-
Notifications
You must be signed in to change notification settings - Fork 3
/
controller.yaml
70 lines (70 loc) · 2.13 KB
/
controller.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
removeStrategy:
rbac: SYNC
items: NONE
items:
- kind: folder
name: REPLACE_FOLDER_NAME
groups:
- members:
users:
- REPLACE_GITHUB_USERNAME
- REPLACE_GITHUB_USERNAME-admin
roles:
- name: browse
grantedAt: current
- name: workshop-admin
grantedAt: child
name: Team Administrators
filteredRoles:
- workshop-admin
- browse
items:
- kind: managedController
name: REPLACE_CONTROLLER_NAME
properties:
- healthReporting:
enabled: true
- configurationAsCode:
bundle: REPLACE_FOLDER_NAME-REPLACE_CONTROLLER_NAME
configuration:
kubernetes:
memory: 4000
cpus: 1.0
clusterEndpointId: default
disk: 10
storageClassName: premium-rwo
domain: REPLACE_FOLDER_NAME-REPLACE_CONTROLLER_NAME
namespace: controllers
yaml: |
kind: "StatefulSet"
spec:
template:
metadata:
labels:
networking/allow-internet-access: "true"
spec:
containers:
- name: "jenkins"
env:
- name: "SECRETS"
value: "/var/jenkins_home/jcasc_secrets"
- name: "GITHUB_ORGANIZATION"
value: "REPLACE_GITHUB_ORG"
- name: "GITHUB_USER"
value: "REPLACE_GITHUB_USERNAME"
- name: "GITHUB_APP"
value: "REPLACE_GITHUB_APP"
- name: "CONTROLLER_SUBDOMAIN"
value: "REPLACE_FOLDER_NAME-REPLACE_CONTROLLER_NAME"
- name: "CASC_BUNDLE_ID"
value: "REPLACE_FOLDER_NAME-REPLACE_CONTROLLER_NAME"
volumeMounts:
- name: "jcasc-secrets"
mountPath: "/var/jenkins_home/jcasc_secrets"
volumes:
- name: "jcasc-secrets"
csi:
driver: secrets-store.csi.k8s.io
readOnly: true
volumeAttributes:
secretProviderClass: "cbci-mc-secret-provider"