diff --git a/chart/templates/clusterauditor/clusterauditor-helmrelease.yaml b/chart/templates/clusterauditor/clusterauditor-helmrelease.yaml
index 922bc793eef9db06302008ea97fd5ff4b2c641ef..d0c304be4fb896aa89a3cc6573110756162ec1ae 100644
--- a/chart/templates/clusterauditor/clusterauditor-helmrelease.yaml
+++ b/chart/templates/clusterauditor/clusterauditor-helmrelease.yaml
@@ -14,6 +14,7 @@ spec:
kind: GitRepository
name: cluster-auditor
namespace: {{ .Release.Namespace }}
+
{{- with .Values.flux }}
interval: {{ .interval }}
test:
@@ -30,15 +31,16 @@ spec:
timeout: {{ .rollback.timeout }}
cleanupOnFail: {{ .rollback.cleanupOnFail }}
{{- end }}
+
+ valuesFrom:
+ - name: values
+ kind: Secret
+ valuesKey: "clusterauditor.yaml"
+
values:
#conversion from umbrella values to package values
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
imagePullSecrets: [ private-registry ]
- {{- end }}
- valuesFrom:
- - name: values
- kind: Secret
- valuesKey: "clusterauditor.yaml"
+
dependsOn:
- name: ek
namespace: {{ .Release.Namespace }}
diff --git a/chart/templates/clusterauditor/clusterauditor-policies-helmrelease.yaml b/chart/templates/clusterauditor/clusterauditor-policies-helmrelease.yaml
index d08627c9824881b2df1ee447fd6bcffb675c7ca3..ab9c4c640fef9fa4893e46be2b687ca21668c87a 100644
--- a/chart/templates/clusterauditor/clusterauditor-policies-helmrelease.yaml
+++ b/chart/templates/clusterauditor/clusterauditor-policies-helmrelease.yaml
@@ -31,10 +31,12 @@ spec:
timeout: {{ .rollback.timeout }}
cleanupOnFail: {{ .rollback.cleanupOnFail }}
{{- end }}
+
valuesFrom:
- name: values
kind: Secret
valuesKey: "clusterauditor.yaml"
+
{{- if .Values.gatekeeper.enabled }}
dependsOn:
- name: gatekeeper
diff --git a/chart/templates/gatekeeper/gatekeeper-helmrelease.yaml b/chart/templates/gatekeeper/gatekeeper-helmrelease.yaml
index 8ec8ff93a9bae3f0a66f02fa8a8f82b152df95ca..c9377dad2a146166f0eda8e49381729e96cad255 100644
--- a/chart/templates/gatekeeper/gatekeeper-helmrelease.yaml
+++ b/chart/templates/gatekeeper/gatekeeper-helmrelease.yaml
@@ -43,7 +43,6 @@ spec:
release: v3.1.2
disableValidatingWebhook: true
createNamespace: false
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
- imagePullSecrets: [ private-registry ]
- {{- end }}
+ imagePullSecrets:
+ - name: private-registry
{{- end }}
\ No newline at end of file
diff --git a/chart/templates/istio/istio-controlplane-helmrelease.yaml b/chart/templates/istio/istio-controlplane-helmrelease.yaml
index 6a7bcf9ae621156a84a2cefa60314e31462897d0..5e07273bd3eb7cc835c61959b11632f5dd3d6899 100644
--- a/chart/templates/istio/istio-controlplane-helmrelease.yaml
+++ b/chart/templates/istio/istio-controlplane-helmrelease.yaml
@@ -36,12 +36,12 @@ spec:
- name: values
kind: Secret
valuesKey: "istio.yaml"
+
values:
hostname: {{ .Values.hostname }}
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
- imagePullSecrets: [ private-registry ]
- {{- end }}
+ imagePullSecrets:
+ - private-registry
dependsOn:
- name: istio-operator
diff --git a/chart/templates/istio/istio-operator-helmrelease.yaml b/chart/templates/istio/istio-operator-helmrelease.yaml
index 0f584c82e3f97310e2d3d9881cbb19981e19ed02..bd38c2baf71a28a958df40a4fcebfbb82cc327aa 100644
--- a/chart/templates/istio/istio-operator-helmrelease.yaml
+++ b/chart/templates/istio/istio-operator-helmrelease.yaml
@@ -37,9 +37,8 @@ spec:
tag: 1.7.3
createNamespace: false
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
- imagePullSecrets: [ private-registry ]
- {{- end }}
+ imagePullSecrets:
+ - name: private-registry
{{- if .Values.gatekeeper.enabled }}
dependsOn:
diff --git a/chart/templates/logging/ek-helmrelease.yaml b/chart/templates/logging/ek-helmrelease.yaml
index 838440dd242d4abb6d5e8c5eea527d96a5c7052f..7378e8e0bfe34a798ddcb81b46593d3b02a4ea0e 100644
--- a/chart/templates/logging/ek-helmrelease.yaml
+++ b/chart/templates/logging/ek-helmrelease.yaml
@@ -43,18 +43,14 @@ spec:
kibana:
version: 7.9.2
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
imagePullSecrets:
- name: private-registry
- {{- end }}
elasticsearch:
version: 7.9.2
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
imagePullSecrets:
- name: private-registry
- {{- end }}
{{/* ECK and Logging _always_ depend on .Values.logging being enabled, so can assume they exist here */}}
dependsOn:
diff --git a/chart/templates/logging/fluentbit-helmrelease.yaml b/chart/templates/logging/fluentbit-helmrelease.yaml
index 1b52bc5fe5d5f463db4c5e25f75c21e4799cd45f..96f97881947dff2ebdf1f975101fa8c7910106b3 100644
--- a/chart/templates/logging/fluentbit-helmrelease.yaml
+++ b/chart/templates/logging/fluentbit-helmrelease.yaml
@@ -38,10 +38,8 @@ spec:
password:
secret: "logging-ek-es-elastic-user"
- {{- if and (ne .Values.registryCredentials.username "") (ne .Values.registryCredentials.password "") }}
imagePullSecrets:
- name: private-registry
- {{- end }}
{{/* ECK and Logging _always_ depend on .Values.logging being enabled, so can assume they exist here */}}
dependsOn:
diff --git a/chart/templates/monitoring/kube-prometheus-stack-helmrelease.yaml b/chart/templates/monitoring/monitoring.yaml
similarity index 58%
rename from chart/templates/monitoring/kube-prometheus-stack-helmrelease.yaml
rename to chart/templates/monitoring/monitoring.yaml
index b479f822c11ea8b556e9bfb36cc7961f6a92d62d..695710848426b07edb4b2c78e49a4159ecc9493d 100644
--- a/chart/templates/monitoring/kube-prometheus-stack-helmrelease.yaml
+++ b/chart/templates/monitoring/monitoring.yaml
@@ -8,7 +8,7 @@ spec:
targetNamespace: monitoring
chart:
spec:
- chart: charts/kube-prometheus-stack
+ chart: chart
interval: 5m
sourceRef:
kind: GitRepository
@@ -38,50 +38,29 @@ spec:
valuesKey: "monitoring.yaml"
values:
- fullnameOverride: monitoring
-
global:
imagePullSecrets:
- name: private-registry
- alertmanager:
- alertmanagerSpec:
- image:
- repository: registry1.dsop.io/ironbank/opensource/prometheus/alertmanager
- tag: v0.21.0
- enabled: true
-
grafana:
- # https://github.com/grafana/helm-charts/blob/main/charts/grafana/templates/_pod.tpl#L148-L151
-
image:
- repository: registry1.dsop.io/ironbank/opensource/grafana/grafana
- tag: 7.1.3-1
pullSecrets:
- private-registry
- enabled: true
-
- prometheus:
- enabled: true
- prometheusSpec:
- # service port naming conventions
- portName: http-web
prometheusOperator:
- image:
- repository: registry1.dsop.io/ironbank/opensource/coreos/prometheus-operator
- tag: v0.42.1
- configmapReloadImage:
- repository: registry1.dsop.io/ironbank/opensource/jimmidyson/configmap-reload
- tag: v0.4.0
createCustomResource: true
- enabled: true
manageCrds: true
# TODO: DRY this up
- {{- if .Values.gatekeeper.enabled }}
+ {{- if or .Values.gatekeeper.enabled .Values.istio.enabled }}
dependsOn:
+ {{- if .Values.istio.enabled }}
+ - name: istio
+ namespace: {{ .Release.Namespace }}
+ {{- end }}
+ {{- if .Values.gatekeeper.enabled }}
- name: gatekeeper
namespace: {{ .Release.Namespace }}
{{- end }}
+ {{- end }}
{{- end }}
\ No newline at end of file
diff --git a/chart/values.yaml b/chart/values.yaml
index c381e629ea54d28947c1e2b53a94f1fdfe266fdd..901d8def27605ebdbe6ea7ae8ef41aac05a3e422 100644
--- a/chart/values.yaml
+++ b/chart/values.yaml
@@ -62,7 +62,7 @@ monitoring:
enabled: true
git:
repo: https://repo1.dsop.io/platform-one/big-bang/apps/core/monitoring.git
- branch: release-v0.2.x
+ branch: master
# commit: ""
# tag: ""
values: {}
diff --git a/examples/complete/envs/dev/kustomization.yaml b/examples/complete/envs/dev/kustomization.yaml
index 906eb92d97a6cf6e39b5ab5586aaba1e14961b00..f877efb6d10849378c56641131315492b44ade4f 100644
--- a/examples/complete/envs/dev/kustomization.yaml
+++ b/examples/complete/envs/dev/kustomization.yaml
@@ -8,11 +8,3 @@ resources:
patchesStrategicMerge:
- patch-bigbang.yaml
- - |-
- apiVersion: source.toolkit.fluxcd.io/v1beta1
- kind: GitRepository
- metadata:
- name: bigbang
- spec:
- ref:
- branch: valuesfrom
\ No newline at end of file
diff --git a/examples/complete/envs/dev/patch-bigbang.yaml b/examples/complete/envs/dev/patch-bigbang.yaml
index f871a6233284866890034840f75c8f07c362d18f..a5ab0748ca8076739ede930c7cef12bc00460362 100644
--- a/examples/complete/envs/dev/patch-bigbang.yaml
+++ b/examples/complete/envs/dev/patch-bigbang.yaml
@@ -14,6 +14,10 @@ spec:
rollback:
cleanupOnFail: false
+ # clusterAuditor:
+
+# monitoring:
+
logging:
# Directly modify chart values for dev workloads
values: