From d1168c072720ae9ceb54daf34fc391736877eac2 Mon Sep 17 00:00:00 2001
From: Ciara Stacke <c.stacke@f5.com>
Date: Fri, 7 Jan 2022 10:26:13 +0000
Subject: [PATCH 1/2] Update nginx-ingress chart version to 0.12.0

---
 .../generated-changes/overlay/questions.yaml             | 9 +++++++--
 .../generated-changes/patch/Chart.yaml.patch             | 4 ++--
 packages/nginx-ingress/package.yaml                      | 2 +-
 3 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/packages/nginx-ingress/generated-changes/overlay/questions.yaml b/packages/nginx-ingress/generated-changes/overlay/questions.yaml
index b32669513..3c0a1ceb7 100644
--- a/packages/nginx-ingress/generated-changes/overlay/questions.yaml
+++ b/packages/nginx-ingress/generated-changes/overlay/questions.yaml
@@ -25,7 +25,12 @@ questions:
   - variable: controller.appprotect.enable
     default: false
     description: "Enable the App Protect module in the Ingress Controller."
-    label: Enable the App Protect.
+    label: Enable the App Protect module.
+    type: boolean
+  - variable: controller.appprotectdos.enable
+    default: false
+    description: "Enable the App Protect DoS module in the Ingress Controller."
+    label: Enable the App Protect DoS module.
     type: boolean
   - variable: controller.image.repository
     default: nginx/nginx-ingress
@@ -34,7 +39,7 @@ questions:
     label: NGINX Ingress Controller Image Repository
     required: true
   - variable: controller.image.tag
-    default: 2.0.0
+    default: 2.1.0
     description: "The tag of the Ingress controller image."
     type: string
     label: NGINX Ingress Controller Image Tag
diff --git a/packages/nginx-ingress/generated-changes/patch/Chart.yaml.patch b/packages/nginx-ingress/generated-changes/patch/Chart.yaml.patch
index 0bc8fef05..ba118fb09 100644
--- a/packages/nginx-ingress/generated-changes/patch/Chart.yaml.patch
+++ b/packages/nginx-ingress/generated-changes/patch/Chart.yaml.patch
@@ -6,14 +6,14 @@
 +  catalog.cattle.io/release-name: nginx-ingress-controller
 +  catalog.cattle.io/display-name: NGINX Ingress Controller 
  apiVersion: v1
- appVersion: 2.0.0
+ appVersion: 2.1.0
  description: NGINX Ingress Controller
 @@ -6,7 +10,7 @@
  keywords:
  - ingress
  - nginx
 -kubeVersion: '>= 1.19.0-0'
-+kubeVersion: "1.19 - 1.22"
++kubeVersion: "1.19 - 1.23"
  maintainers:
  - email: kubernetes@nginx.com
    name: nginxinc
diff --git a/packages/nginx-ingress/package.yaml b/packages/nginx-ingress/package.yaml
index 47ea68d7a..3002fca49 100644
--- a/packages/nginx-ingress/package.yaml
+++ b/packages/nginx-ingress/package.yaml
@@ -1,2 +1,2 @@
-url: https://helm.nginx.com/stable/nginx-ingress-0.11.0.tgz
+url: https://helm.nginx.com/stable/nginx-ingress-0.12.0.tgz
 packageVersion: 00

From ce0efe6065cbe50d24db2f1cf6d01fc7525b82b0 Mon Sep 17 00:00:00 2001
From: Ciara Stacke <c.stacke@f5.com>
Date: Fri, 7 Jan 2022 10:27:20 +0000
Subject: [PATCH 2/2] Result of running make charts

---
 assets/nginx-ingress/nginx-ingress-0.12.0.tgz |  Bin 0 -> 31879 bytes
 .../nginx-ingress/0.12.0/.helmignore          |    2 +
 .../nginx-ingress/0.12.0/Chart.yaml           |   20 +
 .../nginx-ingress/0.12.0/README.md            |  237 ++
 .../nginx-ingress/0.12.0/app-readme.md        |   15 +
 .../crds/appprotect.f5.com_aplogconfs.yaml    |   65 +
 .../crds/appprotect.f5.com_appolicies.yaml    | 1901 +++++++++++++++++
 .../crds/appprotect.f5.com_apusersigs.yaml    |   93 +
 .../appprotectdos.f5.com_apdoslogconfs.yaml   |   70 +
 .../appprotectdos.f5.com_apdospolicy.yaml     |   68 +
 ...otectdos.f5.com_dosprotectedresources.yaml |   87 +
 .../k8s.nginx.org_globalconfigurations.yaml   |   56 +
 .../0.12.0/crds/k8s.nginx.org_policies.yaml   |  274 +++
 .../crds/k8s.nginx.org_transportservers.yaml  |  157 ++
 .../k8s.nginx.org_virtualserverroutes.yaml    |  635 ++++++
 .../crds/k8s.nginx.org_virtualservers.yaml    |  665 ++++++
 .../nginx-ingress/0.12.0/questions.yaml       |  168 ++
 .../nginx-ingress/0.12.0/templates/NOTES.txt  |    1 +
 .../0.12.0/templates/_helpers.tpl             |   71 +
 .../templates/controller-configmap.yaml       |   15 +
 .../templates/controller-daemonset.yaml       |  169 ++
 .../templates/controller-deployment.yaml      |  167 ++
 .../controller-globalconfiguration.yaml       |   11 +
 .../templates/controller-ingress-class.yaml   |   10 +
 .../controller-leader-election-configmap.yaml |   11 +
 .../0.12.0/templates/controller-secret.yaml   |   13 +
 .../0.12.0/templates/controller-service.yaml  |   60 +
 .../templates/controller-serviceaccount.yaml  |   13 +
 .../templates/controller-wildcard-secret.yaml |   13 +
 .../nginx-ingress/0.12.0/templates/rbac.yaml  |  147 ++
 .../nginx-ingress/0.12.0/values-icp.yaml      |   16 +
 .../nginx-ingress/0.12.0/values-plus.yaml     |    5 +
 .../nginx-ingress/0.12.0/values.yaml          |  327 +++
 index.yaml                                    |   24 +
 34 files changed, 5586 insertions(+)
 create mode 100644 assets/nginx-ingress/nginx-ingress-0.12.0.tgz
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/.helmignore
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/Chart.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/README.md
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/app-readme.md
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_aplogconfs.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_appolicies.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_apusersigs.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdoslogconfs.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdospolicy.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_dosprotectedresources.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_globalconfigurations.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_policies.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_transportservers.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualserverroutes.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualservers.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/questions.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/NOTES.txt
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/_helpers.tpl
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-configmap.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-daemonset.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-deployment.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-globalconfiguration.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-ingress-class.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-leader-election-configmap.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-secret.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-service.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-serviceaccount.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-wildcard-secret.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/templates/rbac.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/values-icp.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/values-plus.yaml
 create mode 100644 charts/nginx-ingress/nginx-ingress/0.12.0/values.yaml

diff --git a/assets/nginx-ingress/nginx-ingress-0.12.0.tgz b/assets/nginx-ingress/nginx-ingress-0.12.0.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..ac93b44338cb8b9d883d82308c0fe6773cd4c7b0
GIT binary patch
literal 31879
zcmV)jK%u`MiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0POwicH20UFbdCaUj@GO%<9hbMzRieI`MjE)+g&=%eH8lA|+eB
zpB+OaEYczgHUZj}pY&RD3;XAL75kp%O7_Bm6e&?6<*1W%+WOHQOF*GeC=}|1f;Y9j
zr;_bW14PJv(}Dpl&!Ox5+YUdKN~QAt;DG<XQmHKezgnwS|E+pZegD2vtsU0t|5mBi
ze?9#5-#}%TNUZyWgu>w8DqlR-^5p&^ALx0QLTY1=9PI&MKnfi^EgO(h2bFESZ=itM
zcQ!JQfDZ%ep&+xFX%pXp^O6T$bOe->u5t~!f~!Cido;j~v!-i+90UoHT~iEMG8SE-
zZx2yGZ0sF@hw2{m{rJyXxmvF5nTQyH?Nk2MS_~}AMzJXM$<hA))TUNADI3_`=L6fG
zu|EqZDDV(PBtm1)HW<vPQve^!qGL!<z)(aU&4aQ3z_Hvnk?-KSi#$s9E#$Z*gYCI}
z{@)TCr|f&vy&0N6;=m+FdnFJdQ4+M-W3c0?SIgCppaiPrT7A!jwnw4up@8>8F0`E^
zut4Si&-*h(_W(#x+xCpT4C3z*90msBu(qSuJ`E7sJmI~EXa<#XwN|d|ed~?zH~pmL
z{{wVFM0R}uY?lA^U+ceCmgN6It$y$-|G&m(Az+#K|LG^7S%}L9fbRgcP%J_h4S@-f
zi#>uUzyVln@3H{U2q~T-4+W4S6WDja!xYHI?0*!4H*a`bkR@~$Sj=qC+<=Ac5eglL
zpIxAoz=LBIp~wbefQ}Lk<QOgf1z89G4hQlS={q4|a5$pA6Otov2OWYq9H7}Q!XX8=
z2VC26Y=R8znFKsqwqd1!FHRxwXgdyggf`{FKtMvnK!n_djvO;U4u&RxcNDST4GVfx
z#AXI5hiQ8@wV?wT_tF?SmG_bu9f9|Z6Xk3Nq3`2BjMwme&<`+02HgVy`o1szU@X8J
zw>>y<5FaSf7P#099X9rwX_a|@#5*Txw03mR!X$-(iAf$3Elgg7NE)h%CgF5yd($kG
zM0eg~sdo=P0WWkXC}5n)X%74Vv$aEnu{IGC6%btbG{V7*oyVY(4WiNNwFE1B1|o5{
zmf+t+H?`3NE^=`&2gH6xY%BwNBy>3$ddIRWZ^63lC1$&p$9-&atV1H`Y+*uwCcs1V
z5eGBAKZy?w#DKHk6!AlPZKE;LB;{;e20D?Wi(Ss!fQjwFU|t3)`aQG*L;wl`9F!b9
zEjj1`IY$Ckw7yO3-PzL~^udD-!R-S7vcZ2TBaa3)BDe8AXeF0!AyFJW1$=;Iv6AK-
z2Tv~q8dcf30UVo9*2@S9#V%lL%qfSSd`u9)0#mVf?My<KK?geyeiY;|u=jvGCcB^m
z&SMP<u%j1{xkup>CnJNwRXQ;wLr<X4XMY}n-~P!^v|Ttw@y20O<==n+`Iy+0G0j>*
zDi~+cQVQh#6|o${rf|ARF0+vZPzt9<;0;#;-=rY;q2mA_JGL?Bv&;v@dh~gRBhbB5
zFzpA3NLenpAT|Bu3ASLLkRTIG<{JsI%?Y-Ah6zMcGfmi6>zPi@z=ghmnl#G5zy3%8
zl)Sz=InFJdHSA}$2?Z|-$YH>tMPiXdh#>#;6X;T46A&N+yDsufWJWS!j>7=pM-ONh
z10XFy12R5^o(X1X&ZM`A?qKLp?P8Exf(az({Xq$N24)bKAjHcqdxKL=>kj}y!2=4)
zpeu>)BZC{C?*IgTfJ%#HA;`Ha5qs((GX>Wse3|3LR4_$HSu?aCW%H9`%olS_Kod~d
z7f0Y?P@xxtYE#wCGtEA3slzjUppVb4Dji+rzg1{+Ry`Z&N)67G*43ypzN#py+V1q#
zd#9qED%PlDwXgKU=D0?m;0g8BXQ$q4pB?Mh%E^_k9>aEZaCvHW^`X-qIvrJQtIg5u
z!?}KcOth-mnVb$`ui}%NXXR2o>CP4H_<o`}&o?u3g!F1t=~(SyTd!!k8lZOdcU4mr
zwOxI$Ipc>>Th#~GzM`Jc18t~wl!hPwW>y?s9gUT%`{UCqtus{hPTj1UI;^SZ!;>dG
zaL?%Y)PbY+;d@={9-1SyJMhM~TDQne&2L>*I@;jcZ0kekyg8!}qnU$ESGl|zb~;zH
zGxbVWy>VrDb)~DUtvabF?C<84{`jEOtghasozaQfGw+o-)O+<S=Q!wTia(msL!>$L
ztICISwe~dDuW#n(wf3{#>Qvx!HyG4!9)~BLLwKS#CoMHFJViIO@$=aI@G#P6)tlPT
zn#>*#Mkl?xUiIf!v!Qz9erzi>wLKY;>eUn<pw{?eP<uKZ>4)8sGp(rZp+2q*`*1*=
zUd^Xkr}Lyb$Ag>d?0M)ZefZqzAbos%Q91KQ&e?D>Q%=V^Jwa`Cpj7CUd1B3*F8zIQ
zJq*!|>gu&Vhb{d;bNtGnRvj4n*{RuTKN^~%-aK1lt=@j>)jHn9#Si*Oy*Dc3n;Y%S
z>)jt$&#TVOxMkvTeHM&o<a{(cco^!lrz`!ca`QZ%_o|KytK*UG4o}Uh^K>=ztD|eB
zHms=UlTr0V8L5wEyZ5YAs#T+P+*kFdq1JvHz}fihQX5|@*WJfK16MWI>>IU1Wz;!S
zhE?lk==ioWQlGTCS{b-19n?G4xOS+Gt7lhNL;p&t^&YS8J6C$G^ZU*7_+B{~tHWzw
zxvF&Ps@^#swmX;2*_j9H9Sm#E>E*TYcs1*&MrC|_rGIR3z8LuzlNwdc6SZ%&NuWJj
z_GC2d8+B(saLu#9_1WAQc7`{#@uhCl`$@$b4|RNQo>;++XLYqs?^&%6kF`<v&~&SZ
z!}e4EruOuNnjhiK^I3o5v>$uzv*yLKqfIL0(XeS}T-9s3GYr%b9T_&&v`(Y0Xr?}z
z;^*<Gdtka|-)x&<Z}8DZUavlRR*vD|<IHeofuVN~uWGaEpzidIdgoL-sp^B;QwQqw
z@@8ht)#`Yzjh^lYmGRA${-JWC-PD^i$1|$d^UaJZ6Yc78Sk>#s$w${Xaj0G$yYRX*
zFlWQV8&|0-73Jo#)p>7p+JQc&RdlM}oY#iO<NC0ooLcpv(>*k6-TCnP<{UXzIG%kx
zos6uJqFF7oYId(Y<s4RKPs+6gVQr|7uFZi`F>ToH^aiuBuFqz5b7nnUUHgGH>ON2I
z8&6mFSM$-m5-4@`TDkJi^j62!9KU<n(H|~HPqu!lV69f|sGaf5yzd;2=X9tJ&z>d&
zdNQy{O|9T3)HypbPR3qetDH+2+0kZK)2qsGFl;*~16?^DwskHaFRt)^?&Ta3Gc?aR
z9HdCkJt7#SFFy`uXfArs(0t_-80eMuRPUUf4QK2WIKEJaGdWXV8R$;OXm`%8W}V|f
zMLE{>;jw9dtg55l!K8XN>z(Qk<Llv>cB*vFtLn{I_XA`0)a!Z5nR3z@!FKQA=6*Q8
znSZ?QIjXIkwjY|#*`+a~C%v|L1BXf#wLi{{>uCV*9S^!s2g-Hl-t?>)^3?OmwbIdN
zXVr1_xYBEXw1y|Ni)Pltq}~~hT;p+k^5l-I=1i-!&vk9wQ#8}js!rvq_HlTrj}M@$
zUYpNjeK=IlhWgckS~(-CqudXMxH73)9c^YkPv&H<)`yxln$^a$>Z3O7)o*kwG@m=P
z*YKZ4GxI?mwVy{FWj=17y+<cT&2X%lp(~Ewa+<wsr#^Jm`HimH`m<4mCs)s=Znm|S
zeqfxC=gVQ|_o3dof~WqI>8kj=dNyi0;}hlNtO-XSn-gv5Bh49WqpCF;TBPSz9<`J4
zGt$PPuBoco={%clQyGr%vvG1pO{e3+=d)wQbMDcJ+Cd$EHtvjx={}zK+z++h{W0k|
z&XaN4X^q>oscKde&OcU=)9DU1=iJZ_-y5eszSPfj?b<w3+a2{vKRcdOoaWWA(;Cm5
z)5$e{ygaqkp^F3M(Z3jb<1_vG>XFH8wbpx59P>SDSwqEj4tl54gPvPGG^?{GU00lo
z`tkFq{qbV#s83qest(%9TzC9K&C?&oweEwiUmZ;J&Slemy6oMnV{PPAw2^vt*_s||
z?J?G7e*H>6yu56kwUA~!8?)Zw<azj@x11S#ZamyPtKG?c<9RR}-YC!G!>jx0^OgHC
zP^+DXn;ALp-CI3nRtd~g{aJTAzbp6V`=M*p%o=%yZ7a|#{`KJb_;Fah2?qCOpwHCN
zjcc`T^s%MP4!xc}R@Bjxr8)R{*s?5Lr}L|+-_l!33$;6%d4KaX(q@NRyL)i{tXz+V
zo$h&Exq;g7q*tl>H$&xkTs@v$>9hK%ZB@<dPFt%w4?X>`e^EKZgA-bX!)fixQ)$z~
zfufB=v*wR`^AB@<P6w*192@nsp5}EQd#$ta*#3xbD%}7MotE-E9NoCa+#H(kN7_wY
z8=05d$<^U-^ikF8$1Qbs6Aayh^IpZ6>z*~Ac-HZxVm7bzgNk17RmMZ7uh*=wH}tQr
z?oCV6$K<9mtEs1IZBT0m+R0ect~>LantwUIKXV3cf2?>`IB}oO&8dHaJpbgPrrN{N
zP@9aN256>MMl;hfuE*E#w9_5TKib-TcaBD9)}>w@^;(X4RXOWuv%`DEr6YKMrVUSh
zeKb28PTEfgSI;*=bM~=5t~}1ir`9?0%n@?*%CPz20N$IY&{1`za(Fx*`kg_o^Prw~
z=IY7e@y%#9hoeJ0)~jd3(fCxo?wp)IpUtmEA5X7loy*>^aeiK*<BN(z26c6$KC9=0
znRBH)AK&XXsjIF(N7rZmP36!YHR;vxS%0{^?wrEWlXp{_2IIPOFsU6LkDO!QtSLTf
zDfO$Ne_}rRaNPX(e%v{(LG5@pYWu!XJsynj)gFAF9!_e0Q+It^bye4>IfuG?b~BmN
zy4KMT6x~wwnsU<fltZX@`cNAltEc8ruXJWj_u%km)Okd@@`&1<ncAjp_0+ta*t9<G
zSQKjG%H^r*4?61XysqM5%bLNVFV~j7AK9cjIr(^bsU6cBr*kkIT8B6K<9YACGtk|S
zw0ClLZ+Irr++h=rl+M6)*j~7SwI_ct96pWf)?hqylwQrU^r5O7Gv|EVRyy#sLxz<q
z99EwClUlc?Xv%y%#dX+mdV}j;b*$4Ftm6vos6*599n<}&^-hP^hWoKOtUX;0Pn{F!
zb%VjkIv;yu-Kbdp<%vo3dS^Ddp3VoeGi$7Oh9h0MZhEF-I#&mZt6Uh4GFN6-!T99E
z<Dhcb89#T(MWyqgRys~^))|_o!_K6m{C@F#?5fYxU|6?KjjGxiR?mJn997Yu)q#F*
zsiW(wb98Oqo1Ml1Y>l6^lc#fCQ=6lcrz^d381$~k7n(~i_1RN*QuD`J&2L_5L;L35
zvM1NdP_G_4!^%fRX)73Z&JM0T=XBz#HPrB}o7q`Qopl~>D&2=kdwO72)e3Zm;~Pgg
z)M_6O#wYafvh7#U>|+JqpIL)S#~z=W?-i#Jj9TN?Wy`uByH7X64nFLS{F{rq+H2l-
z>YA&b4{EeEt~$-hoL2Pb<3sKFtTq^R-1D0LIG8Di+KKf%Y+W51no=Lzq;@qL{ysW+
zs*PG_)uE@}pnK);N*jBVYkUZs<lJZ}&Ux*ur|M6SllpOG)Ugy(@2G0!$<k*=aN{V7
zajzblZS`i-J{%7`Q%9P0Z9FUIH+9n)Xy)(Zp<kO+#{R@r9)`}a+k5ma(|y94K5VKd
zH&26mhYniDheqr8ailA7P*X3>Q{`dY9@DECeIB;yRqy`H(p*Z0L#sKcPv_%jm1&C~
z`&U@#9QyE5ZEn&@mb5Q|i~v#aXj2Qo6$@RO_?wlnBsd;D0&YksxZ|!a-c9^dx&>WG
zkHGE!jvb5twa@?kU$-$JogfoH0-y(=Ls8&CYCmvyr_{_CB$$b4NZ4;l|KP$kQDz-(
zdDArwW@vs3d>B9%Q529Ep^n5lg|wjDCyqOBD84vi<bAXq(}02b0*45CK*2n65bY1`
zfQHZ+a7uIkt58!dNO*7I-!{P{q`<?`YQ_q2JcF)q6~%L7y03I;z2n1@(6Ba)N~AA|
z2Q4N6f-?ZUIe?TR*XQmqL@1m%Hi_8?dmb_tE+^qZdGn^I?*F6GftwIZWGKD~{~W4(
zpF20PiPmi0WQ(2c-N=26O|~!&GAI_2Kp(TY5qs+K5aR}?wU12^EyN}oNDv8MD|euy
zz_mRQxts>jK)^?VjW<O*eau%Z(es3L?DKvD5pp~N^-5xt0LcW7&0smQaa)e5@N7G_
zYttwk$2PGa9)W75;>O=Z(WdtYJzIVmpx;A8w&<3i3U*MC?JCc}IMF(af<!L&yF1&n
z>4uO;3?yp0v_22m3Ee_;lPx(0Y;q+T4?s^efIJ?sC#ewm>5t?WV728k0zDjhv^W-`
zc|IyGYuAU=Is*HM8Y0lM&l;4?ecrm9XidV2Xq)&&Mh!fhHly$qDY7N(RF4%*+0Ugo
z;3dZwp)D{8$$WyJj;iJQK}=HDg`Rl?e*2kNKfeP%mkjn_WLOwb%O*^`$6<0rL;wHx
zbCOLKG1vh4j%~nAlul<k$PP_L$YhYva3I+Lr5qEE|I*~Gqn#%X02;-v(C;C1nC#@i
zLf(>#=LwRyAhQfEsfB_^o1k|B@TO#gJ7{xwal(KkL&jvW=gbpP?S&lS=gR~+*qbs?
zHYF0Z60pmt3@rE{;>d68#1s|iqBr2qMvl3d?dtr>d#gw#Cb7T=Iu7r(gqMl=VV;iz
z&$w_LAT!YTf-Q2`1fMQ?%GjPnPC<_ma)|IH!y#oS-tu5_toXQ<N&}LI2=_Qf3%h7!
zd#NKX36!6+1kna*37u7<k&bdJ(K*LR`v|FF@##kNj7e4o$MaaBU&HgfyQFt~escQo
zU*e%6jV7J4Ap_-$5%;2mj3)m@U7R>H2-CR)zz@)ajUGja*iLrti(mTkhpbEluKn~O
zA=C<RIJE%wc<>w?9Mlsz2MIc7;<Xr4yBH+EC5D_jcmkbfGQ=8d{LKLIKq;fe$!fc0
z`fQ0900xJjKxUy(`pAfcP}azIJZp;`d~6$ANKPXiDo$uqo0BB~A1_uLgyKLb5?QFx
zSCNP}JyHryKmH!@l{o^3^}~Ad%K%esVCM+vt$rpDYHR^SYxdI|B8i_7A_v5?eIHSF
zbVM_L2U5EB(w{00r6#Kd&?5{Lsgq~${y;)c^KHX40R#><1PaVBGNY6dp_=16U?J#G
zt3)WIAt{A{9ZAn<8%N<0k?A5~1&H_}9W6RuYLyBQKmaqmggEr(k>)0k2A!b0&=F?G
z6IbS)2m`}H#*FdK#*`A#c)$l*$^~Q8WgT_3yO>ynQ;fMx{#l+~);39wwLG@2c8|at
znav`8;L?hJA<@goI1{WvXgK*K5PJutezV941dV<-ooN<HvS^;d-ej`p(L%u*$k~9I
z_9Bvtq^Tx&{6pnKB_4tCO}GDW0J{DCX1Aq+iGz(9i5LTNOO9tQEs_~?2QGsFVw;~b
zgV3S2@1O<zxzM_#4B`VcZIkJ8Z>qIl%awAaT;=3t%VisAMI6HDmqhYZj@G!4bt&?4
zlVR@jy^(+^+HTNBWopvgM@QfSL-QCq&@)hw&a#m_uLaCRFhu52#PD*oa>8`Jzy@^K
zvBlX`rg%9vGZm%6)9p)E$%1?&02Iv}N)Rc+B|mS7sqesn6XcNPiA0D6@Phxo(wXs#
zZGdhcK-1(XMD*oZsuM}V?A;lS!WT>CPbCR2=x8`NG?~nPuuT*QWmhIs3T^%lK^g`U
zStrrI+h6giMA>?==<4=28Ys(z;GMet*s@$GrhO1VZ;A-`g>8tpLiL1!+-xFq3i4du
z?}a=A&VMS$dSyPzJUNNT7iYnxQU)zb{XUai(ZQU~Nj=rHK8Q1ei>ywTu#Km)09SCw
zEX3*(q)0=+Ch8~Ai$^HFm=TO<L{I*`;My$w#p&0-Y$cA4^|RsW457zVx@Z^*gDIl@
z)b#i@o}A?v?07u}FItd;gZdULGWc_sWbkLKNj$?M`NfeblS9H6r5H!(#tFumDaNu@
z!!WqlBS(lZ8OYk@Ij@A%m|>wFH=19bft!`CoJNm(!KIUlDX}ItW?WaF+JpvkrazdB
zYS3A@kq4p|7rN+)t&~(w2?HJ5#sCV!TgYLC9lzBmU~nf^KXe=cN#Pg^RtpfLyQI&O
zKC1g>Y(vHeFZU}%<4Zm6Zq>q<0R?Yy21XEaGQofP3EbdNOcpvM_TGyDg)$>Stbj%~
zwNMaqYjX66F&=D~95Q42<*3g<ba@w{mD5eG{e|t#BF#2}6j@C%o*rB3%<BbfZx<}3
zkgadGZcqwmh%g<|U>wG%_<#hOm{E;vG9{#kh%6k0OZzQ0@3@#t>JRa1tX@b;rrO8W
zMoctkUd~d9m-#3m?Rb9uqlG-l)scf?g-w@CXl^}c7}Y`A<&n<<f_Sl~REi2l%G6XM
zo6;r#rX&r+!<B9?E<(96Va9X(g&>r5wup9bBZ;)c!0Uw5`c>^FSUDoXJGp>jnaDb4
zFTc{m7#V`&?n$ZJ2V_nta?49<tQ;xT<}a~^iEW<J`=#-Ifgn?mdEm`vCpHG~0o&%n
zm|b@FCw4*3l#~9`FPw$=T_D?*xE9{@vBY}E_x;AhXo2TDv9>U>OpF;nc%3xC3eGHz
z`Nkc$)nV?W;9g*3CJ)PWT>#On6e0a4&vIUxWPuAeJ~ofGzsMuQw3|(FXqvWE%d)KU
zO<*&ObP2Q{*f_B1yqSzaW#2^OThULp=QI}D2sG!JUNORdvpsQqnm)EY8vE6Fw>M>Z
zK}r4?AQ}c9S=??F{zfiagv-f-gqy02D`ikeER4MO%41cbzrBww1J$+ewCa*;n2|{^
z3BCgkq{uVoz(q8$4dFuweL@2SU6Qaj`~bU%S|}v)ELgaFF9e95fDpSvg9$X`mFvho
zk4UTqr#)T^=(0y!SOtQLse8&Xrcx;M<E}D^V-@-`4lz9`2E+)UFK8+ObKc>!`&g~k
zBbV-qsNyncKN4CnX@6)JgGi$mCt4I5<Kl^8AnyV%;~y=h2!!#JjYZ^X34d-#6T?C-
ziu3=)pQ4P%Yq<&eN!Nd%$n_b^lYQk<YY)owiSA&GocceN%KPQ|4~GZuYp?YmzQ#w3
z{r?%q4wKIlguJNM0y4|r8sFE?Za?ex|0fGMJ~K+G|HY+Xa`u1yuv%Z*|L^PXtFQb2
zYkdCoul;|32ira3s`#DlAUgNae=>a@8WuVN|JeWIkG(zCY_I*~Gb3-=8sYVv%6q)w
zzy4JcxdmuRV=sF=1E(b0_<`-wJMiW|Na;Vw8&FoIw~VLGltmdj{_oFBN%0KuzRv$?
zyMyrV&VB-KN(*4fGx@&-mLk$9b?Q8<L@NOb`hGc)2V~=Y;aU9Gzkux-PH3)~QyKj6
z$DV~8w@fTi$BXw#&f<?hN{eq~?JkfxqzgSbMP_L-7eFGyNLNC3r>K5Nx{Dk+gGB2V
za$ywZkWI8yQcD^+Resq_thb;%6ji2HJ!l-6>{XR0FWYh4ie=q$QBE6{Y1HkzETpoG
z-)!?#0{TKA(Yzgk*6ovA+P+yfj919HmbA;B`$AMrM+J7r5NWst7$d@d8?1MZuE28>
zn$aN41}cQ=;)05@Nr2`vh6Gd+c{C*&NxikGM)~!{aZP08e<89FqylI{-!Fz8^!?o}
zcosu`>!bWdpLP1*Vy>mdvGBsWfO+=cuazbJuU4%b9KPy*U*oe>RaKPAi~Y-cE~3zc
z6duJDL)U9VNu_}6L}1|wTGdR1lbW{@N|^9B^5Zxgex$3F!Dryvo{2mP4#37ET<R4`
z-z^_8RrU5?{{j@>K-Vb<;WJnsoC$zG{@4?Q%EczC;3Ra0+@Yi9@vya}VZUho3+(?z
zEyX`&|5x81EZ2XoRV(jb>wkWgkK|VLdlm=s3Y>4^^?xI*kA=X1zEAdJsUd0>4iL?j
z8ee?eenpAGQ`)(kS>E5{ka%SHA_1CLuG}ONW1U0F!)Sj=cnLD`ti2TIErG8WJ3cnc
ziMUa&+*xiP3!V>4f=3RC1Mo`(W+e{tcJbTN5DAg`R#0a-Zniw972u0*AQ^$N@xF*#
z9Dz492+^B0jYJsZO~P<X{LUjFfBdnoZxl>e(_4lfSpQXm<rAdP8fBhIS!*Q!38K3i
za!RYV+a_+yvh>P}1<1LWnr$3!?6jF+$=kIHEK+xFH&ZYLAdkhfa8KM;T~Hx$DRuMk
z$?oy!?+cF}-*H`Roaid+=5gbWFPL(4EjAuAy8XI&$f(;3rnwTNUW~mOzh1*+nJ|{N
z#Zq<KY(R-7i+;x9I;;Gql&dIv%bO>@<@zRjWKjn-QOxy^KaMuFq;Q%NU2*zhblYI#
zIEzxNY5B*qLE}H8Y4T_)h(9qs;>6>{Z;XH|Unk*^^?(iz>Y0$(_l(ln3il$7HDB9K
zv|ZjCYZ!Ioc@)iS(P;hTHl9Gmc1j{~Bg#F>Kqk(MC^6uL5Lz<^>z^1P2HX$u1RW)p
zic<ds(d1VE_~Q0?B6%eJGe=@AvVQt(sjlv3o*)qNU5`DAo>If}n;QMVey|-hMQvh0
zQAA$mLo6Bwq1PZfLBSEIR;u79aS=E{H0Z;L?by^tBt1Vfz<&Ch5@=jpq`rZsx!go)
zYoCt0O6$|0tq!}*cCIXz6#^3TPL%>EB9|qIwZ}mO7<mt?o4<eA`lK{^?LoiMY$qne
zFGY0%?51bPbC*?gm;P3MFRBbgI&nEx^w$o$`|%R&9KU_Ck%WtE>zIDkN|I_Yn5I~x
z1WJPGeJ3RUnZ3>8X9kjh5?#g903|A_{BHu1dJbR(nh+Bu==&v^akB>2qC9_wXjucQ
zWa4%6OI7<%LEND4tnHJ)Vrh6$Y`zc@qTGBQJQqGi&X7V-7v=v8fqoQii-ML<1muI}
z)mDl@74HkkwOEz_2^Nf9!sI{y{g;#wc)P!agK+(NC+c#^D;vv*tj04+qUD;IW<q3>
zbjT_vtp~ovbeBUn<u#I(j~G9A#kABlQ%IJB*i623frgdA_|K(S!mb%^705c|Q&-d1
zKug}q-VC4=26h1;y4qdCotyUk;(3Ub&JSz4M9)F28ExaN6SvG0Qfq@*o7sNts9ZBD
zFm$9!t_Q@GqLN{oYXwje-s0l-77FUxB>82;MALXn2n@FboxBXRX0JK6H(N8;0ubX+
z{T9<rUkh11MdOP@qQMr(Wq?j12t6~?54UuG1^klj2Tom~e3QIf^yY1$S#0(x6%db7
z!C1;}*oHt^w-%O1Spr{jurcFea>E?5@=BJcvO!QMirB3==#sJU%|~1|uw_2T>1d#U
z=Czrjc_B2nI4oCk2a2%6!dNcJ?DYT4Hl<h1a}H*;e@WD?S&^$5X8Afu*~^sl4QH>j
zoRjcFlw!+b&01$x23iL*s%f(kR#cj1GsA8*E+d7%sGPKM_;it_^()THKb4}wP#Zxm
z)r#6Yv5Z<y>)1v#Ev4!PZNux{S|O3e>)buES<Be${8@prNo!d4@vN1^;#N!6zFS#`
z^bMHJ%aAS+xEOu8bl^s_d<n=RxVIrX@~s20-{?~${=cYw__73my!e0Z@cnZ9zxL~E
z{Qs+bip2lp_0LNHSiG?L!(;$Nmxb5+#22MN#mKKY1Fty)>jwA>=M21t;$K7YUndm5
z)4Y^j#`XW)ApJ|T2EKJ%e~SSAYoPu$P`_;B?kv>$8u5RP_`f{j{~D+-9&~>V(|<2v
z`qv=+YmojmNdFq7e+|;V2I*ge^shns*C73Ckp4AD{~Dx!4bs1UihT;i|HV#9ZKUlI
z0rKj993C#!f2`H3_1F53U*)sbCBIqJCX)bWABeC!$~c(rKUAUPTQJHA$asKmtD+*_
z*Dog$#XC31t}Np4XZQY`A{~F?r@;PCc|Bf|0+hG^4-S_1fA#(0YyF?E@=0!FPXs}2
zZ(3%1+Qy62p5&9Y+57j4TwxjSnu66rJz!D&U-05m6+{xd1P$?WtIXs`Y{Mw6XEC;X
zoPo=(nA785zuSGgt51Rbzie=CT@Nh({9n%hJE&G(_y1S<?6CgVS|`i5uLG9lZ2E$t
zV0qxyRtWpntG)Uuu>XZC<fX;G3he*)m0y?kf2IEGtN#C0K0^QZaHcykGaQ#GF~oZg
zTZxOz$lKQv72^5VwEjRHvKJvw9a1*dC)gwi!(Fi=QP&~m8JZX9BVDuKgJ3AM|3zTo
z#R4E_{~y#350>};;bG-<|9_3oCY?MPcG|G>#jCN~Z2i@c(zjO;qUmmv^`6yd?b)9{
z^cQF(Ss>P8l1k{t!HWWlh5AI#tVRLILe$TAcbj)!^Kf>yuq^;D+rzx^KFkJ+6rEuD
z;cCg$OOIJ^o>CTsR9Ip=B$CfVucDKBJh~VQt_7av$8`%3J<YzE2z&*2Yni@WK#pyZ
zW1Q7z*|k@EUq^3Xr@}rZnLN9Bo^jV?m?!y)aKY}2E)ftvz!V$UIRaX<&%a6KeQ&W3
z;$0qrUc9DU5WA>DfsL61j(h=~$rlouynxc=E0UTNruFhAHh!sWiz{oz<$SkK($c-#
zFDhq}Ac~2WZ>?*6kDucDzkC<u1!h35{a;_M|6i-tUf+NEDxamT8cd*3P~(?3u3n<}
zXI<9%PW1oi#hHv3+gbmmugTF~X=4ba7}Relt_tk`IBD#qj=;SA|7(5O|6i-V*8l%H
zAL0Mwsi$k4fU60MZ^19S%Tav0OP^wPg5qDqsklPCB3{LejL)q^$h!T{4}zDw{8OJi
z|KG3G_sj3UzCU>N|9zFu=JQ{M1D%ji6sXuish!Fj!;o4yu%AT|%pz~##YsM2x(kEQ
zK^q+cnYZLh0Q&YxfJ2`g0d6)Xn%y0i4eahEFRR9FWZtU$)4@{%dw0>FAz`$dvOgbC
zFp0WN5f%U7w|Drz9GlRB^#<15u}jWiPvn87n`X=+Zf9bWm`VIyVmj<Q)=I!bW(*{r
zn`|^iRQ@ZPUDo`Tuq}Z%Z<aADMU?;qHKXUhQv*iB$pIFl7KG20xZMF<T)8U*^CcH?
zvTjF|K<Jy0B7p<ny<5}T$L12!FChSWKr1UG5#ocS`F#cCN(R#E2y*|U7p_|I5qJ(!
z)-W%<KJ`Vj-Io`vQrO5<FC;eB-U(PiE0xc=iqeA}&=5M})+Jf}D!?I?TQ(zeSo}Z(
z=n?L@O+ZNqp!HlBEy9;!y`W|$^2whgtdid?qyNQ=Q{XDw%7hJjok)+_#<9IwF>)rQ
zMX9uU?jPHpX?xSZ!0}JQ$vrZJWuED;_|v@<0d|lqL9nVnZAp!2%{Nf{%UlL&{l9D>
z$F-*(4$uyD%sl(Q@_zaK_k-%MuloO2`TPX>kWv(Q1W*jb(t}3}d0-OS4%_p<hsF#}
z5h?HeqwIUrS2y~P^hxi3wcTj-+GW?==@^^$|G}^IgTtl$U$58eulxUNe0~DTNmsd!
z68u3kR!YDra$L}~U_kfwe)<V?*$-yO&5pf2&9VtF*pEQe2PJ@7XbIRt!vVGj<~R(%
zdF&knhBy|>9C|-M0s1|(iOrNpu9q~xZ;94Y?Er(&XSxzH!DP;dT*dsKzwmJ9(f+=P
zjYumru)CjP_C%KdK1GJ**#>k<#7BmGXB$FU-T#S1!<80(z0!lgg}mi>ayr$^mH$=d
zf1cP>{G)rvru;wu{eMj0*fYfBYe*sz^_?)bm^BRi&~d<BfL%VN&LN0zMuGrMZ9;?j
zI}j<-2tZ(BW0v?)nzA4yOk#6NpN%v?@eFwjxV?GjkcY#e!>D(M9S1+M4(vzUBQy}p
zOGKC7EEJ&aiOB##M^xC_=LnUkg-Z92w8Zf#3EX8k;cXf8;0yu6=0!0O3m}#@HL2UJ
z!Ya4GhXHgEXD~tLhQkBK)P6wD{GA{<^fH;1!2^#rwGykvo#cK<EMQZHC?~QX*bk7R
z#X5W?vNGfuVOQIgIP!1TOnQz(U_g1e|7B+%sV4c;*SQhKQMp|yh`6ZLcq<Bo0emN#
z^6FxQ*Z$&8@LK>40|#tOXTEWFH+&!Tg^vuhFnI@jZXp1P|MKsk5ln0vK#BvvbZ;S2
zm$pRI*Y?D&fG%1XA^>Jd-i0tM0|j#mK+23y#sCpKH*~1&JL~(B>>=N=@8;mqb{ya#
zWb$om!2m7VCZ;t(24s}6DX<C8H1{zf_QXle&BeSs^Z@o!-E9v*zyyGkz@WUx4~-K<
zX~b##paKKwlN9F@p~z>0@{=V%rX;}6LA)MOZ*h_dL1R+_q%~az4b!w4&q0T6A3i?`
z6gmViAm8BtxX^>s7$Wzy#D+OA5wG^jH^MJXwME{(1CN$%SZfZk2sB}vO6HEg132I#
zh5j^vj2rh&<e&u&)D|i4?N!U5=`b=TAsb1^J{D)s?Je6CL>Q(3{5zQ16d1g3v_Ypf
zwZh3_bK0J<pEwF5%`pPES1Yrn@TN$J2<hMgrXBEvqB&di{Y6P}vd`GQ#Oc2VC&L68
z17?FrPQyaR42Kjv)XLRzB}R}j4qH`8Gk$uju_SmQ=RDYu|Hb$4Lavne_7c<i_r=cu
znkI;AJF&eG(VI0%2t@H~s;hJ?MRVz<@rf0-)nC*W+1oo#a8n-VLEwe%1O-ek=JRtz
z8AdH3HX;oVXc3_e$3`9%q9fY+)WSsaE|aPes(=X;CN5&IYZ3ObNu)T!lnET{B5<oB
zXwGlTdwW7u0~7O~nJmiKphSpBIrjuo;1{t?4IBiB`21;Vic`l)rf>BY5X6tl+dJqG
zbjwfB+f8w(EqW|MKg*rozKaju=)8=MH9i}D`XfMQw(koiT54Qe$10WB4<#co$t{;O
zF;hpYWnkBZo>^XDF}4L(Hxo`QbF^8wYQg>tg!_!kb>PlR(cix${%wonjW^*d#8nsz
zV}jlu?d^4NAdau2jGY!AE(>tUJ(t!t#D<FD2@M_m0tpFSsZ;|CJ|M0Iu|qFgxC-s*
zc2PVuf`7YSZMt>m(Z9>+3A(<6*yg`|`=xUNr4r+g4Vuq?W)Ho;ivKFCxc=#X@-n)d
ze*gFfQ#bzck0Yrdfk&HIk#fXHhMs&B*i3FiCm|`{@s}2uK65K3ax2*67MWAI6PU>4
z+F7Y&q6g&Mf;$IJR~b>~r}(ly@Vzl&Ig{Ut^)20jWeqig_vQ3wjX3m3ir-Q=jTB_t
zBep5p@KNt<2a)7TmDvG`A}Nvb4Q%BVhz5_|3`v)t0b-2ASIk!A|95Oc#dxs+C`G%J
ze6ba60y7M_!k3Vh<-NU;g*=IPbabww{tmcF6`fI+&jdeuK)V<K0|iw05fEqI8JfrP
zG@6r$9)SQ-3k5>?P5$f$s5C_$3Lr%$Q;SI%urrM}`Yly_<e$I%l=}N^OpXb1@FQ2y
z5dxO@XVQ<b9j-}ZB5NjyhTN0P>=8^s2ZzjRjLk{*{Xyjbh;SJ&u!;CUjJ?^xi`de!
zFHG!0+Y|qem1Kr5R|(?f;He%$6G7rc0(ztwFDpY!KX6@$A6F(u!YmO=HCh~%l09H7
z9%PF$I7WBOUSazy>J_(o2ZB&6<iZq=wgcmorBRNSR79rg8q@*M_nkT0>Fg}t=bQV#
zz+!i6Dfo{t@Hi(EzP}B|Fl;=@^1`ie9)a7DXn3?V46$(Nn5=0?IIk`AJQ2O;iUP7Z
zqefk2noy}k-~*CXA((-Z0?h<M67Q5@%T;v2&ani>6p@8{;PLUXT+jlM5XjsA`S1Ui
zGZpaAW4v_y8&4`b(21A953qsEFhHc7#V0br$Ip-C%0*yr7gG85hy#cqpsaIfd9k^G
zkKnEz4k>UM`c+YIc}fo(#k1Gi5i7r?s1p4sOwo<x$w1ayJ>ED@$wMSSE`DI<h&;TL
zrv-L>>@gz{Ktix#b6#CJ*Tqrf@Ggn(%WLK*q{GVB5wuuh2*ehqH_-6%cU&5*+vAdA
z8#cL3Vk&U^M)ru+nAj%aQfAqriH_IkOoc{(iJ)WbN+D&?7t=zX*q2F3n{6a<y#jjN
z?3f|sbNZ(GVJ;~$ZA-CB8CitLN}GzD8CCgPFLF?2xTa#Wj*S=rbJurRjJ!-0&Mm^2
zGFK-2F1hm3$P~V=*efNY0ZA*X3>t)=2!z|&2~{CFIWrK9q6*^8FrkNKf=;=lc&s)|
zvTEWaikDO_nu)#t`S1U;!nh#xsO{`*1qX-;^yMY7S9B=yg>GOuL@62~qXXH0D_nEz
zxHb`mwj%^RNSCDBOP{A)Qj&x&8S9!8C#6`*g;^W+5_X2%9(E8bOhSDx@9p&?Sl}~g
zAz}o!&-FI;7jL>(DwV)z5dU{C=@9UEq~kN!2Do7&@yWnMzKDP*JE9X$I)cxj5mFp0
znko1*+cP8h{4v1w@KX+lQep%?UNkrxZt+ukE|E2P%O}6lZn#TXO$;b^eyqYvJ**MU
zL_WyD7}vEO$0p)|n$7N5zVjcUO@%4}NN5;{kh{>4n26Ut0KDUpmaV)uMQrkN$8&EP
zbeQrRa5}uNR4SDe%88e#7_Mzku;CgaaIaUwvSYn}CQ(*l!dbqaJiNw!awuMvpZl<5
z5|@EaBoeoY(*3t!VtX){Gn+)Z3vW>n;GpE-X~|&*`Vo*VrG$vfN^xB#iHz7@W#rMo
zM&vdd<EX@cw2Tg(0zS?%S0;lWpFwqRbL2+=6K<Qt>s@O(ooAdeIxK5aE2D6`S+X3Q
zZrVG%Irt2Or+O9A;_0pkAdg=9qMSiwt8IeZy;Csl2Z$_hJ4yO=l4P-F+%i~-xu>bJ
zUXI8?64fc9v62NV))Qz^at?e3|N0{fcEmdpuKaU#8jM)tkhh;1pNq}A<X+$>*rLzE
z>5YvS99k*h`&osl_u~o1HO1w@#gJ#m5SvJxi;$Sk49!UvQ5J;@7)2T}45{Dn<W(j-
z(36h|Viw=x99uo9nXD;;4nH5`1MvZQLJdhO<lHMn<{pJlg4A&y10Ry1`rAKKs4mq~
ziWYDJ33`7}LY{$5WUlxrmi-f_n${o0UW%?LX(f|6kogY4C3gxz&RvPvQ;+F<3Ai@l
zj9!*n_|ZT90lHK~f|w$XJd?YAr9KrUE5xp!1Sq~Eij7)cN01qsZ=gq(pC(O*#3XVl
z!l1>o-)7D;G|!qV`+D8HL}EuYHJRqY_3+{zsq{>>*lX#Agi2Lz$qRFb0~gXGaQnaG
zv+=+7`M>|`mY;GafCNAfz(vwTA|*xW)>){nCaA11^>Qd@d65@7C8MQ+z4Y0)d^d25
zU4kA^Fpq@l{!nDQ4}`;xsSILeEl7Cp$PSu>lvx3CX=1jCBXlvoQBa>C`i_rBLc`iH
z9FanX>r;~e!5R0<KuVG8bBhvjM}<vdX26~&yqUSADYjq!P850RPTMh!zO(JQx}BEy
z=L%QlY|!Kz#<3oSO%zvB;Z*f8n*%!lxMj3KabwDT#<@;W;MyM78BPLdpnmd&%~;u7
zGy+rBN<PH7LBZnZ`)5#3E1!v%kz?42$C5XK%R1_#7ms7*FM0tvAJP&X<U__0py*xW
ztuaczh?xc^U&-7WV)|JN2D6)f=%T=)FM$jeDFp(<g*$F*!X@9UkNGrC@`zr$-{eO~
zxek_$t3<(Xp?301ben9chL@@>zEHJeA1=2>(C;C1*k%`=Cf1S*k_nOsF(GqFEfhT3
z1g%XJ;Ue}9+8mTL#I@{sV$Ye2=m6o)uCxbqf*kBkc>)_H5}^{X%cv}J1lag*lH?G#
zh(r)Ip5yAQ(&!{pTw+Wj-)~ALrzNzCLyGpb=$6_biq55`Ak$&;(TyT>v40ZZC5s$H
z=I~xRL3gE~J7Wk1Jw}t0VPhOpCem+LM~_0z@hKt?NF*hwOu-PeUo^5ku$CpW{R-(P
z6gir4awWy$q8uke9Ck!;df+0PYTbU}-O;Mk{WEy;X0JdJQRJJ+%voY!MDE23prv<}
z5`g6MO!3XeY^r2E_>=&`PW|LlP}t)J9ymCtCp|*B^UEH5{o^AHg(m-(utPK67g?s#
zpM(!%xmd6Akr7F`ER1+en<vc4P?7++l)|v;SI+imEs6B>%V3E$l61)MaDeEsF}7Xg
zAn(!=W$8~YQn;41R;*-`F8LZLKNCz7K;U3;!vegKZWGb$O(YDL(+-5cPxgt^@ZvL~
zR;jEe6?pR~seo&bccCLRTUj>_$oEWn5Sp#aMvvd-iRo&W&24~WxIkCC44h~ZVHV@R
zl-d%_F_TME<l|B!O|Vs;ZtC9olKc>?KxjDmB#`16#fx8frhlW~&6F$4Z<Wd!3*(3F
z{YM@@${Z(q7@4ntxy#`*_)z&!Sv%t5HPeWTy8VX((CzOxyDb$=9Bj-;#6G;S@Odpl
z1-a;y!2q#6NKqn?7{Q;5KrH9-YVFr@rCceewI4sQF@JzQI>I99&`<tQKxJDoF4Co#
zlOhmCH8K*uyd3B&>zXVv8LRnopSyq)&}F*Edi9k7Pu9fE93-<KZ|t<qtkx?D7C}hZ
zk{8&34m;2I7Ltxhkzp(~tZrXmWk4qrofmtgV{BH$aYj+-#QXv%Z@8~aYb~I3!Qc4E
zVK^F~+Xv7zId-wT7()|GWQR3kCB5cR261xrZe^04gF};PpAWW)0-<zEKQy40O~4(3
zGz?INLX%ObGY;KIZ*(k+yZw!ZQG!TIwozWy;b_Ee9|WQd@h@yYzZE(#kK;30Auh2%
z9@6`^L|ik!b@7=5W!8sZGRhejiV8%^UEZp^Brp(3mUUr)HN}&c<D#dU))%KwG4@$2
z{Zf^dBT6rz7m@@^$Jg3A#}W8QL5oWAMpKA~-HP!dFt;1_Vn#veMTnAplbY@BrcZK~
zaImvAB$<mi*kT$72lX82+pOc@ixzV8N-kHN&RNPG5Fxs8n<I{ZEEb%r>~OCxBbR#I
zXciJ;8}IyPA;ewLG7QOYqAlH=HUeZafdw5>mNh4Zgho$HI&QplDKBM-WWv?8T3-)}
zp(^gC3PAB0F0<^#m{M20TlG9h7rwVRK_dtote6`dikb1Ni>Zs&LR*r3S76G--{?3<
z4jV1_az;mi_wR4t<@QL_K)Q`|_S?nV_2QvqiRCSi`OjaFY_f=wu5VUeJ1T`UM3@q4
zFg{{bd_V$Io<f(ca~B~GGq0puD{=K?X`{s^FxS|Vx<|ZRt7%Qi1d-SRi`Uedms8sK
zGHXRc%V4p{Kok>-+#4&LyW~yaj)V;VLc*6&bRR`-;7E8fQcJZfGO%p|U{b8`(W8(R
z$9|KsWs@}Ql~7Syh$osaX@Z-CTQ2i|1{;{6n<y0)kubVlELNAS^N8~#GPXk?IPRX5
zx_v<Agd(>bY0Ywo)Q{iy(r+P#)5R1M&Jythh~B*9#=!%&&4puNIaHF^Q#l0L=~N3z
zmh{Vv7uc9Z$K`sSisk1!E@L(xgNxzc3BG`l5oOHy>F%V-Sq3jyon;!ZnQy<TiW&S%
z_-@QU^Rc<58=<)pcg+Bq;XZ(I;&-Mep)mN2i^pk=JXxf|#b)TlcLB2<(yPwV?3>E#
zM`>ZQlab7HLhDjK>(Yot0J`w0C6bpJ)E<0FL`xg3UQ6UXd(!<~-3)1jgP9Bpry+4i
zXClT&apWK1{=m3hv#$dK2PiJg;X=c*y^Rw<u1s@P8$BTY0>pks@+Ke&T~71fF&pZz
z@*ixRy8t2HKFaNnv-ofTK2&<gvJ{33*@#P<4w~~dKIrK34K!_!>y@&kFSw1o+PwE0
zd49(~NB0WjtZU)r=ckWw;aZSzmkpCW@!c4HAx-3COF<ma&@YQ?HCzXdZ$gUO8WCQ8
zfG4Y-&gD~+dyqo1c2;Y|^MX9to`z`HY=9psAF3JAp9@HlXUuzu2DZT&EDi#(W=2#7
zz!B|$D;mmTB7_DAx+H0&`T=$kwNOYRMJTab5>>*vGkQVA$cz*7UIoHfLHL%$x~1~?
zW2_|C_2cd`Hz<KZ0(3;i1R8Njf^8%tfWGjGOZW`T$7;2nf<g=nxy#duogm`ZDBE5p
zw#po=IO>qVH@Rf|MXl6Oshq6EX}TXDz%c1K(=G<mF6Fsqi4;!mJCqh~q>}NgzJ|QW
zm4%Wp8PaKFQ9PR8jA6zQ+55-B&rV9VAs+kY_r2qx?&6yy>+eYe?1Aoa4>Y+8v@a?j
zhy-ia;kSu{r@+UArtf?%vZ`5wwW-x5d*YV3ceNyoDrDaG`PN1DzT;22{v-5#E`nXO
z%Nme5^<QhhzOOFVe?6$YzW@AHKI`j0iaT+?t^0YgUyI$(7W*<G)?_$@XLKTuqQDPq
zg8t{f{~vLE*>-&g@iG<B*_B<bZV}&QhGpU~SsD)d++GvXPRuRa9Rj^%TUiw-^oXcL
z7GI_H%#`-viE|<qHd+*oV^TT8`qP#JP0@vY2nfETk1$yNJ^Rijzhwq27?`{ZJDs?=
z&F-7@^R(={I}{*~rrXAauYegh$h=*YTq8!-uEYxxeva|wc(=j#6eaHo;_~!Zo>&*V
zwbF68y}h+JEgx|(lWx%oj!PFV@dW!*D%K>@2|W`AW(-kA;)r<6fg+EVCXgL=0S>uI
z&r@J72K$4-MKaO0ytkLWmrKwC3ZS!wH=|K_0P+Fa4%gKn;fv#uq*k%aH^N(!urB58
zQm}eosSLVaY&9}?j7Q(CzpWaRCP8&J=MkC^Y|IdS2c~Mj`3`8!J|9+Z_0t=RAM6W6
zSer%yRTCS0UJinRCk|;i!J)_@SzK>gkjFFQ%UV(n_z|l$vU0%_1S>Mnl|0G<-YLyO
zbLl<g%Amn7L-U0Hcmgr|E-&6YaTx#-Kt+xNAiiVMn6seyz&PE^W<Dmjn*Dcz?1B$d
zNq9@k7FjtlUS$B5b)oe6&&v?3Jbd$M@vhB_o`lLd{}0)})9=4kU+X`ArBCuf2k6@i
z@soJVLB3*;%9L!y<^NJoJ)~YN2LL2?U1^HEGSdrq^;Q&c;PInxmGS|v(a7yY8+)4V
zB0{0-9|13PocP^@1S_sS&?Fu<2Vg3mOvrk{iCbF&H8HJ5{{l~$#NyvMHlgR~?=QrQ
z836cB7(nMJ{mK*IRUkqK28kc`K%A7MdovF|dL0`%COMMUD*(j6J~~<?8k^#k4zeIz
z^seMXb%H3Y^6!AKL*bG93jpjRuhH)g>w~2q05BKT1QN4}%9x4vv9lrmohQO2p!fmy
zQ9$j8XwfIZH>vNJ#{HQgCyQ8!I!$7DIag%L83`XIzjEk{OUg;L5A!EI%0NhD5|u0B
zsU`vC*A%Co{TxG!&rbf99R;>0BU#*>eaB^|3+Es}3@!-01O!=`0rW7h^?8SnlBH0i
zU14C?4LzIA#Y36)B&0YX`@AmQKC!1I7#Nn#ST79FKJ@L<A}@xNUGt~-K>2xzeBu#7
zLIc~Irhek=x{=n5ak<c!-DQ?sOwzb~PkW#()Co>@LE%MHvLH4il<nPdCz?$b#l&NO
zLNe<voVYe6i(+0BmqC*Y1zuc=N4!n0mNcP@oF<Q(|H-6g6eT4_zT(7A%CyxEf?BDc
zBGI#Ub>ba1@R5<)3nn7G#4MqZa;-TnlJfT=ka8AzboGbL-PlLoyUY9y0OW=4y5IO4
zYQ7VCvkeVkU=Vw1(G5*xpmsxxkf5L>3%zY<HVu4Z&ChF>I{FAQd=f3z%{Ui|3!gr@
zh!8kMpNRd8)&cUxt1Cy~|NiB-YU$%YKmS%O9scvT3j62#-zuepf4-gl`<Eagx8T-D
zd_BDbkSIOVHoUfNoVCx|wr$(CZR4zM+qP}nw(;$AzxDr9Q<Ir1olMVEbt=i#=_H9!
zf4|kN<L6ZD>pt=FtWfqSOFFNWs<6LSX}sUg%*<x=coVi;wxE1$u1WRyLaK^Bob2k3
zZp2aHUHCNNf=lleqj6Dq(+qTH(pvhAzouUh9LL{|Ow^FW?V^m`K%M{GY3F5K{4~9P
zynz1_TB;YJ|HqR&J^rMkx)%LJT7prX_q=ile#mksr7wPeLCm_Ad`7lG^h|0%^D!aG
zOsO*NF2T4l1An71@>w<fQQ;H#dvqfdL(770t7=Ta!XkW)<xL@*0|am{cjw_vp-Lm2
zxG%X|Yh3j3L~u_wz@s&6^V)?#$qr?Oq<cp@4we*=*Ck%CMY7%oo1I{rFKntqffA~7
zCX?*}x#Wn-0Rz-JxhLsW`3KLBf#D=mlz!yd<ZT&#W_Hx(kz_b>7Q8-0Hatj00E(D#
z@w4(u*JwUGY!dXbm~i1)*9>qCB!$O|?NhB>C8E)zCvUFcD(y8ssk~`mK$=BW%zjMB
z>C0rlhTHH%kYe=^GF6FJ={z{@TMp(-pq2+MP?<{TUV1T8#^T9>@NY1dwMIP1b`P3m
zGvwXS<2k6G_v=&cYFvijkf4o4kU)V`j|`L@I!f2ZDCNQ!DV-Y7(m83YKlfH63iQ79
z{iymg?w6BoV&>X3%T<nBq4Z-cw)K7_==6n2vZt0kZ^V_fq!8C@^RpYZgI_+l*z%d^
zoM~Wo<CNUKqS#q@-3ECadJfX-8?S)gAK;8;R&5ot22Un0Gc^b<2Ie&E>|hUELF6F3
zKVXlME)WQ*lN1qiREt$jZiKXclZSrO9&j=)moDIXK+%}?1a)$EJng0rOa{;RHvK3U
zSm;G`Tpa@Esjs7&;%_(vdNO}q5FQ;gI(|Dp_E&-e_v|b{Gcd;#8g!(5^jGMIrJi%4
zW%?xlvA%B;H?rE-n8;z5Ivc?49`dyn@WB0yQiYJXL#|NH_@j#j#gl|>eA`JHz56K|
z5%g~}Uy|222!Rhy$xMwzaulRaNphW9l=`R_fqfLDN(Pf2ITjkeJsQ<EprqSn%Rp*%
zXJn!&uJ~g4iz4(G&x=6O{0$pNH2{2p<KW6I0z$jJ5B+bHZfyOLp3YE!=H=*F#Bj)W
z9`cRtpE^SHd;y?-L>Lx#76>4nHtk;ssL0e{(@<TQ46Jo&nO6LEqp9@zrX6`1ty&G_
z6;Hx?&FamDR`-#kWY(~|0GZ9$RjZgPud}GCu=;#2H+H+pQeyg2l%)6(c$E}tV}A@c
zfc7w}=Z!U66%B4sjn-~<TTwP_N=}GFCv-nvbz*nGu{kfaL+4COMCqLL<aXJ%OrBb+
zYBl3DDIhfMY`cFDt%~enI#SScWEOoM6i*bcm>X$0pRmv?bvv4@dzxK5+JsAd1g#&}
zH8j5#<(7u0O7sr|Y<mhhZ(hZ%a~f+thCW!qEl!RKa9P2wUM{Tn|9y9b%v+eHoKKOt
zKr}Axa|?gST6FB#m~Bu?7|wnyc6M^zH1j^uYHrE6W=xNuM<2flyXH1&=Cp6fDZ{LG
zU%M_@4<~-nu8)Viv^%$;*Iq_aELfOD%aVBrZsp5rn(H*TkB^~oheY$gC{S$YEp(Y#
zvVPI9AY9yu-{@+wG^dK^FO*c@pS{*QH!xG#c8u0*)>JX4mqc4P#}q&DJ}pUJ)w`=t
z?rS(HZUlZ8F_`&cnZZiqquhA2v??{Db#^X5x2C>eGs$jr4NDryQ!nYvt6S@yUHLbY
zz<0hTxrJ9AdpdV$*PU)&KQ+;@{iCJLfVHlm={((7plh`0$+O5o`P$z<Vk3{%`2hVO
z1?0PFTC#aK!m#qSqIs{+dLc24O!Uw+Z`k|+J?y|S3wUbA{gAM&V9fzbUsslCzOH0p
zT9)Qi-q;AkTaz|#(ac$2iPlkFORy$lpS9GojcvH>u;!&7lbsT&**VR&^0$&-(Oi60
zd{CHMk7zDJ(dTZ-LcVC=ZqR<AZRW97%h?Z=)|WIfWig}8B}ZUFu+NPy1I*1OX{Qhd
zK#@iU7&`sO%P%EK+AfIqme1bC(p2)+>?JRV>#-Uv1L)c9=ct!qKXkJ5fE1gMlfTRm
zhYpV;6v-yvQh&kkZ&Y?@%9+_VQ)p+|ZP=VUavX_Kam9LUPR)vbGy8*iNP8^d4yb3a
z3t+C|7Z#ia6eALsguzRvTeSN^4wvtXufii4fDTz?74E^G2Lr_czGjNFE2_{-^G*qx
zKclM*g|fY*IWOoiyMNEu2it^N;%D6kY9;PnOS9s4MKQ#~GDl>98g5@GN_o5<!}B@j
zjw(I3(0pLUOvE#(cL3Xw6{Yye<~9eQIjTYc#A`__UTJOHk>?3wu@tBa&$GCLUpZ4F
z@zlUQXX{;VaNi((DG~64SbRrT2IbrDK9R%nAtLbt@9W@A_kQX!m<VpR_dIFEXoZt7
z4}x9-4H=H_yy3uy6%_Qxv10Eq+Mj0KmUFyidu%Y<BfoI2;`+0klPujA9_e($CPo0@
z;l8^MO|zf$%0OLE_~{ggarET_lAcOJYZV*Ul^rP`0~1O-=uby^90>WSzUC^Y@Jey1
zwj#nn|Fa~&o9+#m!L|t#0l#)Efo!3@O|@@*__ckuc{suQ34=Y?B0v?5uA*71HP}A@
zaX~I@RiQx})3}Z>0hWgSIOy=}{(z3uRhfC6iLN*esRSu}^D?z;&oVU~JIGDsOVkj|
zlHugl?#+Dn_|9ddTU;|wl8Eex83vf;l$7vwt~MD$H(lujVzz@3=vhpR8LP&`NV9p~
z`9lQZ;kr&ud87K-4Bzjb$)6|X;*SE_0vICOZi8?1?42FCP!!qLb!2dDk7+IBV0&ih
zEQRxzqow+-(&RV=vq`Wz<C&Z2OE9J$^{|jjCG$8#vDuG6Z8`Pr<WXJN3=~W9$RJxA
zHM_ky*HGX<Rpgl!vIr~`Jbpl2K6F^C2rQ+f=(X_b{oayI7QE;CCZOfgT%f*VO)>Wm
z4Hxh@+33_1cyc|?D5e84VV4GEgAq(@!rCdV1D}-$pFM1mjq*3)FGfvwQv(O*mflvg
z)1ZC<{tjEy#6$F93Uaa>uMw6@ucyyB7b##c&UjzM%8A}dTDLYBdfPRZyz#`{YGTP#
z>(%+-a@xb20)r25?l%{N6o^X?U?aVm%}dNErkYc|4~HR400Eq0eXp~iduH}#F#XzZ
zp3m5d2@<7%;ptgVK7Vgky1m})b$5mKUPPTm`>@hrM<WONPuX>M$R3i}9-KqgfbHW{
z<-W9FenRheI*Om)*54efU+-!hbxm8uPbz~&UoRpQ=OMD=2)Zvzd|?RfLf`S=ENv!R
zo-H!6BH`*E4rhsiAca7#S&G19Qfg8+zg>XAy8-_<O@2OG+-&h)(`A`-c*u}s*jr@k
z$QjI~-z82Z^jPIT`A-K_1-z7CBR^Pd4qy|SRj2L(@3@YEwQp|yjh7L}Ta?zsY|f~-
zKi*<tUw$msKc7S7<f8ZEu=4;OgQ0z-x-Jymp!fIgjz)o7Nyv%4U?>WUo0l$BP{^YO
zVp4t7r%kKFpTryNLJ`HPDE1L3PLWne7!;>iYyAwUI?-8);2g1b*}6YPAY6}ema(?Z
z)ZXe2{l8xL%cmoW`E!%sA;YNDNIkTaiZIZa4LqbtXV7o_l{A35!Q`otm62HkD#H9l
zSp!SJrYV12k87V=bPBy*c5mp^bG&N%nk5xMi0|q|XW<N)ea%Y@TVYd<6JI<V_ihA6
z&IX<sCyN$Q+{yhcvv7oC04OY%!anR|a0>jCDe<oiP%3L`ZebEu{_^-}>1JUO-)JjQ
zW!UPV7>E8Lt#jLYdcUsb8*8eutYmy>X}fGc^SJMQbtp(Zsny-t`Z`moHQL3O^~?b4
zmcIv{Y;5f*0275^u@aNdPQ2h8Gv8H)H7KwMWd_0hO!YCRSQ%U=RiZjFl`n#{N-6v|
zXzE(T0;Nh#%~lI4zT(7@@vM%d!=ryCFzb@jOcg?dG`#&hUHAKMy#(DSE^zu)l$%>u
z+MfVi@{|gW03&u7xA)H>0Gclj{LbC`iii&b6r03(Yqc?~V77`0(X$HZ04Aywoa(x@
z`-PG$wq06JTter4Tp>kjAo+gJp;veC;rv$R+KJ0+MTxH)rWQ@9=MhHe!A_seO&iOG
zqEBFKE~y38_*eqr<0AbaK;2c`vO?tQPa*iC%UM(|a<{h+W==0}#>n=V0AO^EXU0u!
zk2+{>WQEKUXf$w96EE%dZP0Bm%{S~)1)T(+0fC|KNW-&&UOv37t7muRZ=HWVJ)+O9
z7@wH?SDsNLYN@jd`>4-LGqDxDtJ!-&q*y`7$Q`rW|1Q6L${|*Z72hAa?uN9iL01Y>
zHLFg6(C0^>hC{o(*k7++dhGoU=`g0^Yy!bF7i{ru!tO9<2@dHlTH=1PatrmLjGz0D
zw$^qP#wL`%EmG}~cRkg(B5+aoA~2la_v=~^VLCe{B*yF`$QyU4$&b?DIEYpcK*(U{
zV|SW2rf6FTFa<_f+9a9>PE`+Ge^gAScDg;LEZz2(1is$2UTUMM*S?B>s6>=*f}LdJ
zu4clvY}IMJIyCk)RiJh_tbWqn<SM_=n5lYl{D@n2(Hst_FjjVoNM0=NO46;4Q@a1Y
z`gZo7oa^5nOv$4_y~>|Fv7%`2#5%elleV$x;k%QZZs_iTj2~>!u)SO$veJURA6RSi
zu2kF~T<c^z%)5AVobVKHwfZW!Q`gOumr5uA@EptoLS3?Dt|GPsyYOiQave6e4YVCS
zN&YU!OVZt34rZ!-pt@?y6TC90^1?tV1+n@79lt{*0G%>_xFW*j5-tPJaT(pAh~w;0
z-$=w8#(gsYmD<>N`y?6Nn#pmj3#7eq39tWKTX<Gmp{GKRzduda!w2Q6oPfj84JxVg
zOJT7%Xv$i_gJo1$+?fP(p<iM!TA?39iysPb_9)Y{TJ)6{bvG6CoB56yiLj6>0;Ymi
ze87bqA8CI;ViFp+UW!#iLY10far`yoeFOaSCfkAv_HD#QSc3%u&0SdsE95E4c0JEH
zkQ=_v(-A;=4RQ&V9*8FwquR3z3<H;q636OZgM_jP#wpu<)c2yj%qTYe;0i*ophMfG
zc6YMtS~@r8`N>HV1kffaFsLzUvwKA=iPc{Ef|Ucl!=yk7P$abqm~}!?40;#+g=sBY
z|46&+DoMi<3q=3RY>>wxYRP3xQM`@AdihME*564=ElgXh-xlHFD^Rr{)-W|f<3Z@;
zqobCF(B;fT7=PFhzgs4cStg6?kMWZiHp>fDqYmEH_|)Y?AUc%IK+AWZgF=q(kOxu<
zaXwrf@@!0K2BV}vb)9Pf9d8C!Tch}F(^&Kz4LAnlMWg=C*RxP2p(^h0@t$rJ889LL
zDSf4K1py`5co_IBmc5pdnz^|%P*TdMJsdd8!O;(XxfSm$t>xsUfHE5!@o8npnP8UE
zxv%mYnQ9C)Fd*Xfae&WB_gXF99m~Rrg0aYJ34#W{zTQ*JnX3(j@L$+U<%B7vG*8R;
zQb#yux{U@5W+I--R0T$=J0HF)D*x@~W20Mi%(cHQc3;Ca_MMmrnm5zYu2;=eg)F~1
z*|TGK*)(BSMOM#$FLv8BZ&bNlIF`(HnYHjdEx9}>m^(LJ7u~m2m{}{EYk6H$4h##o
zJeB2TpLR9pd#lhk$!1Avn|pV2{dkpG=FoEHEQUDDe{b4WbY1Jsb}8{RtxL3Qy;nAa
zr?jsd8D_CO0uIQjVzs-ht2Ej)5dPq?w4+BKL_V8ppFO{$TeHCY9BH-TP~<pXTU$vl
zYcuc>tGRR>KwldmZ}rWNp<j~wf&4pc2=0i7{Uq+6r8_dLB_VO85c-okgxep?|Gekq
zIzI314}POokPsNjRcXkVgQe2_!q-f-g$ikpYRm!#lLoYq5X{Z=atH1C4+?R({w9xp
z!uptiP0(ZvA}*ZELXgattkQ)dBtDX?S&?8m6vzO1__Bx-oY$w$XSe{yzlS}koh0Mt
z*={3`bmVy_HU$oivrWSHWU%&ztjcle?3L(V>((y->DPTzpVaRsCWQb5u`vwn;WMbu
z03(~w*2MEobgDN1@Z7M&PuLfeZ-75{?<0n$A6>7vZsym)Td~4#LjZ2}C=@R%5bseh
z{xI2pCJZLV-v6OHTyVew_hg{6z1FeD^<OVVPc@f6KTnY-Vcu-*z5YFV73RlbGY%0Q
z?^tkF;oIt2b~w=QIN;ySgJ#PXBvb?w&c!+X>FzA@3g<mdNXH+!P<=w`r)zh>kw%w=
zp2|QITRFc3F74AwF-f)Fm^1xKeJwuxPCq~|@;Eh5B)*;Y_EFo=yG4GzAW}cVzf^oA
zm`YRv&!jB!uIFowz02Go!&U)Z0uyVuZf-RIZ!^2VIJfm6ZPNeBu8yddO~dBB;Lk9J
zs}pU%>@Hh(L2%6ofPC1oowko3l-R~Z^Fq5QXbHA8US>1)z0UO-X6Ko%1TeQuM^aG`
zXyJ$#Ss()Z<MFv|UZqL{0AU5v;Xm3_dN|)xXU+Y<Kv@)CTER6&GIGv$OUAr_AlGeS
z*53-b&d}Hivybm@Y3v5!+jr5&?0`3fa;Yd);=Qsh*9Xb_N#IAvQe?QzKvso|Vf)gs
zj&ndquD~!RAr-$;OWS)DH^|HFwe+x%X8WtJjt+J*(A6#TvJQb8q5+V-MAM+;)%ZEC
zPGa#Dzz;A})?o+uKwT16u|FgnX90d`NxF!bO+_ph*i<?JQMSJy{D@viIJ1K>YmnlI
zS$r>-C121R&<~)K0k1?GjCY2BNU-n5MZFgjSpc3We-Ct#5F2yI8Ru(7d+D;ibF+Ff
z+P6LnEQ3g^hHD|#gQqcLDg(*ac&TO&zAaeG*f{C^7F_1w&Avq-X-LvSu5H?3ehxHx
z+uB%lqmTAM2~TfY5oZ1Qr~QNtvp?x~w*1~bc-R55B^vAkfZ*kYBqq1@1xisOOv5Bx
z_i_L51vb^J*bEuyeq!~_gZ9HYL7W@zv2G3x+<+n(<%^J<rjhvkkkq(;Z)FNxP$aHk
zhaiH@rn=hwhPbpzC1r^GXF?|cFp+J;!Y4uCJ1n&W$vULu>XG`{dvXXchwtekMey0n
z_~{tCD6lrE`!>7w$Fj|=`~IbXW{>k70+>mtuUP3r%Zc2<8@$>#wrlkKgl2_yHB|#J
zpwWnLCG^?J``=C0-v()y^nmBDL1s|YjD#@W>{{qR{9Ey5y8*>Q-g@>y=yo?!1K187
zven1#J{C5Q(lBH=&*@H~dxeo6GlrCG#v72<xVabUi8Qum`i{`y$>-uP0LDN=)0S;l
z?cVo_MZnt93mg_;sZnD+*{jnpi}~kkJ3TvD1)1+_7rMI$`GnnvOUXM54W%X!phM1C
zz9Lc1m*Lz~1P@x4D^AXq$pIBrO*eWpcl?r;w)QQC&!5;XTiciok>{<RFABNt7Rn68
z?0BPz=j!w2G6fNtd}Ph^iugoFD%PW5u}PQ}oB&C`gr<zI>k@!lKnJnhK6f#PSzlr_
z@K_tJ4s6&@y%YzaIdfAa^1@P)CYs%Bgu{JAtXnx7SUm?Yz`tc<R}2XRl*U_U9S!9X
z6jRiUxuho}@2m&Z1({$dk9v$)x3qOncb!j%;QPGI1qm*sW*#FZKsz*oyC244&HK|T
zw7Zs!l=gii&&kw!o`7_i{W(YEI&ZHrAsZfN1G)o3@E)*=o<oO*Xtob$NNuq;g7!RF
ztFdQ28Co(wIowNY9WOW4S92IU-mRaQaTXrV>|fuX`!LB49v<9pbLmd^2OVRwC+M|K
zDfm~StBDhlk*>&M9DKk)8#my+bMLV?GFPxKza_{#^C!Z&=R#doc~>!iZWj*cc~*Ho
zA198MWE;-TK;-@y5o>Gd<oMd!eodS`y&VN}rvtFe7pL3+%FCxPda4GT0D56b0TO+j
zZ#~{a#aVH@Ir-e3T|T~}Bt73BFjL=MZk?g>C9RFzm?Ty_+*}UqzC$tO3sHW!{kQ?9
zbK=wSHJluPYDMJiXpeEG{pxu^)ob;BGZ(scx-~QcU$V0DT=zBQ>(v13seL5_U*x=t
zdyca#t%|tW>u1$#EHTQWRRn5Hs%+6Kpiu-$D;E72=Ug@kuu+IzcBSe352sOorK}J3
zdU5-irc(-Xb#$W8kEBe(LN|H5Fs`ag0(y1#qH)%`dmIqIAeW{`3TESVVv&{zGZ$o0
zysDh<-=g(*n+$J<gIqC48HBPyZGP?vKsmHATHL%G37Ad0u}2tCUP<uu-#CUml8_ng
zRs;ECJ4L#2Em{dM53@ioaY2=G(hZi07PJF`MqKv}XtV=8-*Nen+BuLBxzm}d3S)}P
zGTxVfIYsbd$Np)vl>-N*zbLYX1sve|R*Q%0$}XF*+{^&}g0gUZ`?Cvya_m^Yj24dN
z8K4-h2OfY)X!d5zc3w&Ip4;LfkMt(|z(!LWj23ujY?U(bQ2%x%0|xEr@snSzK(oq}
z&-yf|qEW#*j-7~w!xl^Yz(hR>`;6uYuo#F4Y1x=_q8&fg+=IWJBo-!4I}U0&7|4Xs
z3?M)A+=3wfZIvTHoXq2)%Vc7Drf4D~oP>0B0Z2%6{)ru13vGknt%8MvZH=@+$@)_}
z%n5%hCAKoeu*RAUO&mZ$UehJk8D_*ny*g}M$vaCKpx=o?;>9Jne&;Esl^Go~yQ~2L
zkW>d)O0yGRu(|3%eO_<80ZX|t@MEe=mrOK-Xwol8jE7-tQlQ~C%9ydZm+!?flMV>M
z%<L~Hhzk3=j2pPn!T~=uLMxzny@{RT6IjV7WmHgjpw@Q%iGB1aDpWD?zzoaEuupRa
zk+p=>RC6MtsGtNa@B9=q_m#r~4`Dtg8_=(<fUKq9X7O-yDJF~yd+{)0exZ8Y*xy0;
zy3Cvox(T>iR$4H{Ts3yGmt-CDr$jraf(S4Qa<TgK?uy&)GS>wcuKpI+qt_2Z&;t!&
zT~2y>Ujs30-I(+77C|XLy_0se^6G9%lwez4dRhY}_1_<E3|R4*qmanOe+!U=;&cE(
z{|Ze3a!Jp|vfA<4|4^L0W&Zv57^UY#!kzeq`;(Aa5(E6K(1G?keaXc7K%E^w6hZvS
z1qnGicHTdeZ0M~pTgA6ZgV_tqH;T%$f-b`qRTNs+2<zC9{Msr{Mi!lT?H%j%;^?A!
zWfMv(Q!=E<&Yjz*Ba>O0-}kZTSKn7{Q&R6*kHufblEV3iP5R(Np$K!S#+ThVg`?g}
z$<B`dNS}d;9hW4DE)OcUg3&ez&GoPL6u)M0g%f}usW5yCE0@UYbcgYvI1W8e#60gV
zve-T5%Dr`(b#2H2r<bj7681Bng2VxND?b12p5ML5nK_0@kh)P79?aYE%D|ki@5jnq
zr0UQ2kKsp8i-Rt`1h1Y6JDQIinDI$h3G`~Kf7#(i=J?6k%8S58iZYi3jl|hXht$>W
zQC-}mc>gHHiMmswV+P*UYvuCcZ~L=Yt=g7aRlnJA(LlqiSyb)qg-C?8LWgsmpI|Nm
z+@I=I6mv(Na$r4yit5j;T*EPB#L0_(l&jE$X{eac6$yCLb`@SX#t<<OMI0Md#fWtn
zkj9w6lYmFfo-X_Yf}!TAS9(f2yVa7#=t$2=#2>X()hF7Iq{Cf|%2zv}fWrlq%@!>l
z!k#vm6mQv?N@G5p!UpK}S6k(%KK%tGRKEUInB0nS4y>c>SYWHPwYKN{Tm^WRdi%Mf
zU>x>4a>~VjoW8_>F&k8}zW=7+@F6*3>wDn*d$kXrGgVts^Dkbow{zrySYB$(cdm=d
zUIZu&=yJah_B!sTTnWS})cCd+tgec^z1V|tJC;wiN&ky(URX$ur_cE-b$mfTm<q}P
z(*U%B*T(`ag}TsKihL3^L;os&T<|48iFvt>4E~I6EO7gK&_ZT>lrS_)_ejNRQ_R5c
z!8$T>{}UP-diB%e?&$VfQgBefY6};u)9v$iE*nZ0tJB5(jm)tbJt{qpIkJ`m$68%M
zvx!WYDMCUG-ES^LSvY=o(o<_M1aA|Y?H!YF3nJ|>e0Co3H{BGFo#=r)-nNEI6EQ|`
zvMx1=O`Lqinz;_qh$%*#MI+AWlf8$K)g2|2I59Xyc?T~hb|iEL0gB;IgRUr5KbuYw
z8TlBAL8X#Q91F_I@EK!r0-sXHs9API;}uAGQUEi_^4TL1(HgaaBp(j_x8lRcM_5@|
z`mlS5VHW6HnlO}=#>ZZo+87G)rf4w4i#H$y>j*t^Lnf#aHORj!G#<fHv#5X$dBWSP
zIoQ3|QZ3BFWNkWMCX%tU$Ist*zRU2^6?w^E!Z3Fv{FL133%^m1CW2&2ILhsIA}XUZ
zmd960U$FZ!B|-)0jl#;i<NgH&3x!Q1>WaV^3pH!ygT=o_B^q?$r2HKYqcO(|HL%)B
zh$@Hzaf%oEsgy7bQ&g9ZV%OKQC{YhEM3sF5+9MXC@``2nGcN3&|BoQCmj0cOF(BVa
zMpg-6ajdWJ&;C&*#HqzUGQ=L<IAE^!G4`odelZ(yuipG22vh&R62N(4_`6J4;wH%K
zjKdYTzQ#jb23LVe+uGuAs)m}8{#5Vi=xhI|of9Ku^OdW&r>f=0{489S`kfV2SewmC
z$<q?0iZV@|NF)ixQ|HO|?qdmJ#QG5@Y*i3V@1I%qwH^mBq!07`Y#_!L5FC+W=G+5F
z-GuicO^i;YX*80eg&z8_HFXyNHaG;1<`*_NmtZoBh|MO0<7&x~4O0wd2E%M=#h=^E
zKBn@|Q{`7+SR%AF2SASvdb&**r7A}w02YN9AOG;dDwT*FvstCqHS@aB#4SL`rKK72
z0b=e#KrFj$KtXnnp>qxV)D}bATwz>8>QlFbQmoR>0Y|TBdUmch56hyZ34mu0HcmMx
zo)YEySr{|PdV3n8eB_b9N}Bh-hvEe7d78LTsC#F~^^gueLEtPBz-Ldz0@W{eG`zeL
z!*24T9^mnbeDD@lx&Q_x4LKps8eN}*)~^24#OgL*{iM|B_B=oT@SL8l{k*eXVwHdC
z0MJO65bZ|Qzc|t7jd@L>%l$0w!OgO1JU}e=aEp}i(Wu1g^2zRN18+0$Y6ElH!!9Pm
z?BkkMDL!L{pCh-?N{<vjOhwaSXEf~~8klF2<-kJPq1BqzU9NmZa8{Npzh9f8)@_j;
zzgJS0B|Ifc%#kHGC82)bn+szMK;MUB?zf*el=J?0Fuh;c_WULuUl~#L-(OQTp#=v!
z-Cv(Q)<8XY<dyQq*`oF{1LVzf{ft~WqJ3tlcV>BTeM75PO=MOFBd-!C5PPjN_0?FV
zyx~nmwsvg&{%Xnq+T?6sxFdHrnZKd=W_!?ZHGUp+>2z^^K3<5*$bCMlngWIGMMDLJ
z<)$m**Ct*-h~J>#H1P@9*L=^hq8~78hrT&|JRj?=f4aDypLcXl#n*iua72v2pLdjE
zZfPHEH5S*bfBxY(ulbs*9}i^sazh`rvy`v*8KIz2bc&x!3)mvr3=lJ&vU)!tn^9Xt
zrhAu5xKl2DEtG=;b?I8-=bc0y5D%)qcGB_lA=e=p;B6&r3kg78z1Pi?Mn75E9a<+v
zlXk%@ylqa}y6O;>u(EwF+Wv-@m$9EdlYqsNF`wiqGwt`7&cR1M;WEiNmaivJPZ!>z
zO$ar06-|a#`a$=IdKc@rU<J|uGWq&By*)iGE&9Rl@pxLk`1!~kDfsCDJ^R@@u*-1q
zTm3tMC1I`!#;=;d+>x88XpB#7K8&3*CPF@?Q7owX49-S$j?|>UUi*rvY^9>HziQ*)
zCfTP6wXIM)h19zzzXC#Y8DOEZm?#Y=&y2EkshzV4C^L(+!$MjYFWf-mzrZ;D>mRk>
z_`sIOT-CH_FiLZV+y1)ux!*Hqo}M3|?j&MrR)j<Wh>3n42{bLQm~A$pz&=%zQaGs+
zOPq;FEK-c+M-OY)Sr}Eoi{ItN$%BI*6Wfhjz*tm+dgpq2u*8m)2b~^=zT}ws>xv{w
zhY+h0bgWf)de|xVJ*+Kzs@9)sWlGoF!jB!zO~Z~J;nAE>K%!tx_HRn++KpI0j8uZf
ziQwl433rsWUnvr8e{>rueEp!9BAp&<(glThqUG~@{?_wmz(hF3KmDrxRHtfbkUZMF
zp3gT1X;6$WG0t1_nsh607fw`*W6=)vRTaJ=EU#doo*+#^!Y3C?S88u1TG!YVBV)^p
zw}ovNwQL*5wRo%nVv%hptPD|k8Ul~RqKD>rYMys4JA+)}@Mazh6Pzh6=aKubaWntI
z_?Eu5rOW~|uc?BCGWfo(g18y+gp>2Ee^p%l0s%o(S4kveKgWo=r@XCEDF*Rpj7bin
zif!!DimQ<U%7U;ed3|&XCgeT!{>zQ|Nw{kUBaOS@i@}g<pGX^o>(yUvBIf~T*=J8g
zWI(Kvk~5D}Mbn!LLWPj)78b|3#Sp;RrN!jy6zXB8Is~j#wT1$}&N%E>SbpMt$%MQI
zihN9tj#TkCFuLh;SYU*m8>9I@Bk!|ulhff&J>g#=h_or8>os#zT06#<KGRlOS=!UP
zQK@OC(4jW91W_#Bwc+2EH9>T<P`-$~o$kQ_B-3`i;=}JHQ5mse_LGk6p@R|e4oEtU
zQ#&U!*eaEuikD3B4Ciw-J=}^#3AZQn*C_b->+yT$2+prRLEeQd2I(|B6rEyqB%+a>
zZXxC!cRM4ZqP8phJv(^rKRZ09Wp6(mp@xQo&0juK_?$RCyrX}}JmP75bwwkXU3Jk7
zySBT9XYZe#4_%y|#V>E9yS#A&Sd==ece)m4IKMg<Y<pySV%*8SeS#e*?o-e(oW`**
z88r3ArG?sKOQ+CZU|tZhfqLl5XJhcjH9DlRE{X&`gh!%nc}kcVxjdlkCs*ryI#GAc
zk?YTYlq-+oQgTqzo_<nBY;~HSeg+C!c)nff9v2^fEZA&{A6$pu%403ly&0QZE-tf&
zX`H*E-h$0;*_0+IV@lGLXvvtSRo@Lq3XV<K#u}t3#f+13R!>kL44taKE1Bv^&@zg=
z;*rXNe?TMHG!QfY-of8}z!E}I;#CpnEt*Ya0d8$h+)pn-`I9R9o_}2LU`iLK(#g)M
zEfM~dbj&H;OljzHvd+cpXtB2rTLK$a-7XAy%;{_Env+|b{XrE4Y{FCUN?m~Y!ZGF=
zsZ($<W@PEsn#)|_9_Z{lgeA58do`jrzhA^@Rk(bY&9RaUnNJ+{5cjun+z_vbp5M{k
z@&L45Ga-r~Ah77Y@CmP<JnHy<iAcu^)X*ty@Fk42@YU~|+R>XzGzv&;TctOc3z~Y_
zoNq8VyHjU5;a;jv?*)tz=}&o#d1Rd@k20CukQ;W2IrN8s9VVq*jJ$}QTTh@L_?pwP
zWqUDt4$aKos_diK??Qt$8%r_=&TqRfACsGXS7nVZ-z8OI-jqP6D&R3|p=*~}TmB?k
zPaH6nxp)%{csl;z*3|5O%{_oq5Xc{=sAFrSMYXHbA^b>q4VaJ&^B0!2DRD<piFN`E
z-TLA!#F57@B6g@9JA$bBF1`9w8mkS77>vs+%_8a%Kza`sTxXejMdP1*j8f+yniuoo
z)Yp5%LpwK@@{Bv5D|9O*?7I0R(Sjl07b%uOj@>BZV!0^m!+;ZboJ2%y*U?tM)XEuC
zHt%VV-GJtk(gk+XRRUKkJzTsQrvu*%B#<1u$jJtO8rKaDZ}e_v-tM*Yz~F6gn5Cy@
zSg7>|*q>iIW-bqw-gZARA%A;wUWp7z6$S<T&GNQlTsdZ_fX8pjX-bR(!Y(Kiv7Wk?
zw)d61#S`5-!NkL8%=4+-9X;bT$eV?}UZlz6uv>TwL!SCjaI^$@rY>jFn~^>{dfQ=m
zIggw6!nwykWYS@f9aE!&xYtptR&X!6GCeEkzckNwD4Wd3fJK$UA4>p2p%oUevV4~c
z{sN`C?QD_jD7qwpZRw#h5+PK6d}(G@QXpn>g@qNA7>mOa9^u8ZiHkqTDn95>s_x<g
z7;4<JzzUt6N0pDJAPv_W<Hr++ou-gj4lJ5p6SkD-#@Y_-6F*P3Z{`zqyxVnGxEop4
zznAU0uSc8>%}2`{zKnYt%a35#(iIQzZpNFeYRS9pvuc6n-7K&vAn=`gxZ^(jnb6Bq
zfo-1*UU^meO;2#gZFe&5#Lh&U9T|?qvg+*1PptjYs=FSp0Z2*n;eQeg#Bi(k-zyad
ztd_5Ip>*D#H#(<fLqFB9BUAf+H52<uJY>FQzyX>))xuycY4N-+!VnM71HDz5p3x{a
z;!jJ#Fz7=Rw$~c&s#i1ch=HA`q1F}n*fF!uw%-ZGu2UW>mp<AJRqU%L1;J9vL_{n#
z<~zupG_K|c^(~Ky*Q5Q?^w`H3n)5cma7bgUTqw1jrWV%yaMpPz;}&<fs-8sKK8hLD
zwE<nJflzWDQ`F(}Nlu18YW0#kM<}Ll!fvs2&Cc69<MK_O@@NtjIWDvF$>@jF;G>v*
z6@AwKO3DF3hu>S1i!7?z|1FYBm*2bY=_%0%tY9-`=LUK06^RXGp?FYi9G-G83I(rf
zqr0c-pk`cz1ecnEfhQ}(1mNo2(_u^P1WN_NBcvL_Poy1?H$SqFlbed$O{OH0K*H3n
z!P@&)Ix;aGJ;T7bIZ2)m&(%BA8ucdoH^BjcV)G9~D_LsB6<r0Y$1C00*6mq?fWVdr
zoZcYb_;)zcS_HfQI(y`m(!=nCJ$eK4WebAOKPW`~MG4Ekxp4!z@;dZ;jz)M(Na)2N
zFIKg-CMJG)b$&3h^A{*<6bHmrKX&ERlBhQW_0SiAG>jOyv5QJ1kU+zS&{Yte036rc
zqeD(7URLyK2%`Et@_g_LNxFx~R;S3G#_0tmfT*_yD}Nmk5i5UJ;yG?N47`O$z<p!J
znY;|IJmGDjoK;+N#GGpTQ2cxRkkeA5)2%+>>*eirIph1xFMIV_V##LX0@8>#M(tZE
z>%WX#i3{RvN8)?K0o`tFU7GT=>B$YRk#cjvi6kNZS4UxZW&FMF4biKem{cNpx3%+r
z*yk&DXL#=2fA-DEvS{L<zX__iss`RZQ~7!V7`~q48tL>rey`l0clv%r{hQ5_cSQYS
zq4q`ynoU3YGSxaYlpPYuC3JJc^#sVe+6QCo-R1b>k{A0@Z|W!rVU#dR(ukdLk*eV%
zoZ-EQHBMeWbWt&0@&ZjADgtQ^sw7#3ufu*6m1;2-Bs8P~id#Y4y&8*z$)zRVu94bD
zbB|c!LCxB{eYKvT;Zo+lqX`fwI*Jt81>ae`k~glsLT}+;8mT(%EK`}c5yCmyIOO}?
zyN8BXvuofqZ7m~8n{)W@h`J`0Chnw_6m+yXLqkHVI{G&pTi7y=Vh?w)c!;213Eq`6
zWoAg8Jxgv!7+ukI79}!f*0AeqHfjnMyD&QuWxUWV)PQU`5mYbBQ?5i~OrRN>_sIg3
zB*kVZm)Dl!<6%inuJNL;d2YonF07Vlb%C%z1KDWHh05oxmgymFBwKt8;_pN;C2I>v
z0UNpo&+TDln+__bb4LE>WA3}9UhB+4^{UTo1hGgF2^v6KBkK%fpmET<hNh8aW7Fqt
zE{(UKVB}EXrpU{4hfMJnSR~=rp$?Y-@q`)65VT^202<vzz*6VA&hmQenT|I~fv7u}
zlp#2qL+*iyQ@yiU--`V%6dXQNEoxm&p7ewP;<H*&6NMjKL{4Nsc!sgf15B$JM<rNX
zaD5MQyXu7KJYcQ!g1qFqbPa7DX?ex@QLdZyhWwtDY@4Q{4a+nD^vGPdeK}yWDbT>g
z;sF?uNf<wP3MnwbONT#;A$gsFer!h3RQz^deFx`OxFh;?eBjkFlMvvvi!i5M+r?!7
zI^qh+;1XobDZlnz#PeZgfG3DkvzE59o@kd2<mOxM=oo08*+;dfHbBX=B2ytWYMTcz
zD(pQZrNc7}T;<%_Sk0-w_E&pt#|xWa)(?m3N48GvH5;F8RF{nM3owxIz_O08?$y0t
zCLH3U#PeT3F!2M2)?C#GwIj@811=HsOgJL2WkB9k3^~9>l28|SrM!nO#xDHxA^z!X
z9FUhe!k2IV*Ynxx7#61(*JVbz5?m|>PnV4=xllL<eeI5gMq6E<hhzS+P?iA7?M28?
zr+uv>dcL7`<5J1yQPmJri4F`v_&mS)nfQe<9<D`xiwaJPb^bL6TK34xl!+{8Q*)fO
z%v2Bi4y;?ozCe~$5?Of8dVZO4IQfuvN^r3turwYUj$Hs|<jYZ|Mn>0STE7B$_Q_nF
z<6Wgkh|SChyj}>`CJ7X4g8)tr{wFByXhLCNsXxLU4v~~tn`;pvu5J1H*$BeeuYxGB
zj}cZ%AAI2D`J#IwOG7&~CDT)N<)?ckmqgA@lpechyo+z;W{FR_bNDuI{J=Pk9>Jd3
zV%TD5*R4wxUK|cK`5fG^6yR(gtmQLHXPm7J=-{>axE=n^;?D+jZEg_G$6B935jdHH
z9>OtSkj@xX>v<b$Df)EWXZvEyX^z=hAJ`1Ea3)=(wPLQs8q`@_B_@Ol2T+iDG69g7
zoIW3QVNi~D5n`!>d}=g9J%t-3e7Kz{>FFLsqKZk0_f0w6!?XfQBDZX%Agco5_g8_@
z?K{Wd+de0pp5ERB7MxY^LQnpsBKQ8KJP1qi*?fg*@Ip-q|AA=l7AfF|!1DNQT)%nX
z`OkM(!1CC?K!@5}JFvWdH$P*8E*03EG*3>V)gTPOQf{)!k<eJbN`!iw!Vt!=yJ@6%
ziGwn1$+rkHE?tk;`d&euFrt%7|FKa*jg8(a&$GC}^&gN6(x>HHv*4bnLCQM!9`wH!
zL{ytFxs~iO`&B59Pe2C#8Q6X3qoPptO{4RACW0gUcJ#*XS*h#;ufW`1KueAM?N85M
z=9~_>g3@|qMZi|aK$6~_yVl}i>{Ha`*iNK2sQ)G{VgQY$#D|FyXv~g)AljH)8>4pZ
zDk><6#*(3vELXre2k~pUY&1(bm8&jZ7^l7weL)8rsSoR6*!@6(SQtTY^m8D^?Qym=
zn28^5BWy(~s&<c~1F8T{qNy{O3R9!wACT^YV=uEYRuY=?d734d^iP2_BS%y)rv&XC
zbNhS`2OFbZWS)Ph?v)m_zn*SIP!|!_@kL0j9{hx&{a9e-_yzSzo*0PT-Uc1)8=;}J
zkLcAEP#HYR5L1C-o7vn1+WX^&eqI1vklzwSFr~B`?wby|x}^4L&f;CN@X9}|CBuz~
zN3Ba(5zf@4ZbYICKgKPxN#9_J=posdR{?VoD-F;2hZ+3X3lds1L2V-wT{Ib|F15j!
zOs7Z5!yJdjSt8~MH8}v9T7a*{p*A}_H!GO6dbim7cbdvAAbfcK<y9cX%RPohX_9Xm
zK()*K*>j$-u?F<yM9Ej<+=;;Eek@wx4kTBlAKY`z;*6kg5Y>BLl(c!BnVy|VpnjdH
z(e2{0*yF{=?QuW4%X#6K#rkotn4P)zgg<Y<yj=@=s`NPz@$g|wGKIgr1kA>V+HJ$%
zSR3H*R5OLYu=?H8a)2WcA*;oD@mY@r(>k3WU^X8)8UcNH6MH~3gSNnC#AIi0X@Ms7
zA_HG_jV>j<$_#${s;`6F?S-fx^?7#-uhWyY$?f(!g3FCn$q9b@ORbphes@dT*z?vV
zn#-*P{N|b%e%qShzfw;e-2X#Z&`<h0B!8uT3v)8}K1<2v;dOR|erAMkEq$;eqrR~s
z)42aWeNPRFevzm9GR{eSPYL~)<Og@J9|8X6{@TrdfC2u_uMF5P@;}4bk$U{E%7y&@
z-tvFSA%AQJx&oUaBmX8;|7(H%)9E+Q+5@UuMHrsz>-STD7q9y|u9SIj*?%9JFCKQc
zJR4H}Kf&Aozd9ZSWyuR*d2fR9crSu-cp>LPG6eHuVEL+F%l!raPdmOvQQFx5tlZn{
zgKrV+jc<`wrTdz1(b~_of^{aer)NDde*wdY!$t<)Lgs?-QHR!JB-xsJZMlYJV0ndF
zD8HK>Fcmzm&NmPfk}f(Ci%G>w5Su0QN=(p&CNZAig7q}I-z~{KmZ2t5G>s1Gk^BMA
zxSKSVVMjStH0`E*yI_)av|zF&@`3yz8i;$mQ#9>`{NXr(>wkBlbnke^zY;GhC-TQ6
z?*FUh=XW<Id<^4lM7?dp2~VpxFxbK5m)l!kBa8i>2?G6aSq_ksuGq=f8_}8=c=(Lp
zbi`KI^Yf)kZs~w*M&v1y2g~Y1O=`sS$bv7y>j?&RFLuZaH!rS`zDqYgC<Xto`dkp=
zovYX}TkM-Sqp~5dn@<<9!+MHa14)$I6j%h(u)P*Y$GP&K^rffhAqK<)Y^0oANA3|>
zi3lLf@3$yBJQC>VPD1C#erSi{*Clqk<Yv+td`t?(Tt+M}G_HtGEbu?#@;DsmJ=~fr
z=*#R0a`&z|YCeiC(<Np;0mp16`2bfPmwwqciO8JMj-a?Y;R?y~$;VR7WEYm+dH$sc
z%jTI4bs8Da6v`@BC#I!}bd)4j$UHZu_$B7)@-jd?DwKp$QLYSCN&8IFb4sZGDom4x
z;Y0Jl3Ofj+YNM@+92F>p#v2HSQPa&tQrdBed=5dej0p;8_UT)!!SROIxphTOVWgxT
z)Zj};kFuWv>CDE32(qxnPa<*;u-eS*Q=`21<O@s~1*tf6>GxeY_|fp5#QSdg8eK;I
z*x?S^b_b+_=_7URi=|82mHSoBT1iekJ-J@xwaXQ;l*3)`4*{EK)y?Jl%k@<)v3iA_
z{OaqB$sqwv6G|vr;j0T6!HJhl5N6qSODum5q(UGej~XcC^1Q1f32lAQzA6o(jF{OZ
z@{Rljn&6F$5b3kG3J8b@#odAoA+_idYaE6V-;l&VeU)R#8`{0XYc+yXh;{O!20<7%
zM(42dONAsB7tn&^R&GoUN%|U^cP|Xk^UE*b$CU{#OWaZPs%`pxNS%9<H}+#!Ru<F|
zUs*-+ae_bTGW28)Qn$w*&vWttPnb0IeFDCpeaoL;XMlgB6n$oNw?M<0kUUhG(BIs>
z!^|OU<us+#HJPvp`-_>Wl@$iz8m5!pb^T=r?#Iwqju;mb@Cs*dC#07~>+g?dqdLdR
zGm{!N3%6Z@ib)J|D4PAeTA6u+9YgAe#1?(bMKGae{C;K?`i?(PTbmI2$0AblZ-t`U
zca9afDk=npBq>EozuM8cB`Saf$}YeL0*Z)qolA)IC9G^Z?%y}ZI3@*aSp1<i@%kw%
zQ|w)SSwCuG_vs%?Sy$><K5q)sLoICh6mc*3jk1{|<*=Axq{QH3tq7}&s&>c>%bZyP
z>}WsA;dfN(i(b`;QDW1~>S_rePL%CpsJwY1?g2gH<tke=`mR3v12zjBBanyXa_u&P
zbZ(}2@ul+j0S|d{xd3IJA`$q~$*eaG*n0DtO?^CSx^d%~dUDmXL6j8sqw@|HsFBl-
z4-4+=v^!U*2gp4&&q2Slhg)=Y|LKic=9bm4i)%(~b>o%2`&7v=$?n3W`0c025ZLWV
zxWUq}zl?C2X$F!7%_z!?U<%#aia0)@hM6Es^2ZR`vvE@9!x=>0H0GfK9yt=y!j^1H
zr(jPN?2k2(NaG<5qiu&=sF}+yF>SU>_4&m`FlN7V2h#2O>T?fGMdBuO8s<G&nvhx5
zPjkBOQo$OlK7srxO$jRKik$D)4A1~p4bmKz&HA=ec-0+hvc9<ZJq%8(R(7#dU{31k
zbEtcg2@Ns->KBDHxC>Q;jcJ%SnazaV&_F92S&NnTg1fioMC+OIYR$uWOATPMRLHgq
zcbN88JkM%GMYXq-t|yHl0#2!95TO||%d7Iuf=qtQ=KDCxQWVjs#Wx~Q3Z|wjGM6Yl
z-2=6xD)vVundHibEjJVPPb*b3)u(3C*C3M18f$Zt>*mGaD5)?DawwZr8`g$Ty<*fP
z0?hE@Z-Y7JsiY=Lc^(x@e!LT?3>(>+Xf?}w*e&F-rtW6HUqXwI-(s0&*2tmet?>ZT
zW_;n`cW|n5emc1yPk29aJ%EubYB@ZXWNph0gDk4zx*HM=a4EVf$jqE|g(Ra22)N%S
zE(QjG_3vX=xett#*@A`nVQ2o1L?S<Gy(<q*N}Gw9L_=g?_usXea~@EuW#^u_p?0&=
z!i66}%aa6V8dZ?Tldi*K!i^>wA;Ovx=ZcTY%wp#y+hZXc4=IPL<&1qndf+9<y*Kus
z1cS*a#>bgBghpeS9>E*&kol`2(3PrL4semqU<*svhlv8l$PUDj&gbcoKjgjlIDSXk
ztnUNqW&DWN=rkSwT%?5heBT78Kj3q15H7ss2|pZ;C6dX4z32RI&+#8D%8U<yKOg}A
E50zHOJ^%m!

literal 0
HcmV?d00001

diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/.helmignore b/charts/nginx-ingress/nginx-ingress/0.12.0/.helmignore
new file mode 100644
index 000000000..c1347c2c2
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/.helmignore
@@ -0,0 +1,2 @@
+# Patterns to ignore when building packages.
+*.png
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/Chart.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/Chart.yaml
new file mode 100644
index 000000000..35b9650ef
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/Chart.yaml
@@ -0,0 +1,20 @@
+annotations:
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: NGINX Ingress Controller
+  catalog.cattle.io/release-name: nginx-ingress-controller
+apiVersion: v1
+appVersion: 2.1.0
+description: NGINX Ingress Controller
+home: https://github.com/nginxinc/kubernetes-ingress
+icon: https://raw.githubusercontent.com/nginxinc/kubernetes-ingress/v2.1.0/deployments/helm-chart/chart-icon.png
+keywords:
+- ingress
+- nginx
+kubeVersion: 1.19 - 1.23
+maintainers:
+- email: kubernetes@nginx.com
+  name: nginxinc
+name: nginx-ingress
+sources:
+- https://github.com/nginxinc/kubernetes-ingress/tree/v2.1.0/deployments/helm-chart
+version: 0.12.0
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/README.md b/charts/nginx-ingress/nginx-ingress/0.12.0/README.md
new file mode 100644
index 000000000..6601a1377
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/README.md
@@ -0,0 +1,237 @@
+# NGINX Ingress Controller Helm Chart
+
+## Introduction
+
+This chart deploys the NGINX Ingress controller in your Kubernetes cluster.
+
+## Prerequisites
+
+  - A [Kubernetes Version Supported by the Ingress Controller](https://docs.nginx.com/nginx-ingress-controller/technical-specifications/#supported-kubernetes-versions)
+  - Helm 3.0+.
+  - Git.
+  - If you’d like to use NGINX Plus:
+    - To pull from the F5 Container registry, configure a docker registry secret using your JWT token from the MyF5 portal by following the instructions from [here](https://docs.nginx.com/nginx-ingress-controller/installation/using-the-jwt-token-docker-secret). Make sure to specify the secret using `controller.serviceAccount.imagePullSecretName` parameter.
+    - Alternatively, pull an Ingress controller image with NGINX Plus and push it to your private registry by following the instructions from [here](https://docs.nginx.com/nginx-ingress-controller/installation/pulling-ingress-controller-image).
+    - Alternatively, you can build an Ingress controller image with NGINX Plus and push it to your private registry by following the instructions from [here](https://docs.nginx.com/nginx-ingress-controller/installation/building-ingress-controller-image).
+    - Update the `controller.image.repository` field of the `values-plus.yaml` accordingly.
+  - If you’d like to use App Protect Dos, please install App Protect Dos Arbitrator helm chart. Make sure to install in the same namespace as the NGINX Ingress Controller. Note that if you install multiple NGINX Ingress Controllers in the same namespace, they will need to share the same Arbitrator because it is not possible to install more than one Arbitrator in a single namespace.
+
+
+## Getting the Chart Sources
+
+This step is required if you're installing the chart using its sources. Additionally, the step is also required for managing the custom resource definitions (CRDs), which the Ingress Controller requires by default, or for upgrading/deleting the CRDs.
+
+1. Clone the Ingress controller repo:
+    ```console
+    $ git clone https://github.com/nginxinc/kubernetes-ingress/
+    ```
+2. Change your working directory to /deployments/helm-chart:
+    ```console
+    $ cd kubernetes-ingress/deployments/helm-chart
+    $ git checkout v2.1.0
+    ```
+
+## Adding the Helm Repository
+
+This step is required if you're installing the chart via the helm repository.
+
+```console
+$ helm repo add nginx-stable https://helm.nginx.com/stable
+$ helm repo update
+```
+
+## Installing the Chart
+
+### Installing the CRDs
+
+By default, the Ingress Controller requires a number of custom resource definitions (CRDs) installed in the cluster. The Helm client will install those CRDs. If the CRDs are not installed, the Ingress Controller pods will not become `Ready`.
+
+If you do not use the custom resources that require those CRDs (which corresponds to `controller.enableCustomResources` set to `false` and `controller.appprotect.enable` set to `false` and `controller.appprotectdos.enable` set to `false`), the installation of the CRDs can be skipped by specifying `--skip-crds` for the helm install command.
+
+### Installing via Helm Repository
+
+To install the chart with the release name my-release (my-release is the name that you choose):
+
+For NGINX:
+```console
+$ helm install my-release nginx-stable/nginx-ingress
+```
+
+For NGINX Plus: (assuming you have pushed the Ingress controller image `nginx-plus-ingress` to your private registry `myregistry.example.com`)
+```console
+$ helm install my-release nginx-stable/nginx-ingress --set controller.image.repository=myregistry.example.com/nginx-plus-ingress --set controller.nginxplus=true
+```
+
+**Note**: If you wish to use the experimental repository, replace `stable` with `edge` and add the `--devel` flag.
+
+### Installing Using Chart Sources
+
+To install the chart with the release name my-release (my-release is the name that you choose):
+
+For NGINX:
+```console
+$ helm install my-release .
+```
+
+For NGINX Plus:
+```console
+$ helm install my-release -f values-plus.yaml .
+```
+
+**Note**: If you wish to use the experimental repository, replace the value in the `tag` field inside the yaml files with `edge`.
+
+The command deploys the Ingress controller in your Kubernetes cluster in the default configuration. The configuration section lists the parameters that can be configured during installation.
+
+When deploying the Ingress controller, make sure to use your own TLS certificate and key for the default server rather than the default pre-generated ones. Read the [Configuration](#Configuration) section below to see how to configure a TLS certificate and key for the default server. Note that the default server returns the Not Found page with the 404 status code for all requests for domains for which there are no Ingress rules defined.
+
+## Upgrading the Chart
+
+### Upgrading the CRDs
+
+Helm does not upgrade the CRDs during a release upgrade. Before you upgrade a release, run the following command to upgrade the CRDs:
+
+```console
+$ kubectl apply -f crds/
+```
+> **Note**: The following warning is expected and can be ignored: `Warning: kubectl apply should be used on resource created by either kubectl create --save-config or kubectl apply`.
+
+> **Note**: Make sure to check the [release notes](https://www.github.com/nginxinc/kubernetes-ingress/releases) for a new release for any special upgrade procedures.
+
+### Upgrading the Release
+
+To upgrade the release `my-release`:
+
+#### Upgrade Using Chart Sources:
+
+```console
+$ helm upgrade my-release .
+```
+
+#### Upgrade via Helm Repository:
+
+```console
+$ helm upgrade my-release nginx-stable/nginx-ingress
+```
+
+## Uninstalling the Chart
+
+### Uninstalling the Release
+
+To uninstall/delete the release `my-release`:
+
+```console
+$ helm uninstall my-release
+```
+The command removes all the Kubernetes components associated with the release and deletes the release.
+
+### Uninstalling the CRDs
+
+Uninstalling the release does not remove the CRDs. To remove the CRDs, run:
+
+```console
+$ kubectl delete -f crds/
+```
+> **Note**: This command will delete all the corresponding custom resources in your cluster across all namespaces. Please ensure there are no custom resources that you want to keep and there are no other Ingress Controller releases running in the cluster.
+
+## Running Multiple Ingress Controllers
+
+If you are running multiple Ingress Controller releases in your cluster with enabled custom resources, the releases will share a single version of the CRDs. As a result, make sure that the Ingress Controller versions match the version of the CRDs. Additionally, when uninstalling a release, ensure that you don’t remove the CRDs until there are no other Ingress Controller releases running in the cluster.
+
+See [running multiple ingress controllers](https://docs.nginx.com/nginx-ingress-controller/installation/running-multiple-ingress-controllers/) for more details.
+
+## Configuration
+
+The following tables lists the configurable parameters of the NGINX Ingress controller chart and their default values.
+
+Parameter | Description | Default
+--- | --- | ---
+`controller.name` | The name of the Ingress controller daemonset or deployment. | Autogenerated
+`controller.kind` | The kind of the Ingress controller installation - deployment or daemonset. | deployment
+`controller.nginxplus` | Deploys the Ingress controller for NGINX Plus. | false
+`controller.nginxReloadTimeout` | The timeout in milliseconds which the Ingress Controller will wait for a successful NGINX reload after a change or at the initial start. | 60000
+`controller.hostNetwork` | Enables the Ingress controller pods to use the host's network namespace. | false
+`controller.nginxDebug` | Enables debugging for NGINX. Uses the `nginx-debug` binary. Requires `error-log-level: debug` in the ConfigMap via `controller.config.entries`. | false
+`controller.logLevel` | The log level of the Ingress Controller. | 1
+`controller.image.repository` | The image repository of the Ingress controller. | nginx/nginx-ingress
+`controller.image.tag` | The tag of the Ingress controller image. | 2.1.0
+`controller.image.pullPolicy` | The pull policy for the Ingress controller image. | IfNotPresent
+`controller.config.name` | The name of the ConfigMap used by the Ingress controller. | Autogenerated
+`controller.config.annotations` | The annotations of the Ingress controller configmap. | {}
+`controller.config.entries` | The entries of the ConfigMap for customizing NGINX configuration. See [ConfigMap resource docs](https://docs.nginx.com/nginx-ingress-controller/configuration/global-configuration/configmap-resource/) for the list of supported ConfigMap keys. | {}
+`controller.customPorts` | A list of custom ports to expose on the NGINX ingress controller pod. Follows the conventional Kubernetes yaml syntax for container ports. | []
+`controller.defaultTLS.cert` | The base64-encoded TLS certificate for the default HTTPS server. If not specified, a pre-generated self-signed certificate is used. **Note:** It is recommended that you specify your own certificate. | A pre-generated self-signed certificate.
+`controller.defaultTLS.key` | The base64-encoded TLS key for the default HTTPS server. **Note:** If not specified, a pre-generated key is used. It is recommended that you specify your own key. | A pre-generated key.
+`controller.defaultTLS.secret` | The secret with a TLS certificate and key for the default HTTPS server. The value must follow the following format: `<namespace>/<name>`. Used as an alternative to specifying a certificate and key using `controller.defaultTLS.cert` and `controller.defaultTLS.key` parameters. | None
+`controller.wildcardTLS.cert` | The base64-encoded TLS certificate for every Ingress/VirtualServer host that has TLS enabled but no secret specified. If the parameter is not set, for such Ingress/VirtualServer hosts NGINX will break any attempt to establish a TLS connection. | None
+`controller.wildcardTLS.key` | The base64-encoded TLS key for every Ingress/VirtualServer host that has TLS enabled but no secret specified. If the parameter is not set, for such Ingress/VirtualServer hosts NGINX will break any attempt to establish a TLS connection. | None
+`controller.wildcardTLS.secret` | The secret with a TLS certificate and key for every Ingress/VirtualServer host that has TLS enabled but no secret specified. The value must follow the following format: `<namespace>/<name>`. Used as an alternative to specifying a certificate and key using `controller.wildcardTLS.cert` and `controller.wildcardTLS.key` parameters. | None
+`controller.nodeSelector` | The node selector for pod assignment for the Ingress controller pods. | {}
+`controller.terminationGracePeriodSeconds` | The termination grace period of the Ingress controller pod. | 30
+`controller.tolerations` | The tolerations of the Ingress controller pods. | []
+`controller.affinity` | The affinity of the Ingress controller pods. | {}
+`controller.volumes` | The volumes of the Ingress controller pods. | []
+`controller.volumeMounts` | The volumeMounts of the Ingress controller pods. | []
+`controller.initContainers` | InitContainers for the Ingress controller pods. | []
+`controller.resources` | The resources of the Ingress controller pods. | {}
+`controller.replicaCount` | The number of replicas of the Ingress controller deployment. | 1
+`controller.ingressClass` | A class of the Ingress controller. An IngressClass resource with the name equal to the class must be deployed. Otherwise, the Ingress Controller will fail to start. The Ingress controller only processes resources that belong to its class - i.e. have the "ingressClassName" field resource equal to the class. The Ingress Controller processes all the VirtualServer/VirtualServerRoute/TransportServer resources that do not have the "ingressClassName" field for all versions of kubernetes. | nginx
+`controller.setAsDefaultIngress` | New Ingresses without an `"ingressClassName"` field specified will be assigned the class specified in `controller.ingressClass`. | false
+`controller.watchNamespace` | Namespace to watch for Ingress resources. By default the Ingress controller watches all namespaces. | ""
+`controller.enableCustomResources` | Enable the custom resources. | true
+`controller.enablePreviewPolicies` | Enable preview policies. | false
+`controller.enableTLSPassthrough` | Enable TLS Passthrough on port 443. Requires `controller.enableCustomResources`. | false
+`controller.globalConfiguration.create` | Creates the GlobalConfiguration custom resource. Requires `controller.enableCustomResources`. | false
+`controller.globalConfiguration.spec` | The spec of the GlobalConfiguration for defining the global configuration parameters of the Ingress Controller. | {}
+`controller.enableSnippets` | Enable custom NGINX configuration snippets in Ingress, VirtualServer, VirtualServerRoute and TransportServer resources. | false
+`controller.healthStatus` | Add a location "/nginx-health" to the default server. The location responds with the 200 status code for any request. Useful for external health-checking of the Ingress controller. | false
+`controller.healthStatusURI` | Sets the URI of health status location in the default server. Requires `controller.healthStatus`. | "/nginx-health"
+`controller.nginxStatus.enable` | Enable the NGINX stub_status, or the NGINX Plus API. | true
+`controller.nginxStatus.port` | Set the port where the NGINX stub_status or the NGINX Plus API is exposed. | 8080
+`controller.nginxStatus.allowCidrs` | Add IPv4 IP/CIDR blocks to the allow list for NGINX stub_status or the NGINX Plus API. Separate multiple IP/CIDR by commas. | 127.0.0.1
+`controller.priorityClassName` | The PriorityClass of the Ingress controller pods. | None
+`controller.service.create` | Creates a service to expose the Ingress controller pods. | true
+`controller.service.type` | The type of service to create for the Ingress controller. | LoadBalancer
+`controller.service.externalTrafficPolicy` | The externalTrafficPolicy of the service. The value Local preserves the client source IP. | Local
+`controller.service.annotations` | The annotations of the Ingress controller service. | {}
+`controller.service.extraLabels` | The extra labels of the service. | {}
+`controller.service.loadBalancerIP` | The static IP address for the load balancer. Requires `controller.service.type` set to `LoadBalancer`. The cloud provider must support this feature. | ""
+`controller.service.externalIPs` | The list of external IPs for the Ingress controller service. | []
+`controller.service.loadBalancerSourceRanges` | The IP ranges (CIDR) that are allowed to access the load balancer. Requires `controller.service.type` set to `LoadBalancer`. The cloud provider must support this feature. | []
+`controller.service.name` | The name of the service. | Autogenerated
+`controller.service.customPorts` | A list of custom ports to expose through the Ingress controller service. Follows the conventional Kubernetes yaml syntax for service ports. | []
+`controller.service.httpPort.enable` | Enables the HTTP port for the Ingress controller service. | true
+`controller.service.httpPort.port` | The HTTP port of the Ingress controller service. | 80
+`controller.service.httpPort.nodePort` | The custom NodePort for the HTTP port. Requires `controller.service.type` set to `NodePort`. | ""
+`controller.service.httpPort.targetPort` | The target port of the HTTP port of the Ingress controller service. | 80
+`controller.service.httpsPort.enable` | Enables the HTTPS port for the Ingress controller service. | true
+`controller.service.httpsPort.port` | The HTTPS port of the Ingress controller service. | 443
+`controller.service.httpsPort.nodePort` | The custom NodePort for the HTTPS port. Requires `controller.service.type` set to `NodePort`.  | ""
+`controller.service.httpsPort.targetPort` | The target port of the HTTPS port of the Ingress controller service. | 443
+`controller.serviceAccount.name` | The name of the service account of the Ingress controller pods. Used for RBAC. | Autogenerated
+`controller.serviceAccount.imagePullSecretName` | The name of the secret containing docker registry credentials. Secret must exist in the same namespace as the helm release. | ""
+`controller.reportIngressStatus.enable` | Updates the address field in the status of Ingress resources with an external address of the Ingress controller. You must also specify the source of the external address either through an external service via `controller.reportIngressStatus.externalService`, `controller.reportIngressStatus.ingressLink` or the `external-status-address` entry in the ConfigMap via `controller.config.entries`. **Note:** `controller.config.entries.external-status-address` takes precedence over the others. | true
+`controller.reportIngressStatus.externalService` | Specifies the name of the service with the type LoadBalancer through which the Ingress controller is exposed externally. The external address of the service is used when reporting the status of Ingress, VirtualServer and VirtualServerRoute resources. `controller.reportIngressStatus.enable` must be set to `true`. The default is autogenerated and enabled when `controller.service.create` is set to `true` and `controller.service.type` is set to `LoadBalancer`. | Autogenerated
+`controller.reportIngressStatus.ingressLink` |  Specifies the name of the IngressLink resource, which exposes the Ingress Controller pods via a BIG-IP system. The IP of the BIG-IP system is used when reporting the status of Ingress, VirtualServer and VirtualServerRoute resources. `controller.reportIngressStatus.enable` must be set to `true`. | ""
+`controller.reportIngressStatus.enableLeaderElection` | Enable Leader election to avoid multiple replicas of the controller reporting the status of Ingress resources. `controller.reportIngressStatus.enable` must be set to `true`. | true
+`controller.reportIngressStatus.leaderElectionLockName` | Specifies the name of the ConfigMap, within the same namespace as the controller, used as the lock for leader election. controller.reportIngressStatus.enableLeaderElection must be set to true. | Autogenerated
+`controller.reportIngressStatus.annotations` | The annotations of the leader election configmap. | {}
+`controller.pod.annotations` | The annotations of the Ingress Controller pod. | {}
+`controller.pod.extraLabels` | The additional extra labels of the Ingress Controller pod. | {}
+`controller.appprotect.enable` | Enables the App Protect module in the Ingress Controller. | false
+`controller.appprotectdos.enable` | Enables the App Protect Dos module in the Ingress Controller. | false
+`controller.appprotectdos.debug` | Enable debugging for App Protect Dos. | false
+`controller.appprotectdos.maxDaemons` | Max number of ADMD instances. | 1
+`controller.appprotectdos.maxWorkers` | Max number of nginx processes to support. | Number of CPU cores in the machine
+`controller.appprotectdos.memory` | RAM memory size to consume in MB. | 50% of free RAM in the container or 80MB, the smaller
+`controller.readyStatus.enable` | Enables the readiness endpoint `"/nginx-ready"`. The endpoint returns a success code when NGINX has loaded all the config after the startup. This also configures a readiness probe for the Ingress Controller pods that uses the readiness endpoint. | true
+`controller.readyStatus.port` | The HTTP port for the readiness endpoint. | 8081
+`controller.enableLatencyMetrics` |  Enable collection of latency metrics for upstreams. Requires `prometheus.create`. | false
+`rbac.create` | Configures RBAC. | true
+`prometheus.create` | Expose NGINX or NGINX Plus metrics in the Prometheus format. | false
+`prometheus.port` | Configures the port to scrape the metrics. | 9113
+`prometheus.scheme` | Configures the HTTP scheme to use for connections to the Prometheus endpoint. | http
+`prometheus.secret` | The namespace / name of a Kubernetes TLS Secret. If specified, this secret is used to secure the Prometheus endpoint with TLS connections. | ""
+
+
+## Notes
+* The values-icp.yaml file is used for deploying the Ingress controller on IBM Cloud Private. See the [blog post](https://www.nginx.com/blog/nginx-ingress-controller-ibm-cloud-private/) for more details.
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/app-readme.md b/charts/nginx-ingress/nginx-ingress/0.12.0/app-readme.md
new file mode 100644
index 000000000..0824f4c0f
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/app-readme.md
@@ -0,0 +1,15 @@
+# NGINX Ingress Controller
+
+The [NGINX Ingress Controller](https://github.com/nginxinc/kubernetes-ingress) for Kubernetes provides an enterprise‑grade implementation of an Ingress controller for NGINX and NGINX Plus for Kubernetes applications.
+
+The Ingress controller is an application that runs in a cluster and configures an HTTP load balancer according to Ingress resources. The load balancer can be a software load balancer running in the cluster or a hardware or cloud load balancer running externally. Different load balancers require different Ingress controller implementations.
+
+In the case of NGINX, the Ingress controller is deployed in a pod along with the load balancer.
+
+NGINX Ingress controller works with both NGINX and NGINX Plus and supports the standard Ingress features - content-based routing and TLS/SSL termination.
+
+Additionally, several NGINX and NGINX Plus features are available as extensions to the Ingress resource via annotations and the ConfigMap resource. In addition to HTTP, NGINX Ingress controller supports load balancing Websocket, gRPC, TCP and UDP applications. See ConfigMap and Annotations docs to learn more about the supported features and customization options.
+
+As an alternative to the Ingress, NGINX Ingress controller supports the VirtualServer and VirtualServerRoute resources. They enable use cases not supported with the Ingress resource, such as traffic splitting and advanced content-based routing.
+
+TCP, UDP and TLS Passthrough load balancing is also supported.  
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_aplogconfs.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_aplogconfs.yaml
new file mode 100644
index 000000000..c06e46cb2
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_aplogconfs.yaml
@@ -0,0 +1,65 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.0
+  creationTimestamp: null
+  name: aplogconfs.appprotect.f5.com
+spec:
+  group: appprotect.f5.com
+  names:
+    kind: APLogConf
+    listKind: APLogConfList
+    plural: aplogconfs
+    singular: aplogconf
+  preserveUnknownFields: false
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          description: APLogConf is the Schema for the APLogConfs API
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: APLogConfSpec defines the desired state of APLogConf
+              properties:
+                content:
+                  properties:
+                    format:
+                      enum:
+                        - splunk
+                        - arcsight
+                        - default
+                        - user-defined
+                        - grpc
+                      type: string
+                    format_string:
+                      type: string
+                    max_message_size:
+                      pattern: ^([1-9]|[1-5][0-9]|6[0-4])k$
+                      type: string
+                    max_request_size:
+                      pattern: ^([1-9]|[1-9][0-9]|[1-9][0-9]{2}|1[0-9]{3}|20[1-3][0-9]|204[1-8]|any)$
+                      type: string
+                  type: object
+                filter:
+                  properties:
+                    request_type:
+                      enum:
+                        - all
+                        - illegal
+                        - blocked
+                      type: string
+                  type: object
+              type: object
+          type: object
+      served: true
+      storage: true
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_appolicies.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_appolicies.yaml
new file mode 100644
index 000000000..ac4c6c31e
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_appolicies.yaml
@@ -0,0 +1,1901 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.0
+  creationTimestamp: null
+  name: appolicies.appprotect.f5.com
+spec:
+  group: appprotect.f5.com
+  names:
+    kind: APPolicy
+    listKind: APPolicyList
+    plural: appolicies
+    singular: appolicy
+  preserveUnknownFields: false
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          description: APPolicyConfig is the Schema for the APPolicyconfigs API
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: APPolicySpec defines the desired state of APPolicy
+              properties:
+                modifications:
+                  items:
+                    properties:
+                      action:
+                        type: string
+                      description:
+                        type: string
+                      entity:
+                        properties:
+                          name:
+                            type: string
+                        type: object
+                      entityChanges:
+                        properties:
+                          type:
+                            type: string
+                        type: object
+                    type: object
+                    x-kubernetes-preserve-unknown-fields: true
+                  type: array
+                modificationsReference:
+                  properties:
+                    link:
+                      pattern: ^http
+                      type: string
+                  type: object
+                policy:
+                  description: Defines the App Protect policy
+                  properties:
+                    applicationLanguage:
+                      enum:
+                        - iso-8859-10
+                        - iso-8859-6
+                        - windows-1255
+                        - auto-detect
+                        - koi8-r
+                        - gb18030
+                        - iso-8859-8
+                        - windows-1250
+                        - iso-8859-9
+                        - windows-1252
+                        - iso-8859-16
+                        - gb2312
+                        - iso-8859-2
+                        - iso-8859-5
+                        - windows-1257
+                        - windows-1256
+                        - iso-8859-13
+                        - windows-874
+                        - windows-1253
+                        - iso-8859-3
+                        - euc-jp
+                        - utf-8
+                        - gbk
+                        - windows-1251
+                        - big5
+                        - iso-8859-1
+                        - shift_jis
+                        - euc-kr
+                        - iso-8859-4
+                        - iso-8859-7
+                        - iso-8859-15
+                      type: string
+                    blocking-settings:
+                      properties:
+                        evasions:
+                          items:
+                            properties:
+                              description:
+                                enum:
+                                  - '%u decoding'
+                                  - Apache whitespace
+                                  - Bad unescape
+                                  - Bare byte decoding
+                                  - Directory traversals
+                                  - IIS backslashes
+                                  - IIS Unicode codepoints
+                                  - Multiple decoding
+                                type: string
+                              enabled:
+                                type: boolean
+                              maxDecodingPasses:
+                                type: integer
+                            type: object
+                          type: array
+                        http-protocols:
+                          items:
+                            properties:
+                              description:
+                                enum:
+                                  - Unescaped space in URL
+                                  - Unparsable request content
+                                  - Several Content-Length headers
+                                  - 'POST request with Content-Length: 0'
+                                  - Null in request
+                                  - No Host header in HTTP/1.1 request
+                                  - Multiple host headers
+                                  - Host header contains IP address
+                                  - High ASCII characters in headers
+                                  - Header name with no header value
+                                  - CRLF characters before request start
+                                  - Content length should be a positive number
+                                  - Chunked request with Content-Length header
+                                  - Check maximum number of parameters
+                                  - Check maximum number of headers
+                                  - Body in GET or HEAD requests
+                                  - Bad multipart/form-data request parsing
+                                  - Bad multipart parameters parsing
+                                  - Bad HTTP version
+                                  - Bad host header value
+                                type: string
+                              enabled:
+                                type: boolean
+                              maxHeaders:
+                                type: integer
+                              maxParams:
+                                type: integer
+                            type: object
+                          type: array
+                        violations:
+                          items:
+                            properties:
+                              alarm:
+                                type: boolean
+                              block:
+                                type: boolean
+                              description:
+                                type: string
+                              name:
+                                enum:
+                                  - VIOL_GRPC_FORMAT
+                                  - VIOL_GRPC_MALFORMED
+                                  - VIOL_GRPC_METHOD
+                                  - VIOL_PARAMETER_ARRAY_VALUE
+                                  - VIOL_PARAMETER_VALUE_REGEXP
+                                  - VIOL_CSRF
+                                  - VIOL_PARAMETER_VALUE_BASE64
+                                  - VIOL_MANDATORY_HEADER
+                                  - VIOL_HEADER_REPEATED
+                                  - VIOL_ASM_COOKIE_MODIFIED
+                                  - VIOL_BLACKLISTED_IP
+                                  - VIOL_COOKIE_EXPIRED
+                                  - VIOL_COOKIE_LENGTH
+                                  - VIOL_COOKIE_MALFORMED
+                                  - VIOL_COOKIE_MODIFIED
+                                  - VIOL_DATA_GUARD
+                                  - VIOL_ENCODING
+                                  - VIOL_EVASION
+                                  - VIOL_FILETYPE
+                                  - VIOL_FILE_UPLOAD
+                                  - VIOL_FILE_UPLOAD_IN_BODY
+                                  - VIOL_HEADER_LENGTH
+                                  - VIOL_HEADER_METACHAR
+                                  - VIOL_HTTP_PROTOCOL
+                                  - VIOL_HTTP_RESPONSE_STATUS
+                                  - VIOL_JSON_FORMAT
+                                  - VIOL_JSON_MALFORMED
+                                  - VIOL_JSON_SCHEMA
+                                  - VIOL_MANDATORY_PARAMETER
+                                  - VIOL_MANDATORY_REQUEST_BODY
+                                  - VIOL_METHOD
+                                  - VIOL_PARAMETER
+                                  - VIOL_PARAMETER_DATA_TYPE
+                                  - VIOL_PARAMETER_EMPTY_VALUE
+                                  - VIOL_PARAMETER_LOCATION
+                                  - VIOL_PARAMETER_MULTIPART_NULL_VALUE
+                                  - VIOL_PARAMETER_NAME_METACHAR
+                                  - VIOL_PARAMETER_NUMERIC_VALUE
+                                  - VIOL_PARAMETER_REPEATED
+                                  - VIOL_PARAMETER_STATIC_VALUE
+                                  - VIOL_PARAMETER_VALUE_LENGTH
+                                  - VIOL_PARAMETER_VALUE_METACHAR
+                                  - VIOL_POST_DATA_LENGTH
+                                  - VIOL_QUERY_STRING_LENGTH
+                                  - VIOL_RATING_THREAT
+                                  - VIOL_RATING_NEED_EXAMINATION
+                                  - VIOL_REQUEST_MAX_LENGTH
+                                  - VIOL_REQUEST_LENGTH
+                                  - VIOL_THREAT_CAMPAIGN
+                                  - VIOL_URL
+                                  - VIOL_URL_CONTENT_TYPE
+                                  - VIOL_URL_LENGTH
+                                  - VIOL_URL_METACHAR
+                                  - VIOL_XML_FORMAT
+                                  - VIOL_XML_MALFORMED
+                                type: string
+                            type: object
+                          type: array
+                      type: object
+                    blockingSettingReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    bot-defense:
+                      properties:
+                        mitigations:
+                          properties:
+                            anomalies:
+                              items:
+                                properties:
+                                  $action:
+                                    enum:
+                                      - delete
+                                    type: string
+                                  action:
+                                    enum:
+                                      - alarm
+                                      - block
+                                      - default
+                                      - detect
+                                      - ignore
+                                    type: string
+                                  name:
+                                    type: string
+                                  scoreThreshold:
+                                    pattern: '[0-9]|[1-9][0-9]|1[0-4][0-9]|150|default'
+                                    type: string
+                                type: object
+                              type: array
+                            browsers:
+                              items:
+                                properties:
+                                  $action:
+                                    enum:
+                                      - delete
+                                    type: string
+                                  action:
+                                    enum:
+                                      - alarm
+                                      - block
+                                      - detect
+                                    type: string
+                                  browserDefinition:
+                                    properties:
+                                      $action:
+                                        enum:
+                                          - delete
+                                        type: string
+                                      isUserDefined:
+                                        type: boolean
+                                      matchRegex:
+                                        type: string
+                                      matchString:
+                                        type: string
+                                      name:
+                                        type: string
+                                    type: object
+                                  maxVersion:
+                                    maximum: 2147483647
+                                    minimum: 0
+                                    type: integer
+                                  minVersion:
+                                    maximum: 2147483647
+                                    minimum: 0
+                                    type: integer
+                                  name:
+                                    type: string
+                                type: object
+                              type: array
+                            classes:
+                              items:
+                                properties:
+                                  action:
+                                    enum:
+                                      - alarm
+                                      - block
+                                      - detect
+                                      - ignore
+                                    type: string
+                                  name:
+                                    enum:
+                                      - browser
+                                      - malicious-bot
+                                      - suspicious-browser
+                                      - trusted-bot
+                                      - unknown
+                                      - untrusted-bot
+                                    type: string
+                                type: object
+                              type: array
+                            signatures:
+                              items:
+                                properties:
+                                  $action:
+                                    enum:
+                                      - delete
+                                    type: string
+                                  action:
+                                    enum:
+                                      - alarm
+                                      - block
+                                      - detect
+                                      - ignore
+                                    type: string
+                                  name:
+                                    type: string
+                                type: object
+                              type: array
+                          type: object
+                        settings:
+                          properties:
+                            isEnabled:
+                              type: boolean
+                          type: object
+                      type: object
+                    browser-definitions:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          isUserDefined:
+                            type: boolean
+                          matchRegex:
+                            type: string
+                          matchString:
+                            type: string
+                          name:
+                            type: string
+                        type: object
+                      type: array
+                    caseInsensitive:
+                      type: boolean
+                    character-sets:
+                      items:
+                        properties:
+                          characterSet:
+                            items:
+                              properties:
+                                isAllowed:
+                                  type: boolean
+                                metachar:
+                                  type: string
+                              type: object
+                            type: array
+                          characterSetType:
+                            enum:
+                              - gwt-content
+                              - header
+                              - json-content
+                              - parameter-name
+                              - parameter-value
+                              - plain-text-content
+                              - url
+                              - xml-content
+                            type: string
+                        type: object
+                      type: array
+                    characterSetReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    cookie-settings:
+                      properties:
+                        maximumCookieHeaderLength:
+                          pattern: any|\d+
+                          type: string
+                      type: object
+                    cookieReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    cookieSettingsReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    cookies:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          accessibleOnlyThroughTheHttpProtocol:
+                            type: boolean
+                          attackSignaturesCheck:
+                            type: boolean
+                          decodeValueAsBase64:
+                            enum:
+                              - enabled
+                              - disabled
+                              - required
+                            type: string
+                          enforcementType:
+                            type: string
+                          insertSameSiteAttribute:
+                            enum:
+                              - lax
+                              - none
+                              - none-value
+                              - strict
+                            type: string
+                          name:
+                            type: string
+                          securedOverHttpsConnection:
+                            type: boolean
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                          type:
+                            enum:
+                              - explicit
+                              - wildcard
+                            type: string
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    csrf-protection:
+                      properties:
+                        enabled:
+                          type: boolean
+                        expirationTimeInSeconds:
+                          pattern: disabled|\d+
+                          type: string
+                        sslOnly:
+                          type: boolean
+                      type: object
+                    csrf-urls:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          enforcementAction:
+                            enum:
+                              - verify-origin
+                              - none
+                            type: string
+                          method:
+                            enum:
+                              - GET
+                              - POST
+                              - any
+                            type: string
+                          url:
+                            type: string
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    data-guard:
+                      properties:
+                        creditCardNumbers:
+                          type: boolean
+                        enabled:
+                          type: boolean
+                        enforcementMode:
+                          enum:
+                            - ignore-urls-in-list
+                            - enforce-urls-in-list
+                          type: string
+                        enforcementUrls:
+                          items:
+                            type: string
+                          type: array
+                        lastCcnDigitsToExpose:
+                          type: integer
+                        lastSsnDigitsToExpose:
+                          type: integer
+                        maskData:
+                          type: boolean
+                        usSocialSecurityNumbers:
+                          type: boolean
+                      type: object
+                    dataGuardReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    description:
+                      type: string
+                    enablePassiveMode:
+                      type: boolean
+                    enforcementMode:
+                      enum:
+                        - transparent
+                        - blocking
+                      type: string
+                    enforcer-settings:
+                      properties:
+                        enforcerStateCookies:
+                          properties:
+                            httpOnlyAttribute:
+                              type: boolean
+                            sameSiteAttribute:
+                              enum:
+                                - lax
+                                - none
+                                - none-value
+                                - strict
+                              type: string
+                            secureAttribute:
+                              enum:
+                                - always
+                                - never
+                              type: string
+                          type: object
+                      type: object
+                    filetypeReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    filetypes:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          allowed:
+                            type: boolean
+                          checkPostDataLength:
+                            type: boolean
+                          checkQueryStringLength:
+                            type: boolean
+                          checkRequestLength:
+                            type: boolean
+                          checkUrlLength:
+                            type: boolean
+                          name:
+                            type: string
+                          postDataLength:
+                            type: integer
+                          queryStringLength:
+                            type: integer
+                          requestLength:
+                            type: integer
+                          responseCheck:
+                            type: boolean
+                          type:
+                            enum:
+                              - explicit
+                              - wildcard
+                            type: string
+                          urlLength:
+                            type: integer
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    fullPath:
+                      type: string
+                    general:
+                      properties:
+                        allowedResponseCodes:
+                          items:
+                            format: int32
+                            maximum: 999
+                            minimum: 100
+                            type: integer
+                          type: array
+                        customXffHeaders:
+                          items:
+                            type: string
+                          type: array
+                        maskCreditCardNumbersInRequest:
+                          type: boolean
+                        trustXff:
+                          type: boolean
+                      type: object
+                    generalReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    grpc-profiles:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          associateUrls:
+                            type: boolean
+                          attackSignaturesCheck:
+                            type: boolean
+                          defenseAttributes:
+                            properties:
+                              allowUnknownFields:
+                                type: boolean
+                              maximumDataLength:
+                                pattern: any|\d+
+                                type: string
+                            type: object
+                          description:
+                            type: string
+                          hasIdlFiles:
+                            type: boolean
+                          idlFiles:
+                            items:
+                              properties:
+                                idlFile:
+                                  properties:
+                                    contents:
+                                      type: string
+                                    fileName:
+                                      type: string
+                                    isBase64:
+                                      type: boolean
+                                  type: object
+                                importUrl:
+                                  type: string
+                                isPrimary:
+                                  type: boolean
+                                primaryIdlFileName:
+                                  type: string
+                              type: object
+                            type: array
+                          metacharElementCheck:
+                            type: boolean
+                          name:
+                            type: string
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                        type: object
+                      type: array
+                    header-settings:
+                      properties:
+                        maximumHttpHeaderLength:
+                          pattern: any|\d+
+                          type: string
+                      type: object
+                    headerReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    headerSettingsReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    headers:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          allowRepeatedOccurrences:
+                            type: boolean
+                          base64Decoding:
+                            type: boolean
+                          checkSignatures:
+                            type: boolean
+                          decodeValueAsBase64:
+                            enum:
+                              - enabled
+                              - disabled
+                              - required
+                            type: string
+                          htmlNormalization:
+                            type: boolean
+                          mandatory:
+                            type: boolean
+                          maskValueInLogs:
+                            type: boolean
+                          name:
+                            type: string
+                          normalizationViolations:
+                            type: boolean
+                          percentDecoding:
+                            type: boolean
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                          type:
+                            enum:
+                              - explicit
+                              - wildcard
+                            type: string
+                          urlNormalization:
+                            type: boolean
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    host-names:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          includeSubdomains:
+                            type: boolean
+                          name:
+                            type: string
+                        type: object
+                      type: array
+                    idl-files:
+                      items:
+                        properties:
+                          contents:
+                            type: string
+                          fileName:
+                            type: string
+                          isBase64:
+                            type: boolean
+                        type: object
+                      type: array
+                    json-profiles:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          attackSignaturesCheck:
+                            type: boolean
+                          defenseAttributes:
+                            properties:
+                              maximumArrayLength:
+                                pattern: any|\d+
+                                type: string
+                              maximumStructureDepth:
+                                pattern: any|\d+
+                                type: string
+                              maximumTotalLengthOfJSONData:
+                                pattern: any|\d+
+                                type: string
+                              maximumValueLength:
+                                pattern: any|\d+
+                                type: string
+                              tolerateJSONParsingWarnings:
+                                type: boolean
+                            type: object
+                          description:
+                            type: string
+                          handleJsonValuesAsParameters:
+                            type: boolean
+                          hasValidationFiles:
+                            type: boolean
+                          metacharOverrides:
+                            items:
+                              properties:
+                                isAllowed:
+                                  type: boolean
+                                metachar:
+                                  type: string
+                              type: object
+                            type: array
+                          name:
+                            type: string
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                          validationFiles:
+                            items:
+                              properties:
+                                importUrl:
+                                  type: string
+                                isPrimary:
+                                  type: boolean
+                                jsonValidationFile:
+                                  properties:
+                                    $action:
+                                      enum:
+                                        - delete
+                                      type: string
+                                    contents:
+                                      type: string
+                                    fileName:
+                                      type: string
+                                    isBase64:
+                                      type: boolean
+                                  type: object
+                              type: object
+                            type: array
+                        type: object
+                      type: array
+                    json-validation-files:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          contents:
+                            type: string
+                          fileName:
+                            type: string
+                          isBase64:
+                            type: boolean
+                        type: object
+                      type: array
+                    jsonProfileReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    jsonValidationFileReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    methodReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    methods:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          name:
+                            type: string
+                        type: object
+                      type: array
+                    name:
+                      type: string
+                    open-api-files:
+                      items:
+                        properties:
+                          link:
+                            pattern: ^http
+                            type: string
+                        type: object
+                      type: array
+                    parameterReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    parameters:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          allowEmptyValue:
+                            type: boolean
+                          allowRepeatedParameterName:
+                            type: boolean
+                          arraySerializationFormat:
+                            enum:
+                              - csv
+                              - form
+                              - label
+                              - matrix
+                              - multi
+                              - multipart
+                              - pipe
+                              - ssv
+                              - tsv
+                            type: string
+                          attackSignaturesCheck:
+                            type: boolean
+                          checkMaxValue:
+                            type: boolean
+                          checkMaxValueLength:
+                            type: boolean
+                          checkMetachars:
+                            type: boolean
+                          checkMinValue:
+                            type: boolean
+                          checkMinValueLength:
+                            type: boolean
+                          checkMultipleOfValue:
+                            type: boolean
+                          contentProfile:
+                            properties:
+                              name:
+                                type: string
+                            type: object
+                          dataType:
+                            enum:
+                              - alpha-numeric
+                              - binary
+                              - boolean
+                              - decimal
+                              - email
+                              - integer
+                              - none
+                              - phone
+                            type: string
+                          decodeValueAsBase64:
+                            enum:
+                              - enabled
+                              - disabled
+                              - required
+                            type: string
+                          disallowFileUploadOfExecutables:
+                            type: boolean
+                          enableRegularExpression:
+                            type: boolean
+                          exclusiveMax:
+                            type: boolean
+                          exclusiveMin:
+                            type: boolean
+                          isBase64:
+                            type: boolean
+                          isCookie:
+                            type: boolean
+                          isHeader:
+                            type: boolean
+                          level:
+                            enum:
+                              - global
+                              - url
+                            type: string
+                          mandatory:
+                            type: boolean
+                          maximumLength:
+                            type: integer
+                          maximumValue:
+                            type: integer
+                          metacharsOnParameterValueCheck:
+                            type: boolean
+                          minimumLength:
+                            type: integer
+                          minimumValue:
+                            type: integer
+                          multipleOf:
+                            type: integer
+                          name:
+                            type: string
+                          nameMetacharOverrides:
+                            items:
+                              properties:
+                                isAllowed:
+                                  type: boolean
+                                metachar:
+                                  type: string
+                              type: object
+                            type: array
+                          objectSerializationStyle:
+                            type: string
+                          parameterEnumValues:
+                            items:
+                              type: string
+                            type: array
+                          parameterLocation:
+                            enum:
+                              - any
+                              - cookie
+                              - form-data
+                              - header
+                              - path
+                              - query
+                            type: string
+                          regularExpression:
+                            type: string
+                          sensitiveParameter:
+                            type: boolean
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                          staticValues:
+                            type: string
+                          type:
+                            enum:
+                              - explicit
+                              - wildcard
+                            type: string
+                          url:
+                            type: object
+                          valueMetacharOverrides:
+                            items:
+                              properties:
+                                isAllowed:
+                                  type: boolean
+                                metachar:
+                                  type: string
+                              type: object
+                            type: array
+                          valueType:
+                            enum:
+                              - array
+                              - auto-detect
+                              - dynamic-content
+                              - dynamic-parameter-name
+                              - ignore
+                              - json
+                              - object
+                              - openapi-array
+                              - static-content
+                              - user-input
+                              - xml
+                            type: string
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    response-pages:
+                      items:
+                        properties:
+                          ajaxActionType:
+                            enum:
+                              - alert-popup
+                              - custom
+                              - redirect
+                            type: string
+                          ajaxCustomContent:
+                            type: string
+                          ajaxEnabled:
+                            type: boolean
+                          ajaxPopupMessage:
+                            type: string
+                          ajaxRedirectUrl:
+                            type: string
+                          grpcStatusCode:
+                            pattern: ABORTED|ALREADY_EXISTS|CANCELLED|DATA_LOSS|DEADLINE_EXCEEDED|FAILED_PRECONDITION|INTERNAL|INVALID_ARGUMENT|NOT_FOUND|OK|OUT_OF_RANGE|PERMISSION_DENIED|RESOURCE_EXHAUSTED|UNAUTHENTICATED|UNAVAILABLE|UNIMPLEMENTED|UNKNOWN|d+
+                            type: string
+                          grpcStatusMessage:
+                            type: string
+                          responseActionType:
+                            enum:
+                              - custom
+                              - default
+                              - erase-cookies
+                              - redirect
+                              - soap-fault
+                            type: string
+                          responseContent:
+                            type: string
+                          responseHeader:
+                            type: string
+                          responsePageType:
+                            enum:
+                              - ajax
+                              - ajax-login
+                              - captcha
+                              - captcha-fail
+                              - default
+                              - failed-login-honeypot
+                              - failed-login-honeypot-ajax
+                              - hijack
+                              - leaked-credentials
+                              - leaked-credentials-ajax
+                              - mobile
+                              - persistent-flow
+                              - xml
+                              - grpc
+                            type: string
+                          responseRedirectUrl:
+                            type: string
+                        type: object
+                      type: array
+                    responsePageReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    sensitive-parameters:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          name:
+                            type: string
+                        type: object
+                      type: array
+                    sensitiveParameterReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    server-technologies:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          serverTechnologyName:
+                            enum:
+                              - Jenkins
+                              - SharePoint
+                              - Oracle Application Server
+                              - Python
+                              - Oracle Identity Manager
+                              - Spring Boot
+                              - CouchDB
+                              - SQLite
+                              - Handlebars
+                              - Mustache
+                              - Prototype
+                              - Zend
+                              - Redis
+                              - Underscore.js
+                              - Ember.js
+                              - ZURB Foundation
+                              - ef.js
+                              - Vue.js
+                              - UIKit
+                              - TYPO3 CMS
+                              - RequireJS
+                              - React
+                              - MooTools
+                              - Laravel
+                              - GraphQL
+                              - Google Web Toolkit
+                              - Express.js
+                              - CodeIgniter
+                              - Backbone.js
+                              - AngularJS
+                              - JavaScript
+                              - Nginx
+                              - Jetty
+                              - Joomla
+                              - JavaServer Faces (JSF)
+                              - Ruby
+                              - MongoDB
+                              - Django
+                              - Node.js
+                              - Citrix
+                              - JBoss
+                              - Elasticsearch
+                              - Apache Struts
+                              - XML
+                              - PostgreSQL
+                              - IBM DB2
+                              - Sybase/ASE
+                              - CGI
+                              - Proxy Servers
+                              - SSI (Server Side Includes)
+                              - Cisco
+                              - Novell
+                              - Macromedia JRun
+                              - BEA Systems WebLogic Server
+                              - Lotus Domino
+                              - MySQL
+                              - Oracle
+                              - Microsoft SQL Server
+                              - PHP
+                              - Outlook Web Access
+                              - Apache/NCSA HTTP Server
+                              - Apache Tomcat
+                              - WordPress
+                              - Macromedia ColdFusion
+                              - Unix/Linux
+                              - Microsoft Windows
+                              - ASP.NET
+                              - Front Page Server Extensions (FPSE)
+                              - IIS
+                              - WebDAV
+                              - ASP
+                              - Java Servlets/JSP
+                              - jQuery
+                            type: string
+                        type: object
+                      type: array
+                    serverTechnologyReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    signature-requirements:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          tag:
+                            type: string
+                        type: object
+                      type: array
+                    signature-sets:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          alarm:
+                            type: boolean
+                          block:
+                            type: boolean
+                          name:
+                            type: string
+                        type: object
+                        x-kubernetes-preserve-unknown-fields: true
+                      type: array
+                    signature-settings:
+                      properties:
+                        attackSignatureFalsePositiveMode:
+                          enum:
+                            - detect
+                            - detect-and-allow
+                            - disabled
+                          type: string
+                        minimumAccuracyForAutoAddedSignatures:
+                          enum:
+                            - high
+                            - low
+                            - medium
+                          type: string
+                      type: object
+                    signatureReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    signatureSetReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    signatureSettingReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    signatures:
+                      items:
+                        properties:
+                          enabled:
+                            type: boolean
+                          name:
+                            type: string
+                          signatureId:
+                            type: integer
+                          tag:
+                            type: string
+                        type: object
+                      type: array
+                    softwareVersion:
+                      type: string
+                    template:
+                      properties:
+                        name:
+                          type: string
+                      type: object
+                    threat-campaigns:
+                      items:
+                        properties:
+                          isEnabled:
+                            type: boolean
+                          name:
+                            type: string
+                        type: object
+                      type: array
+                    threatCampaignReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    urlReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    urls:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          allowRenderingInFrames:
+                            enum:
+                              - never
+                              - only-same
+                            type: string
+                          allowRenderingInFramesOnlyFrom:
+                            type: string
+                          attackSignaturesCheck:
+                            type: boolean
+                          clickjackingProtection:
+                            type: boolean
+                          description:
+                            type: string
+                          disallowFileUploadOfExecutables:
+                            type: boolean
+                          html5CrossOriginRequestsEnforcement:
+                            properties:
+                              allowOriginsEnforcementMode:
+                                enum:
+                                  - replace-with
+                                  - unmodified
+                                type: string
+                              checkAllowedMethods:
+                                type: boolean
+                              crossDomainAllowedOrigin:
+                                items:
+                                  properties:
+                                    includeSubDomains:
+                                      type: boolean
+                                    originName:
+                                      type: string
+                                    originPort:
+                                      pattern: any|\d+
+                                      type: string
+                                    originProtocol:
+                                      enum:
+                                        - http
+                                        - http/https
+                                        - https
+                                      type: string
+                                  type: object
+                                type: array
+                              enforcementMode:
+                                enum:
+                                  - disabled
+                                  - enforce
+                                type: string
+                            type: object
+                          isAllowed:
+                            type: boolean
+                          mandatoryBody:
+                            type: boolean
+                          metacharOverrides:
+                            items:
+                              properties:
+                                isAllowed:
+                                  type: boolean
+                                metachar:
+                                  type: string
+                              type: object
+                            type: array
+                          metacharsOnUrlCheck:
+                            type: boolean
+                          method:
+                            enum:
+                              - ACL
+                              - BCOPY
+                              - BDELETE
+                              - BMOVE
+                              - BPROPFIND
+                              - BPROPPATCH
+                              - CHECKIN
+                              - CHECKOUT
+                              - CONNECT
+                              - COPY
+                              - DELETE
+                              - GET
+                              - HEAD
+                              - LINK
+                              - LOCK
+                              - MERGE
+                              - MKCOL
+                              - MKWORKSPACE
+                              - MOVE
+                              - NOTIFY
+                              - OPTIONS
+                              - PATCH
+                              - POLL
+                              - POST
+                              - PROPFIND
+                              - PROPPATCH
+                              - PUT
+                              - REPORT
+                              - RPC_IN_DATA
+                              - RPC_OUT_DATA
+                              - SEARCH
+                              - SUBSCRIBE
+                              - TRACE
+                              - TRACK
+                              - UNLINK
+                              - UNLOCK
+                              - UNSUBSCRIBE
+                              - VERSION_CONTROL
+                              - X-MS-ENUMATTS
+                              - '*'
+                            type: string
+                          methodOverrides:
+                            items:
+                              properties:
+                                allowed:
+                                  type: boolean
+                                method:
+                                  enum:
+                                    - ACL
+                                    - BCOPY
+                                    - BDELETE
+                                    - BMOVE
+                                    - BPROPFIND
+                                    - BPROPPATCH
+                                    - CHECKIN
+                                    - CHECKOUT
+                                    - CONNECT
+                                    - COPY
+                                    - DELETE
+                                    - GET
+                                    - HEAD
+                                    - LINK
+                                    - LOCK
+                                    - MERGE
+                                    - MKCOL
+                                    - MKWORKSPACE
+                                    - MOVE
+                                    - NOTIFY
+                                    - OPTIONS
+                                    - PATCH
+                                    - POLL
+                                    - POST
+                                    - PROPFIND
+                                    - PROPPATCH
+                                    - PUT
+                                    - REPORT
+                                    - RPC_IN_DATA
+                                    - RPC_OUT_DATA
+                                    - SEARCH
+                                    - SUBSCRIBE
+                                    - TRACE
+                                    - TRACK
+                                    - UNLINK
+                                    - UNLOCK
+                                    - UNSUBSCRIBE
+                                    - VERSION_CONTROL
+                                    - X-MS-ENUMATTS
+                                  type: string
+                              type: object
+                            type: array
+                          methodsOverrideOnUrlCheck:
+                            type: boolean
+                          name:
+                            type: string
+                          operationId:
+                            type: string
+                          positionalParameters:
+                            items:
+                              properties:
+                                parameter:
+                                  properties:
+                                    $action:
+                                      enum:
+                                        - delete
+                                      type: string
+                                    allowEmptyValue:
+                                      type: boolean
+                                    allowRepeatedParameterName:
+                                      type: boolean
+                                    arraySerializationFormat:
+                                      enum:
+                                        - csv
+                                        - form
+                                        - label
+                                        - matrix
+                                        - multi
+                                        - multipart
+                                        - pipe
+                                        - ssv
+                                        - tsv
+                                      type: string
+                                    attackSignaturesCheck:
+                                      type: boolean
+                                    checkMaxValue:
+                                      type: boolean
+                                    checkMaxValueLength:
+                                      type: boolean
+                                    checkMetachars:
+                                      type: boolean
+                                    checkMinValue:
+                                      type: boolean
+                                    checkMinValueLength:
+                                      type: boolean
+                                    checkMultipleOfValue:
+                                      type: boolean
+                                    contentProfile:
+                                      properties:
+                                        name:
+                                          type: string
+                                      type: object
+                                    dataType:
+                                      enum:
+                                        - alpha-numeric
+                                        - binary
+                                        - boolean
+                                        - decimal
+                                        - email
+                                        - integer
+                                        - none
+                                        - phone
+                                      type: string
+                                    decodeValueAsBase64:
+                                      enum:
+                                        - enabled
+                                        - disabled
+                                        - required
+                                      type: string
+                                    disallowFileUploadOfExecutables:
+                                      type: boolean
+                                    enableRegularExpression:
+                                      type: boolean
+                                    exclusiveMax:
+                                      type: boolean
+                                    exclusiveMin:
+                                      type: boolean
+                                    isBase64:
+                                      type: boolean
+                                    isCookie:
+                                      type: boolean
+                                    isHeader:
+                                      type: boolean
+                                    level:
+                                      enum:
+                                        - global
+                                        - url
+                                      type: string
+                                    mandatory:
+                                      type: boolean
+                                    maximumLength:
+                                      type: integer
+                                    maximumValue:
+                                      type: integer
+                                    metacharsOnParameterValueCheck:
+                                      type: boolean
+                                    minimumLength:
+                                      type: integer
+                                    minimumValue:
+                                      type: integer
+                                    multipleOf:
+                                      type: integer
+                                    name:
+                                      type: string
+                                    nameMetacharOverrides:
+                                      items:
+                                        properties:
+                                          isAllowed:
+                                            type: boolean
+                                          metachar:
+                                            type: string
+                                        type: object
+                                      type: array
+                                    objectSerializationStyle:
+                                      type: string
+                                    parameterEnumValues:
+                                      items:
+                                        type: string
+                                      type: array
+                                    parameterLocation:
+                                      enum:
+                                        - any
+                                        - cookie
+                                        - form-data
+                                        - header
+                                        - path
+                                        - query
+                                      type: string
+                                    regularExpression:
+                                      type: string
+                                    sensitiveParameter:
+                                      type: boolean
+                                    signatureOverrides:
+                                      items:
+                                        properties:
+                                          enabled:
+                                            type: boolean
+                                          name:
+                                            type: string
+                                          signatureId:
+                                            type: integer
+                                          tag:
+                                            type: string
+                                        type: object
+                                      type: array
+                                    staticValues:
+                                      type: string
+                                    type:
+                                      enum:
+                                        - explicit
+                                        - wildcard
+                                      type: string
+                                    url:
+                                      type: object
+                                    valueMetacharOverrides:
+                                      items:
+                                        properties:
+                                          isAllowed:
+                                            type: boolean
+                                          metachar:
+                                            type: string
+                                        type: object
+                                      type: array
+                                    valueType:
+                                      enum:
+                                        - array
+                                        - auto-detect
+                                        - dynamic-content
+                                        - dynamic-parameter-name
+                                        - ignore
+                                        - json
+                                        - object
+                                        - openapi-array
+                                        - static-content
+                                        - user-input
+                                        - xml
+                                      type: string
+                                    wildcardOrder:
+                                      type: integer
+                                  type: object
+                                urlSegmentIndex:
+                                  type: integer
+                              type: object
+                            type: array
+                          protocol:
+                            enum:
+                              - http
+                              - https
+                            type: string
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                          type:
+                            enum:
+                              - explicit
+                              - wildcard
+                            type: string
+                          urlContentProfiles:
+                            items:
+                              properties:
+                                contentProfile:
+                                  properties:
+                                    name:
+                                      type: string
+                                  type: object
+                                headerName:
+                                  type: string
+                                headerOrder:
+                                  type: string
+                                headerValue:
+                                  type: string
+                                name:
+                                  type: string
+                                type:
+                                  enum:
+                                    - apply-content-signatures
+                                    - apply-value-and-content-signatures
+                                    - disallow
+                                    - do-nothing
+                                    - form-data
+                                    - gwt
+                                    - json
+                                    - xml
+                                    - grpc
+                                  type: string
+                              type: object
+                            type: array
+                          wildcardOrder:
+                            type: integer
+                        type: object
+                      type: array
+                    whitelist-ips:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          blockRequests:
+                            enum:
+                              - always
+                              - never
+                              - policy-default
+                            type: string
+                          ipAddress:
+                            pattern: '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}'
+                            type: string
+                          ipMask:
+                            pattern: '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}'
+                            type: string
+                          neverLogRequests:
+                            type: boolean
+                        type: object
+                      type: array
+                    whitelistIpReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    xml-profiles:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          attackSignaturesCheck:
+                            type: boolean
+                          defenseAttributes:
+                            properties:
+                              allowCDATA:
+                                type: boolean
+                              allowDTDs:
+                                type: boolean
+                              allowExternalReferences:
+                                type: boolean
+                              allowProcessingInstructions:
+                                type: boolean
+                              maximumAttributeValueLength:
+                                pattern: any|\d+
+                                type: string
+                              maximumAttributesPerElement:
+                                pattern: any|\d+
+                                type: string
+                              maximumChildrenPerElement:
+                                pattern: any|\d+
+                                type: string
+                              maximumDocumentDepth:
+                                pattern: any|\d+
+                                type: string
+                              maximumDocumentSize:
+                                pattern: any|\d+
+                                type: string
+                              maximumElements:
+                                pattern: any|\d+
+                                type: string
+                              maximumNSDeclarations:
+                                pattern: any|\d+
+                                type: string
+                              maximumNameLength:
+                                pattern: any|\d+
+                                type: string
+                              maximumNamespaceLength:
+                                pattern: any|\d+
+                                type: string
+                              tolerateCloseTagShorthand:
+                                type: boolean
+                              tolerateLeadingWhiteSpace:
+                                type: boolean
+                              tolerateNumericNames:
+                                type: boolean
+                            type: object
+                          description:
+                            type: string
+                          enableWss:
+                            type: boolean
+                          followSchemaLinks:
+                            type: boolean
+                          name:
+                            type: string
+                          signatureOverrides:
+                            items:
+                              properties:
+                                enabled:
+                                  type: boolean
+                                name:
+                                  type: string
+                                signatureId:
+                                  type: integer
+                                tag:
+                                  type: string
+                              type: object
+                            type: array
+                        type: object
+                      type: array
+                    xml-validation-files:
+                      items:
+                        properties:
+                          $action:
+                            enum:
+                              - delete
+                            type: string
+                          contents:
+                            type: string
+                          fileName:
+                            type: string
+                          isBase64:
+                            type: boolean
+                        type: object
+                      type: array
+                    xmlProfileReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                    xmlValidationFileReference:
+                      properties:
+                        link:
+                          pattern: ^http
+                          type: string
+                      type: object
+                  type: object
+              type: object
+          type: object
+      served: true
+      storage: true
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_apusersigs.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_apusersigs.yaml
new file mode 100644
index 000000000..044eeb456
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotect.f5.com_apusersigs.yaml
@@ -0,0 +1,93 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.0
+  creationTimestamp: null
+  name: apusersigs.appprotect.f5.com
+spec:
+  group: appprotect.f5.com
+  names:
+    kind: APUserSig
+    listKind: APUserSigList
+    plural: apusersigs
+    singular: apusersig
+  preserveUnknownFields: false
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          description: APUserSig is the Schema for the apusersigs API
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: APUserSigSpec defines the desired state of APUserSig
+              properties:
+                properties:
+                  type: string
+                signatures:
+                  items:
+                    properties:
+                      accuracy:
+                        enum:
+                          - high
+                          - medium
+                          - low
+                        type: string
+                      attackType:
+                        properties:
+                          name:
+                            type: string
+                        type: object
+                      description:
+                        type: string
+                      name:
+                        type: string
+                      references:
+                        properties:
+                          type:
+                            enum:
+                              - bugtraq
+                              - cve
+                              - nessus
+                              - url
+                            type: string
+                          value:
+                            type: string
+                        type: object
+                      risk:
+                        enum:
+                          - high
+                          - medium
+                          - low
+                        type: string
+                      rule:
+                        type: string
+                      signatureType:
+                        enum:
+                          - request
+                          - response
+                        type: string
+                      systems:
+                        items:
+                          properties:
+                            name:
+                              type: string
+                          type: object
+                        type: array
+                    type: object
+                  type: array
+                tag:
+                  type: string
+              type: object
+          type: object
+      served: true
+      storage: true
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdoslogconfs.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdoslogconfs.yaml
new file mode 100644
index 000000000..d41efc534
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdoslogconfs.yaml
@@ -0,0 +1,70 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.0
+  creationTimestamp: null
+  name: apdoslogconfs.appprotectdos.f5.com
+spec:
+  group: appprotectdos.f5.com
+  names:
+    kind: APDosLogConf
+    listKind: APDosLogConfList
+    plural: apdoslogconfs
+    singular: apdoslogconf
+  preserveUnknownFields: false
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          description: APDosLogConf is the Schema for the APDosLogConfs API
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: APDosLogConfSpec defines the desired state of APDosLogConf
+              properties:
+                content:
+                  properties:
+                    format:
+                      enum:
+                        - splunk
+                        - arcsight
+                        - user-defined
+                      default: splunk
+                      type: string
+                    format_string:
+                      type: string
+                    max_message_size:
+                      pattern: ^([1-9]|[1-5][0-9]|6[0-4])k$
+                      default: 5k
+                      type: string
+                  type: object
+                filter:
+                  properties:
+                    traffic-mitigation-stats:
+                      enum:
+                        - none
+                        - all
+                      default: all
+                      type: string
+                    bad-actors:
+                      pattern: ^(none|all|top ([1-9]|[1-9][0-9]|[1-9][0-9]{2,4}|100000))$
+                      default: top 10
+                      type: string
+                    attack-signatures:
+                      pattern: ^(none|all|top ([1-9]|[1-9][0-9]|[1-9][0-9]{2,4}|100000))$
+                      default: top 10
+                      type: string
+                  type: object
+              type: object
+          type: object
+      served: true
+      storage: true
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdospolicy.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdospolicy.yaml
new file mode 100644
index 000000000..cc5b9bd16
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_apdospolicy.yaml
@@ -0,0 +1,68 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.4.0
+  creationTimestamp: null
+  name: apdospolicies.appprotectdos.f5.com
+spec:
+  group: appprotectdos.f5.com
+  names:
+    kind: APDosPolicy
+    listKind: APDosPoliciesList
+    plural: apdospolicies
+    singular: apdospolicy
+  preserveUnknownFields: false
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          type: object
+          description: APDosPolicy is the Schema for the APDosPolicy API
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              type: object
+              description: APDosPolicySpec defines the desired state of APDosPolicy
+              properties:
+                mitigation_mode:
+                  enum:
+                    - "standard"
+                    - "conservative"
+                    - "none"
+                  default: "standard"
+                  type: string
+                signatures:
+                  enum:
+                    - "on"
+                    - "off"
+                  default: "on"
+                  type: string
+                bad_actors:
+                  enum:
+                    - "on"
+                    - "off"
+                  default: "on"
+                  type: string
+                automation_tools_detection:
+                  enum:
+                    - "on"
+                    - "off"
+                  default: "on"
+                  type: string
+                tls_fingerprint:
+                  enum:
+                    - "on"
+                    - "off"
+                  default: "on"
+                  type: string
+      served: true
+      storage: true
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_dosprotectedresources.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_dosprotectedresources.yaml
new file mode 100644
index 000000000..0c6f16b97
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/appprotectdos.f5.com_dosprotectedresources.yaml
@@ -0,0 +1,87 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: dosprotectedresources.appprotectdos.f5.com
+spec:
+  group: appprotectdos.f5.com
+  names:
+    kind: DosProtectedResource
+    listKind: DosProtectedResourceList
+    plural: dosprotectedresources
+    shortNames:
+      - pr
+    singular: dosprotectedresource
+  scope: Namespaced
+  versions:
+    - name: v1beta1
+      schema:
+        openAPIV3Schema:
+          description: DosProtectedResource defines a Dos protected resource.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: DosProtectedResourceSpec deines the properties and values a DosProtectedResource can have.
+              type: object
+              properties:
+                apDosMonitor:
+                  description: 'ApDosMonitor is how NGINX App Protect DoS monitors the stress level of the protected object. The monitor requests are sent from localhost (127.0.0.1). Default value: URI - None, protocol - http1, timeout - NGINX App Protect DoS default.'
+                  type: object
+                  properties:
+                    protocol:
+                      description: Protocol determines if the server listens on http1 / http2 / grpc. The default is http1.
+                      type: string
+                      enum:
+                        - http1
+                        - http2
+                        - grpc
+                    timeout:
+                      description: Timeout determines how long (in seconds) should NGINX App Protect DoS wait for a response. Default is 10 seconds for http1/http2 and 5 seconds for grpc.
+                      type: integer
+                      format: int64
+                    uri:
+                      description: 'URI is the destination to the desired protected object in the nginx.conf:'
+                      type: string
+                apDosPolicy:
+                  description: ApDosPolicy is the namespace/name of a ApDosPolicy resource
+                  type: string
+                dosAccessLogDest:
+                  description: DosAccessLogDest is the network address for the access logs
+                  type: string
+                dosSecurityLog:
+                  description: DosSecurityLog defines the security log of the DosProtectedResource.
+                  type: object
+                  properties:
+                    apDosLogConf:
+                      description: ApDosLogConf is the namespace/name of a APDosLogConf resource
+                      type: string
+                    dosLogDest:
+                      description: DosLogDest is the network address of a logging service, can be either IP or DNS name.
+                      type: string
+                    enable:
+                      description: Enable enables the security logging feature if set to true
+                      type: boolean
+                enable:
+                  description: Enable enables the DOS feature if set to true
+                  type: boolean
+                name:
+                  description: Name is the name of protected object, max of 63 characters.
+                  type: string
+      served: true
+      storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_globalconfigurations.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_globalconfigurations.yaml
new file mode 100644
index 000000000..368c33d27
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_globalconfigurations.yaml
@@ -0,0 +1,56 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: globalconfigurations.k8s.nginx.org
+spec:
+  group: k8s.nginx.org
+  names:
+    kind: GlobalConfiguration
+    listKind: GlobalConfigurationList
+    plural: globalconfigurations
+    shortNames:
+      - gc
+    singular: globalconfiguration
+  scope: Namespaced
+  versions:
+    - name: v1alpha1
+      schema:
+        openAPIV3Schema:
+          description: GlobalConfiguration defines the GlobalConfiguration resource.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: GlobalConfigurationSpec is the spec of the GlobalConfiguration resource.
+              type: object
+              properties:
+                listeners:
+                  type: array
+                  items:
+                    description: Listener defines a listener.
+                    type: object
+                    properties:
+                      name:
+                        type: string
+                      port:
+                        type: integer
+                      protocol:
+                        type: string
+      served: true
+      storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_policies.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_policies.yaml
new file mode 100644
index 000000000..7208d88f8
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_policies.yaml
@@ -0,0 +1,274 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: policies.k8s.nginx.org
+spec:
+  group: k8s.nginx.org
+  names:
+    kind: Policy
+    listKind: PolicyList
+    plural: policies
+    shortNames:
+      - pol
+    singular: policy
+  scope: Namespaced
+  versions:
+    - additionalPrinterColumns:
+        - description: Current state of the Policy. If the resource has a valid status, it means it has been validated and accepted by the Ingress Controller.
+          jsonPath: .status.state
+          name: State
+          type: string
+        - jsonPath: .metadata.creationTimestamp
+          name: Age
+          type: date
+      name: v1
+      schema:
+        openAPIV3Schema:
+          description: Policy defines a Policy for VirtualServer and VirtualServerRoute resources.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: PolicySpec is the spec of the Policy resource. The spec includes multiple fields, where each field represents a different policy. Only one policy (field) is allowed.
+              type: object
+              properties:
+                accessControl:
+                  description: 'AccessControl defines an access policy based on the source IP of a request. policy status: production-ready'
+                  type: object
+                  properties:
+                    allow:
+                      type: array
+                      items:
+                        type: string
+                    deny:
+                      type: array
+                      items:
+                        type: string
+                egressMTLS:
+                  description: 'EgressMTLS defines an Egress MTLS policy. policy status: preview'
+                  type: object
+                  properties:
+                    ciphers:
+                      type: string
+                    protocols:
+                      type: string
+                    serverName:
+                      type: boolean
+                    sessionReuse:
+                      type: boolean
+                    sslName:
+                      type: string
+                    tlsSecret:
+                      type: string
+                    trustedCertSecret:
+                      type: string
+                    verifyDepth:
+                      type: integer
+                    verifyServer:
+                      type: boolean
+                ingressClassName:
+                  type: string
+                ingressMTLS:
+                  description: 'IngressMTLS defines an Ingress MTLS policy. policy status: preview'
+                  type: object
+                  properties:
+                    clientCertSecret:
+                      type: string
+                    verifyClient:
+                      type: string
+                    verifyDepth:
+                      type: integer
+                jwt:
+                  description: 'JWTAuth holds JWT authentication configuration. policy status: preview'
+                  type: object
+                  properties:
+                    realm:
+                      type: string
+                    secret:
+                      type: string
+                    token:
+                      type: string
+                oidc:
+                  description: OIDC defines an Open ID Connect policy.
+                  type: object
+                  properties:
+                    authEndpoint:
+                      type: string
+                    clientID:
+                      type: string
+                    clientSecret:
+                      type: string
+                    jwksURI:
+                      type: string
+                    redirectURI:
+                      type: string
+                    scope:
+                      type: string
+                    tokenEndpoint:
+                      type: string
+                rateLimit:
+                  description: 'RateLimit defines a rate limit policy. policy status: preview'
+                  type: object
+                  properties:
+                    burst:
+                      type: integer
+                    delay:
+                      type: integer
+                    dryRun:
+                      type: boolean
+                    key:
+                      type: string
+                    logLevel:
+                      type: string
+                    noDelay:
+                      type: boolean
+                    rate:
+                      type: string
+                    rejectCode:
+                      type: integer
+                    zoneSize:
+                      type: string
+                waf:
+                  description: 'WAF defines an WAF policy. policy status: preview'
+                  type: object
+                  properties:
+                    apPolicy:
+                      type: string
+                    enable:
+                      type: boolean
+                    securityLog:
+                      description: SecurityLog defines the security log of a WAF policy.
+                      type: object
+                      properties:
+                        apLogConf:
+                          type: string
+                        enable:
+                          type: boolean
+                        logDest:
+                          type: string
+            status:
+              description: PolicyStatus is the status of the policy resource
+              type: object
+              properties:
+                message:
+                  type: string
+                reason:
+                  type: string
+                state:
+                  type: string
+      served: true
+      storage: true
+      subresources:
+        status: {}
+    - name: v1alpha1
+      schema:
+        openAPIV3Schema:
+          description: Policy defines a Policy for VirtualServer and VirtualServerRoute resources.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: PolicySpec is the spec of the Policy resource. The spec includes multiple fields, where each field represents a different policy. Only one policy (field) is allowed.
+              type: object
+              properties:
+                accessControl:
+                  description: AccessControl defines an access policy based on the source IP of a request.
+                  type: object
+                  properties:
+                    allow:
+                      type: array
+                      items:
+                        type: string
+                    deny:
+                      type: array
+                      items:
+                        type: string
+                egressMTLS:
+                  description: EgressMTLS defines an Egress MTLS policy.
+                  type: object
+                  properties:
+                    ciphers:
+                      type: string
+                    protocols:
+                      type: string
+                    serverName:
+                      type: boolean
+                    sessionReuse:
+                      type: boolean
+                    sslName:
+                      type: string
+                    tlsSecret:
+                      type: string
+                    trustedCertSecret:
+                      type: string
+                    verifyDepth:
+                      type: integer
+                    verifyServer:
+                      type: boolean
+                ingressMTLS:
+                  description: IngressMTLS defines an Ingress MTLS policy.
+                  type: object
+                  properties:
+                    clientCertSecret:
+                      type: string
+                    verifyClient:
+                      type: string
+                    verifyDepth:
+                      type: integer
+                jwt:
+                  description: JWTAuth holds JWT authentication configuration.
+                  type: object
+                  properties:
+                    realm:
+                      type: string
+                    secret:
+                      type: string
+                    token:
+                      type: string
+                rateLimit:
+                  description: RateLimit defines a rate limit policy.
+                  type: object
+                  properties:
+                    burst:
+                      type: integer
+                    delay:
+                      type: integer
+                    dryRun:
+                      type: boolean
+                    key:
+                      type: string
+                    logLevel:
+                      type: string
+                    noDelay:
+                      type: boolean
+                    rate:
+                      type: string
+                    rejectCode:
+                      type: integer
+                    zoneSize:
+                      type: string
+      served: true
+      storage: false
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_transportservers.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_transportservers.yaml
new file mode 100644
index 000000000..6c8351786
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_transportservers.yaml
@@ -0,0 +1,157 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: transportservers.k8s.nginx.org
+spec:
+  group: k8s.nginx.org
+  names:
+    kind: TransportServer
+    listKind: TransportServerList
+    plural: transportservers
+    shortNames:
+      - ts
+    singular: transportserver
+  scope: Namespaced
+  versions:
+    - additionalPrinterColumns:
+        - description: Current state of the TransportServer. If the resource has a valid status, it means it has been validated and accepted by the Ingress Controller.
+          jsonPath: .status.state
+          name: State
+          type: string
+        - jsonPath: .status.reason
+          name: Reason
+          type: string
+        - jsonPath: .metadata.creationTimestamp
+          name: Age
+          type: date
+      name: v1alpha1
+      schema:
+        openAPIV3Schema:
+          description: TransportServer defines the TransportServer resource.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: TransportServerSpec is the spec of the TransportServer resource.
+              type: object
+              properties:
+                action:
+                  description: Action defines an action.
+                  type: object
+                  properties:
+                    pass:
+                      type: string
+                host:
+                  type: string
+                ingressClassName:
+                  type: string
+                listener:
+                  description: TransportServerListener defines a listener for a TransportServer.
+                  type: object
+                  properties:
+                    name:
+                      type: string
+                    protocol:
+                      type: string
+                serverSnippets:
+                  type: string
+                sessionParameters:
+                  description: SessionParameters defines session parameters.
+                  type: object
+                  properties:
+                    timeout:
+                      type: string
+                streamSnippets:
+                  type: string
+                upstreamParameters:
+                  description: UpstreamParameters defines parameters for an upstream.
+                  type: object
+                  properties:
+                    connectTimeout:
+                      type: string
+                    nextUpstream:
+                      type: boolean
+                    nextUpstreamTimeout:
+                      type: string
+                    nextUpstreamTries:
+                      type: integer
+                    udpRequests:
+                      type: integer
+                    udpResponses:
+                      type: integer
+                upstreams:
+                  type: array
+                  items:
+                    description: Upstream defines an upstream.
+                    type: object
+                    properties:
+                      failTimeout:
+                        type: string
+                      healthCheck:
+                        description: HealthCheck defines the parameters for active Upstream HealthChecks.
+                        type: object
+                        properties:
+                          enable:
+                            type: boolean
+                          fails:
+                            type: integer
+                          interval:
+                            type: string
+                          jitter:
+                            type: string
+                          match:
+                            description: Match defines the parameters of a custom health check.
+                            type: object
+                            properties:
+                              expect:
+                                type: string
+                              send:
+                                type: string
+                          passes:
+                            type: integer
+                          port:
+                            type: integer
+                          timeout:
+                            type: string
+                      loadBalancingMethod:
+                        type: string
+                      maxConns:
+                        type: integer
+                      maxFails:
+                        type: integer
+                      name:
+                        type: string
+                      port:
+                        type: integer
+                      service:
+                        type: string
+            status:
+              description: TransportServerStatus defines the status for the TransportServer resource.
+              type: object
+              properties:
+                message:
+                  type: string
+                reason:
+                  type: string
+                state:
+                  type: string
+      served: true
+      storage: true
+      subresources:
+        status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualserverroutes.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualserverroutes.yaml
new file mode 100644
index 000000000..65db6d7dd
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualserverroutes.yaml
@@ -0,0 +1,635 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: virtualserverroutes.k8s.nginx.org
+spec:
+  group: k8s.nginx.org
+  names:
+    kind: VirtualServerRoute
+    listKind: VirtualServerRouteList
+    plural: virtualserverroutes
+    shortNames:
+      - vsr
+    singular: virtualserverroute
+  scope: Namespaced
+  versions:
+    - additionalPrinterColumns:
+        - description: Current state of the VirtualServerRoute. If the resource has a valid status, it means it has been validated and accepted by the Ingress Controller.
+          jsonPath: .status.state
+          name: State
+          type: string
+        - jsonPath: .spec.host
+          name: Host
+          type: string
+        - jsonPath: .status.externalEndpoints[*].ip
+          name: IP
+          type: string
+        - jsonPath: .status.externalEndpoints[*].ports
+          name: Ports
+          type: string
+        - jsonPath: .metadata.creationTimestamp
+          name: Age
+          type: date
+      name: v1
+      schema:
+        openAPIV3Schema:
+          description: VirtualServerRoute defines the VirtualServerRoute resource.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: VirtualServerRouteSpec is the spec of the VirtualServerRoute resource.
+              type: object
+              properties:
+                host:
+                  type: string
+                ingressClassName:
+                  type: string
+                subroutes:
+                  type: array
+                  items:
+                    description: Route defines a route.
+                    type: object
+                    properties:
+                      action:
+                        description: Action defines an action.
+                        type: object
+                        properties:
+                          pass:
+                            type: string
+                          proxy:
+                            description: ActionProxy defines a proxy in an Action.
+                            type: object
+                            properties:
+                              requestHeaders:
+                                description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                type: object
+                                properties:
+                                  pass:
+                                    type: boolean
+                                  set:
+                                    type: array
+                                    items:
+                                      description: Header defines an HTTP Header.
+                                      type: object
+                                      properties:
+                                        name:
+                                          type: string
+                                        value:
+                                          type: string
+                              responseHeaders:
+                                description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                type: object
+                                properties:
+                                  add:
+                                    type: array
+                                    items:
+                                      description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                      type: object
+                                      properties:
+                                        always:
+                                          type: boolean
+                                        name:
+                                          type: string
+                                        value:
+                                          type: string
+                                  hide:
+                                    type: array
+                                    items:
+                                      type: string
+                                  ignore:
+                                    type: array
+                                    items:
+                                      type: string
+                                  pass:
+                                    type: array
+                                    items:
+                                      type: string
+                              rewritePath:
+                                type: string
+                              upstream:
+                                type: string
+                          redirect:
+                            description: ActionRedirect defines a redirect in an Action.
+                            type: object
+                            properties:
+                              code:
+                                type: integer
+                              url:
+                                type: string
+                          return:
+                            description: ActionReturn defines a return in an Action.
+                            type: object
+                            properties:
+                              body:
+                                type: string
+                              code:
+                                type: integer
+                              type:
+                                type: string
+                      dos:
+                        type: string
+                      errorPages:
+                        type: array
+                        items:
+                          description: ErrorPage defines an ErrorPage in a Route.
+                          type: object
+                          properties:
+                            codes:
+                              type: array
+                              items:
+                                type: integer
+                            redirect:
+                              description: ErrorPageRedirect defines a redirect for an ErrorPage.
+                              type: object
+                              properties:
+                                code:
+                                  type: integer
+                                url:
+                                  type: string
+                            return:
+                              description: ErrorPageReturn defines a return for an ErrorPage.
+                              type: object
+                              properties:
+                                body:
+                                  type: string
+                                code:
+                                  type: integer
+                                headers:
+                                  type: array
+                                  items:
+                                    description: Header defines an HTTP Header.
+                                    type: object
+                                    properties:
+                                      name:
+                                        type: string
+                                      value:
+                                        type: string
+                                type:
+                                  type: string
+                      location-snippets:
+                        type: string
+                      matches:
+                        type: array
+                        items:
+                          description: Match defines a match.
+                          type: object
+                          properties:
+                            action:
+                              description: Action defines an action.
+                              type: object
+                              properties:
+                                pass:
+                                  type: string
+                                proxy:
+                                  description: ActionProxy defines a proxy in an Action.
+                                  type: object
+                                  properties:
+                                    requestHeaders:
+                                      description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        pass:
+                                          type: boolean
+                                        set:
+                                          type: array
+                                          items:
+                                            description: Header defines an HTTP Header.
+                                            type: object
+                                            properties:
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                    responseHeaders:
+                                      description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        add:
+                                          type: array
+                                          items:
+                                            description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                            type: object
+                                            properties:
+                                              always:
+                                                type: boolean
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                        hide:
+                                          type: array
+                                          items:
+                                            type: string
+                                        ignore:
+                                          type: array
+                                          items:
+                                            type: string
+                                        pass:
+                                          type: array
+                                          items:
+                                            type: string
+                                    rewritePath:
+                                      type: string
+                                    upstream:
+                                      type: string
+                                redirect:
+                                  description: ActionRedirect defines a redirect in an Action.
+                                  type: object
+                                  properties:
+                                    code:
+                                      type: integer
+                                    url:
+                                      type: string
+                                return:
+                                  description: ActionReturn defines a return in an Action.
+                                  type: object
+                                  properties:
+                                    body:
+                                      type: string
+                                    code:
+                                      type: integer
+                                    type:
+                                      type: string
+                            conditions:
+                              type: array
+                              items:
+                                description: Condition defines a condition in a MatchRule.
+                                type: object
+                                properties:
+                                  argument:
+                                    type: string
+                                  cookie:
+                                    type: string
+                                  header:
+                                    type: string
+                                  value:
+                                    type: string
+                                  variable:
+                                    type: string
+                            splits:
+                              type: array
+                              items:
+                                description: Split defines a split.
+                                type: object
+                                properties:
+                                  action:
+                                    description: Action defines an action.
+                                    type: object
+                                    properties:
+                                      pass:
+                                        type: string
+                                      proxy:
+                                        description: ActionProxy defines a proxy in an Action.
+                                        type: object
+                                        properties:
+                                          requestHeaders:
+                                            description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                            type: object
+                                            properties:
+                                              pass:
+                                                type: boolean
+                                              set:
+                                                type: array
+                                                items:
+                                                  description: Header defines an HTTP Header.
+                                                  type: object
+                                                  properties:
+                                                    name:
+                                                      type: string
+                                                    value:
+                                                      type: string
+                                          responseHeaders:
+                                            description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                            type: object
+                                            properties:
+                                              add:
+                                                type: array
+                                                items:
+                                                  description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                                  type: object
+                                                  properties:
+                                                    always:
+                                                      type: boolean
+                                                    name:
+                                                      type: string
+                                                    value:
+                                                      type: string
+                                              hide:
+                                                type: array
+                                                items:
+                                                  type: string
+                                              ignore:
+                                                type: array
+                                                items:
+                                                  type: string
+                                              pass:
+                                                type: array
+                                                items:
+                                                  type: string
+                                          rewritePath:
+                                            type: string
+                                          upstream:
+                                            type: string
+                                      redirect:
+                                        description: ActionRedirect defines a redirect in an Action.
+                                        type: object
+                                        properties:
+                                          code:
+                                            type: integer
+                                          url:
+                                            type: string
+                                      return:
+                                        description: ActionReturn defines a return in an Action.
+                                        type: object
+                                        properties:
+                                          body:
+                                            type: string
+                                          code:
+                                            type: integer
+                                          type:
+                                            type: string
+                                  weight:
+                                    type: integer
+                      path:
+                        type: string
+                      policies:
+                        type: array
+                        items:
+                          description: PolicyReference references a policy by name and an optional namespace.
+                          type: object
+                          properties:
+                            name:
+                              type: string
+                            namespace:
+                              type: string
+                      route:
+                        type: string
+                      splits:
+                        type: array
+                        items:
+                          description: Split defines a split.
+                          type: object
+                          properties:
+                            action:
+                              description: Action defines an action.
+                              type: object
+                              properties:
+                                pass:
+                                  type: string
+                                proxy:
+                                  description: ActionProxy defines a proxy in an Action.
+                                  type: object
+                                  properties:
+                                    requestHeaders:
+                                      description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        pass:
+                                          type: boolean
+                                        set:
+                                          type: array
+                                          items:
+                                            description: Header defines an HTTP Header.
+                                            type: object
+                                            properties:
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                    responseHeaders:
+                                      description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        add:
+                                          type: array
+                                          items:
+                                            description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                            type: object
+                                            properties:
+                                              always:
+                                                type: boolean
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                        hide:
+                                          type: array
+                                          items:
+                                            type: string
+                                        ignore:
+                                          type: array
+                                          items:
+                                            type: string
+                                        pass:
+                                          type: array
+                                          items:
+                                            type: string
+                                    rewritePath:
+                                      type: string
+                                    upstream:
+                                      type: string
+                                redirect:
+                                  description: ActionRedirect defines a redirect in an Action.
+                                  type: object
+                                  properties:
+                                    code:
+                                      type: integer
+                                    url:
+                                      type: string
+                                return:
+                                  description: ActionReturn defines a return in an Action.
+                                  type: object
+                                  properties:
+                                    body:
+                                      type: string
+                                    code:
+                                      type: integer
+                                    type:
+                                      type: string
+                            weight:
+                              type: integer
+                upstreams:
+                  type: array
+                  items:
+                    description: Upstream defines an upstream.
+                    type: object
+                    properties:
+                      buffer-size:
+                        type: string
+                      buffering:
+                        type: boolean
+                      buffers:
+                        description: UpstreamBuffers defines Buffer Configuration for an Upstream.
+                        type: object
+                        properties:
+                          number:
+                            type: integer
+                          size:
+                            type: string
+                      client-max-body-size:
+                        type: string
+                      connect-timeout:
+                        type: string
+                      fail-timeout:
+                        type: string
+                      healthCheck:
+                        description: HealthCheck defines the parameters for active Upstream HealthChecks.
+                        type: object
+                        properties:
+                          connect-timeout:
+                            type: string
+                          enable:
+                            type: boolean
+                          fails:
+                            type: integer
+                          grpcService:
+                            type: string
+                          grpcStatus:
+                            type: integer
+                          headers:
+                            type: array
+                            items:
+                              description: Header defines an HTTP Header.
+                              type: object
+                              properties:
+                                name:
+                                  type: string
+                                value:
+                                  type: string
+                          interval:
+                            type: string
+                          jitter:
+                            type: string
+                          mandatory:
+                            type: boolean
+                          passes:
+                            type: integer
+                          path:
+                            type: string
+                          persistent:
+                            type: boolean
+                          port:
+                            type: integer
+                          read-timeout:
+                            type: string
+                          send-timeout:
+                            type: string
+                          statusMatch:
+                            type: string
+                          tls:
+                            description: UpstreamTLS defines a TLS configuration for an Upstream.
+                            type: object
+                            properties:
+                              enable:
+                                type: boolean
+                      keepalive:
+                        type: integer
+                      lb-method:
+                        type: string
+                      max-conns:
+                        type: integer
+                      max-fails:
+                        type: integer
+                      name:
+                        type: string
+                      next-upstream:
+                        type: string
+                      next-upstream-timeout:
+                        type: string
+                      next-upstream-tries:
+                        type: integer
+                      ntlm:
+                        type: boolean
+                      port:
+                        type: integer
+                      queue:
+                        description: UpstreamQueue defines Queue Configuration for an Upstream.
+                        type: object
+                        properties:
+                          size:
+                            type: integer
+                          timeout:
+                            type: string
+                      read-timeout:
+                        type: string
+                      send-timeout:
+                        type: string
+                      service:
+                        type: string
+                      sessionCookie:
+                        description: SessionCookie defines the parameters for session persistence.
+                        type: object
+                        properties:
+                          domain:
+                            type: string
+                          enable:
+                            type: boolean
+                          expires:
+                            type: string
+                          httpOnly:
+                            type: boolean
+                          name:
+                            type: string
+                          path:
+                            type: string
+                          secure:
+                            type: boolean
+                      slow-start:
+                        type: string
+                      subselector:
+                        type: object
+                        additionalProperties:
+                          type: string
+                      tls:
+                        description: UpstreamTLS defines a TLS configuration for an Upstream.
+                        type: object
+                        properties:
+                          enable:
+                            type: boolean
+                      type:
+                        type: string
+                      use-cluster-ip:
+                        type: boolean
+            status:
+              description: VirtualServerRouteStatus defines the status for the VirtualServerRoute resource.
+              type: object
+              properties:
+                externalEndpoints:
+                  type: array
+                  items:
+                    description: ExternalEndpoint defines the IP and ports used to connect to this resource.
+                    type: object
+                    properties:
+                      ip:
+                        type: string
+                      ports:
+                        type: string
+                message:
+                  type: string
+                reason:
+                  type: string
+                referencedBy:
+                  type: string
+                state:
+                  type: string
+      served: true
+      storage: true
+      subresources:
+        status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualservers.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualservers.yaml
new file mode 100644
index 000000000..ad126fb3c
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/crds/k8s.nginx.org_virtualservers.yaml
@@ -0,0 +1,665 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.7.0
+  creationTimestamp: null
+  name: virtualservers.k8s.nginx.org
+spec:
+  group: k8s.nginx.org
+  names:
+    kind: VirtualServer
+    listKind: VirtualServerList
+    plural: virtualservers
+    shortNames:
+      - vs
+    singular: virtualserver
+  scope: Namespaced
+  versions:
+    - additionalPrinterColumns:
+        - description: Current state of the VirtualServer. If the resource has a valid status, it means it has been validated and accepted by the Ingress Controller.
+          jsonPath: .status.state
+          name: State
+          type: string
+        - jsonPath: .spec.host
+          name: Host
+          type: string
+        - jsonPath: .status.externalEndpoints[*].ip
+          name: IP
+          type: string
+        - jsonPath: .status.externalEndpoints[*].ports
+          name: Ports
+          type: string
+        - jsonPath: .metadata.creationTimestamp
+          name: Age
+          type: date
+      name: v1
+      schema:
+        openAPIV3Schema:
+          description: VirtualServer defines the VirtualServer resource.
+          type: object
+          properties:
+            apiVersion:
+              description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+              type: string
+            kind:
+              description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: VirtualServerSpec is the spec of the VirtualServer resource.
+              type: object
+              properties:
+                dos:
+                  type: string
+                host:
+                  type: string
+                http-snippets:
+                  type: string
+                ingressClassName:
+                  type: string
+                policies:
+                  type: array
+                  items:
+                    description: PolicyReference references a policy by name and an optional namespace.
+                    type: object
+                    properties:
+                      name:
+                        type: string
+                      namespace:
+                        type: string
+                routes:
+                  type: array
+                  items:
+                    description: Route defines a route.
+                    type: object
+                    properties:
+                      action:
+                        description: Action defines an action.
+                        type: object
+                        properties:
+                          pass:
+                            type: string
+                          proxy:
+                            description: ActionProxy defines a proxy in an Action.
+                            type: object
+                            properties:
+                              requestHeaders:
+                                description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                type: object
+                                properties:
+                                  pass:
+                                    type: boolean
+                                  set:
+                                    type: array
+                                    items:
+                                      description: Header defines an HTTP Header.
+                                      type: object
+                                      properties:
+                                        name:
+                                          type: string
+                                        value:
+                                          type: string
+                              responseHeaders:
+                                description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                type: object
+                                properties:
+                                  add:
+                                    type: array
+                                    items:
+                                      description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                      type: object
+                                      properties:
+                                        always:
+                                          type: boolean
+                                        name:
+                                          type: string
+                                        value:
+                                          type: string
+                                  hide:
+                                    type: array
+                                    items:
+                                      type: string
+                                  ignore:
+                                    type: array
+                                    items:
+                                      type: string
+                                  pass:
+                                    type: array
+                                    items:
+                                      type: string
+                              rewritePath:
+                                type: string
+                              upstream:
+                                type: string
+                          redirect:
+                            description: ActionRedirect defines a redirect in an Action.
+                            type: object
+                            properties:
+                              code:
+                                type: integer
+                              url:
+                                type: string
+                          return:
+                            description: ActionReturn defines a return in an Action.
+                            type: object
+                            properties:
+                              body:
+                                type: string
+                              code:
+                                type: integer
+                              type:
+                                type: string
+                      dos:
+                        type: string
+                      errorPages:
+                        type: array
+                        items:
+                          description: ErrorPage defines an ErrorPage in a Route.
+                          type: object
+                          properties:
+                            codes:
+                              type: array
+                              items:
+                                type: integer
+                            redirect:
+                              description: ErrorPageRedirect defines a redirect for an ErrorPage.
+                              type: object
+                              properties:
+                                code:
+                                  type: integer
+                                url:
+                                  type: string
+                            return:
+                              description: ErrorPageReturn defines a return for an ErrorPage.
+                              type: object
+                              properties:
+                                body:
+                                  type: string
+                                code:
+                                  type: integer
+                                headers:
+                                  type: array
+                                  items:
+                                    description: Header defines an HTTP Header.
+                                    type: object
+                                    properties:
+                                      name:
+                                        type: string
+                                      value:
+                                        type: string
+                                type:
+                                  type: string
+                      location-snippets:
+                        type: string
+                      matches:
+                        type: array
+                        items:
+                          description: Match defines a match.
+                          type: object
+                          properties:
+                            action:
+                              description: Action defines an action.
+                              type: object
+                              properties:
+                                pass:
+                                  type: string
+                                proxy:
+                                  description: ActionProxy defines a proxy in an Action.
+                                  type: object
+                                  properties:
+                                    requestHeaders:
+                                      description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        pass:
+                                          type: boolean
+                                        set:
+                                          type: array
+                                          items:
+                                            description: Header defines an HTTP Header.
+                                            type: object
+                                            properties:
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                    responseHeaders:
+                                      description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        add:
+                                          type: array
+                                          items:
+                                            description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                            type: object
+                                            properties:
+                                              always:
+                                                type: boolean
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                        hide:
+                                          type: array
+                                          items:
+                                            type: string
+                                        ignore:
+                                          type: array
+                                          items:
+                                            type: string
+                                        pass:
+                                          type: array
+                                          items:
+                                            type: string
+                                    rewritePath:
+                                      type: string
+                                    upstream:
+                                      type: string
+                                redirect:
+                                  description: ActionRedirect defines a redirect in an Action.
+                                  type: object
+                                  properties:
+                                    code:
+                                      type: integer
+                                    url:
+                                      type: string
+                                return:
+                                  description: ActionReturn defines a return in an Action.
+                                  type: object
+                                  properties:
+                                    body:
+                                      type: string
+                                    code:
+                                      type: integer
+                                    type:
+                                      type: string
+                            conditions:
+                              type: array
+                              items:
+                                description: Condition defines a condition in a MatchRule.
+                                type: object
+                                properties:
+                                  argument:
+                                    type: string
+                                  cookie:
+                                    type: string
+                                  header:
+                                    type: string
+                                  value:
+                                    type: string
+                                  variable:
+                                    type: string
+                            splits:
+                              type: array
+                              items:
+                                description: Split defines a split.
+                                type: object
+                                properties:
+                                  action:
+                                    description: Action defines an action.
+                                    type: object
+                                    properties:
+                                      pass:
+                                        type: string
+                                      proxy:
+                                        description: ActionProxy defines a proxy in an Action.
+                                        type: object
+                                        properties:
+                                          requestHeaders:
+                                            description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                            type: object
+                                            properties:
+                                              pass:
+                                                type: boolean
+                                              set:
+                                                type: array
+                                                items:
+                                                  description: Header defines an HTTP Header.
+                                                  type: object
+                                                  properties:
+                                                    name:
+                                                      type: string
+                                                    value:
+                                                      type: string
+                                          responseHeaders:
+                                            description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                            type: object
+                                            properties:
+                                              add:
+                                                type: array
+                                                items:
+                                                  description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                                  type: object
+                                                  properties:
+                                                    always:
+                                                      type: boolean
+                                                    name:
+                                                      type: string
+                                                    value:
+                                                      type: string
+                                              hide:
+                                                type: array
+                                                items:
+                                                  type: string
+                                              ignore:
+                                                type: array
+                                                items:
+                                                  type: string
+                                              pass:
+                                                type: array
+                                                items:
+                                                  type: string
+                                          rewritePath:
+                                            type: string
+                                          upstream:
+                                            type: string
+                                      redirect:
+                                        description: ActionRedirect defines a redirect in an Action.
+                                        type: object
+                                        properties:
+                                          code:
+                                            type: integer
+                                          url:
+                                            type: string
+                                      return:
+                                        description: ActionReturn defines a return in an Action.
+                                        type: object
+                                        properties:
+                                          body:
+                                            type: string
+                                          code:
+                                            type: integer
+                                          type:
+                                            type: string
+                                  weight:
+                                    type: integer
+                      path:
+                        type: string
+                      policies:
+                        type: array
+                        items:
+                          description: PolicyReference references a policy by name and an optional namespace.
+                          type: object
+                          properties:
+                            name:
+                              type: string
+                            namespace:
+                              type: string
+                      route:
+                        type: string
+                      splits:
+                        type: array
+                        items:
+                          description: Split defines a split.
+                          type: object
+                          properties:
+                            action:
+                              description: Action defines an action.
+                              type: object
+                              properties:
+                                pass:
+                                  type: string
+                                proxy:
+                                  description: ActionProxy defines a proxy in an Action.
+                                  type: object
+                                  properties:
+                                    requestHeaders:
+                                      description: ProxyRequestHeaders defines the request headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        pass:
+                                          type: boolean
+                                        set:
+                                          type: array
+                                          items:
+                                            description: Header defines an HTTP Header.
+                                            type: object
+                                            properties:
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                    responseHeaders:
+                                      description: ProxyResponseHeaders defines the response headers manipulation in an ActionProxy.
+                                      type: object
+                                      properties:
+                                        add:
+                                          type: array
+                                          items:
+                                            description: AddHeader defines an HTTP Header with an optional Always field to use with the add_header NGINX directive.
+                                            type: object
+                                            properties:
+                                              always:
+                                                type: boolean
+                                              name:
+                                                type: string
+                                              value:
+                                                type: string
+                                        hide:
+                                          type: array
+                                          items:
+                                            type: string
+                                        ignore:
+                                          type: array
+                                          items:
+                                            type: string
+                                        pass:
+                                          type: array
+                                          items:
+                                            type: string
+                                    rewritePath:
+                                      type: string
+                                    upstream:
+                                      type: string
+                                redirect:
+                                  description: ActionRedirect defines a redirect in an Action.
+                                  type: object
+                                  properties:
+                                    code:
+                                      type: integer
+                                    url:
+                                      type: string
+                                return:
+                                  description: ActionReturn defines a return in an Action.
+                                  type: object
+                                  properties:
+                                    body:
+                                      type: string
+                                    code:
+                                      type: integer
+                                    type:
+                                      type: string
+                            weight:
+                              type: integer
+                server-snippets:
+                  type: string
+                tls:
+                  description: TLS defines TLS configuration for a VirtualServer.
+                  type: object
+                  properties:
+                    redirect:
+                      description: TLSRedirect defines a redirect for a TLS.
+                      type: object
+                      properties:
+                        basedOn:
+                          type: string
+                        code:
+                          type: integer
+                        enable:
+                          type: boolean
+                    secret:
+                      type: string
+                upstreams:
+                  type: array
+                  items:
+                    description: Upstream defines an upstream.
+                    type: object
+                    properties:
+                      buffer-size:
+                        type: string
+                      buffering:
+                        type: boolean
+                      buffers:
+                        description: UpstreamBuffers defines Buffer Configuration for an Upstream.
+                        type: object
+                        properties:
+                          number:
+                            type: integer
+                          size:
+                            type: string
+                      client-max-body-size:
+                        type: string
+                      connect-timeout:
+                        type: string
+                      fail-timeout:
+                        type: string
+                      healthCheck:
+                        description: HealthCheck defines the parameters for active Upstream HealthChecks.
+                        type: object
+                        properties:
+                          connect-timeout:
+                            type: string
+                          enable:
+                            type: boolean
+                          fails:
+                            type: integer
+                          grpcService:
+                            type: string
+                          grpcStatus:
+                            type: integer
+                          headers:
+                            type: array
+                            items:
+                              description: Header defines an HTTP Header.
+                              type: object
+                              properties:
+                                name:
+                                  type: string
+                                value:
+                                  type: string
+                          interval:
+                            type: string
+                          jitter:
+                            type: string
+                          mandatory:
+                            type: boolean
+                          passes:
+                            type: integer
+                          path:
+                            type: string
+                          persistent:
+                            type: boolean
+                          port:
+                            type: integer
+                          read-timeout:
+                            type: string
+                          send-timeout:
+                            type: string
+                          statusMatch:
+                            type: string
+                          tls:
+                            description: UpstreamTLS defines a TLS configuration for an Upstream.
+                            type: object
+                            properties:
+                              enable:
+                                type: boolean
+                      keepalive:
+                        type: integer
+                      lb-method:
+                        type: string
+                      max-conns:
+                        type: integer
+                      max-fails:
+                        type: integer
+                      name:
+                        type: string
+                      next-upstream:
+                        type: string
+                      next-upstream-timeout:
+                        type: string
+                      next-upstream-tries:
+                        type: integer
+                      ntlm:
+                        type: boolean
+                      port:
+                        type: integer
+                      queue:
+                        description: UpstreamQueue defines Queue Configuration for an Upstream.
+                        type: object
+                        properties:
+                          size:
+                            type: integer
+                          timeout:
+                            type: string
+                      read-timeout:
+                        type: string
+                      send-timeout:
+                        type: string
+                      service:
+                        type: string
+                      sessionCookie:
+                        description: SessionCookie defines the parameters for session persistence.
+                        type: object
+                        properties:
+                          domain:
+                            type: string
+                          enable:
+                            type: boolean
+                          expires:
+                            type: string
+                          httpOnly:
+                            type: boolean
+                          name:
+                            type: string
+                          path:
+                            type: string
+                          secure:
+                            type: boolean
+                      slow-start:
+                        type: string
+                      subselector:
+                        type: object
+                        additionalProperties:
+                          type: string
+                      tls:
+                        description: UpstreamTLS defines a TLS configuration for an Upstream.
+                        type: object
+                        properties:
+                          enable:
+                            type: boolean
+                      type:
+                        type: string
+                      use-cluster-ip:
+                        type: boolean
+            status:
+              description: VirtualServerStatus defines the status for the VirtualServer resource.
+              type: object
+              properties:
+                externalEndpoints:
+                  type: array
+                  items:
+                    description: ExternalEndpoint defines the IP and ports used to connect to this resource.
+                    type: object
+                    properties:
+                      ip:
+                        type: string
+                      ports:
+                        type: string
+                message:
+                  type: string
+                reason:
+                  type: string
+                state:
+                  type: string
+      served: true
+      storage: true
+      subresources:
+        status: {}
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/questions.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/questions.yaml
new file mode 100644
index 000000000..3c0a1ceb7
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/questions.yaml
@@ -0,0 +1,168 @@
+questions:
+- variable: controller.kind
+  type: enum
+  options:
+    - deployment
+    - daemonset
+  default: deployment
+  description: "The kind of the Ingress controller installation - deployment or daemonset."
+  label: Installation Kind
+  group: "Settings"
+- variable: imageDefault
+  default: true
+  description: "Use default Docker image"
+  label: Use Default Image
+  type: boolean
+  group: "Settings"
+  show_subquestion_if: false
+  subquestions:
+  - variable: controller.nginxplus
+    default: false
+    description: "Deploys the Ingress controller for NGINX Plus."
+    label: Deploy NGINX Plus
+    type: boolean
+    group: "NGINX Plus"
+  - variable: controller.appprotect.enable
+    default: false
+    description: "Enable the App Protect module in the Ingress Controller."
+    label: Enable the App Protect module.
+    type: boolean
+  - variable: controller.appprotectdos.enable
+    default: false
+    description: "Enable the App Protect DoS module in the Ingress Controller."
+    label: Enable the App Protect DoS module.
+    type: boolean
+  - variable: controller.image.repository
+    default: nginx/nginx-ingress
+    description: "The image repository of the Ingress controller."
+    type: string
+    label: NGINX Ingress Controller Image Repository
+    required: true
+  - variable: controller.image.tag
+    default: 2.1.0
+    description: "The tag of the Ingress controller image."
+    type: string
+    label: NGINX Ingress Controller Image Tag
+    required: true
+  - variable: controller.image.pullPolicy
+    type: enum
+    options:
+      - IfNotPresent
+      - Always
+      - Never
+    default: IfNotPresent
+    description: "The pull policy for the Ingress controller image."
+    label: NGINX Ingress Controller Image Pull Policy
+  - variable: controller.serviceAccount.imagePullSecretName
+    default: ""
+    description: "The name of the secret containing docker registry credentials. Secret must exist in the same namespace as the helm release."
+    type: string
+    label: Image Pull Secret Name
+- variable: controller.defaultTLS.secret
+  default: ""
+  description: "The secret with a TLS certificate and key for the default HTTPS server. The value must follow the following format: `<namespace>/<name>`."
+  label: TLS Secret
+  type: string
+  group: "Settings"
+- variable: controller.ingressClass
+  default: nginx
+  description: "A class of the Ingress controller. The Ingress controller only processes Ingress resources that belong to its class - i.e. have the annotation `[kubernetes.io/ingress.class]` equal to the class. Additionally, the Ingress controller processes Ingress resources that do not have that annotation which can be disabled by setting the [-use-ingress-class-only] flag."
+  label: Ingress Class
+  type: string
+  group: "Settings"
+  required: true
+  subquestions:
+  - variable: controller.useIngressClassOnly
+    default: false
+    description: "Ignore Ingress resources without the `[kubernetes.io/ingress.class]` annotation."
+    label: Use Ingress Class Only
+    type: boolean
+    group: "Settings"
+- variable: controller.enableCustomResources
+  default: true
+  label: Enable Custom Resources
+  type: boolean
+  group: "Settings"
+  show_subquestion_if: true
+  subquestions:
+  - variable: controller.globalConfiguration.create
+    default: true
+    description: "Creates the GlobalConfiguration custom resource."
+    label: Create GlobalConfiguration Custom Resource
+    type: boolean
+    group: "Settings"
+- variable: controller.watchNamespace
+  default: ""
+  description: "Namespace to watch for Ingress resources. By default the Ingress controller watches all namespaces."
+  label: Watch Namespace
+  type: string
+  group: "Settings"
+- variable: controller.service.create
+  default: true
+  description: "Creates a service to expose the Ingress controller pods."
+  label: Create a Service
+  type: boolean
+  group: "Service"
+  show_subquestion_if: true
+  subquestions:
+  - variable: controller.service.type
+    type: enum
+    options:
+      - LoadBalancer
+      - NodePort
+    default: LoadBalancer
+    description: "The type of service to create for the Ingress controller."
+    label: Type of Service
+- variable: controller.service.httpPort.enable
+  default: true
+  description: "Enables the HTTP port for the Ingress controller service."
+  label: Enable HTTP Port
+  type: boolean
+  group: "Service"
+  show_subquestion_if: true
+  subquestions:
+  - variable: controller.service.httpPort.port
+    default: 80
+    description: "The HTTP port of the Ingress controller service."
+    label: HTTP Port
+    type: int
+    required: true
+- variable: controller.service.httpsPort.enable
+  default: true
+  description: "Enables the HTTPS port for the Ingress controller service."
+  label: Enable HTTPS Port
+  type: boolean
+  group: "Service"
+  show_subquestion_if: true
+  subquestions:
+  - variable: controller.service.httpsPort.port
+    default: 443
+    description: "The HTTPS port of the Ingress controller service."
+    label: HTTPS Port
+    type: int
+    required: true
+- variable: prometheus.create
+  default: false
+  description: "Expose NGINX or NGINX Plus metrics in the Prometheus format."
+  label: Enable Exposing Prometheus Metrics
+  type: boolean
+  group: "Prometheus"
+  show_subquestion_if: true
+  subquestions:
+  - variable: prometheus.port
+    default: 9113
+    description: "Configures the port to scrape the metrics."
+    label: Prometheus Port
+    type: int
+    required: true
+  - variable: prometheus.scheme
+    default: http
+    description: "Configures the HTTP scheme to use for connections to the Prometheus endpoint."
+    label: Prometheus Scheme
+    type: string
+    required: true
+  - variable: prometheus.secret
+    default: ""
+    description: "The namespace / name of a Kubernetes TLS Secret. If specified, this secret is used to secure the Prometheus endpoint with TLS connections."
+    label: Prometheus Secret
+    type: string
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/NOTES.txt b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/NOTES.txt
new file mode 100644
index 000000000..c61fbd1a2
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/NOTES.txt
@@ -0,0 +1 @@
+The NGINX Ingress Controller has been installed.
\ No newline at end of file
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/_helpers.tpl b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/_helpers.tpl
new file mode 100644
index 000000000..9a73a5656
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/_helpers.tpl
@@ -0,0 +1,71 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "nginx-ingress.name" -}}
+{{- printf "%s-%s" .Release.Name .Chart.Name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create labels
+*/}}
+{{- define "nginx-ingress.labels" -}}
+app.kubernetes.io/name: {{ include "nginx-ingress.name" . }}
+helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end -}}
+
+{{/*
+Expand the name of the configmap.
+*/}}
+{{- define "nginx-ingress.configName" -}}
+{{- default (include "nginx-ingress.name" .) .Values.controller.config.name -}}
+{{- end -}}
+
+{{/*
+Expand leader election lock name.
+*/}}
+{{- define "nginx-ingress.leaderElectionName" -}}
+{{- if .Values.controller.reportIngressStatus.leaderElectionLockName -}}
+{{ .Values.controller.reportIngressStatus.leaderElectionLockName }}
+{{- else -}}
+{{- printf "%s-%s" (include "nginx-ingress.name" .) "leader-election" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Expand service account name.
+*/}}
+{{- define "nginx-ingress.serviceAccountName" -}}
+{{- default (include "nginx-ingress.name" .) .Values.controller.serviceAccount.name -}}
+{{- end -}}
+
+{{/*
+Expand service name.
+*/}}
+{{- define "nginx-ingress.serviceName" -}}
+{{- default (include "nginx-ingress.name" .) .Values.controller.service.name }}
+{{- end -}}
+
+{{/*
+Expand default TLS name.
+*/}}
+{{- define "nginx-ingress.defaultTLSName" -}}
+{{- printf "%s-%s" (include "nginx-ingress.name" .) "default-server-tls" -}}
+{{- end -}}
+
+{{/*
+Expand wildcard TLS name.
+*/}}
+{{- define "nginx-ingress.wildcardTLSName" -}}
+{{- printf "%s-%s" (include "nginx-ingress.name" .) "wildcard-tls" -}}
+{{- end -}}
+
+{{/*
+Expand app name.
+*/}}
+{{- define "nginx-ingress.appName" -}}
+{{- default (include "nginx-ingress.name" .) .Values.controller.name -}}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-configmap.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-configmap.yaml
new file mode 100644
index 000000000..971faa84d
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-configmap.yaml
@@ -0,0 +1,15 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "nginx-ingress.configName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+{{- if .Values.controller.config.annotations }}
+  annotations:
+{{ toYaml .Values.controller.config.annotations | indent 4 }}
+{{- end }}
+data:
+{{- if .Values.controller.config.entries }}
+{{ toYaml .Values.controller.config.entries | indent 2 }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-daemonset.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-daemonset.yaml
new file mode 100644
index 000000000..fabc545a2
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-daemonset.yaml
@@ -0,0 +1,169 @@
+{{- if eq .Values.controller.kind "daemonset" }}
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ default (include "nginx-ingress.name" .) .Values.controller.name }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      app: {{ include "nginx-ingress.appName" . }}
+  template:
+    metadata:
+      labels:
+        app: {{ include "nginx-ingress.appName" . }}
+{{- if .Values.controller.pod.extraLabels }}
+{{ toYaml .Values.controller.pod.extraLabels | indent 8 }}
+{{- end }}
+{{- if or (.Values.prometheus.create) (.Values.controller.pod.annotations) }}
+      annotations:
+{{- if .Values.prometheus.create }}
+        prometheus.io/scrape: "true"
+        prometheus.io/port: "{{ .Values.prometheus.port }}"
+        prometheus.io/scheme: "{{ .Values.prometheus.scheme }}"
+{{- end }}
+{{- if .Values.controller.pod.annotations }}
+{{ toYaml .Values.controller.pod.annotations | indent 8 }}
+{{- end }}
+{{- end }}
+    spec:
+      serviceAccountName: {{ include "nginx-ingress.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
+{{- if .Values.controller.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.controller.nodeSelector | indent 8 }}
+{{- end }}
+{{- if .Values.controller.tolerations }}
+      tolerations:
+{{ toYaml .Values.controller.tolerations | indent 6 }}
+{{- end }}
+{{- if .Values.controller.affinity }}
+      affinity:
+{{ toYaml .Values.controller.affinity | indent 8 }}
+{{- end }}
+{{- if .Values.controller.volumes }}
+      volumes:
+{{ toYaml .Values.controller.volumes | indent 6 }}
+{{- end }}
+{{- if .Values.controller.priorityClassName }}
+      priorityClassName: {{ .Values.controller.priorityClassName }}
+{{- end }}
+      hostNetwork: {{ .Values.controller.hostNetwork }}
+      containers:
+      - name: {{ include "nginx-ingress.name" . }}
+        image: "{{ .Values.controller.image.repository }}:{{ .Values.controller.image.tag }}"
+        imagePullPolicy: "{{ .Values.controller.image.pullPolicy }}"
+        ports:
+        - name: http
+          containerPort: 80
+          hostPort: 80
+        - name: https
+          containerPort: 443
+          hostPort: 443
+{{ if .Values.controller.customPorts }}
+{{ toYaml .Values.controller.customPorts | indent 8 }}
+{{ end }}
+{{- if .Values.prometheus.create }}
+        - name: prometheus
+          containerPort: {{ .Values.prometheus.port }}
+{{- end }}
+{{- if .Values.controller.readyStatus.enable }}
+        - name: readiness-port
+          containerPort: {{ .Values.controller.readyStatus.port}}
+        readinessProbe:
+          httpGet:
+            path: /nginx-ready
+            port: readiness-port
+          periodSeconds: 1
+{{- end }}
+        securityContext:
+          allowPrivilegeEscalation: true
+          runAsUser: 101 #nginx
+          capabilities:
+            drop:
+            - ALL
+            add:
+            - NET_BIND_SERVICE
+{{- if .Values.controller.volumeMounts }}
+        volumeMounts:
+{{ toYaml .Values.controller.volumeMounts | indent 8 }}
+{{- end }}
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        resources:
+{{ toYaml .Values.controller.resources | indent 10 }}
+        args:
+          - -nginx-plus={{ .Values.controller.nginxplus }}
+          - -nginx-reload-timeout={{ .Values.controller.nginxReloadTimeout }}
+          - -enable-app-protect={{ .Values.controller.appprotect.enable }}
+          - -enable-app-protect-dos={{ .Values.controller.appprotectdos.enable }}
+  {{- if .Values.controller.appprotectdos.enable }}
+          - -app-protect-dos-debug={{ .Values.controller.appprotectdos.debug }}
+          - -app-protect-dos-max-daemons={{ .Values.controller.appprotectdos.maxWorkers }}
+          - -app-protect-dos-max-workers={{ .Values.controller.appprotectdos.maxDaemons }}
+          - -app-protect-dos-memory={{ .Values.controller.appprotectdos.memory }}
+  {{ end }}
+          - -nginx-configmaps=$(POD_NAMESPACE)/{{ include "nginx-ingress.configName" . }}
+{{- if .Values.controller.defaultTLS.secret }}
+          - -default-server-tls-secret={{ .Values.controller.defaultTLS.secret }}
+{{ else }}
+          - -default-server-tls-secret=$(POD_NAMESPACE)/{{ include "nginx-ingress.defaultTLSName" . }}
+{{- end }}
+          - -ingress-class={{ .Values.controller.ingressClass }}
+{{- if .Values.controller.watchNamespace }}
+          - -watch-namespace={{ .Values.controller.watchNamespace }}
+{{- end }}
+          - -health-status={{ .Values.controller.healthStatus }}
+          - -health-status-uri={{ .Values.controller.healthStatusURI }}
+          - -nginx-debug={{ .Values.controller.nginxDebug }}
+          - -v={{ .Values.controller.logLevel }}
+          - -nginx-status={{ .Values.controller.nginxStatus.enable }}
+{{- if .Values.controller.nginxStatus.enable }}
+          - -nginx-status-port={{ .Values.controller.nginxStatus.port }}
+          - -nginx-status-allow-cidrs={{ .Values.controller.nginxStatus.allowCidrs }}
+{{- end }}
+{{- if .Values.controller.reportIngressStatus.enable }}
+          - -report-ingress-status
+{{- if .Values.controller.reportIngressStatus.ingressLink }}
+          - -ingresslink={{ .Values.controller.reportIngressStatus.ingressLink }}
+{{- else if .Values.controller.reportIngressStatus.externalService }}
+          - -external-service={{ .Values.controller.reportIngressStatus.externalService }}
+{{- else if and (.Values.controller.service.create) (eq .Values.controller.service.type "LoadBalancer") }}
+          - -external-service={{ include "nginx-ingress.serviceName" . }}
+{{- end }}
+          - -enable-leader-election={{ .Values.controller.reportIngressStatus.enableLeaderElection }}
+          - -leader-election-lock-name={{ include "nginx-ingress.leaderElectionName" . }}
+{{- end }}
+{{- if .Values.controller.wildcardTLS.secret }}
+          - -wildcard-tls-secret={{ .Values.controller.wildcardTLS.secret }}
+{{- else if and .Values.controller.wildcardTLS.cert .Values.controller.wildcardTLS.key }}
+          - -wildcard-tls-secret=$(POD_NAMESPACE)/{{ include "nginx-ingress.wildcardTLSName" . }}
+{{- end }}
+          - -enable-prometheus-metrics={{ .Values.prometheus.create }}
+          - -prometheus-metrics-listen-port={{ .Values.prometheus.port }}
+          - -prometheus-tls-secret={{ .Values.prometheus.secret }}
+          - -enable-custom-resources={{ .Values.controller.enableCustomResources }}
+          - -enable-snippets={{ .Values.controller.enableSnippets }}
+{{- if .Values.controller.enableCustomResources }}
+          - -enable-tls-passthrough={{ .Values.controller.enableTLSPassthrough }}
+          - -enable-preview-policies={{ .Values.controller.enablePreviewPolicies }}
+{{- if .Values.controller.globalConfiguration.create }}
+          - -global-configuration=$(POD_NAMESPACE)/{{ include "nginx-ingress.name" . }}
+{{- end }}
+{{- end }}
+          - -ready-status={{ .Values.controller.readyStatus.enable }}
+          - -ready-status-port={{ .Values.controller.readyStatus.port }}
+          - -enable-latency-metrics={{ .Values.controller.enableLatencyMetrics }}
+{{- if .Values.controller.initContainers }}
+      initContainers: {{ toYaml .Values.controller.initContainers | nindent 8 }}
+{{- end }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-deployment.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-deployment.yaml
new file mode 100644
index 000000000..40e14c622
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-deployment.yaml
@@ -0,0 +1,167 @@
+{{- if eq .Values.controller.kind "deployment" }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ default (include "nginx-ingress.name" .) .Values.controller.name }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.controller.replicaCount }}
+  selector:
+    matchLabels:
+      app: {{ include "nginx-ingress.appName" . }}
+  template:
+    metadata:
+      labels:
+        app: {{ include "nginx-ingress.appName" . }}
+{{- if .Values.controller.pod.extraLabels }}
+{{ toYaml .Values.controller.pod.extraLabels | indent 8 }}
+{{- end }}
+{{- if or (.Values.prometheus.create) (.Values.controller.pod.annotations) }}
+      annotations:
+{{- if .Values.prometheus.create }}
+        prometheus.io/scrape: "true"
+        prometheus.io/port: "{{ .Values.prometheus.port }}"
+        prometheus.io/scheme: "{{ .Values.prometheus.scheme }}"
+{{- end }}
+{{- if .Values.controller.pod.annotations }}
+{{ toYaml .Values.controller.pod.annotations | indent 8 }}
+{{- end }}
+{{- end }}
+    spec:
+{{- if .Values.controller.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.controller.nodeSelector | indent 8 }}
+{{- end }}
+{{- if .Values.controller.tolerations }}
+      tolerations:
+{{ toYaml .Values.controller.tolerations | indent 6 }}
+{{- end }}
+{{- if .Values.controller.affinity }}
+      affinity:
+{{ toYaml .Values.controller.affinity | indent 8 }}
+{{- end }}
+{{- if .Values.controller.volumes }}
+      volumes:
+{{ toYaml .Values.controller.volumes | indent 6 }}
+{{- end }}
+{{- if .Values.controller.priorityClassName }}
+      priorityClassName: {{ .Values.controller.priorityClassName }}
+{{- end }}
+      serviceAccountName: {{ include "nginx-ingress.serviceAccountName" . }}
+      hostNetwork: {{ .Values.controller.hostNetwork }}
+      containers:
+      - image: "{{ .Values.controller.image.repository }}:{{ .Values.controller.image.tag }}"
+        name: {{ include "nginx-ingress.name" . }}
+        imagePullPolicy: "{{ .Values.controller.image.pullPolicy }}"
+        ports:
+        - name: http
+          containerPort: 80
+        - name: https
+          containerPort: 443
+{{ if .Values.controller.customPorts }}
+{{ toYaml .Values.controller.customPorts | indent 8 }}
+{{ end }}
+{{- if .Values.prometheus.create }}
+        - name: prometheus
+          containerPort: {{ .Values.prometheus.port }}
+{{- end }}
+{{- if .Values.controller.readyStatus.enable }}
+        - name: readiness-port
+          containerPort: {{ .Values.controller.readyStatus.port}}
+        readinessProbe:
+          httpGet:
+            path: /nginx-ready
+            port: readiness-port
+          periodSeconds: 1
+{{- end }}
+        resources:
+{{ toYaml .Values.controller.resources | indent 10 }}
+        securityContext:
+          allowPrivilegeEscalation: true
+          runAsUser: 101 #nginx
+          capabilities:
+            drop:
+            - ALL
+            add:
+            - NET_BIND_SERVICE
+{{- if .Values.controller.volumeMounts }}
+        volumeMounts:
+{{ toYaml .Values.controller.volumeMounts | indent 8 }}
+{{- end }}
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        args:
+          - -nginx-plus={{ .Values.controller.nginxplus }}
+          - -nginx-reload-timeout={{ .Values.controller.nginxReloadTimeout }}
+          - -enable-app-protect={{ .Values.controller.appprotect.enable }}
+          - -enable-app-protect-dos={{ .Values.controller.appprotectdos.enable }}
+{{- if .Values.controller.appprotectdos.enable }}
+          - -app-protect-dos-debug={{ .Values.controller.appprotectdos.debug }}
+          - -app-protect-dos-max-daemons={{ .Values.controller.appprotectdos.maxWorkers }}
+          - -app-protect-dos-max-workers={{ .Values.controller.appprotectdos.maxDaemons }}
+          - -app-protect-dos-memory={{ .Values.controller.appprotectdos.memory }}
+{{ end }}
+          - -nginx-configmaps=$(POD_NAMESPACE)/{{ include "nginx-ingress.configName" . }}
+{{- if .Values.controller.defaultTLS.secret }}
+          - -default-server-tls-secret={{ .Values.controller.defaultTLS.secret }}
+{{ else }}
+          - -default-server-tls-secret=$(POD_NAMESPACE)/{{ include "nginx-ingress.defaultTLSName" . }}
+{{- end }}
+          - -ingress-class={{ .Values.controller.ingressClass }}
+{{- if .Values.controller.watchNamespace }}
+          - -watch-namespace={{ .Values.controller.watchNamespace }}
+{{- end }}
+          - -health-status={{ .Values.controller.healthStatus }}
+          - -health-status-uri={{ .Values.controller.healthStatusURI }}
+          - -nginx-debug={{ .Values.controller.nginxDebug }}
+          - -v={{ .Values.controller.logLevel }}
+          - -nginx-status={{ .Values.controller.nginxStatus.enable }}
+{{- if .Values.controller.nginxStatus.enable }}
+          - -nginx-status-port={{ .Values.controller.nginxStatus.port }}
+          - -nginx-status-allow-cidrs={{ .Values.controller.nginxStatus.allowCidrs }}
+{{- end }}
+{{- if .Values.controller.reportIngressStatus.enable }}
+          - -report-ingress-status
+{{- if .Values.controller.reportIngressStatus.ingressLink }}
+          - -ingresslink={{ .Values.controller.reportIngressStatus.ingressLink }}
+{{- else if .Values.controller.reportIngressStatus.externalService }}
+          - -external-service={{ .Values.controller.reportIngressStatus.externalService }}
+{{- else if and (.Values.controller.service.create) (eq .Values.controller.service.type "LoadBalancer") }}
+          - -external-service={{ include "nginx-ingress.serviceName" . }}
+{{- end }}
+          - -enable-leader-election={{ .Values.controller.reportIngressStatus.enableLeaderElection }}
+          - -leader-election-lock-name={{ include "nginx-ingress.leaderElectionName" . }}
+{{- end }}
+{{- if .Values.controller.wildcardTLS.secret }}
+          - -wildcard-tls-secret={{ .Values.controller.wildcardTLS.secret }}
+{{- else if and .Values.controller.wildcardTLS.cert .Values.controller.wildcardTLS.key }}
+          - -wildcard-tls-secret=$(POD_NAMESPACE)/{{ include "nginx-ingress.wildcardTLSName" . }}
+{{- end }}
+          - -enable-prometheus-metrics={{ .Values.prometheus.create }}
+          - -prometheus-metrics-listen-port={{ .Values.prometheus.port }}
+          - -prometheus-tls-secret={{ .Values.prometheus.secret }}
+          - -enable-custom-resources={{ .Values.controller.enableCustomResources }}
+          - -enable-snippets={{ .Values.controller.enableSnippets }}
+{{- if .Values.controller.enableCustomResources }}
+          - -enable-tls-passthrough={{ .Values.controller.enableTLSPassthrough }}
+          - -enable-preview-policies={{ .Values.controller.enablePreviewPolicies }}
+{{- if .Values.controller.globalConfiguration.create }}
+          - -global-configuration=$(POD_NAMESPACE)/{{ include "nginx-ingress.name" . }}
+{{- end }}
+{{- end }}
+          - -ready-status={{ .Values.controller.readyStatus.enable }}
+          - -ready-status-port={{ .Values.controller.readyStatus.port }}
+          - -enable-latency-metrics={{ .Values.controller.enableLatencyMetrics }}
+{{- if .Values.controller.initContainers }}
+      initContainers: {{ toYaml .Values.controller.initContainers | nindent 8 }}
+{{- end }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-globalconfiguration.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-globalconfiguration.yaml
new file mode 100644
index 000000000..b0bba4870
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-globalconfiguration.yaml
@@ -0,0 +1,11 @@
+{{ if .Values.controller.globalConfiguration.create }}
+apiVersion: k8s.nginx.org/v1alpha1
+kind: GlobalConfiguration
+metadata:
+  name: {{ include "nginx-ingress.name" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+spec:
+{{ toYaml .Values.controller.globalConfiguration.spec | indent 2 }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-ingress-class.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-ingress-class.yaml
new file mode 100644
index 000000000..bc071b47c
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-ingress-class.yaml
@@ -0,0 +1,10 @@
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  name: {{ .Values.controller.ingressClass }}
+{{- if .Values.controller.setAsDefaultIngress }}
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+{{- end }}
+spec:
+  controller: nginx.org/ingress-controller
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-leader-election-configmap.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-leader-election-configmap.yaml
new file mode 100644
index 000000000..ef6f79a58
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-leader-election-configmap.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "nginx-ingress.leaderElectionName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+{{- if .Values.controller.reportIngressStatus.annotations }}
+  annotations:
+{{ toYaml .Values.controller.reportIngressStatus.annotations | indent 4 }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-secret.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-secret.yaml
new file mode 100644
index 000000000..4c9e693bb
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-secret.yaml
@@ -0,0 +1,13 @@
+{{ if not .Values.controller.defaultTLS.secret }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "nginx-ingress.defaultTLSName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+type: kubernetes.io/tls
+data:
+  tls.crt: {{ .Values.controller.defaultTLS.cert }}
+  tls.key: {{ .Values.controller.defaultTLS.key }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-service.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-service.yaml
new file mode 100644
index 000000000..11d542271
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-service.yaml
@@ -0,0 +1,60 @@
+{{- if .Values.controller.service.create }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "nginx-ingress.serviceName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+{{- if .Values.controller.service.extraLabels }}
+{{ toYaml .Values.controller.service.extraLabels | indent 4 }}
+{{- end }}
+{{- if .Values.controller.service.annotations }}
+  annotations:
+{{ toYaml .Values.controller.service.annotations | indent 4 }}
+{{- end }}
+spec:
+{{- if or (eq .Values.controller.service.type "LoadBalancer") (eq .Values.controller.service.type "NodePort") }}
+  {{- if .Values.controller.service.externalTrafficPolicy }}
+  externalTrafficPolicy: {{ .Values.controller.service.externalTrafficPolicy }}
+  {{- end }}
+{{- end }}
+{{- if eq .Values.controller.service.type "LoadBalancer" }}
+  {{- if .Values.controller.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.controller.service.loadBalancerIP }}
+  {{- end }}
+  {{- if .Values.controller.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.controller.service.loadBalancerSourceRanges | indent 4 }}
+  {{- end }}
+{{- end }}
+  type: {{ .Values.controller.service.type }}
+  ports:
+{{- if .Values.controller.service.customPorts }}
+{{ toYaml .Values.controller.service.customPorts | indent 2 }}
+{{ end }}
+{{- if .Values.controller.service.httpPort.enable }}
+  - port: {{ .Values.controller.service.httpPort.port }}
+    targetPort: {{ .Values.controller.service.httpPort.targetPort }}
+    protocol: TCP
+    name: http
+  {{- if eq .Values.controller.service.type "NodePort" }}
+    nodePort: {{ .Values.controller.service.httpPort.nodePort }}
+  {{- end }}
+{{- end }}
+{{- if .Values.controller.service.httpsPort.enable }}
+  - port: {{ .Values.controller.service.httpsPort.port }}
+    targetPort: {{ .Values.controller.service.httpsPort.targetPort }}
+    protocol: TCP
+    name: https
+  {{- if eq .Values.controller.service.type "NodePort" }}
+    nodePort: {{ .Values.controller.service.httpsPort.nodePort }}
+  {{- end }}
+{{- end }}
+  selector:
+    app:  {{ include "nginx-ingress.appName" . }}
+  {{- if .Values.controller.service.externalIPs }}
+  externalIPs:
+{{ toYaml .Values.controller.service.externalIPs | indent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-serviceaccount.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-serviceaccount.yaml
new file mode 100644
index 000000000..c03c6a793
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-serviceaccount.yaml
@@ -0,0 +1,13 @@
+{{- if .Values.rbac.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "nginx-ingress.serviceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+{{- if .Values.controller.serviceAccount.imagePullSecretName }}
+imagePullSecrets:
+- name: {{ .Values.controller.serviceAccount.imagePullSecretName }}
+{{- end }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-wildcard-secret.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-wildcard-secret.yaml
new file mode 100644
index 000000000..3abe16c4c
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/controller-wildcard-secret.yaml
@@ -0,0 +1,13 @@
+{{ if and (not .Values.controller.wildcardTLS.secret) (and .Values.controller.wildcardTLS.cert .Values.controller.wildcardTLS.key) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "nginx-ingress.wildcardTLSName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+type: kubernetes.io/tls
+data:
+  tls.crt: {{ .Values.controller.wildcardTLS.cert }}
+  tls.key: {{ .Values.controller.wildcardTLS.key }}
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/templates/rbac.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/rbac.yaml
new file mode 100644
index 000000000..dc68b0699
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/templates/rbac.yaml
@@ -0,0 +1,147 @@
+{{- if .Values.rbac.create }}
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "nginx-ingress.name" . }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+rules:
+{{- if .Values.controller.appprotect.enable }}
+- apiGroups: 
+  - appprotect.f5.com
+  resources: 
+  - appolicies
+  - aplogconfs
+  - apusersigs
+  verbs: 
+  - get 
+  - watch
+  - list
+{{- end }}
+{{- if .Values.controller.appprotectdos.enable }}
+- apiGroups:
+    - appprotectdos.f5.com
+  resources:
+    - apdospolicies
+    - apdoslogconfs
+    - dosprotectedresources
+  verbs:
+    - get
+    - watch
+    - list
+{{- end }}
+- apiGroups:
+  - ""
+  resources:
+  - services
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - list
+  - watch
+{{- if .Values.controller.reportIngressStatus.enableLeaderElection }}
+  - update
+  - create
+{{- end }}
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+  - list
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+{{- if .Values.controller.reportIngressStatus.enable }}
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+{{- end }}
+{{- if .Values.controller.enableCustomResources }}
+- apiGroups:
+  - k8s.nginx.org
+  resources:
+  - virtualservers
+  - virtualserverroutes
+  - globalconfigurations
+  - transportservers
+  - policies
+  verbs:
+  - list
+  - watch
+  - get
+- apiGroups:
+  - k8s.nginx.org
+  resources:
+  - virtualservers/status
+  - virtualserverroutes/status
+  - policies/status
+  - transportservers/status
+  verbs:
+  - update
+{{- end }}
+{{- if .Values.controller.reportIngressStatus.ingressLink }}
+- apiGroups:
+  - cis.f5.com
+  resources:
+  - ingresslinks
+  verbs:
+  - list
+  - watch
+  - get
+{{- end }}
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "nginx-ingress.name" . }}
+  labels:
+    {{- include "nginx-ingress.labels" . | nindent 4 }}
+subjects:
+- kind: ServiceAccount
+  name: {{ include "nginx-ingress.serviceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: ClusterRole
+  name: {{ include "nginx-ingress.name" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/values-icp.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/values-icp.yaml
new file mode 100644
index 000000000..1a46c8d67
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/values-icp.yaml
@@ -0,0 +1,16 @@
+controller:
+  kind: daemonset
+  nginxplus: true
+  image:
+    repository: mycluster.icp:8500/kube-system/nginx-plus-ingress
+    tag: "2.1.0"
+  nodeSelector:
+    beta.kubernetes.io/arch: "amd64"
+    proxy: true
+  terminationGracePeriodSeconds: 60
+  tolerations:
+    - key: "dedicated"
+      operator: "Exists"
+      effect: "NoSchedule"
+    - key: "CriticalAddonsOnly"
+      operator: "Exists"
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/values-plus.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/values-plus.yaml
new file mode 100644
index 000000000..2d72583b1
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/values-plus.yaml
@@ -0,0 +1,5 @@
+controller:
+  nginxplus: true
+  image:
+    repository: nginx-plus-ingress
+    tag: "2.1.0"
diff --git a/charts/nginx-ingress/nginx-ingress/0.12.0/values.yaml b/charts/nginx-ingress/nginx-ingress/0.12.0/values.yaml
new file mode 100644
index 000000000..fc3d96f06
--- /dev/null
+++ b/charts/nginx-ingress/nginx-ingress/0.12.0/values.yaml
@@ -0,0 +1,327 @@
+controller:
+  ## The name of the Ingress controller daemonset or deployment.
+  ## Autogenerated if not set or set to "".
+  # name: nginx-ingress
+
+  ## The kind of the Ingress controller installation - deployment or daemonset.
+  kind: deployment
+
+  ## Deploys the Ingress controller for NGINX Plus.
+  nginxplus: false
+
+  # Timeout in milliseconds which the Ingress Controller will wait for a successful NGINX reload after a change or at the initial start.
+  nginxReloadTimeout: 60000
+
+  ## Support for App Protect
+  appprotect:
+    ## Enable the App Protect module in the Ingress Controller.
+    enable: false
+
+  ## Support for App Protect Dos
+  appprotectdos:
+    ## Enable the App Protect Dos module in the Ingress Controller.
+    enable: false
+    ## Enable debugging for App Protect Dos.
+    debug: false
+    ## Max number of nginx processes to support.
+    maxWorkers: 0
+    ## Max number of ADMD instances.
+    maxDaemons: 0
+    ## RAM memory size to consume in MB.
+    memory: 0
+
+  ## Enables the Ingress controller pods to use the host's network namespace.
+  hostNetwork: false
+
+  ## Enables debugging for NGINX. Uses the nginx-debug binary. Requires error-log-level: debug in the ConfigMap via `controller.config.entries`.
+  nginxDebug: false
+
+  ## The log level of the Ingress Controller.
+  logLevel: 1
+
+  ## A list of custom ports to expose on the NGINX ingress controller pod. Follows the conventional Kubernetes yaml syntax for container ports.
+  customPorts: []
+
+  image:
+    ## The image repository of the Ingress controller.
+    repository: nginx/nginx-ingress
+
+    ## The tag of the Ingress controller image.
+    tag: "2.1.0"
+
+    ## The pull policy for the Ingress controller image.
+    pullPolicy: IfNotPresent
+
+  config:
+    ## The name of the ConfigMap used by the Ingress controller.
+    ## Autogenerated if not set or set to "".
+    # name: nginx-config
+
+    ## The annotations of the Ingress Controller configmap.
+    annotations: {}
+
+    ## The entries of the ConfigMap for customizing NGINX configuration.
+    entries: {}
+
+  ## It is recommended to use your own TLS certificates and keys
+  defaultTLS:
+    ## The base64-encoded TLS certificate for the default HTTPS server. If not specified, a pre-generated self-signed certificate is used.
+    ## Note: It is recommended that you specify your own certificate.
+    cert: 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
+
+    ## The base64-encoded TLS key for the default HTTPS server. Note: If not specified, a pre-generated key is used.
+    ## Note: It is recommended that you specify your own key.
+    key: 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
+
+    ## The secret with a TLS certificate and key for the default HTTPS server.
+    ## The value must follow the following format: `<namespace>/<name>`.
+    ## Used as an alternative to specifying a certificate and key using `controller.defaultTLS.cert` and `controller.defaultTLS.key` parameters.
+    ## Format: <namespace>/<secret_name>
+    secret:
+
+  wildcardTLS:
+    ## The base64-encoded TLS certificate for every Ingress/VirtualServer host that has TLS enabled but no secret specified.
+    ## If the parameter is not set, for such Ingress/VirtualServer hosts NGINX will break any attempt to establish a TLS connection.
+    cert: ""
+
+    ## The base64-encoded TLS key for every Ingress/VirtualServer host that has TLS enabled but no secret specified.
+    ## If the parameter is not set, for such Ingress/VirtualServer hosts NGINX will break any attempt to establish a TLS connection.
+    key: ""
+
+    ## The secret with a TLS certificate and key for every Ingress/VirtualServer host that has TLS enabled but no secret specified.
+    ## The value must follow the following format: `<namespace>/<name>`.
+    ## Used as an alternative to specifying a certificate and key using `controller.wildcardTLS.cert` and `controller.wildcardTLS.key` parameters.
+    ## Format: <namespace>/<secret_name>
+    secret:
+
+  ## The node selector for pod assignment for the Ingress controller pods.
+  nodeSelector: {}
+
+  ## The termination grace period of the Ingress controller pod.
+  terminationGracePeriodSeconds: 30
+
+  ## The resources of the Ingress controller pods.
+  resources: {}
+    # limits:
+    #   cpu: 100m
+    #   memory: 64Mi
+    # requests:
+    #   cpu: 100m
+    #   memory: 64Mi
+
+  ## The tolerations of the Ingress controller pods.
+  tolerations: []
+
+  ## The affinity of the Ingress controller pods.
+  affinity: {}
+
+  ## The volumes of the Ingress controller pods.
+  volumes: []
+  # - name: extra-conf
+  #   configMap:
+  #     name: extra-conf
+
+  ## The volumeMounts of the Ingress controller pods.
+  volumeMounts: []
+  # - name: extra-conf
+  #   mountPath: /etc/nginx/conf.d/extra.conf
+  #   subPath: extra.conf
+
+  ## InitContainers for the Ingress controller pods.
+  initContainers: []
+  # - name: init-container
+  #   image: busybox:1.34
+  #   command: ['sh', '-c', 'echo this is initial setup!']
+
+  ## The number of replicas of the Ingress controller deployment.
+  replicaCount: 1
+
+  ## A class of the Ingress controller.
+
+  ## IngressClass resource with the name equal to the class must be deployed. Otherwise,
+  ## the Ingress Controller will fail to start.
+  ## The Ingress controller only processes resources that belong to its class - i.e. have the "ingressClassName" field resource equal to the class.
+
+  ## The Ingress Controller processes all the resources that do not have the "ingressClassName" field for all versions of kubernetes.
+  ingressClass: nginx
+
+  ## New Ingresses without an ingressClassName field specified will be assigned the class specified in `controller.ingressClass`.
+  setAsDefaultIngress: false
+
+  ## Namespace to watch for Ingress resources. By default the Ingress controller watches all namespaces.
+  watchNamespace: ""
+
+  ## Enable the custom resources.
+  enableCustomResources: true
+
+  ## Enable preview policies.
+  enablePreviewPolicies: false
+
+  ## Enable TLS Passthrough on port 443. Requires controller.enableCustomResources.
+  enableTLSPassthrough: false
+
+  globalConfiguration:
+    ## Creates the GlobalConfiguration custom resource. Requires controller.enableCustomResources.
+    create: false
+
+    ## The spec of the GlobalConfiguration for defining the global configuration parameters of the Ingress Controller.
+    spec: {}
+      # listeners:
+      # - name: dns-udp
+      #   port: 5353
+      #   protocol: UDP
+      # - name: dns-tcp
+      #   port: 5353
+      #   protocol: TCP
+
+  ## Enable custom NGINX configuration snippets in Ingress, VirtualServer, VirtualServerRoute and TransportServer resources.
+  enableSnippets: false
+
+  ## Add a location based on the value of health-status-uri to the default server. The location responds with the 200 status code for any request.
+  ## Useful for external health-checking of the Ingress controller.
+  healthStatus: false
+
+  ## Sets the URI of health status location in the default server. Requires controller.healthStatus.
+  healthStatusURI: "/nginx-health"
+
+  nginxStatus:
+    ## Enable the NGINX stub_status, or the NGINX Plus API.
+    enable: true
+
+    ## Set the port where the NGINX stub_status or the NGINX Plus API is exposed.
+    port: 8080
+
+    ## Add IPv4 IP/CIDR blocks to the allow list for NGINX stub_status or the NGINX Plus API. Separate multiple IP/CIDR by commas.
+    allowCidrs: "127.0.0.1"
+
+  service:
+    ## Creates a service to expose the Ingress controller pods.
+    create: true
+
+    ## The type of service to create for the Ingress controller.
+    type: LoadBalancer
+
+    ## The externalTrafficPolicy of the service. The value Local preserves the client source IP.
+    externalTrafficPolicy: Local
+
+    ## The annotations of the Ingress controller service.
+    annotations: {}
+
+    ## The extra labels of the service.
+    extraLabels: {}
+
+    ## The static IP address for the load balancer. Requires controller.service.type set to LoadBalancer. The cloud provider must support this feature.
+    loadBalancerIP: ""
+
+    ## The list of external IPs for the Ingress controller service.
+    externalIPs: []
+
+    ## The IP ranges (CIDR) that are allowed to access the load balancer. Requires controller.service.type set to LoadBalancer. The cloud provider must support this feature.
+    loadBalancerSourceRanges: []
+
+    ## The name of the service
+    ## Autogenerated if not set or set to "".
+    # name: nginx-ingress
+
+    httpPort:
+      ## Enables the HTTP port for the Ingress controller service.
+      enable: true
+
+      ## The HTTP port of the Ingress controller service.
+      port: 80
+
+      ## The custom NodePort for the HTTP port. Requires controller.service.type set to NodePort.
+      nodePort: ""
+
+      ## The HTTP port on the POD where the Ingress controller service is running.
+      targetPort: 80
+
+    httpsPort:
+      ## Enables the HTTPS port for the Ingress controller service.
+      enable: true
+
+      ## The HTTPS port of the Ingress controller service.
+      port: 443
+
+      ## The custom NodePort for the HTTPS port. Requires controller.service.type set to NodePort.
+      nodePort: ""
+
+      ## The HTTPS port on the POD where the Ingress controller service is running.
+      targetPort: 443
+
+    ## A list of custom ports to expose through the Ingress controller service. Follows the conventional Kubernetes yaml syntax for service ports.
+    customPorts: []
+
+  serviceAccount:
+    ## The name of the service account of the Ingress controller pods. Used for RBAC.
+    ## Autogenerated if not set or set to "".
+    # name: nginx-ingress
+
+    ## The name of the secret containing docker registry credentials.
+    ## Secret must exist in the same namespace as the helm release.
+    imagePullSecretName: ""
+
+  reportIngressStatus:
+    ## Updates the address field in the status of Ingress resources with an external address of the Ingress controller.
+    ## You must also specify the source of the external address either through an external service via controller.reportIngressStatus.externalService,
+    ## controller.reportIngressStatus.ingressLink or the external-status-address entry in the ConfigMap via controller.config.entries.
+    ## Note: controller.config.entries.external-status-address takes precedence over the others.
+    enable: true
+
+    ## Specifies the name of the service with the type LoadBalancer through which the Ingress controller is exposed externally.
+    ## The external address of the service is used when reporting the status of Ingress, VirtualServer and VirtualServerRoute resources.
+    ## controller.reportIngressStatus.enable must be set to true.
+    ## The default is autogenerated and matches the created service (see controller.service.create).
+    # externalService: nginx-ingress
+
+    ## Specifies the name of the IngressLink resource, which exposes the Ingress Controller pods via a BIG-IP system.
+    ## The IP of the BIG-IP system is used when reporting the status of Ingress, VirtualServer and VirtualServerRoute resources.
+    ## controller.reportIngressStatus.enable must be set to true.
+    ingressLink: ""
+
+    ## Enable Leader election to avoid multiple replicas of the controller reporting the status of Ingress resources. controller.reportIngressStatus.enable must be set to true.
+    enableLeaderElection: true
+
+    ## Specifies the name of the ConfigMap, within the same namespace as the controller, used as the lock for leader election. controller.reportIngressStatus.enableLeaderElection must be set to true.
+    ## Autogenerated if not set or set to "".
+    # leaderElectionLockName: "nginx-ingress-leader-election"
+
+    ## The annotations of the leader election configmap.
+    annotations: {}
+
+  pod:
+    ## The annotations of the Ingress Controller pod.
+    annotations: {}
+
+    ## The additional extra labels of the Ingress Controller pod.
+    extraLabels: {}
+
+  ## The PriorityClass of the ingress controller pods.
+  priorityClassName:
+
+  readyStatus:
+    ## Enables readiness endpoint "/nginx-ready". The endpoint returns a success code when NGINX has loaded all the config after startup.
+    enable: true
+
+    ## Set the port where the readiness endpoint is exposed.
+    port: 8081
+
+  ## Enable collection of latency metrics for upstreams. Requires prometheus.create.
+  enableLatencyMetrics: false
+
+rbac:
+  ## Configures RBAC.
+  create: true
+
+prometheus:
+  ## Expose NGINX or NGINX Plus metrics in the Prometheus format.
+  create: true
+
+  ## Configures the port to scrape the metrics.
+  port: 9113
+
+  ## Specifies the namespace/name of a Kubernetes TLS Secret which will be used to protect the Prometheus endpoint.
+  secret: ""
+
+  ## Configures the HTTP scheme used.
+  scheme: http
diff --git a/index.yaml b/index.yaml
index 35a078cc9..4c9648d6d 100755
--- a/index.yaml
+++ b/index.yaml
@@ -2137,6 +2137,30 @@ entries:
     - assets/neuvector/neuvector-1.8.0.tgz
     version: 1.8.0
   nginx-ingress:
+  - annotations:
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: NGINX Ingress Controller
+      catalog.cattle.io/release-name: nginx-ingress-controller
+    apiVersion: v1
+    appVersion: 2.1.0
+    created: "2022-01-07T10:26:27.40059Z"
+    description: NGINX Ingress Controller
+    digest: 5c28dfe157d19aa19c8f35acab983d1e9483e462d39dd0454ec271011ccdd697
+    home: https://github.com/nginxinc/kubernetes-ingress
+    icon: https://raw.githubusercontent.com/nginxinc/kubernetes-ingress/v2.1.0/deployments/helm-chart/chart-icon.png
+    keywords:
+    - ingress
+    - nginx
+    kubeVersion: 1.19 - 1.23
+    maintainers:
+    - email: kubernetes@nginx.com
+      name: nginxinc
+    name: nginx-ingress
+    sources:
+    - https://github.com/nginxinc/kubernetes-ingress/tree/v2.1.0/deployments/helm-chart
+    urls:
+    - assets/nginx-ingress/nginx-ingress-0.12.0.tgz
+    version: 0.12.0
   - annotations:
       catalog.cattle.io/certified: partner
       catalog.cattle.io/display-name: NGINX Ingress Controller