andata
/
rancher-charts
mirror of https://git.rancher.io/charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

make charts

Michal Jura 2025-01-14 12:17:40 +01:00
parent b3ece87abb
commit b6d563b53c
14 changed files with 478 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
assets/rancher-aks-operator-crd/rancher-aks-operator-crd-106.0.0+up1.11.0-rc.3.tgz Normal file
View File

Binary file not shown.

BIN
assets/rancher-aks-operator/rancher-aks-operator-106.0.0+up1.11.0-rc.3.tgz Normal file
View File

Binary file not shown.

12
charts/rancher-aks-operator-crd/106.0.0+up1.11.0-rc.3/Chart.yaml Normal file
View File

@ -0,0 +1,12 @@
annotations:
catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true"
catalog.cattle.io/namespace: cattle-system
catalog.cattle.io/os: linux
catalog.cattle.io/permits-os: linux,windows
catalog.cattle.io/release-name: rancher-aks-operator-crd
apiVersion: v2
appVersion: 1.11.0-rc.3
description: AKS Operator CustomResourceDefinitions
name: rancher-aks-operator-crd
version: 106.0.0+up1.11.0-rc.3

211
charts/rancher-aks-operator-crd/106.0.0+up1.11.0-rc.3/templates/crds.yaml Normal file
View File

@ -0,0 +1,211 @@
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
helm.sh/resource-policy: keep
name: aksclusterconfigs.aks.cattle.io
spec:
group: aks.cattle.io
names:
kind: AKSClusterConfig
plural: aksclusterconfigs
shortNames:
- akscc
singular: aksclusterconfig
preserveUnknownFields: false
scope: Namespaced
versions:
- name: v1
schema:
openAPIV3Schema:
properties:
spec:
properties:
authBaseUrl:
nullable: true
type: string
authorizedIpRanges:
items:
nullable: true
type: string
nullable: true
type: array
azureCredentialSecret:
nullable: true
type: string
baseUrl:
nullable: true
type: string
clusterName:
nullable: true
type: string
dnsPrefix:
nullable: true
type: string
dnsServiceIp:
nullable: true
type: string
dockerBridgeCidr:
nullable: true
type: string
httpApplicationRouting:
nullable: true
type: boolean
imported:
type: boolean
kubernetesVersion:
nullable: true
type: string
linuxAdminUsername:
nullable: true
type: string
loadBalancerSku:
nullable: true
type: string
logAnalyticsWorkspaceGroup:
nullable: true
type: string
logAnalyticsWorkspaceName:
nullable: true
type: string
managedIdentity:
nullable: true
type: boolean
monitoring:
nullable: true
type: boolean
networkPlugin:
nullable: true
type: string
networkPolicy:
nullable: true
type: string
nodePools:
items:
properties:
availabilityZones:
items:
nullable: true
type: string
nullable: true
type: array
count:
nullable: true
type: integer
enableAutoScaling:
nullable: true
type: boolean
maxCount:
nullable: true
type: integer
maxPods:
nullable: true
type: integer
maxSurge:
nullable: true
type: string
minCount:
nullable: true
type: integer
mode:
nullable: true
type: string
name:
nullable: true
type: string
nodeLabels:
additionalProperties:
nullable: true
type: string
nullable: true
type: object
nodeTaints:
items:
nullable: true
type: string
nullable: true
type: array
orchestratorVersion:
nullable: true
type: string
osDiskSizeGB:
nullable: true
type: integer
osDiskType:
nullable: true
type: string
osType:
nullable: true
type: string
vmSize:
nullable: true
type: string
vnetSubnetID:
nullable: true
type: string
type: object
nullable: true
type: array
nodeResourceGroup:
nullable: true
type: string
outboundType:
nullable: true
type: string
podCidr:
nullable: true
type: string
privateCluster:
nullable: true
type: boolean
privateDnsZone:
nullable: true
type: string
resourceGroup:
nullable: true
type: string
resourceLocation:
nullable: true
type: string
serviceCidr:
nullable: true
type: string
sshPublicKey:
nullable: true
type: string
subnet:
nullable: true
type: string
tags:
additionalProperties:
nullable: true
type: string
nullable: true
type: object
userAssignedIdentity:
nullable: true
type: string
virtualNetwork:
nullable: true
type: string
virtualNetworkResourceGroup:
nullable: true
type: string
type: object
status:
properties:
failureMessage:
nullable: true
type: string
phase:
nullable: true
type: string
rbacEnabled:
nullable: true
type: boolean
type: object
type: object
served: true
storage: true
subresources:
status: {}

20
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/Chart.yaml Normal file
View File

@ -0,0 +1,20 @@
annotations:
catalog.cattle.io/auto-install: rancher-aks-operator-crd=match
catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true"
catalog.cattle.io/kube-version: '>= 1.30.0-0 < 1.33.0-0'
catalog.cattle.io/namespace: cattle-system
catalog.cattle.io/os: linux
catalog.cattle.io/permits-os: linux,windows
catalog.cattle.io/provides-gvr: aksclusterconfigs.aks.cattle.io/v1
catalog.cattle.io/rancher-version: '>= 2.11.0-0 < 2.12.0-0'
catalog.cattle.io/release-name: rancher-aks-operator
catalog.cattle.io/scope: management
apiVersion: v2
appVersion: 1.11.0-rc.3
description: A Helm chart for provisioning AKS clusters
home: https://github.com/rancher/aks-operator
name: rancher-aks-operator
sources:
- https://github.com/rancher/aks-operator
version: 106.0.0+up1.11.0-rc.3

4
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/NOTES.txt Normal file
View File

@ -0,0 +1,4 @@
You have deployed the Rancher AKS operator
Version: {{ .Chart.AppVersion }}
Description: This operator provisions AKS clusters
from AKSClusterConfig CRs.

25
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/_helpers.tpl Normal file
View File

@ -0,0 +1,25 @@
{{/* vim: set filetype=mustache: */}}
{{- define "system_default_registry" -}}
{{- if .Values.global.cattle.systemDefaultRegistry -}}
{{- printf "%s/" .Values.global.cattle.systemDefaultRegistry -}}
{{- else -}}
{{- "" -}}
{{- end -}}
{{- end -}}
{{/*
Windows cluster will add default taint for linux nodes,
add below linux tolerations to workloads could be scheduled to those linux nodes
*/}}
{{- define "linux-node-tolerations" -}}
- key: "cattle.io/os"
value: "linux"
effect: "NoSchedule"
operator: "Equal"
{{- end -}}
{{- define "linux-node-selector" -}}
kubernetes.io/os: linux
{{- end -}}

15
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/clusterrole.yaml Normal file
View File

@ -0,0 +1,15 @@
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: aks-operator
namespace: cattle-system
rules:
- apiGroups: ['']
resources: ['secrets']
verbs: ['get', 'list', 'create', 'watch', 'update']
- apiGroups: ['aks.cattle.io']
resources: ['aksclusterconfigs']
verbs: ['get', 'list', 'update', 'watch']
- apiGroups: ['aks.cattle.io']
resources: ['aksclusterconfigs/status']
verbs: ['update']

13
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/clusterrolebinding.yaml Normal file
View File

@ -0,0 +1,13 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: aks-operator
namespace: cattle-system
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: aks-operator
subjects:
- kind: ServiceAccount
name: aks-operator
namespace: cattle-system

68
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/deployment.yaml Normal file
View File

@ -0,0 +1,68 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: aks-config-operator
namespace: cattle-system
spec:
replicas: 1
selector:
matchLabels:
ke.cattle.io/operator: aks
template:
metadata:
labels:
ke.cattle.io/operator: aks
spec:
nodeSelector: {{ include "linux-node-selector" . | nindent 8 }}
{{- if .Values.nodeSelector }}
{{ toYaml .Values.nodeSelector | indent 8 }}
{{- end }}
tolerations: {{ include "linux-node-tolerations" . | nindent 8 }}
{{- if .Values.tolerations }}
{{ toYaml .Values.tolerations | indent 8 }}
{{- end }}
serviceAccountName: aks-operator
{{- if .Values.priorityClassName }}
priorityClassName: "{{.Values.priorityClassName}}"
{{- end }}
securityContext:
fsGroup: 1007
runAsUser: 1007
containers:
- name: aks-operator
image: '{{ template "system_default_registry" $ }}{{ $.Values.aksOperator.image.repository }}:{{ $.Values.aksOperator.image.tag }}'
imagePullPolicy: IfNotPresent
env:
- name: HTTP_PROXY
value: {{ .Values.httpProxy }}
- name: HTTPS_PROXY
value: {{ .Values.httpsProxy }}
- name: NO_PROXY
value: {{ .Values.noProxy }}
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
privileged: false
capabilities:
drop:
- ALL
{{- if .Values.additionalTrustedCAs }}
# aks-operator mounts the additional CAs in two places:
volumeMounts:
# This directory is owned by the aks-operator user so c_rehash works here.
- mountPath: /etc/rancher/ssl/ca-additional.pem
name: tls-ca-additional-volume
subPath: ca-additional.pem
readOnly: true
# This directory is root-owned so c_rehash doesn't work here,
# but the cert is here in case update-ca-certificates is called in the future or by the OS.
- mountPath: /etc/pki/trust/anchors/ca-additional.pem
name: tls-ca-additional-volume
subPath: ca-additional.pem
readOnly: true
volumes:
- name: tls-ca-additional-volume
secret:
defaultMode: 0400
secretName: tls-ca-additional
{{- end }}

5
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/templates/serviceaccount.yaml Normal file
View File

@ -0,0 +1,5 @@
apiVersion: v1
kind: ServiceAccount
metadata:
namespace: cattle-system
name: aks-operator

23
charts/rancher-aks-operator/106.0.0+up1.11.0-rc.3/values.yaml Normal file
View File

@ -0,0 +1,23 @@
global:
cattle:
systemDefaultRegistry: ""
aksOperator:
image:
repository: rancher/aks-operator
tag: v1.11.0-rc.3
httpProxy: ""
httpsProxy: ""
noProxy: ""
additionalTrustedCAs: false
## Node labels for pod assignment
## Ref: https://kubernetes.io/docs/user-guide/node-selection/
##
nodeSelector: {}
## List of node taints to tolerate (requires Kubernetes >= 1.6)
tolerations: []
## PriorityClassName assigned to deployment.
priorityClassName: ""

80
index.yaml
View File

@ -7784,6 +7784,30 @@ entries:
- assets/prometheus-federator/prometheus-federator-0.1.0.tgz - assets/prometheus-federator/prometheus-federator-0.1.0.tgz
version: 0.1.0 version: 0.1.0
rancher-aks-operator: rancher-aks-operator:
- annotations:
catalog.cattle.io/auto-install: rancher-aks-operator-crd=match
catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true"
catalog.cattle.io/kube-version: '>= 1.30.0-0 < 1.33.0-0'
catalog.cattle.io/namespace: cattle-system
catalog.cattle.io/os: linux
catalog.cattle.io/permits-os: linux,windows
catalog.cattle.io/provides-gvr: aksclusterconfigs.aks.cattle.io/v1
catalog.cattle.io/rancher-version: '>= 2.11.0-0 < 2.12.0-0'
catalog.cattle.io/release-name: rancher-aks-operator
catalog.cattle.io/scope: management
apiVersion: v2
appVersion: 1.11.0-rc.3
created: "2025-01-14T12:17:17.217574684+01:00"
description: A Helm chart for provisioning AKS clusters
digest: 45dbbeb64adb0b76a9f15a1da88595c82feeb50d7e559bff1a11e4b81923144b
home: https://github.com/rancher/aks-operator
name: rancher-aks-operator
sources:
- https://github.com/rancher/aks-operator
urls:
- assets/rancher-aks-operator/rancher-aks-operator-106.0.0+up1.11.0-rc.3.tgz
version: 106.0.0+up1.11.0-rc.3
- annotations: - annotations:
catalog.cattle.io/auto-install: rancher-aks-operator-crd=match catalog.cattle.io/auto-install: rancher-aks-operator-crd=match
catalog.cattle.io/certified: rancher catalog.cattle.io/certified: rancher
@ -8265,6 +8289,22 @@ entries:
- assets/rancher-aks-operator/rancher-aks-operator-101.0.0+up1.0.7.tgz - assets/rancher-aks-operator/rancher-aks-operator-101.0.0+up1.0.7.tgz
version: 101.0.0+up1.0.7 version: 101.0.0+up1.0.7
rancher-aks-operator-crd: rancher-aks-operator-crd:
- annotations:
catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true"
catalog.cattle.io/namespace: cattle-system
catalog.cattle.io/os: linux
catalog.cattle.io/permits-os: linux,windows
catalog.cattle.io/release-name: rancher-aks-operator-crd
apiVersion: v2
appVersion: 1.11.0-rc.3
created: "2025-01-14T12:17:19.463136209+01:00"
description: AKS Operator CustomResourceDefinitions
digest: fe514fe7aaf5c0f208e8246333b6837d4ada62b8ad9333c5d8364838e99c02c7
name: rancher-aks-operator-crd
urls:
- assets/rancher-aks-operator-crd/rancher-aks-operator-crd-106.0.0+up1.11.0-rc.3.tgz
version: 106.0.0+up1.11.0-rc.3
- annotations: - annotations:
catalog.cattle.io/certified: rancher catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true" catalog.cattle.io/hidden: "true"
@ -10226,6 +10266,32 @@ entries:
- assets/rancher-backup-crd/rancher-backup-crd-1.0.200.tgz - assets/rancher-backup-crd/rancher-backup-crd-1.0.200.tgz
version: 1.0.200 version: 1.0.200
rancher-cis-benchmark: rancher-cis-benchmark:
- annotations:
catalog.cattle.io/auto-install: rancher-cis-benchmark-crd=match
catalog.cattle.io/certified: rancher
catalog.cattle.io/display-name: CIS Benchmark
catalog.cattle.io/kube-version: '>= 1.28.0-0 < 1.32.0-0'
catalog.cattle.io/namespace: cis-operator-system
catalog.cattle.io/os: linux
catalog.cattle.io/permits-os: linux,windows
catalog.cattle.io/provides-gvr: cis.cattle.io.clusterscans/v1
catalog.cattle.io/rancher-version: '>= 2.10.0-0 < 2.11.0-0'
catalog.cattle.io/release-name: rancher-cis-benchmark
catalog.cattle.io/type: cluster-tool
catalog.cattle.io/ui-component: rancher-cis-benchmark
apiVersion: v1
appVersion: v7.2.0-rc.2
created: "2025-01-14T12:19:12.535620276+01:00"
description: The cis-operator enables running CIS benchmark security scans on
a kubernetes cluster
digest: 331aad5f2de04d6eb4792409d46c86196d8c7b297f5facb83db69dfd9670ccf9
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
keywords:
- security
name: rancher-cis-benchmark
urls:
- assets/rancher-cis-benchmark/rancher-cis-benchmark-105.2.0+up7.2.0-rc.2.tgz
version: 105.2.0+up7.2.0-rc.2
- annotations: - annotations:
catalog.cattle.io/auto-install: rancher-cis-benchmark-crd=match catalog.cattle.io/auto-install: rancher-cis-benchmark-crd=match
catalog.cattle.io/certified: rancher catalog.cattle.io/certified: rancher
@ -11004,6 +11070,20 @@ entries:
- assets/rancher-cis-benchmark/rancher-cis-benchmark-2.0.0.tgz - assets/rancher-cis-benchmark/rancher-cis-benchmark-2.0.0.tgz
version: 2.0.0 version: 2.0.0
rancher-cis-benchmark-crd: rancher-cis-benchmark-crd:
- annotations:
catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true"
catalog.cattle.io/namespace: cis-operator-system
catalog.cattle.io/release-name: rancher-cis-benchmark-crd
apiVersion: v1
created: "2025-01-14T12:19:12.547210672+01:00"
description: Installs the CRDs for rancher-cis-benchmark.
digest: 2e4e96dbb21e81bb588b7e5326cbedacab2e19a0fcb2b9ac88397c77d75d7b7d
name: rancher-cis-benchmark-crd
type: application
urls:
- assets/rancher-cis-benchmark-crd/rancher-cis-benchmark-crd-105.2.0+up7.2.0-rc.2.tgz
version: 105.2.0+up7.2.0-rc.2
- annotations: - annotations:
catalog.cattle.io/certified: rancher catalog.cattle.io/certified: rancher
catalog.cattle.io/hidden: "true" catalog.cattle.io/hidden: "true"

2
release.yaml
View File

@ -32,10 +32,12 @@ rancher-cis-benchmark:
- 105.0.0+up7.0.0 - 105.0.0+up7.0.0
- 105.0.1+up7.0.1 - 105.0.1+up7.0.1
- 105.1.0+up7.1.1 - 105.1.0+up7.1.1
- 105.2.0+up7.2.0-rc.2
rancher-cis-benchmark-crd: rancher-cis-benchmark-crd:
- 105.0.0+up7.0.0 - 105.0.0+up7.0.0
- 105.0.1+up7.0.1 - 105.0.1+up7.0.1
- 105.1.0+up7.1.1 - 105.1.0+up7.1.1
- 105.2.0+up7.2.0-rc.2
rancher-csp-adapter: rancher-csp-adapter:
- 105.0.0+up5.0.1 - 105.0.0+up5.0.1
rancher-logging: rancher-logging: