update checklist

Signed-off-by: arielev <[email protected]>

Author: ArieLevs

charts/argo-cd/Chart.yaml

@@ -3,7 +3,7 @@ appVersion: v3.2.6
 kubeVersion: ">=1.25.0-0"
 description: A Helm chart for Argo CD, a declarative, GitOps continuous delivery tool for Kubernetes.
 name: argo-cd
-version: 9.3.7
+version: 9.3.8
 home: https://github.com/argoproj/argo-helm
 icon: https://argo-cd.readthedocs.io/en/stable/assets/logo.png
 sources:
@@ -26,5 +26,5 @@ annotations:
     fingerprint: 2B8F22F57260EFA67BE1C5824B11F800CD9D2252
     url: https://argoproj.github.io/argo-helm/pgp_keys.asc
   artifacthub.io/changes: |
-    - kind: changed
-      description: Bump redis_exporter to v1.80.2
+    - kind: added
+      description: Add AWS TargetGroupConfiguration support for Gateway API HTTPS backends

charts/argo-cd/README.md

@@ -1210,6 +1210,11 @@ NAME: my-release
 | server.autoscaling.minReplicas | int | `1` | Minimum number of replicas for the Argo CD server [HPA] |
 | server.autoscaling.targetCPUUtilizationPercentage | int | `50` | Average CPU utilization percentage for the Argo CD server [HPA] |
 | server.autoscaling.targetMemoryUtilizationPercentage | int | `50` | Average memory utilization percentage for the Argo CD server [HPA] |
+| server.aws.targetGroupConfiguration.annotations | object | `{}` | Additional TargetGroupConfiguration annotations |
+| server.aws.targetGroupConfiguration.defaultConfiguration | object | `{}` (See [values.yaml]) | Default target group configuration |
+| server.aws.targetGroupConfiguration.enabled | bool | `false` | Enable TargetGroupConfiguration resource for Argo CD server (AWS Gateway API) |
+| server.aws.targetGroupConfiguration.labels | object | `{}` | Additional TargetGroupConfiguration labels |
+| server.aws.targetGroupConfiguration.routeConfigurations | list | `[]` (See [values.yaml]) | Route-specific configurations |
 | server.backendTLSPolicy.annotations | object | `{}` | Additional BackendTLSPolicy annotations |
 | server.backendTLSPolicy.enabled | bool | `false` | Enable BackendTLSPolicy resource for Argo CD server (Gateway API) |
 | server.backendTLSPolicy.labels | object | `{}` | Additional BackendTLSPolicy labels |

charts/argo-cd/README.md.gotmpl

@@ -329,6 +329,38 @@ server:
     wellKnownCACertificates: System
 ```
 
+#### AWS ALB Gateway API with HTTPS backend
+
+AWS Load Balancer Controller does **NOT** support the standard Gateway API `BackendTLSPolicy`. Instead, use the AWS-specific `TargetGroupConfiguration` CRD for HTTPS backend communication.
+
+> **Note:**
+> Reference: [AWS Load Balancer Controller Gateway API documentation](https://kubernetes-sigs.github.io/aws-load-balancer-controller/latest/guide/gateway/l7gateway/)
+
+```yaml
+configs:
+  params:
+    server.insecure: false  # HTTPS backend
+
+server:
+  httproute:
+    enabled: true
+    parentRefs:
+      - name: example-gateway
+        namespace: gateway-system
+
+  aws:
+    targetGroupConfiguration:
+      enabled: true
+      defaultConfiguration:
+        protocol: HTTPS
+        protocolVersion: HTTP1
+        healthCheck:
+          protocol: HTTPS
+          path: /healthz
+          intervalSeconds: 15
+          timeoutSeconds: 5
+```
+
 ## Setting the initial admin password via Argo CD Application CR
 
 > **Note:** When deploying the `argo-cd` chart via an Argo CD `Application` CR, define your bcrypt-hashed admin password under `helm.values`—not `helm.parameters`—because Argo CD performs variable substitution on `parameters`, which will mangle any `$…` in your hash.