post renderers for core for review

Summary

@joshwolf

❯ cat dev/postrenderers.yaml 

istiooperator:
  postRenderers:
    - kustomize:
        # Array of inline strategic merge patch definitions as YAML object.
        # Note, this is a YAML object and not a string, to avoid syntax
        # indention errors.
        patchesStrategicMerge:
          - kind: Deployment
            apiVersion: apps/v1
            metadata:
              name: metrics-server
            spec:
              template:
                spec:
                  tolerations:
                    - key: "workload-type"
                      operator: "Equal"
                      value: "cluster-services"
            effect: "NoSchedule"
        # Array of inline JSON6902 patch definitions as YAML object.
        # Note, this is a YAML object and not a string, to avoid syntax
        # indention errors.
        patchesJson6902:
          - target:
              version: v1
              kind: Deployment
              name: metrics-server
            patch:
              - op: add
                path: /spec/template/priorityClassName
                value: system-cluster-critical
        images:
          - name: docker.io/bitnami/metrics-server
            newName: docker.io/bitnami/metrics-server
            newTag: 0.4.1-debian-10-r54
❯ helm template chart -s templates/istio/operator/istio-operator-helmrelease.yaml -f dev/postrenderers.yaml
---
# Source: bigbang/templates/istio/operator/istio-operator-helmrelease.yaml
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: istio-operator
  namespace: default
  labels:
    app.kubernetes.io/name: istio-operator
    app.kubernetes.io/component: "core"
    app.kubernetes.io/instance: "RELEASE-NAME"
    app.kubernetes.io/version: "1.5.0"
    app.kubernetes.io/part-of: "bigbang"
    app.kubernetes.io/managed-by: "flux"
spec:
  targetNamespace: istio-operator
  chart:
    spec:
      chart: ./chart
      interval: 5m
      sourceRef:
        kind: GitRepository
        name: istio-operator
        namespace: default
  interval: 2m
  test:
    enable: false
  install:
    remediation:
      retries: 3
  upgrade:
    remediation:
      retries: 3
      remediateLastFailure: true
    cleanupOnFail: true
  rollback:
    timeout: 10m
    cleanupOnFail: true
  postRenderers:
    - kustomize:
        images:
        - name: docker.io/bitnami/metrics-server
          newName: docker.io/bitnami/metrics-server
          newTag: 0.4.1-debian-10-r54
        patchesJson6902:
        - patch:
          - op: add
            path: /spec/template/priorityClassName
            value: system-cluster-critical
          target:
            kind: Deployment
            name: metrics-server
            version: v1
        patchesStrategicMerge:
        - apiVersion: apps/v1
          effect: NoSchedule
          kind: Deployment
          metadata:
            name: metrics-server
          spec:
            template:
              spec:
                tolerations:
                - key: workload-type
                  operator: Equal
                  value: cluster-services
  valuesFrom:
    - name: RELEASE-NAME-istio-operator-values
      kind: Secret
      valuesKey: "common"
    - name: RELEASE-NAME-istio-operator-values
      kind: Secret
      valuesKey: "defaults"
    - name: RELEASE-NAME-istio-operator-values
      kind: Secret
      valuesKey: "overlays"
  dependsOn:
    - name: gatekeeper
      namespace: default

chart/templates/authservice/authservice-helmrelease.yaml

@@ -35,6 +35,10 @@ spec:
     timeout: {{ .rollback.timeout }}
     cleanupOnFail: {{ .rollback.cleanupOnFail }}
   {{- end }}
+  {{- if .Values.addons.authservice.postRenderers }}
+  postRenderers:
+  {{ toYaml .Values.addons.authservice.postRenderers | nindent 4 }}
+  {{- end }}
 
   valuesFrom:
     - name: {{ .Release.Name }}-authservice-values