Closed crdueck closed 10 months ago
I added a simple unit test for the serviceaccount annotations, but I'm less sure what to do about the values schema and linting you asked for.
The only example of schema & linting I found was for the image
field, which makes sense because it has required sub-fields image.{repository,tag}
. Whereas annotations aren't required and can have arbitrary sub-fields. My motivating use case just happens to be the IRSA role annotation.
So, could you help me better understand what you would want to see for annotations schema and linting?
I added a simple unit test for the serviceaccount annotations, but I'm less sure what to do about the values schema and linting you asked for.
The only example of schema & linting I found was for the
image
field, which makes sense because it has required sub-fieldsimage.{repository,tag}
. Whereas annotations aren't required and can have arbitrary sub-fields. My motivating use case just happens to be the IRSA role annotation.So, could you help me better understand what you would want to see for annotations schema and linting?
Hello
You can use this as an example
https://github.com/eshepelyuk/cmak-operator/blob/master/values.schema.json
I added a schema for the serviceAccount
values and a lint check for the annotations. Rebased and squashed as well
Thanks for the contribution Will be abailable in 8.5.3
https://github.com/open-policy-agent/kube-mgmt/actions/runs/6748036699
ServiceAccount annotations are needed to support web identity credentials: https://www.openpolicyagent.org/docs/latest/management-bundles/#web-identity-credentials