You need to follow this to install the cert-manager bundle.
Run the following command to build your image locally.
make docker-build docker-push IMG=<some-registry>/<project-name>:tagConsider incorporating Kind into your workflow for a faster, more efficient local development and CI experience. Note that, if you're using a Kind cluster, there's no need to push your image to a remote container registry. You can directly load your local image into your specified Kind cluster:
kind load docker-image <your-image-name>:tag --name <your-kind-cluster-name>To know more, see: Using Kind For Development Purposes and CI
You need to enable the webhook and cert manager configuration through kustomize.
config/default/kustomization.yaml should now look like the following:
{{#include ./testdata/project/config/default/kustomization.yaml}}And config/crd/kustomization.yaml should now look like the following:
{{#include ./testdata/project/config/crd/kustomization.yaml}}Now you can deploy it to your cluster by
make deploy IMG=<some-registry>/<project-name>:tagWait a while till the webhook pod comes up and the certificates are provisioned. It usually completes within 1 minute.
Now you can create a valid CronJob to test your webhooks. The creation should successfully go through.
kubectl create -f config/samples/batch_v1_cronjob.yamlYou can also try to create an invalid CronJob (e.g. use an ill-formatted schedule field). You should see a creation failure with a validation error.
If you are deploying a webhook for pods in the same cluster, be careful about the bootstrapping problem, since the creation request of the webhook pod would be sent to the webhook pod itself, which hasn't come up yet.
To make it work, you can either use namespaceSelector if your kubernetes version is 1.9+ or use objectSelector if your kubernetes version is 1.15+ to skip itself.