provided manifest installation without webhook

VictoriaMetrics · Nov 14, 2024 · 90a2369 · 90a2369
1 parent 593d523
commit 90a2369
Show file tree

Hide file tree

Showing 15 changed files with 212 additions and 154 deletions.
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -33,7 +33,8 @@ jobs:
           echo ${{secrets.REPO_KEY}} | docker login --username ${{secrets.REPO_USER}} --password-stdin
           make publish
           TAG=${TAG} make olm
-          gh release upload ${{github.event.release.tag_name}} ./dist/install.yaml#install.yaml --clobber || echo "fix me NOT enough security permissions"
+          gh release upload ${{github.event.release.tag_name}} ./dist/install-no-webhook.yaml#install-no-webhook.yaml --clobber || echo "fix me NOT enough security permissions"
+          gh release upload ${{github.event.release.tag_name}} ./dist/install-with-webhook.yaml#install-with-webhook.yaml --clobber || echo "fix me NOT enough security permissions"
           gh release upload ${{github.event.release.tag_name}} ./config/crd/overlay/crd.yaml#crd.yaml --clobber || echo "fix me NOT enough security permissions"
       - name: Prapare binary cache
         uses: actions/cache@v4

diff --git a/Makefile b/Makefile
@@ -207,7 +207,8 @@ publish:
 build-installer: manifests generate kustomize ## Generate a consolidated YAML with CRDs and deployment.
 	mkdir -p dist
 	cd config/manager && $(KUSTOMIZE) edit set image manager=$(REGISTRY)/$(ORG)/$(REPO):$(TAG)
-	$(KUSTOMIZE) build config/base > dist/install.yaml
+	$(KUSTOMIZE) build config/default > dist/install-no-webhook.yaml
+	$(KUSTOMIZE) build config/base-with-webhook > dist/install-with-webhook.yaml
 
 olm: operator-sdk opm yq docs
 	rm -rf bundle*
@@ -289,7 +290,7 @@ kustomize-set-annotation:
 	cd $(OVERLAY) && \
 		$(KUSTOMIZE) edit set annotation $(ANNOTATION)
 
-deploy-kind: OVERLAY=config/base
+deploy-kind: OVERLAY=config/base-with-webhook
 deploy-kind: REGISTRY=localhost:$(LOCAL_REGISTRY_PORT)
 deploy-kind: load-kind docker-push deploy
 

diff --git a/config/base/kustomization.yaml → config/base-with-webhook/kustomization.yaml b/config/base/kustomization.yaml → config/base-with-webhook/kustomization.yaml
@@ -1,5 +1,7 @@
+namespace: vm
+namePrefix: vm-
 resources:
-- ../default
+- ../default-with-webhook
 patches:
 - path: manager_webhook_patch.yaml
   target:

diff --git a/config/base/manager_webhook_patch.yaml → ...e-with-webhook/manager_webhook_patch.yaml b/config/base/manager_webhook_patch.yaml → ...e-with-webhook/manager_webhook_patch.yaml
diff --git a/config/default-with-webhook/kustomization.yaml b/config/default-with-webhook/kustomization.yaml
@@ -0,0 +1,108 @@
+namespace: vm
+namePrefix: vm-
+resources:
+- ../default
+- ../webhook
+- ../certmanager
+patches:
+- path: manager_webhook_patch.yaml
+  target:
+    kind: Deployment
+- path: webhookcainjection_patch.yaml
+
+# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER' prefix.
+# Uncomment the following replacements to add the cert-manager CA injection annotations
+#      - select:
+#          kind: MutatingWebhookConfiguration
+#        fieldPaths:
+#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
+#        options:
+#          delimiter: '/'
+#          index: 0
+#          create: true
+#      - select:
+#          kind: MutatingWebhookConfiguration
+#        fieldPaths:
+#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
+#        options:
+#          delimiter: '/'
+#          index: 1
+#          create: true
+replacements:
+- source:
+    fieldPath: .metadata.namespace
+    group: cert-manager.io
+    kind: Certificate
+    name: vm-serving-cert
+    version: v1
+  targets:
+  - fieldPaths:
+    - .metadata.annotations.[cert-manager.io/inject-ca-from]
+    options:
+      create: true
+      delimiter: /
+    select:
+      kind: ValidatingWebhookConfiguration
+  - fieldPaths:
+    - .metadata.annotations.[cert-manager.io/inject-ca-from]
+    options:
+      create: true
+      delimiter: /
+    select:
+      kind: CustomResourceDefinition
+- source:
+    fieldPath: .metadata.name
+    group: cert-manager.io
+    kind: Certificate
+    name: vm-serving-cert
+    version: v1
+  targets:
+  - fieldPaths:
+    - .metadata.annotations.[cert-manager.io/inject-ca-from]
+    options:
+      create: true
+      delimiter: /
+      index: 1
+    select:
+      kind: ValidatingWebhookConfiguration
+  - fieldPaths:
+    - .metadata.annotations.[cert-manager.io/inject-ca-from]
+    options:
+      create: true
+      delimiter: /
+      index: 1
+    select:
+      kind: CustomResourceDefinition
+- source:
+    fieldPath: .metadata.name
+    kind: Service
+    name: webhook-service
+    version: v1
+  targets:
+  - fieldPaths:
+    - .spec.dnsNames.0
+    - .spec.dnsNames.1
+    options:
+      create: true
+      delimiter: .
+    select:
+      group: cert-manager.io
+      kind: Certificate
+      version: v1
+- source:
+    fieldPath: .metadata.namespace
+    kind: Service
+    name: webhook-service
+    version: v1
+  targets:
+  - fieldPaths:
+    - .spec.dnsNames.0
+    - .spec.dnsNames.1
+    options:
+      create: true
+      delimiter: .
+      index: 1
+    select:
+      group: cert-manager.io
+      kind: Certificate
+      version: v1
diff --git a/config/default/manager_webhook_patch.yaml → ...t-with-webhook/manager_webhook_patch.yaml b/config/default/manager_webhook_patch.yaml → ...t-with-webhook/manager_webhook_patch.yaml
diff --git a/config/default/webhookcainjection_patch.yaml → ...ith-webhook/webhookcainjection_patch.yaml b/config/default/webhookcainjection_patch.yaml → ...ith-webhook/webhookcainjection_patch.yaml
diff --git a/config/default/kustomization.yaml b/config/default/kustomization.yaml
@@ -1,114 +1,10 @@
 namespace: vm
-namePrefix: vm-
 resources:
 - ../crd/overlay
 - ../rbac
 - ../manager
-- ../webhook
-- ../certmanager
 - metrics_service.yaml
 patches:
-- path: manager_webhook_patch.yaml
-  target:
-    kind: Deployment
-- path: webhookcainjection_patch.yaml
 - path: manager_metrics_patch.yaml
   target:
     kind: Deployment
-
-# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER' prefix.
-# Uncomment the following replacements to add the cert-manager CA injection annotations
-#      - select:
-#          kind: MutatingWebhookConfiguration
-#        fieldPaths:
-#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
-#        options:
-#          delimiter: '/'
-#          index: 0
-#          create: true
-#      - select:
-#          kind: MutatingWebhookConfiguration
-#        fieldPaths:
-#          - .metadata.annotations.[cert-manager.io/inject-ca-from]
-#        options:
-#          delimiter: '/'
-#          index: 1
-#          create: true
-replacements:
-- source:
-    fieldPath: .metadata.namespace
-    group: cert-manager.io
-    kind: Certificate
-    name: vm-serving-cert
-    version: v1
-  targets:
-  - fieldPaths:
-    - .metadata.annotations.[cert-manager.io/inject-ca-from]
-    options:
-      create: true
-      delimiter: /
-    select:
-      kind: ValidatingWebhookConfiguration
-  - fieldPaths:
-    - .metadata.annotations.[cert-manager.io/inject-ca-from]
-    options:
-      create: true
-      delimiter: /
-    select:
-      kind: CustomResourceDefinition
-- source:
-    fieldPath: .metadata.name
-    group: cert-manager.io
-    kind: Certificate
-    name: vm-serving-cert
-    version: v1
-  targets:
-  - fieldPaths:
-    - .metadata.annotations.[cert-manager.io/inject-ca-from]
-    options:
-      create: true
-      delimiter: /
-      index: 1
-    select:
-      kind: ValidatingWebhookConfiguration
-  - fieldPaths:
-    - .metadata.annotations.[cert-manager.io/inject-ca-from]
-    options:
-      create: true
-      delimiter: /
-      index: 1
-    select:
-      kind: CustomResourceDefinition
-- source:
-    fieldPath: .metadata.name
-    kind: Service
-    name: webhook-service
-    version: v1
-  targets:
-  - fieldPaths:
-    - .spec.dnsNames.0
-    - .spec.dnsNames.1
-    options:
-      create: true
-      delimiter: .
-    select:
-      group: cert-manager.io
-      kind: Certificate
-      version: v1
-- source:
-    fieldPath: .metadata.namespace
-    kind: Service
-    name: webhook-service
-    version: v1
-  targets:
-  - fieldPaths:
-    - .spec.dnsNames.0
-    - .spec.dnsNames.1
-    options:
-      create: true
-      delimiter: .
-      index: 1
-    select:
-      group: cert-manager.io
-      kind: Certificate
-      version: v1
diff --git a/config/kind/kustomization.yaml b/config/kind/kustomization.yaml
@@ -1,5 +1,5 @@
 resources:
-- ../default
+- ../default-with-webhook
 
 patches:
 - target:

diff --git a/config/manager/kustomization.yaml b/config/manager/kustomization.yaml
@@ -1,2 +1,8 @@
 resources:
 - manager.yaml
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+images:
+- name: manager
+  newName: docker.io/victoriametrics/operator
+  newTag: heads-master-0-g593d5237-dirty-81d89e27