diff --git a/apis/installer/v1alpha1/zz_generated.deepcopy.go b/apis/installer/v1alpha1/zz_generated.deepcopy.go index 3889a9e9..855f18ce 100644 --- a/apis/installer/v1alpha1/zz_generated.deepcopy.go +++ b/apis/installer/v1alpha1/zz_generated.deepcopy.go @@ -21,7 +21,7 @@ limitations under the License. package v1alpha1 import ( - "k8s.io/api/core/v1" + v1 "k8s.io/api/core/v1" "k8s.io/apimachinery/pkg/runtime" ) diff --git a/charts/cluster-profile-manager/README.md b/charts/cluster-profile-manager/README.md index 9c3b5c06..107ad24b 100644 --- a/charts/cluster-profile-manager/README.md +++ b/charts/cluster-profile-manager/README.md @@ -66,6 +66,7 @@ The following table lists the configurable parameters of the `cluster-profile-ma | image.proxies.quay | quay.io/company/bin:tag | quay.io | | image.proxies.kubernetes | registry.k8s.io/bin:tag | registry.k8s.io | | image.proxies.microsoft | | mcr.microsoft.com | +| image.proxies.oracle | | container-registry.oracle.com | | image.proxies.weaviate | | cr.weaviate.io | | registry.credentials | | {} | | registry.certs | username: "abc" password: "xyz" | {} | diff --git a/charts/cluster-profile-manager/values.openapiv3_schema.yaml b/charts/cluster-profile-manager/values.openapiv3_schema.yaml index d33f5641..c067633f 100644 --- a/charts/cluster-profile-manager/values.openapiv3_schema.yaml +++ b/charts/cluster-profile-manager/values.openapiv3_schema.yaml @@ -70,6 +70,8 @@ properties: type: string microsoft: type: string + oracle: + type: string quay: type: string weaviate: diff --git a/charts/cluster-profile-manager/values.yaml b/charts/cluster-profile-manager/values.yaml index 11eb4861..3c1113f6 100644 --- a/charts/cluster-profile-manager/values.yaml +++ b/charts/cluster-profile-manager/values.yaml @@ -45,6 +45,7 @@ image: # registry.k8s.io/bin:tag kubernetes: registry.k8s.io microsoft: mcr.microsoft.com + oracle: container-registry.oracle.com weaviate: cr.weaviate.io # image: diff --git a/charts/managed-serviceaccount-manager/README.md b/charts/managed-serviceaccount-manager/README.md index e61ebd94..432fc35c 100644 --- a/charts/managed-serviceaccount-manager/README.md +++ b/charts/managed-serviceaccount-manager/README.md @@ -45,20 +45,20 @@ The command removes all the Kubernetes components associated with the chart and The following table lists the configurable parameters of the `managed-serviceaccount-manager` chart and their default values. -| Parameter | Description | Default | -|--------------------------------|------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| -| nameOverride | | "" | -| fullnameOverride | | "" | -| image | Image of the managed service-account instances | ghcr.io/kluster-manager/managed-serviceaccount | -| tag | | "" | -| replicas | Number of replicas | 1 | -| securityContext | | {"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsNonRoot":true,"runAsUser":65534,"seccompProfile":{"type":"RuntimeDefault"}} | -| featureGates.ephemeralIdentity | | false | -| agentImagePullSecret | | "" | -| kubeconfigSecretName | required for multicluster controlplane | "" | -| addonManagerNamespace | | open-cluster-management-managed-serviceaccount | -| placement.create | | true | -| placement.name | | global | +| Parameter | Description | Default | +|--------------------------------|------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| nameOverride | | "" | +| fullnameOverride | | "" | +| image | Image of the managed service-account instances | ghcr.io/kluster-manager/managed-serviceaccount | +| tag | | "" | +| replicas | Number of replicas | 1 | +| securityContext | | {"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"privileged":false,"readOnlyRootFilesystem":true,"runAsNonRoot":true,"seccompProfile":{"type":"RuntimeDefault"}} | +| featureGates.ephemeralIdentity | | false | +| agentImagePullSecret | | "" | +| kubeconfigSecretName | required for multicluster controlplane | "" | +| addonManagerNamespace | | open-cluster-management-managed-serviceaccount | +| placement.create | | true | +| placement.name | | global | Specify each parameter using the `--set key=value[,key=value]` argument to `helm upgrade -i`. For example: diff --git a/charts/managed-serviceaccount-manager/values.yaml b/charts/managed-serviceaccount-manager/values.yaml index 3dbbdf1e..1c8a41c1 100644 --- a/charts/managed-serviceaccount-manager/values.yaml +++ b/charts/managed-serviceaccount-manager/values.yaml @@ -12,9 +12,9 @@ securityContext: # +doc-gen:break allowPrivilegeEscalation: false capabilities: drop: ["ALL"] - readOnlyRootFilesystem: true + privileged: false runAsNonRoot: true - runAsUser: 65534 + readOnlyRootFilesystem: true seccompProfile: type: RuntimeDefault