Closed martinohmann closed 1 month ago
helmrelease
changes in kubernetes/main
--- HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflows-workflow-controller
+++ HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflows-workflow-controller
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- name: argo-workflows-workflow-controller
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-
--- HelmRelease: argo/argo-workflows ServiceAccount: default/argo-workflow
+++ HelmRelease: argo/argo-workflows ServiceAccount: default/argo-workflow
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- name: argo-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: default
-
--- HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflow
+++ HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflow
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- name: argo-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: argo
-
--- HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows ServiceAccount: argo/argo-workflows-server
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- name: argo-workflows-server
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-
--- HelmRelease: argo/argo-workflows ConfigMap: argo/artifact-repositories
+++ HelmRelease: argo/argo-workflows ConfigMap: argo/artifact-repositories
@@ -1,29 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
- name: artifact-repositories
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-artifact-repositories
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- annotations:
- workflows.argoproj.io/default-artifact-repository: argo-workflow-artifacts
-data:
- argo-workflow-artifacts: |
- archiveLogs: true
- s3:
- accessKeySecret:
- key: access-key-id
- name: argo-minio-credentials
- bucket: argo-workflow-artifacts
- endpoint: s3.storage.18b.haus
- insecure: false
- secretKeySecret:
- key: secret-access-key
- name: argo-minio-credentials
-
--- HelmRelease: argo/argo-workflows ConfigMap: argo/argo-workflows-workflow-controller-configmap
+++ HelmRelease: argo/argo-workflows ConfigMap: argo/argo-workflows-workflow-controller-configmap
@@ -1,37 +0,0 @@
----
-apiVersion: v1
-kind: ConfigMap
-metadata:
- name: argo-workflows-workflow-controller-configmap
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-cm
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-data:
- config: |
- workflowDefaults:
- spec:
- serviceAccountName: argo-workflow
- sso:
- issuer: https://identity.18b.haus/application/o/workflows/
- clientId:
- name: argo-server-sso
- key: client-id
- clientSecret:
- name: argo-server-sso
- key: client-secret
- redirectUrl: "https://workflows.18b.haus/oauth2/callback"
- rbac:
- enabled: true
- scopes:
- - openid
- - profile
- - email
- - groups
- nodeEvents:
- enabled: true
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-view
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-view
@@ -1,38 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-view
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- rbac.authorization.k8s.io/aggregate-to-view: 'true'
-rules:
-- apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- - workflowartifactgctasks
- - workflowartifactgctasks/finalizers
- verbs:
- - get
- - list
- - watch
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-edit
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-edit
@@ -1,43 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-edit
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- rbac.authorization.k8s.io/aggregate-to-edit: 'true'
-rules:
-- apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- - workflowartifactgctasks
- - workflowartifactgctasks/finalizers
- verbs:
- - create
- - delete
- - deletecollection
- - get
- - list
- - patch
- - update
- - watch
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-admin
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-admin
@@ -1,43 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-admin
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- rbac.authorization.k8s.io/aggregate-to-admin: 'true'
-rules:
-- apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- - workflowartifactgctasks
- - workflowartifactgctasks/finalizers
- verbs:
- - create
- - delete
- - deletecollection
- - get
- - list
- - patch
- - update
- - watch
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-workflow-controller
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-workflow-controller
@@ -1,145 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-workflow-controller
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-rules:
-- apiGroups:
- - ''
- resources:
- - pods
- verbs:
- - create
- - get
- - list
- - watch
- - update
- - patch
- - delete
-- apiGroups:
- - ''
- resources:
- - pods/exec
- verbs:
- - create
-- apiGroups:
- - ''
- resources:
- - configmaps
- verbs:
- - get
- - watch
- - list
-- apiGroups:
- - ''
- resources:
- - persistentvolumeclaims
- - persistentvolumeclaims/finalizers
- verbs:
- - create
- - update
- - delete
- - get
-- apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowartifactgctasks
- verbs:
- - get
- - list
- - watch
- - update
- - patch
- - delete
- - create
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtemplates
- - workflowtemplates/finalizers
- verbs:
- - get
- - list
- - watch
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtaskresults
- - workflowtaskresults/finalizers
- verbs:
- - list
- - watch
- - deletecollection
-- apiGroups:
- - argoproj.io
- resources:
- - cronworkflows
- - cronworkflows/finalizers
- verbs:
- - get
- - list
- - watch
- - update
- - patch
- - delete
-- apiGroups:
- - ''
- resources:
- - events
- verbs:
- - create
- - patch
-- apiGroups:
- - ''
- resources:
- - serviceaccounts
- verbs:
- - get
- - list
-- apiGroups:
- - policy
- resources:
- - poddisruptionbudgets
- verbs:
- - create
- - get
- - delete
-- apiGroups:
- - coordination.k8s.io
- resources:
- - leases
- verbs:
- - create
-- apiGroups:
- - coordination.k8s.io
- resources:
- - leases
- resourceNames:
- - workflow-controller
- - workflow-controller-lease
- verbs:
- - get
- - watch
- - update
- - patch
- - delete
-- apiGroups:
- - ''
- resources:
- - secrets
- verbs:
- - get
- resourceNames:
- - argo-workflows-agent-ca-certificates
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-workflow-controller-cluster-template
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-workflow-controller-cluster-template
@@ -1,23 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-workflow-controller-cluster-template
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-rules:
-- apiGroups:
- - argoproj.io
- resources:
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- verbs:
- - get
- - list
- - watch
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-server
@@ -1,92 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-server
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-rules:
-- apiGroups:
- - ''
- resources:
- - configmaps
- - events
- verbs:
- - get
- - watch
- - list
-- apiGroups:
- - ''
- resources:
- - pods
- verbs:
- - get
- - list
- - watch
- - delete
-- apiGroups:
- - ''
- resources:
- - pods/log
- verbs:
- - get
- - list
-- apiGroups:
- - ''
- resources:
- - secrets
- resourceNames:
- - sso
- verbs:
- - get
-- apiGroups:
- - ''
- resources:
- - secrets
- verbs:
- - create
-- apiGroups:
- - ''
- resources:
- - serviceaccounts
- verbs:
- - get
- - list
- - watch
-- apiGroups:
- - ''
- resources:
- - secrets
- verbs:
- - get
-- apiGroups:
- - ''
- resources:
- - events
- verbs:
- - watch
- - create
- - patch
-- apiGroups:
- - argoproj.io
- resources:
- - eventsources
- - sensors
- - workflows
- - workfloweventbindings
- - workflowtemplates
- - cronworkflows
- verbs:
- - create
- - get
- - list
- - watch
- - update
- - patch
- - delete
-
--- HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-server-cluster-template
+++ HelmRelease: argo/argo-workflows ClusterRole: argo/argo-workflows-server-cluster-template
@@ -1,26 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
- name: argo-workflows-server-cluster-template
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-rules:
-- apiGroups:
- - argoproj.io
- resources:
- - clusterworkflowtemplates
- verbs:
- - get
- - list
- - watch
- - create
- - update
- - patch
- - delete
-
--- HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-workflow-controller
+++ HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-workflow-controller
@@ -1,21 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- name: argo-workflows-workflow-controller
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-workflows-workflow-controller
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-workflow-controller
- namespace: argo
-
--- HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-workflow-controller-cluster-template
+++ HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-workflow-controller-cluster-template
@@ -1,21 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- name: argo-workflows-workflow-controller-cluster-template
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-workflows-workflow-controller-cluster-template
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-workflow-controller
- namespace: argo
-
--- HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-server
@@ -1,21 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- name: argo-workflows-server
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-workflows-server
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-server
- namespace: argo
-
--- HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-server-cluster-template
+++ HelmRelease: argo/argo-workflows ClusterRoleBinding: argo/argo-workflows-server-cluster-template
@@ -1,21 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- name: argo-workflows-server-cluster-template
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-workflows-server-cluster-template
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-server
- namespace: argo
-
--- HelmRelease: argo/argo-workflows Role: default/argo-workflows-workflow
+++ HelmRelease: argo/argo-workflows Role: default/argo-workflows-workflow
@@ -1,58 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
- name: argo-workflows-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: default
-rules:
-- apiGroups:
- - ''
- resources:
- - pods
- verbs:
- - get
- - watch
- - patch
-- apiGroups:
- - ''
- resources:
- - pods/log
- verbs:
- - get
- - watch
-- apiGroups:
- - ''
- resources:
- - pods/exec
- verbs:
- - create
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtaskresults
- verbs:
- - create
- - patch
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets
- - workflowartifactgctasks
- verbs:
- - list
- - watch
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets/status
- - workflowartifactgctasks/status
- verbs:
- - patch
-
--- HelmRelease: argo/argo-workflows Role: argo/argo-workflows-workflow
+++ HelmRelease: argo/argo-workflows Role: argo/argo-workflows-workflow
@@ -1,58 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
- name: argo-workflows-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: argo
-rules:
-- apiGroups:
- - ''
- resources:
- - pods
- verbs:
- - get
- - watch
- - patch
-- apiGroups:
- - ''
- resources:
- - pods/log
- verbs:
- - get
- - watch
-- apiGroups:
- - ''
- resources:
- - pods/exec
- verbs:
- - create
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtaskresults
- verbs:
- - create
- - patch
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets
- - workflowartifactgctasks
- verbs:
- - list
- - watch
-- apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets/status
- - workflowartifactgctasks/status
- verbs:
- - patch
-
--- HelmRelease: argo/argo-workflows RoleBinding: default/argo-workflows-workflow
+++ HelmRelease: argo/argo-workflows RoleBinding: default/argo-workflows-workflow
@@ -1,22 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
- name: argo-workflows-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: default
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: argo-workflows-workflow
-subjects:
-- kind: ServiceAccount
- name: argo-workflow
- namespace: default
-
--- HelmRelease: argo/argo-workflows RoleBinding: argo/argo-workflows-workflow
+++ HelmRelease: argo/argo-workflows RoleBinding: argo/argo-workflows-workflow
@@ -1,22 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
- name: argo-workflows-workflow
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- namespace: argo
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: argo-workflows-workflow
-subjects:
-- kind: ServiceAccount
- name: argo-workflow
- namespace: argo
-
--- HelmRelease: argo/argo-workflows Service: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows Service: argo/argo-workflows-server
@@ -1,23 +0,0 @@
----
-apiVersion: v1
-kind: Service
-metadata:
- name: argo-workflows-server
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-spec:
- ports:
- - port: 2746
- targetPort: 2746
- selector:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- sessionAffinity: None
- type: ClusterIP
-
--- HelmRelease: argo/argo-workflows Deployment: argo/argo-workflows-workflow-controller
+++ HelmRelease: argo/argo-workflows Deployment: argo/argo-workflows-workflow-controller
@@ -1,84 +0,0 @@
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
- name: argo-workflows-workflow-controller
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-spec:
- replicas: 1
- revisionHistoryLimit: 3
- selector:
- matchLabels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- template:
- metadata:
- labels:
- app.kubernetes.io/name: argo-workflows-workflow-controller
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: workflow-controller
- app: workflow-controller
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- spec:
- serviceAccountName: argo-workflows-workflow-controller
- containers:
- - name: controller
- image: quay.io/argoproj/workflow-controller:v3.5.8
- imagePullPolicy: Always
- command:
- - workflow-controller
- args:
- - --configmap
- - argo-workflows-workflow-controller-configmap
- - --executor-image
- - quay.io/argoproj/argoexec:v3.5.8
- - --loglevel
- - info
- - --gloglevel
- - '0'
- - --log-format
- - text
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- runAsNonRoot: true
- env:
- - name: ARGO_NAMESPACE
- valueFrom:
- fieldRef:
- apiVersion: v1
- fieldPath: metadata.namespace
- - name: LEADER_ELECTION_IDENTITY
- valueFrom:
- fieldRef:
- apiVersion: v1
- fieldPath: metadata.name
- - name: LEADER_ELECTION_DISABLE
- value: 'true'
- resources: {}
- ports:
- - name: metrics
- containerPort: 9090
- - containerPort: 6060
- livenessProbe:
- failureThreshold: 3
- httpGet:
- path: /healthz
- port: 6060
- initialDelaySeconds: 90
- periodSeconds: 60
- timeoutSeconds: 30
- nodeSelector:
- kubernetes.io/os: linux
-
--- HelmRelease: argo/argo-workflows Deployment: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows Deployment: argo/argo-workflows-server
@@ -1,83 +0,0 @@
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
- name: argo-workflows-server
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-spec:
- replicas: 1
- revisionHistoryLimit: 3
- selector:
- matchLabels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- template:
- metadata:
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
- spec:
- serviceAccountName: argo-workflows-server
- containers:
- - name: argo-server
- image: quay.io/argoproj/argocli:v3.5.8
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: false
- runAsNonRoot: true
- args:
- - server
- - --configmap=argo-workflows-workflow-controller-configmap
- - --auth-mode=sso
- - --secure=false
- - --loglevel
- - info
- - --gloglevel
- - '0'
- - --log-format
- - text
- ports:
- - name: web
- containerPort: 2746
- readinessProbe:
- httpGet:
- path: /
- port: 2746
- scheme: HTTP
- initialDelaySeconds: 10
- periodSeconds: 20
- env:
- - name: IN_CLUSTER
- value: 'true'
- - name: ARGO_NAMESPACE
- valueFrom:
- fieldRef:
- apiVersion: v1
- fieldPath: metadata.namespace
- - name: BASE_HREF
- value: /
- resources: {}
- volumeMounts:
- - name: tmp
- mountPath: /tmp
- volumes:
- - name: tmp
- emptyDir: {}
- nodeSelector:
- kubernetes.io/os: linux
-
--- HelmRelease: argo/argo-workflows Ingress: argo/argo-workflows-server
+++ HelmRelease: argo/argo-workflows Ingress: argo/argo-workflows-server
@@ -1,35 +0,0 @@
----
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
- annotations:
- gethomepage.dev/enabled: 'false'
- gethomepage.dev/group: Automation
- gethomepage.dev/icon: argocd.png
- gethomepage.dev/name: Workflows
- name: argo-workflows-server
- namespace: argo
- labels:
- app.kubernetes.io/name: argo-workflows-server
- app.kubernetes.io/instance: argo-workflows
- app.kubernetes.io/component: server
- app: server
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: argo-workflows
-spec:
- ingressClassName: internal
- rules:
- - host: workflows.18b.haus
- http:
- paths:
- - path: /
- pathType: Prefix
- backend:
- service:
- name: argo-workflows-server
- port:
- number: 2746
- tls:
- - hosts:
- - workflows.18b.haus
-
kustomization
changes in kubernetes/main
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-admin
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-admin
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- annotations:
- workflows.argoproj.io/rbac-rule: '''admins'' in groups'
- workflows.argoproj.io/rbac-rule-precedence: '2'
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-admin
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-admin
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-admin
@@ -1,18 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-admin
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: cluster-admin
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-admin
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-edit
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-edit
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- annotations:
- workflows.argoproj.io/rbac-rule: '''infra'' in groups'
- workflows.argoproj.io/rbac-rule-precedence: '1'
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-edit
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-edit
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-edit
@@ -1,18 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-edit
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: edit
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-edit
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-view
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ServiceAccount: argo/argo-workflows-view
@@ -1,14 +0,0 @@
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
- annotations:
- workflows.argoproj.io/rbac-rule: 'true'
- workflows.argoproj.io/rbac-rule-precedence: '0'
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-view
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-view
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows ClusterRoleBinding: flux-system/argo-workflows-view
@@ -1,18 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows-view
-roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: view
-subjects:
-- kind: ServiceAccount
- name: argo-workflows-view
- namespace: argo
-
--- kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows HelmRelease: argo/argo-workflows
+++ kubernetes/main/apps/argo/argo-workflows/app Kustomization: flux-system/argo-workflows HelmRelease: argo/argo-workflows
@@ -1,88 +0,0 @@
----
-apiVersion: helm.toolkit.fluxcd.io/v2
-kind: HelmRelease
-metadata:
- labels:
- app.kubernetes.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/name: argo-workflows
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows
- namespace: argo
-spec:
- chart:
- spec:
- chart: argo-workflows
- sourceRef:
- kind: HelmRepository
- name: argo
- namespace: flux-system
- version: 0.41.11
- install:
- remediation:
- retries: 3
- interval: 2h
- maxHistory: 2
- uninstall:
- keepHistory: false
- upgrade:
- cleanupOnFail: true
- remediation:
- retries: 3
- values:
- artifactRepositoryRef:
- artifact-repositories:
- annotations:
- workflows.argoproj.io/default-artifact-repository: argo-workflow-artifacts
- argo-workflow-artifacts:
- archiveLogs: true
- s3:
- accessKeySecret:
- key: access-key-id
- name: argo-minio-credentials
- bucket: argo-workflow-artifacts
- endpoint: s3.storage.18b.haus
- insecure: false
- secretKeySecret:
- key: secret-access-key
- name: argo-minio-credentials
- controller:
- revisionHistoryLimit: 3
- workflowDefaults:
- spec:
- serviceAccountName: argo-workflow
- server:
- authModes:
- - sso
- ingress:
- annotations:
- gethomepage.dev/enabled: 'false'
- gethomepage.dev/group: Automation
- gethomepage.dev/icon: argocd.png
- gethomepage.dev/name: Workflows
- enabled: true
- hosts:
- - workflows.18b.haus
- ingressClassName: internal
- tls:
- - hosts:
- - workflows.18b.haus
- revisionHistoryLimit: 3
- sso:
- clientId:
- key: client-id
- name: argo-server-sso
- clientSecret:
- key: client-secret
- name: argo-server-sso
- enabled: true
- issuer: https://identity.18b.haus/application/o/workflows/
- redirectUrl: https://workflows.18b.haus/oauth2/callback
- scopes:
- - openid
- - profile
- - email
- - groups
- workflow:
- serviceAccount:
- create: true
-
--- kubernetes/main/apps/flux-system/addons/notifications Kustomization: flux-system/flux-notifications Alert: flux-system/alertmanager
+++ kubernetes/main/apps/flux-system/addons/notifications Kustomization: flux-system/flux-notifications Alert: flux-system/alertmanager
@@ -15,15 +15,12 @@
eventSources:
- kind: GitRepository
name: '*'
- kind: HelmRelease
name: '*'
namespace: actions-runner-system
- - kind: HelmRelease
- name: '*'
- namespace: argo
- kind: HelmRelease
name: '*'
namespace: cert-manager
- kind: HelmRelease
name: '*'
namespace: database
--- kubernetes/main/flux Kustomization: flux-system/cluster HelmRepository: flux-system/argo
+++ kubernetes/main/flux Kustomization: flux-system/cluster HelmRepository: flux-system/argo
@@ -1,13 +0,0 @@
----
-apiVersion: source.toolkit.fluxcd.io/v1
-kind: HelmRepository
-metadata:
- labels:
- kustomize.toolkit.fluxcd.io/name: cluster
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo
- namespace: flux-system
-spec:
- interval: 1h
- url: https://argoproj.github.io/argo-helm
-
--- kubernetes/main/apps Kustomization: flux-system/cluster-apps Namespace: flux-system/argo
+++ kubernetes/main/apps Kustomization: flux-system/cluster-apps Namespace: flux-system/argo
@@ -1,10 +0,0 @@
----
-apiVersion: v1
-kind: Namespace
-metadata:
- labels:
- kustomize.toolkit.fluxcd.io/name: cluster-apps
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- kustomize.toolkit.fluxcd.io/prune: disabled
- name: argo
-
--- kubernetes/main/apps Kustomization: flux-system/cluster-apps Kustomization: flux-system/argo-workflows
+++ kubernetes/main/apps Kustomization: flux-system/cluster-apps Kustomization: flux-system/argo-workflows
@@ -1,32 +0,0 @@
----
-apiVersion: kustomize.toolkit.fluxcd.io/v1
-kind: Kustomization
-metadata:
- labels:
- kustomize.toolkit.fluxcd.io/name: cluster-apps
- kustomize.toolkit.fluxcd.io/namespace: flux-system
- name: argo-workflows
- namespace: flux-system
-spec:
- commonMetadata:
- labels:
- app.kubernetes.io/name: argo-workflows
- decryption:
- provider: sops
- secretRef:
- name: sops-age
- interval: 2h
- path: ./kubernetes/main/apps/argo/argo-workflows/app
- postBuild:
- substituteFrom:
- - kind: Secret
- name: cluster-secrets
- prune: true
- retryInterval: 1m
- sourceRef:
- kind: GitRepository
- name: home-kubernetes
- targetNamespace: argo
- timeout: 5m
- wait: true
-
I don't have a specific use case for it right now in my homelab.