From 676ee9fe604f7191fa4f061898d554332eb9c4a3 Mon Sep 17 00:00:00 2001
From: Christopher Swenson <christopher.swenson@hashicorp.com>
Date: Tue, 24 May 2022 08:27:41 -0700
Subject: [PATCH] Update example injector mutating webhook config to exclude
 agent pod (#351)

* Update example injector mutating webhook config to exclude agent pod

- Original issue: https://github.com/hashicorp/vault-k8s/issues/258
- Helm fix: https://github.com/hashicorp/vault-helm/pull/736

* Update deploy/injector-mutating-webhook.yaml

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
---
 deploy/injector-mutating-webhook.yaml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/deploy/injector-mutating-webhook.yaml b/deploy/injector-mutating-webhook.yaml
index 212fbae7..69d590cc 100644
--- a/deploy/injector-mutating-webhook.yaml
+++ b/deploy/injector-mutating-webhook.yaml
@@ -24,5 +24,9 @@ webhooks:
         apiVersions: ["v1"]
         resources: ["deployments", "jobs", "pods", "statefulsets"]
     namespaceSelector: {}
-    objectSelector: {}
+    objectSelector:
+      matchExpressions:
+      - key: app.kubernetes.io/name
+        operator: NotIn
+        values: ["vault-injector"]
     failurePolicy: Ignore