From 5a4184ed4581d6372c703c2dbd8f0b4ceccaebd0 Mon Sep 17 00:00:00 2001
From: Ahmad Ibrahim <ahmad.ibrahim@spectrocloud.com>
Date: Wed, 29 Nov 2023 10:57:00 -0800
Subject: [PATCH] feat: add oci plugin

---
 chart/validator/values.yaml | 90 +++++++++++++++++++++++++++++++++++++
 1 file changed, 90 insertions(+)

diff --git a/chart/validator/values.yaml b/chart/validator/values.yaml
index ab913afb..8f50a31d 100644
--- a/chart/validator/values.yaml
+++ b/chart/validator/values.yaml
@@ -360,6 +360,96 @@ plugins:
         targetPort: https
       type: ClusterIP
 
+    env: {}
+      # Optional proxy configuration
+      # - name: HTTP_PROXY
+      #   value: http://192.168.1.100:8080
+      # - name: HTTPS_PROXY
+      #   value: http://192.168.1.100:8080
+      # - name: NO_PROXY
+      #   value: foo.bar.com,127.0.0.1
+    proxy:
+      enabled: false
+      image: ubuntu:latest
+      # The name of a Secret containing a proxy CA certificate
+      secretName: proxy-cert
+- chart:
+    name: validator-plugin-oci
+    repository: "https://spectrocloud-labs.github.io/validator-plugin-oci"
+    version: v0.0.1
+  values: |-
+    controllerManager:
+      kubeRbacProxy:
+        args:
+        - --secure-listen-address=0.0.0.0:8443
+        - --upstream=http://127.0.0.1:8080/
+        - --logtostderr=true
+        - --v=0
+        containerSecurityContext:
+          allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+        image:
+          repository: gcr.io/kubebuilder/kube-rbac-proxy
+          tag: v0.15.0
+        resources:
+          limits:
+            cpu: 500m
+            memory: 128Mi
+          requests:
+            cpu: 5m
+            memory: 64Mi
+      manager:
+        args:
+        - --health-probe-bind-address=:8081
+        - --leader-elect
+        containerSecurityContext:
+          allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+        image:
+          repository: quay.io/spectrocloud-labs/validator-plugin-oci
+          tag: v0.0.1  # x-release-please-version
+        resources:
+          limits:
+            cpu: 500m
+            memory: 128Mi
+          requests:
+            cpu: 10m
+            memory: 64Mi
+      replicas: 1
+      serviceAccount:
+        annotations: {}
+    kubernetesClusterDomain: cluster.local
+    metricsService:
+      ports:
+      - name: https
+        port: 8443
+        protocol: TCP
+        targetPort: https
+      type: ClusterIP
+
+    # Optional environment variable configuration
+    env: []
+    # - name: HTTP_PROXY
+    #   value: http://192.168.1.100:8080
+    # - name: HTTPS_PROXY
+    #   value: http://192.168.1.100:8080
+    # - name: NO_PROXY
+    #   value: foo.bar.com,127.0.0.1
+
+    # Optional proxy configuration. If enabled, the secret containing your proxy CA certificate
+    # will be mounted in the manager container and configured via an init container.
+    proxy:
+      enabled: false
+      # The image used by the init container. Must include the update-ca-certificates command.
+      image: quay.io/spectrocloud-labs/validator-certs-init:latest
+      # The name of a secret containing a proxy CA certificate.
+      # WARNING: the key whose value is the CA certificate must end with '.crt'.
+      secretName: proxy-cert
+
 pluginSecrets:
   # If installing the AWS plugin, the below config is required unless one of the following applies:
   # - The target cluster already contains a secret with the correct format and you've specified its name above.