You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: charts/kubernetes-agent/README.md
+10-1Lines changed: 10 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -67,6 +67,7 @@ The Kubernetes agent is optionally installed alongside the Kubernetes agent, [re
67
67
| agent.serverApiKey | string |`""`| An Octopus Server API key used to authenticate with the target Octopus Server |
68
68
| agent.serverApiKeySecretName | string |`""`| The name of an existing Secret that contains a base64-encoded Octopus Server API Key. Value must be set in `data.api-key` in secret. |
69
69
| agent.serverCertificate | string |`""`| The base64-encoded public key of the self-signed x509 certificate or root CA certificate used by the target Octopus Server. Must be in the PEM/CER format. See [documentation](https://octopus.com/docs/kubernetes/targets/kubernetes-agent#trusting-custominternal-octopus-server-certificates) for more information. |
70
+
| agent.serverCertificateSecretName | string |`""`| The name of a secret containing the base64-encoded public key of the self-signed x509 certificate or root CA certificate used by the target Octopus Server. Must be in the PEM/CER format. Value must be set in `data.octopus-server-certificate.pem` in secret. |
70
71
| agent.serverCommsAddress | string |`""`| The polling communication URL of the target Octopus Server |
71
72
| agent.serverCommsAddresses | list |`[]`| The polling communication URLs of the target Octopus Servers when running in High Availability (HA) |
72
73
| agent.serverSubscriptionId | string |`""`| The subscription ID that is used to by the agent to identify itself with Octopus Server |
@@ -75,7 +76,7 @@ The Kubernetes agent is optionally installed alongside the Kubernetes agent, [re
75
76
| agent.serviceAccount.name | string | Generates a name based on `agent.name`| The name of the service account for the agent pod |
76
77
| agent.space | string |`"Default"`| The Space to register the agent in |
77
78
| agent.tolerations | list |`[]`| The tolerations to apply to the agent pod |
78
-
| agent.upgrade | object |`{"dockerAuth":{"password":"","registry":"","username":""}}`| Credentials used during agent-upgrade tasks. To be populated if encountering rate-limiting failures. |
79
+
| agent.upgrade | object |`{"dockerAuth":{"password":"","registry":"","username":""}}`| Credentials used during agent-upgrade tasks. To be populated if encountering rate-limiting failures. |
79
80
| agent.username | string |`""`| The username of the user used to authenticate with the target Octopus Server |
80
81
| agent.usernamePasswordSecretName | string |`""`| The name of an existing Secret that contains a base64-encoded username and password for an Octopus Server user. Values must be set in `data.username` and `data.password` in secret. |
81
82
@@ -115,6 +116,14 @@ The Kubernetes agent is optionally installed alongside the Kubernetes agent, [re
115
116
| autoUpgrader.selfNamespaceRoleRules | list |`[{"apiGroups":["*"],"resources":["*"],"verbs":["*"]}]`| Rules for managing the agent in its own namespace when using namespace-scoped roles |
116
117
| autoUpgrader.targetNamespaceRoleRules | list |`[{"apiGroups":["rbac.authorization.k8s.io"],"resources":["roles","rolebindings"],"verbs":["create","update","patch","get","list","watch","delete"]},{"apiGroups":["rbac.authorization.k8s.io"],"resources":["roles"],"verbs":["escalate"]}]`| Rules for managing script pod roles in target namespaces when using namespace-scoped roles |
117
118
119
+
### Globals
120
+
121
+
| Key | Type | Default | Description |
122
+
|-----|------|---------|-------------|
123
+
| global.serverApiUrl | string |`""`| This is overridden by agent.serverUrl if both are set |
124
+
| global.serverCertificate | string |`""`| This is overridden by agent.serverCertificate if both are set |
125
+
| global.serverCertificateSecretName | string |`""`| This is overridden by agent.serverCertificateSecretName if both are set |
Copy file name to clipboardExpand all lines: charts/kubernetes-agent/kubernetes-monitor.md
+25-18Lines changed: 25 additions & 18 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,10 +1,6 @@
1
-
## Kubernetes monitor
1
+
## Kubernetes Monitor
2
2
3
-
The Kubernetes monitor is component installed alongside the Kubernetes agent that enables functionality used for [Kubernetes Live Object Status](https://octopus.com/docs/kubernetes/live-object-status).
4
-
5
-
The helm chart is hosted on [Docker Hub](https://hub.docker.com/r/octopusdeploy/kubernetes-monitor-chart), where you can pull it using Helm.
6
-
7
-
The source for this Helm chart is not yet published openly, check back soon for updates here.
3
+
The helm chart is hosted on [Docker Hub](https://hub.docker.com/r/octopusdeploy/kubernetes-monitor), where you can pull it using Helm.
| monitor.authenticationToken | string |`""`| If setting up the agent without automatic registration, this is the authentication token. If you provide this, you must also provide the installation ID. If you provide this, the monitor will not attempt to register with the server. |
30
+
| monitor.customCaCertificate | string |`""`| A base64 encoded string of the custom CA certificate to use to verify the Octopus Deploy server |
26
31
| monitor.installationId | string |`""`| If setting up the agent without automatic registration, this is the installation id. If you provide this, you must also provide the authentication token. If you provide this, the monitor will not attempt to register with the server. |
27
32
| monitor.serverGrpcUrl | string |`""`| The gRPC url (including the port) of the Octopus Deploy server to communicate with |
28
33
| monitor.serverThumbprint | string |`""`| The thumbprint of the Octopus Deploy server the monitor is communicating with. This should only be used if you wish to pin the certificate. |
| registration.configurationStoreType | string |`"kubernetes"`| Can be "kubernetes" or "file" |
40
+
| registration.machineName | string |`""`| The machine name of the agent this monitor is responsible for |
41
+
| registration.register | bool |`true`| Automatically register the monitor with the Octopus Deploy server |
42
+
| registration.serverAccessToken | string |`""`| The access token to authenticate to Octopus Deploy to register with. Can be a bearer token or an API token. |
43
+
| registration.serverApiUrl | string |`""`| The API URL of Octopus Deploy for registration |
44
+
| registration.serverCertificate | string |`""`| The base64-encoded public key of the self-signed x509 certificate or root CA certificate used by the target Octopus Server. Must be in the PEM/CER format. |
45
+
| registration.serverCertificateSecretName | string |`""`| The name of a secret containing the base64-encoded public key of the self-signed x509 certificate or root CA certificate used by the target Octopus Server. Must be in the PEM/CER format. Value must be set in `data.octopus-server-certificate.pem` in secret. |
46
+
| registration.serviceAccount.annotations | object |`{}`| Additional annotations for the service account |
47
+
| registration.serviceAccount.automountServiceAccountToken | bool |`true`| Auto-mount service account token |
48
+
| registration.serviceAccount.create | bool |`true`| Specifies whether a service account should be created for the registration hook |
49
+
| registration.serviceAccount.name | string |`""`| Custom service account name |
50
+
| registration.spaceId | string |`""`| The space id that the monitor is registering with |
0 commit comments