7 app.kubernetes.io/name: ingress-nginx
8 app.kubernetes.io/instance: ingress-nginx
11 # Source: ingress-nginx/templates/controller-serviceaccount.yaml
16 helm.sh/chart: ingress-nginx-4.0.15
17 app.kubernetes.io/name: ingress-nginx
18 app.kubernetes.io/instance: ingress-nginx
19 app.kubernetes.io/version: 1.1.1
20 app.kubernetes.io/component: controller
22 namespace: ingress-nginx
23 automountServiceAccountToken: true
25 # Source: ingress-nginx/templates/controller-configmap.yaml
30 helm.sh/chart: ingress-nginx-4.0.15
31 app.kubernetes.io/name: ingress-nginx
32 app.kubernetes.io/instance: ingress-nginx
33 app.kubernetes.io/version: 1.1.1
34 app.kubernetes.io/component: controller
35 name: ingress-nginx-controller
36 namespace: ingress-nginx
38 allow-snippet-annotations: 'true'
40 # Source: ingress-nginx/templates/clusterrole.yaml
41 apiVersion: rbac.authorization.k8s.io/v1
45 helm.sh/chart: ingress-nginx-4.0.15
46 app.kubernetes.io/name: ingress-nginx
47 app.kubernetes.io/instance: ingress-nginx
48 app.kubernetes.io/version: 1.1.1
107 # Source: ingress-nginx/templates/clusterrolebinding.yaml
108 apiVersion: rbac.authorization.k8s.io/v1
109 kind: ClusterRoleBinding
112 helm.sh/chart: ingress-nginx-4.0.15
113 app.kubernetes.io/name: ingress-nginx
114 app.kubernetes.io/instance: ingress-nginx
115 app.kubernetes.io/version: 1.1.1
118 apiGroup: rbac.authorization.k8s.io
122 - kind: ServiceAccount
124 namespace: ingress-nginx
126 # Source: ingress-nginx/templates/controller-role.yaml
127 apiVersion: rbac.authorization.k8s.io/v1
131 helm.sh/chart: ingress-nginx-4.0.15
132 app.kubernetes.io/name: ingress-nginx
133 app.kubernetes.io/instance: ingress-nginx
134 app.kubernetes.io/version: 1.1.1
135 app.kubernetes.io/component: controller
137 namespace: ingress-nginx
191 - ingress-controller-leader
209 # Source: ingress-nginx/templates/controller-rolebinding.yaml
210 apiVersion: rbac.authorization.k8s.io/v1
214 helm.sh/chart: ingress-nginx-4.0.15
215 app.kubernetes.io/name: ingress-nginx
216 app.kubernetes.io/instance: ingress-nginx
217 app.kubernetes.io/version: 1.1.1
218 app.kubernetes.io/component: controller
220 namespace: ingress-nginx
222 apiGroup: rbac.authorization.k8s.io
226 - kind: ServiceAccount
228 namespace: ingress-nginx
230 # Source: ingress-nginx/templates/controller-service-webhook.yaml
235 helm.sh/chart: ingress-nginx-4.0.15
236 app.kubernetes.io/name: ingress-nginx
237 app.kubernetes.io/instance: ingress-nginx
238 app.kubernetes.io/version: 1.1.1
239 app.kubernetes.io/component: controller
240 name: ingress-nginx-controller-admission
241 namespace: ingress-nginx
245 - name: https-webhook
250 app.kubernetes.io/name: ingress-nginx
251 app.kubernetes.io/instance: ingress-nginx
252 app.kubernetes.io/component: controller
254 # Source: ingress-nginx/templates/controller-service.yaml
260 helm.sh/chart: ingress-nginx-4.0.15
261 app.kubernetes.io/name: ingress-nginx
262 app.kubernetes.io/instance: ingress-nginx
263 app.kubernetes.io/version: 1.1.1
264 app.kubernetes.io/component: controller
265 name: ingress-nginx-controller
266 namespace: ingress-nginx
269 ipFamilyPolicy: SingleStack
286 app.kubernetes.io/name: ingress-nginx
287 app.kubernetes.io/instance: ingress-nginx
288 app.kubernetes.io/component: controller
290 # Source: ingress-nginx/templates/controller-deployment.yaml
295 helm.sh/chart: ingress-nginx-4.0.15
296 app.kubernetes.io/name: ingress-nginx
297 app.kubernetes.io/instance: ingress-nginx
298 app.kubernetes.io/version: 1.1.1
299 app.kubernetes.io/component: controller
300 name: ingress-nginx-controller
301 namespace: ingress-nginx
305 app.kubernetes.io/name: ingress-nginx
306 app.kubernetes.io/instance: ingress-nginx
307 app.kubernetes.io/component: controller
308 revisionHistoryLimit: 10
313 app.kubernetes.io/name: ingress-nginx
314 app.kubernetes.io/instance: ingress-nginx
315 app.kubernetes.io/component: controller
317 dnsPolicy: ClusterFirst
320 image: "{{ ingress_repo_url }}/controller:{{ ingress_nginx_version }}"
321 imagePullPolicy: IfNotPresent
328 - /nginx-ingress-controller
329 - --election-id=ingress-controller-leader
330 - --controller-class=k8s.io/ingress-nginx
331 - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
332 - --validating-webhook=:8443
333 - --validating-webhook-certificate=/usr/local/certificates/cert
334 - --validating-webhook-key=/usr/local/certificates/key
342 allowPrivilegeEscalation: true
347 fieldPath: metadata.name
348 - name: POD_NAMESPACE
351 fieldPath: metadata.namespace
353 value: /usr/local/lib/libmimalloc.so
360 initialDelaySeconds: 10
370 initialDelaySeconds: 10
386 mountPath: /usr/local/certificates/
393 kubernetes.io/os: linux
394 serviceAccountName: ingress-nginx
395 terminationGracePeriodSeconds: 300
399 secretName: ingress-nginx-admission
401 # Source: ingress-nginx/templates/controller-ingressclass.yaml
402 # We don't support namespaced ingressClass yet
403 # So a ClusterRole and a ClusterRoleBinding is required
404 apiVersion: networking.k8s.io/v1
408 helm.sh/chart: ingress-nginx-4.0.15
409 app.kubernetes.io/name: ingress-nginx
410 app.kubernetes.io/instance: ingress-nginx
411 app.kubernetes.io/version: 1.1.1
412 app.kubernetes.io/component: controller
414 namespace: ingress-nginx
416 controller: k8s.io/ingress-nginx
418 # Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
419 # before changing this value, check the required kubernetes version
420 # https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
421 apiVersion: admissionregistration.k8s.io/v1
422 kind: ValidatingWebhookConfiguration
425 helm.sh/chart: ingress-nginx-4.0.15
426 app.kubernetes.io/name: ingress-nginx
427 app.kubernetes.io/instance: ingress-nginx
428 app.kubernetes.io/version: 1.1.1
429 app.kubernetes.io/component: admission-webhook
430 name: ingress-nginx-admission
432 - name: validate.nginx.ingress.kubernetes.io
433 matchPolicy: Equivalent
446 admissionReviewVersions:
450 namespace: ingress-nginx
451 name: ingress-nginx-controller-admission
452 path: /networking/v1/ingresses
454 # Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
458 name: ingress-nginx-admission
459 namespace: ingress-nginx
461 helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
462 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
464 helm.sh/chart: ingress-nginx-4.0.15
465 app.kubernetes.io/name: ingress-nginx
466 app.kubernetes.io/instance: ingress-nginx
467 app.kubernetes.io/version: 1.1.1
468 app.kubernetes.io/component: admission-webhook
470 # Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
471 apiVersion: rbac.authorization.k8s.io/v1
474 name: ingress-nginx-admission
476 helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
477 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
479 helm.sh/chart: ingress-nginx-4.0.15
480 app.kubernetes.io/name: ingress-nginx
481 app.kubernetes.io/instance: ingress-nginx
482 app.kubernetes.io/version: 1.1.1
483 app.kubernetes.io/component: admission-webhook
486 - admissionregistration.k8s.io
488 - validatingwebhookconfigurations
493 # Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
494 apiVersion: rbac.authorization.k8s.io/v1
495 kind: ClusterRoleBinding
497 name: ingress-nginx-admission
499 helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
500 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
502 helm.sh/chart: ingress-nginx-4.0.15
503 app.kubernetes.io/name: ingress-nginx
504 app.kubernetes.io/instance: ingress-nginx
505 app.kubernetes.io/version: 1.1.1
506 app.kubernetes.io/component: admission-webhook
508 apiGroup: rbac.authorization.k8s.io
510 name: ingress-nginx-admission
512 - kind: ServiceAccount
513 name: ingress-nginx-admission
514 namespace: ingress-nginx
516 # Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
517 apiVersion: rbac.authorization.k8s.io/v1
520 name: ingress-nginx-admission
521 namespace: ingress-nginx
523 helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
524 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
526 helm.sh/chart: ingress-nginx-4.0.15
527 app.kubernetes.io/name: ingress-nginx
528 app.kubernetes.io/instance: ingress-nginx
529 app.kubernetes.io/version: 1.1.1
530 app.kubernetes.io/component: admission-webhook
540 # Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
541 apiVersion: rbac.authorization.k8s.io/v1
544 name: ingress-nginx-admission
545 namespace: ingress-nginx
547 helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
548 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
550 helm.sh/chart: ingress-nginx-4.0.15
551 app.kubernetes.io/name: ingress-nginx
552 app.kubernetes.io/instance: ingress-nginx
553 app.kubernetes.io/version: 1.1.1
554 app.kubernetes.io/component: admission-webhook
556 apiGroup: rbac.authorization.k8s.io
558 name: ingress-nginx-admission
560 - kind: ServiceAccount
561 name: ingress-nginx-admission
562 namespace: ingress-nginx
564 # Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
568 name: ingress-nginx-admission-create
569 namespace: ingress-nginx
571 helm.sh/hook: pre-install,pre-upgrade
572 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
574 helm.sh/chart: ingress-nginx-4.0.15
575 app.kubernetes.io/name: ingress-nginx
576 app.kubernetes.io/instance: ingress-nginx
577 app.kubernetes.io/version: 1.1.1
578 app.kubernetes.io/component: admission-webhook
582 name: ingress-nginx-admission-create
584 helm.sh/chart: ingress-nginx-4.0.15
585 app.kubernetes.io/name: ingress-nginx
586 app.kubernetes.io/instance: ingress-nginx
587 app.kubernetes.io/version: 1.1.1
588 app.kubernetes.io/component: admission-webhook
592 image: "{{ ingress_repo_url }}/kube-webhook-certgen:{{ ingress_nginx_version }}"
593 imagePullPolicy: IfNotPresent
596 - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
597 - --namespace=$(POD_NAMESPACE)
598 - --secret-name=ingress-nginx-admission
600 - name: POD_NAMESPACE
603 fieldPath: metadata.namespace
605 allowPrivilegeEscalation: false
606 restartPolicy: OnFailure
607 serviceAccountName: ingress-nginx-admission
609 kubernetes.io/os: linux
614 # Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
618 name: ingress-nginx-admission-patch
619 namespace: ingress-nginx
621 helm.sh/hook: post-install,post-upgrade
622 helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
624 helm.sh/chart: ingress-nginx-4.0.15
625 app.kubernetes.io/name: ingress-nginx
626 app.kubernetes.io/instance: ingress-nginx
627 app.kubernetes.io/version: 1.1.1
628 app.kubernetes.io/component: admission-webhook
632 name: ingress-nginx-admission-patch
634 helm.sh/chart: ingress-nginx-4.0.15
635 app.kubernetes.io/name: ingress-nginx
636 app.kubernetes.io/instance: ingress-nginx
637 app.kubernetes.io/version: 1.1.1
638 app.kubernetes.io/managed-by: Helm
639 app.kubernetes.io/component: admission-webhook
643 image: "{{ ingress_repo_url }}/kube-webhook-certgen:{{ ingress_nginx_version }}"
644 imagePullPolicy: IfNotPresent
647 - --webhook-name=ingress-nginx-admission
648 - --namespace=$(POD_NAMESPACE)
649 - --patch-mutating=false
650 - --secret-name=ingress-nginx-admission
651 - --patch-failure-policy=Fail
653 - name: POD_NAMESPACE
656 fieldPath: metadata.namespace
658 allowPrivilegeEscalation: false
659 restartPolicy: OnFailure
660 serviceAccountName: ingress-nginx-admission
662 kubernetes.io/os: linux
Code Review / infra / stack / kubernetes.git / blob