabelValue, otherCustomLabelName: otherCustomLabelValue} custom_labels: {} #! {myCustomLabelName: myCustomLabelValue, otherCustomLabelName: otherCustomLabelValue}
#@schema/desc "Specify how many replicas of the Pinniped server to run." #@schema/desc "Specify how many replicas of the Pinniped server to run."
replicas: 2 replicas: 2