feat: move to fleet bundles for ec2 kubeadm

Signed-off-by: Carlos Salas <[email protected]>

Author: salasberryfin

Diff for: examples/applications/ccm/aws/fleet-bundle.yaml

@@ -0,0 +1,193 @@
+kind: Bundle
+apiVersion: fleet.cattle.io/v1alpha1
+metadata:
+  name: aws-cloud-controller-manager
+  #namespace: ${TOPOLOGY_NAMESPACE}
+spec:
+  resources:
+  - content: |
+      apiVersion: apps/v1
+      kind: DaemonSet
+      metadata:
+        name: aws-cloud-controller-manager
+        namespace: kube-system
+        labels:
+          k8s-app: aws-cloud-controller-manager
+      spec:
+        selector:
+          matchLabels:
+            k8s-app: aws-cloud-controller-manager
+        updateStrategy:
+          type: RollingUpdate
+        template:
+          metadata:
+            labels:
+              k8s-app: aws-cloud-controller-manager
+          spec:
+            nodeSelector:
+              node-role.kubernetes.io/control-plane: ""
+            tolerations:
+              - key: node.cloudprovider.kubernetes.io/uninitialized
+                value: "true"
+                effect: NoSchedule
+              - key: node-role.kubernetes.io/control-plane
+                effect: NoSchedule
+            affinity:
+              nodeAffinity:
+                requiredDuringSchedulingIgnoredDuringExecution:
+                  nodeSelectorTerms:
+                    - matchExpressions:
+                        - key: node-role.kubernetes.io/control-plane
+                          operator: Exists
+            serviceAccountName: cloud-controller-manager
+            containers:
+              - name: aws-cloud-controller-manager
+                image: registry.k8s.io/provider-aws/cloud-controller-manager:v1.28.3
+                args:
+                  - --v=2
+                  - --cloud-provider=aws
+                  - --use-service-account-credentials=true
+                  - --configure-cloud-routes=false
+                resources:
+                  requests:
+                    cpu: 200m
+            hostNetwork: true
+      ---
+      apiVersion: v1
+      kind: ServiceAccount
+      metadata:
+        name: cloud-controller-manager
+        namespace: kube-system
+      ---
+      apiVersion: rbac.authorization.k8s.io/v1
+      kind: RoleBinding
+      metadata:
+        name: cloud-controller-manager:apiserver-authentication-reader
+        namespace: kube-system
+      roleRef:
+        apiGroup: rbac.authorization.k8s.io
+        kind: Role
+        name: extension-apiserver-authentication-reader
+      subjects:
+        - apiGroup: ""
+          kind: ServiceAccount
+          name: cloud-controller-manager
+          namespace: kube-system
+      ---
+      apiVersion: rbac.authorization.k8s.io/v1
+      kind: ClusterRole
+      metadata:
+        name: system:cloud-controller-manager
+      rules:
+      - apiGroups:
+        - ""
+        resources:
+        - events
+        verbs:
+        - create
+        - patch
+        - update
+      - apiGroups:
+        - ""
+        resources:
+        - nodes
+        verbs:
+        - '*'
+      - apiGroups:
+        - ""
+        resources:
+        - nodes/status
+        verbs:
+        - patch
+      - apiGroups:
+        - ""
+        resources:
+        - services
+        verbs:
+        - list
+        - patch
+        - update
+        - watch
+      - apiGroups:
+        - ""
+        resources:
+        - services/status
+        verbs:
+        - list
+        - patch
+        - update
+        - watch
+      - apiGroups:
+        - ""
+        resources:
+        - serviceaccounts
+        verbs:
+        - create
+        - get
+        - list
+        - watch
+      - apiGroups:
+        - ""
+        resources:
+        - persistentvolumes
+        verbs:
+        - get
+        - list
+        - update
+        - watch
+      - apiGroups:
+        - ""
+        resources:
+        - configmaps
+        verbs:
+        - list
+        - watch
+      - apiGroups:
+        - ""
+        resources:
+        - endpoints
+        verbs:
+        - create
+        - get
+        - list
+        - watch
+        - update
+      - apiGroups:
+        - coordination.k8s.io
+        resources:
+        - leases
+        verbs:
+        - create
+        - get
+        - list
+        - watch
+        - update
+      - apiGroups:
+        - ""
+        resources:
+        - serviceaccounts/token
+        verbs:
+        - create
+      ---
+      kind: ClusterRoleBinding
+      apiVersion: rbac.authorization.k8s.io/v1
+      metadata:
+        name: system:cloud-controller-manager
+      roleRef:
+        apiGroup: rbac.authorization.k8s.io
+        kind: ClusterRole
+        name: system:cloud-controller-manager
+      subjects:
+        - apiGroup: ""
+          kind: ServiceAccount
+          name: cloud-controller-manager
+          namespace: kube-system
+    name: aws-ccm.yaml
+  targets:
+  - clusterSelector:
+      matchLabels:
+        cloud-provider: aws
+      matchExpressions:
+      - key: clusterclass-name.fleet.addons.cluster.x-k8s.io
+        operator: In
+        values: [aws-kubeadm-example]

Diff for: examples/applications/ccm/aws/helm-chart.yaml

@@ -0,0 +1,37 @@
+#apiVersion: fleet.cattle.io/v1alpha1
+#kind: HelmApp
+#metadata:
+#  name: aws-ccm
+#spec:
+#  helm:
+#    releaseName: aws-cloud-controller-manager
+#    repo: https://kubernetes.github.io/cloud-provider-aws
+#    chart: aws-cloud-controller-manager
+#    templateValues:
+#      image: |-
+#        repository: registry.k8s.io/provider-aws/cloud-controller-manager
+#        tag: v1.32.0
+#      tolerations: |
+#        - key: node.cloudprovider.kubernetes.io/uninitialized
+#          value: "true"
+#          effect: NoSchedule
+#        - key: node-role.kubernetes.io/control-plane
+#          effect: NoSchedule
+#      args: |-
+#        - --v=2
+#        - --cloud-provider=aws
+#        - --use-service-account-credentials=true
+#        - --allocate-node-cidrs=false
+#        - --configure-cloud-routes=false
+#      dnsPolicy: "ClusterFirst"
+#      nodeSelector: |-
+#        node-role.kubernetes.io/control-plane: "true"
+#  insecureSkipTLSVerify: true
+#  targets:
+#  - clusterSelector:
+#      matchLabels:
+#        cloud-provider: aws
+#      matchExpressions:
+#      - key: clusterclass-name.fleet.addons.cluster.x-k8s.io
+#        operator: In
+#        values: [aws-kubeadm-example]

Diff for: examples/applications/cni/calico/helm-chart.yaml

@@ -35,3 +35,4 @@ spec:
         values:
           - azure-rke2-example
           - vsphere-kubeadm-example
+          - aws-kubeadm-example

Diff for: examples/applications/csi-driver/aws/helm-chart.yaml

@@ -0,0 +1,21 @@
+apiVersion: fleet.cattle.io/v1alpha1
+kind: HelmApp
+metadata:
+  name: aws-csi-driver
+spec:
+  helm:
+    releaseName: aws-ebs-csi-driver
+    repo: https://kubernetes-sigs.github.io/aws-ebs-csi-driver
+    chart: aws-ebs-csi-driver
+    templateValues:
+      node: |-
+        hostNetwork: true
+  insecureSkipTLSVerify: true
+  targets:
+  - clusterSelector:
+      matchLabels:
+        csi: aws-ebs-csi-driver
+      matchExpressions:
+      - key: clusterclass-name.fleet.addons.cluster.x-k8s.io
+        operator: In
+        values: [aws-kubeadm-example]