diff --git a/docs/05-technical-reference/00-custom-resources/README.md b/docs/05-technical-reference/00-custom-resources/README.md index 218d1fe30e8f..ce353af21523 100644 --- a/docs/05-technical-reference/00-custom-resources/README.md +++ b/docs/05-technical-reference/00-custom-resources/README.md @@ -2,5 +2,5 @@ A custom resource (CR) is an extension to the Kubernetes API which allows you to cover use cases that are not directly covered by core Kubernetes. - > [!NOTE] + > [!NOTE] > For information about third-party custom resources that come together with Kyma, visit the documentation of the respective project. diff --git a/installation/resources/crds/compass-runtime-agent/applications.applicationconnector.crd.yaml b/installation/resources/crds/compass-runtime-agent/applications.applicationconnector.crd.yaml deleted file mode 100644 index 1a7b6518af71..000000000000 --- a/installation/resources/crds/compass-runtime-agent/applications.applicationconnector.crd.yaml +++ /dev/null @@ -1,183 +0,0 @@ -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - "helm.sh/resource-policy": keep - name: applications.applicationconnector.kyma-project.io -spec: - group: applicationconnector.kyma-project.io - preserveUnknownFields: false - versions: - - name: v1alpha1 - served: true - storage: true - schema: - openAPIV3Schema: - type: object - properties: - spec: - properties: - compassMetadata: - type: object - required: - - "authentication" - properties: - applicationId: - type: string - authentication: - type: object - required: - - "clientIds" - properties: - clientIds: - type: array - items: - type: string - accessLabel: - type: string - maxLength: 63 - pattern: '^([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]$' - description: - type: string - skipInstallation: - type: boolean - skipVerify: - type: boolean - encodeUrl: - type: boolean - default: true - labels: - nullable: true - additionalProperties: - type: string - type: object - tenant: - type: string - group: - type: string - tags: - nullable: true - description: New fields used by V2 version - items: - type: string - type: array - displayName: - type: string - providerDisplayName: - type: string - longDescription: - type: string - services: - type: array - items: - type: object - required: - - "id" - - "name" - - "displayName" - - "providerDisplayName" - - "description" - - "entries" - properties: - id: - type: string - name: - type: string - identifier: - type: string - labels: - nullable: true - additionalProperties: - type: string - description: Deprecated - type: object - displayName: - type: string - description: - type: string - longDescription: - type: string - providerDisplayName: - type: string - authCreateParameterSchema: - description: New fields used by V2 version - type: string - entries: - type: array - items: - type: object - required: - - "type" - properties: - apiType: - type: string - type: - type: string - enum: - - "API" - - "Events" - gatewayUrl: - type: string - centralGatewayUrl: - type: string - accessLabel: - type: string - maxLength: 63 - pattern: '^([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]$' - targetUrl: - type: string - id: - type: string - name: - description: New fields used by V2 version - type: string - requestParametersSecretName: - type: string - specificationUrl: - type: string - credentials: - type: object - required: - - "type" - - "secretName" - properties: - type: - type: string - secretName: - type: string - authenticationUrl: - type: string - csrfInfo: - type: object - required: - - "tokenEndpointURL" - properties: - tokenEndpointURL: - type: string - tags: - type: array - items: - type: string - type: object - status: - properties: - installationStatus: - description: Represents the status of Application release installation - properties: - description: - type: string - status: - type: string - required: - - status - type: object - required: - - installationStatus - type: object - scope: Cluster - names: - plural: applications - singular: application - kind: Application - shortNames: - - app diff --git a/installation/resources/crds/compass-runtime-agent/compass-connection.crd.yaml b/installation/resources/crds/compass-runtime-agent/compass-connection.crd.yaml deleted file mode 100644 index aae2958a8ca7..000000000000 --- a/installation/resources/crds/compass-runtime-agent/compass-connection.crd.yaml +++ /dev/null @@ -1,144 +0,0 @@ ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - "helm.sh/resource-policy": keep - name: compassconnections.compass.kyma-project.io -spec: - group: compass.kyma-project.io - names: - kind: CompassConnection - listKind: CompassConnectionList - plural: compassconnections - singular: compassconnection - scope: Cluster - versions: - - name: v1alpha1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - managementInfo: - properties: - connectorUrl: - description: 'URL used for maintaining the secure connection.' - type: string - directorUrl: - description: 'URL used for fetching Applications.' - type: string - required: - - connectorUrl - - directorUrl - type: object - refreshCredentialsNow: - description: 'If set to `true`, ignores certificate expiration date and refreshes in the next round.' - type: boolean - resyncNow: - description: 'If set to `true`, ignores `APP_MINIMAL_COMPASS_SYNC_TIME` and syncs in the next round.' - type: boolean - required: - - managementInfo - type: object - status: - properties: - connectionState: - type: string - connectionStatus: - description: 'Represents the status of the connection to - Compass.' - properties: - certificateStatus: - description: 'Specifies the certificate issue and expiration dates.' - properties: - acquired: - description: 'Specifies when the certificate was acquired.' - format: date-time - nullable: true - type: string - notAfter: - description: 'Specifies when the certificate stops being valid.' - format: date-time - nullable: true - type: string - notBefore: - description: 'Specifies when the certificate becomes valid.' - format: date-time - nullable: true - type: string - type: object - error: - type: string - established: - description: 'Specifies when the connection was established.' - format: date-time - nullable: true - type: string - lastSuccess: - description: 'Specifies the date of the last successful synchronization with the Connector.' - format: date-time - nullable: true - type: string - lastSync: - description: 'Specifies the date of the last synchronization attempt.' - format: date-time - nullable: true - type: string - renewed: - description: 'Specifies the date of the last certificate renewal.' - format: date-time - nullable: true - type: string - required: - - certificateStatus - type: object - synchronizationStatus: - description: 'Provides the status of the synchronization with the Director.' - nullable: true - properties: - error: - type: string - lastAttempt: - description: 'Specifies the date of the last synchronization attempt with the Director.' - format: date-time - nullable: true - type: string - lastSuccessfulApplication: - description: 'Specifies the date of the last successful application of resources fetched from Compass.' - format: date-time - nullable: true - type: string - lastSuccessfulFetch: - description: 'Specifies the date of the last successful fetch of resources from the Director.' - format: date-time - nullable: true - type: string - type: object - required: - - connectionState - - connectionStatus - type: object - required: - - spec - type: object - served: true - storage: true -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/resources/compass-runtime-agent/.helmignore b/resources/compass-runtime-agent/.helmignore deleted file mode 100644 index f0c131944441..000000000000 --- a/resources/compass-runtime-agent/.helmignore +++ /dev/null @@ -1,21 +0,0 @@ -# Patterns to ignore when building packages. -# This supports shell glob matching, relative path matching, and -# negation (prefixed with !). Only one pattern per line. -.DS_Store -# Common VCS dirs -.git/ -.gitignore -.bzr/ -.bzrignore -.hg/ -.hgignore -.svn/ -# Common backup files -*.swp -*.bak -*.tmp -*~ -# Various IDEs -.project -.idea/ -*.tmproj diff --git a/resources/compass-runtime-agent/Chart.yaml b/resources/compass-runtime-agent/Chart.yaml deleted file mode 100644 index dfbe15f9e51b..000000000000 --- a/resources/compass-runtime-agent/Chart.yaml +++ /dev/null @@ -1,6 +0,0 @@ -apiVersion: v1 -description: Kyma component 'compass-runtime-agent' -name: compass-runtime-agent -version: 1.0.0 -home: https://kyma-project.io -icon: https://github.com/kyma-project/kyma/blob/main/logo.png?raw=true diff --git a/resources/compass-runtime-agent/templates/_helpers.tpl b/resources/compass-runtime-agent/templates/_helpers.tpl deleted file mode 100644 index a5e2cedf67c0..000000000000 --- a/resources/compass-runtime-agent/templates/_helpers.tpl +++ /dev/null @@ -1,18 +0,0 @@ -{{/* vim: set filetype=mustache: */}} -{{/* -Expand the name of the chart. -*/}} -{{- define "name" -}} -{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}} -{{- end -}} - -{{/* -Create a URL for container images -*/}} -{{- define "imageurl" -}} -{{- $registry := default $.reg.path $.img.containerRegistryPath -}} -{{- $path := ternary (print $registry) (print $registry "/" $.img.directory) (empty $.img.directory) -}} -{{- $version := ternary (print ":" $.img.version) (print "@sha256:" $.img.sha) (empty $.img.sha) -}} -{{- print $path "/" $.img.name $version -}} -{{- end -}} - diff --git a/resources/compass-runtime-agent/templates/cluster-role-binding.yaml b/resources/compass-runtime-agent/templates/cluster-role-binding.yaml deleted file mode 100644 index c5f50e41c748..000000000000 --- a/resources/compass-runtime-agent/templates/cluster-role-binding.yaml +++ /dev/null @@ -1,48 +0,0 @@ -apiVersion: rbac.authorization.k8s.io/v1 -kind: ClusterRole -metadata: - name: {{ .Chart.Name }} - labels: - app: {{ .Chart.Name }} - release: {{ .Release.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -rules: - - apiGroups: ["compass.kyma-project.io"] - resources: ["compassconnections"] - verbs: ["create", "get", "list", "update", "delete", "watch"] - - apiGroups: ["applicationconnector.kyma-project.io"] - resources: ["applications"] - verbs: ["get", "list", "create", "update", "delete"] - - apiGroups: [""] - resources: ["nodes", "persistentvolumes"] - verbs: ["get", "list"] - - apiGroups: ["metrics.k8s.io"] - resources: ["nodes"] - verbs: ["get", "list"] - - apiGroups: [""] - resources: ["secrets"] - resourceNames: ["compass-agent-configuration","cluster-client-certificates"] - verbs: ["get", "delete"] ---- -kind: ClusterRoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Chart.Name }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -subjects: - - kind: ServiceAccount - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} -roleRef: - kind: ClusterRole - name: {{ .Chart.Name }} - apiGroup: rbac.authorization.k8s.io diff --git a/resources/compass-runtime-agent/templates/deployment.yaml b/resources/compass-runtime-agent/templates/deployment.yaml deleted file mode 100644 index d71d76de16b2..000000000000 --- a/resources/compass-runtime-agent/templates/deployment.yaml +++ /dev/null @@ -1,115 +0,0 @@ -apiVersion: apps/v1 -kind: Deployment -metadata: - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} - labels: - app: {{ .Chart.Name }} - release: {{ .Release.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -spec: - selector: - matchLabels: - app: {{ .Chart.Name }} - release: {{ .Release.Name }} - template: - metadata: - annotations: - sidecar.istio.io/inject: "true" - labels: - app: {{ .Chart.Name }} - release: {{ .Release.Name }} - spec: - securityContext: - runAsUser: 65535 - runAsGroup: 65535 - runAsNonRoot: true - seccompProfile: - type: RuntimeDefault - serviceAccountName: {{ .Chart.Name }} - containers: - - name: {{ .Chart.Name }} - securityContext: - privileged: false - allowPrivilegeEscalation: false - runAsNonRoot: true - capabilities: - drop: - - ALL - procMount: default - readOnlyRootFilesystem: true - ports: - - containerPort: {{ .Values.compassRuntimeAgent.healthCheck.port }} - hostPort: 0 - name: http-health - image: {{ include "imageurl" (dict "reg" .Values.global.containerRegistry "img" .Values.global.images.compass_runtime_agent) }} - imagePullPolicy: {{ .Values.compassRuntimeAgent.image.pullPolicy }} - args: - - "/app/compass-runtime-agent" - env: - - name: APP_AGENT_CONFIGURATION_SECRET - value: "{{ .Values.compassRuntimeAgent.config.secret.namespace }}/{{ .Values.compassRuntimeAgent.config.secret.name }}" - - name: APP_CONTROLLER_SYNC_PERIOD - value: {{ .Values.compassRuntimeAgent.sync.controllerSyncPeriod | quote }} - - name: APP_MINIMAL_COMPASS_SYNC_TIME - value: {{ .Values.compassRuntimeAgent.sync.minimalConfigSyncTime | quote }} - - name: APP_CERT_VALIDITY_RENEWAL_THRESHOLD - value: {{ .Values.compassRuntimeAgent.certificates.renewal.validityThreshold | quote }} - - name: APP_CLUSTER_CERTIFICATES_SECRET - value: "{{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.namespace }}/{{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.name }}" - - name: APP_CA_CERTIFICATES_SECRET - value: "{{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.namespace }}/{{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.name }}" - - name: APP_SKIP_COMPASS_TLS_VERIFY - value: {{ .Values.compassRuntimeAgent.compass.skipTLSVerification | quote }} - - name: APP_SKIP_APPS_TLS_VERIFY - value: {{ .Values.compassRuntimeAgent.config.skipAppsTLSVerification | quote }} - - name: APP_GATEWAY_PORT - value: {{ .Values.compassRuntimeAgent.resources.gatewayPort | quote }} - - name: APP_UPLOAD_SERVICE_URL - value: {{ .Values.compassRuntimeAgent.resources.uploadServiceUrl | quote }} - - name: APP_QUERY_LOGGING - value: {{ .Values.compassRuntimeAgent.debug.queryLogging | quote }} - - name: APP_METRICS_LOGGING_TIME_INTERVAL - value: {{ .Values.compassRuntimeAgent.metrics.loggingTimeInterval | quote }} - - name: APP_RUNTIME_EVENTS_URL - value: "https://gateway.{{ .Values.global.domainName }}" - - name: APP_RUNTIME_CONSOLE_URL - value: "https://console.{{ .Values.global.domainName }}" - - name: APP_HEALTH_PORT - value: {{ .Values.compassRuntimeAgent.healthCheck.port | quote }} - {{ if .Values.compassRuntimeAgent.certificates.caCertificate.secret.migration}} - - name: APP_CA_CERT_SECRET_TO_MIGRATE - value: "{{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.namespace }}/{{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.migration.name | default "" }}" - - name: APP_CA_CERT_SECRET_KEYS_TO_MIGRATE - value: '{{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.migration.keys | default "[]" | toJson }}' - {{ end }} - {{ if .Values.compassRuntimeAgent.config.secret.migration.enabled }} - - name: APP_AGENT_CONFIGURATION_SECRET_TO_MIGRATE - value: "{{ .Values.compassRuntimeAgent.config.secret.migration.namespace }}/{{ .Values.compassRuntimeAgent.config.secret.name | default "" }}" - {{ end }} - {{ if .Values.compassRuntimeAgent.certificates.clientCertificate.secret.migration.enabled }} - - name: APP_CLUSTER_CERTIFICATES_SECRET_TO_MIGRATE - value: "{{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.migration.namespace }}/{{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.name | default "" }}" - {{ end }} - - name: APP_CENTRAL_GATEWAY_SERVICE_URL - value: {{ .Values.compassRuntimeAgent.resources.centralGatewayServiceUrl | quote }} - livenessProbe: - httpGet: - port: {{ .Values.compassRuntimeAgent.healthCheck.port }} - path: "/healthz" - initialDelaySeconds: {{ .Values.compassRuntimeAgent.livenessProbe.initialDelaySeconds }} - timeoutSeconds: {{ .Values.compassRuntimeAgent.livenessProbe.timeoutSeconds }} - periodSeconds: {{.Values.compassRuntimeAgent.livenessProbe.periodSeconds }} - readinessProbe: - httpGet: - port: {{.Values.compassRuntimeAgent.healthCheck.port }} - path: "/healthz" - initialDelaySeconds: {{ .Values.compassRuntimeAgent.readinessProbe.initialDelaySeconds }} - timeoutSeconds: {{ .Values.compassRuntimeAgent.readinessProbe.timeoutSeconds }} - periodSeconds: {{.Values.compassRuntimeAgent.readinessProbe.periodSeconds }} - {{- if .Values.priorityClassName }} - priorityClassName: {{ .Values.priorityClassName }} - {{- end }} diff --git a/resources/compass-runtime-agent/templates/priority-class.yaml b/resources/compass-runtime-agent/templates/priority-class.yaml deleted file mode 100644 index 037e08193a6d..000000000000 --- a/resources/compass-runtime-agent/templates/priority-class.yaml +++ /dev/null @@ -1,7 +0,0 @@ -apiVersion: scheduling.k8s.io/v1 -kind: PriorityClass -metadata: - name: {{ .Values.priorityClassName }} -value: 2000000 -globalDefault: false -description: "Scheduling priority of compass-runtime-agent component. By default, compass-runtime-agent should not be blocked by unschedulable user workloads." \ No newline at end of file diff --git a/resources/compass-runtime-agent/templates/resources-role-binding.yaml b/resources/compass-runtime-agent/templates/resources-role-binding.yaml deleted file mode 100644 index b6c5c3f3f0aa..000000000000 --- a/resources/compass-runtime-agent/templates/resources-role-binding.yaml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: rbac.authorization.k8s.io/v1 -kind: Role -metadata: - name: {{ .Chart.Name }} - namespace: {{ .Values.compassRuntimeAgent.resources.systemNamespace }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -rules: - - apiGroups: [""] - resources: ["services"] - verbs: ["create", "get", "delete"] - - apiGroups: [""] - resources: ["secrets"] - verbs: ["create", "get", "update", "delete"] ---- -kind: RoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Chart.Name }} - namespace: {{ .Values.compassRuntimeAgent.resources.systemNamespace }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -subjects: - - kind: ServiceAccount - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} -roleRef: - kind: Role - name: {{ .Chart.Name }} - apiGroup: rbac.authorization.k8s.io diff --git a/resources/compass-runtime-agent/templates/role-binding.yaml b/resources/compass-runtime-agent/templates/role-binding.yaml deleted file mode 100644 index 0c5719180036..000000000000 --- a/resources/compass-runtime-agent/templates/role-binding.yaml +++ /dev/null @@ -1,76 +0,0 @@ -apiVersion: rbac.authorization.k8s.io/v1 -kind: Role -metadata: - name: {{ .Chart.Name }}-client-cert-role - namespace: {{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.namespace | default "default" }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -rules: - - apiGroups: [""] - resources: ["secrets"] - verbs: ["create", "get", "update", "delete"] ---- -kind: RoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Chart.Name }}-client-cert-rolebinding - namespace: {{ .Values.compassRuntimeAgent.certificates.clientCertificate.secret.namespace | default "default" }} - labels: - app: {{ .Chart.Name }} - release: {{ .Release.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -subjects: - - kind: ServiceAccount - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} -roleRef: - kind: Role - name: {{ .Chart.Name }}-client-cert-role - apiGroup: rbac.authorization.k8s.io ---- -apiVersion: rbac.authorization.k8s.io/v1 -kind: Role -metadata: - name: {{ .Chart.Name }}-ca-cert-role - namespace: {{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.namespace | default "default" }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -rules: - - apiGroups: [""] - resources: ["secrets"] - verbs: ["create", "get", "update", "delete"] ---- -kind: RoleBinding -apiVersion: rbac.authorization.k8s.io/v1 -metadata: - name: {{ .Chart.Name }}-ca-cert-rolebinding - namespace: {{ .Values.compassRuntimeAgent.certificates.caCertificate.secret.namespace | default "default" }} - labels: - app: {{ .Chart.Name }} - release: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -subjects: - - kind: ServiceAccount - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} -roleRef: - kind: Role - name: {{ .Chart.Name }}-ca-cert-role - apiGroup: rbac.authorization.k8s.io - diff --git a/resources/compass-runtime-agent/templates/service-account.yaml b/resources/compass-runtime-agent/templates/service-account.yaml deleted file mode 100644 index 3a930dc84e6f..000000000000 --- a/resources/compass-runtime-agent/templates/service-account.yaml +++ /dev/null @@ -1,11 +0,0 @@ -apiVersion: v1 -kind: ServiceAccount -metadata: - name: {{ .Chart.Name }} - namespace: {{ .Release.Namespace }} - labels: - app: {{ .Chart.Name }} - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} \ No newline at end of file diff --git a/resources/compass-runtime-agent/templates/service.yaml b/resources/compass-runtime-agent/templates/service.yaml deleted file mode 100644 index 119457d82958..000000000000 --- a/resources/compass-runtime-agent/templates/service.yaml +++ /dev/null @@ -1,19 +0,0 @@ -apiVersion: v1 -kind: Service -metadata: - name: {{ .Chart.Name }}-service - namespace: {{ .Values.global.namespace }} - labels: - control-plane: {{ .Chart.Name }} - controller-tools.k8s.io: "1.0" - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} - app.kubernetes.io/name: {{ template "name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} -spec: - selector: - control-plane: {{ .Chart.Name }} - controller-tools.k8s.io: "1.0" - ports: - - port: 443 - diff --git a/resources/compass-runtime-agent/templates/skr-configmap.yaml b/resources/compass-runtime-agent/templates/skr-configmap.yaml deleted file mode 100644 index 387d761b3bfd..000000000000 --- a/resources/compass-runtime-agent/templates/skr-configmap.yaml +++ /dev/null @@ -1,7 +0,0 @@ -apiVersion: v1 -kind: ConfigMap -metadata: - name: skr-configmap - namespace: {{ .Values.global.skrConfigmapNamespace }} -data: - is-managed-kyma-runtime: "true" diff --git a/resources/compass-runtime-agent/values.yaml b/resources/compass-runtime-agent/values.yaml deleted file mode 100644 index dbad8ab533e5..000000000000 --- a/resources/compass-runtime-agent/values.yaml +++ /dev/null @@ -1,89 +0,0 @@ -global: - domainName: kyma.example.com - containerRegistry: - path: europe-docker.pkg.dev/kyma-project - images: - compass_runtime_agent: - name: "compass-runtime-agent" - version: "v20231218-ff3777c4" - directory: "prod" - istio: - gateway: - name: kyma-gateway - namespace: kyma-system - skrConfigmapNamespace: kyma-system - -managementPlane: {} # default value - -priorityClassName: "compass-runtime-agent-priority-class" - -compassRuntimeAgent: - image: - pullPolicy: IfNotPresent - sync: - controllerSyncPeriod: 180s - minimalConfigSyncTime: 15s - resources: - systemNamespace: "kyma-system" - dexSecretNamespace: "kyma-system" - dexSecretName: "admin-user" - gatewayPort: 8080 - centralGatewayServiceUrl: http://central-application-gateway.kyma-system.svc.cluster.local:8082 - config: - insecureConfigurationFetch: true - skipAppsTLSVerification: false - secret: - name: compass-agent-configuration - namespace: kyma-system - migration: - namespace: compass-system - enabled: true - certificates: - renewal: - validityThreshold: "0.3" - clientCertificate: - secret: - name: cluster-client-certificates - namespace: kyma-system - migration: - namespace: compass-system - enabled: true - caCertificate: - secret: - name: kyma-gateway-certs-cacert - namespace: istio-system - migration: - name: app-connector-certs - keys: ["cacert"] - compass: - skipTLSVerification: true - debug: - queryLogging: false - metrics: - loggingTimeInterval: 30m - healthCheck: - port: 8090 - proxyStatusPort: 15020 - tests: - labels: - integration: true - after-upgrade: true - enabled: true - mockService: - port: 8080 - configApplicationWaitTime: 50s - proxyInvalidationWaitTime: 120s - applicationInstallationTimeout: 180s - graphqlLogs: false - director: - url: "https://compass-gateway.{{ .Values.global.domainName }}/director/graphql" - idProvider: - clientTimeout: 10s - livenessProbe: - initialDelaySeconds: 50 - timeoutSeconds: 1 - periodSeconds: 10 - readinessProbe: - initialDelaySeconds: 10 - timeoutSeconds: 1 - periodSeconds: 2