airship/charts
Code Issues Proposed changes

feat(Gatekeeper): Adds gatekeeper to K8s deployment

Browse Source 
This PS adds the gatekeeper chart to the deployment, which is required
to provide safeguards surreounding pipelines.

Signed-off-by: Pete Birley <pete@port.direct>
Change-Id: Ie434d4052435cde83f0ff91d068f25882cebe1de
This commit is contained in:
Pete Birley 2021-01-16 21:31:31 -06:00 committed by Pete Birley
parent 270a14d379
commit 7522da6cc1
3 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
tools/deployment/vagrant/Vagrantfile vendored
View File

@ -35,6 +35,7 @@ Vagrant.configure("2") do |config|
./tools/gate/jarvis/010-pre-setup.sh
./tools/gate/jarvis/050-setup-development-ca.sh
./tools/gate/jarvis/100-deploy-k8s.sh
./tools/gate/jarvis/150-deploy-gatekeeper.sh
./tools/gate/jarvis/200-deploy-support.sh
./tools/gate/jarvis/300-deploy-loki.sh
./tools/gate/jarvis/400-deploy-harbor.sh

14
tools/gate/jarvis/150-deploy-gatekeeper.sh Executable file
View File

@ -0,0 +1,14 @@
#!/bin/bash
set -ex
helm repo add gatekeeper https://open-policy-agent.github.io/gatekeeper/charts
# NOTE: This chart creates objects in gatekeeper-system
# shellcheck disable=SC2046
helm upgrade \
--install \
--namespace=kube-system \
gatekeeper \
gatekeeper/gatekeeper \
$(./tools/deployment/common/get-values-overrides.sh gatekeeper)
./tools/deployment/common/wait-for-pods.sh gatekeeper-system

1
zuul.d/jobs.yaml
View File

@ -33,6 +33,7 @@
gate_scripts:
- ./tools/gate/jarvis/050-setup-development-ca.sh
- ./tools/gate/jarvis/100-deploy-k8s.sh
- ./tools/gate/jarvis/150-deploy-gatekeeper.sh
- ./tools/gate/jarvis/200-deploy-support.sh
- ./tools/gate/jarvis/300-deploy-loki.sh
- ./tools/gate/jarvis/400-deploy-harbor.sh