zuul/zuul-helm
Code Issues Proposed changes

Add option to manage secrets outside of helm

Browse Source 
So that a user can manage the nodepool config file (which is a secret)
outside of helm, add an option where the user can specify the name
of that secret as a value, and if it's set, helm will not write the
secret and will tell k8s to mount that secret as the nodepool config
instead.

Change-Id: Ifa1b5e81b6c7700faef82f3b18aab157d042e735
This commit is contained in:
James E. Blair 2020-01-10 13:49:33 -08:00
parent 77ddeb499f
commit 9afaed4d37
3 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
charts/nodepool/templates/builder/statefulset.yaml
View File

@ -40,7 +40,7 @@ spec:
volumes: volumes:
- name: nodepool-config - name: nodepool-config
secret: secret:
secretName: {{ include "nodepool.fullname" . }} secretName: {{ (empty .Values.config.secret) | ternary (include "nodepool.fullname" .) .Values.config.secret }}
- name: nodepool-logs - name: nodepool-logs
emptyDir: {} emptyDir: {}
- name: dev - name: dev

2
charts/nodepool/templates/launcher/deployment.yaml
View File

@ -31,7 +31,7 @@ spec:
volumes: volumes:
- name: nodepool-config - name: nodepool-config
secret: secret:
secretName: {{ include "nodepool.fullname" . }} secretName: {{ (empty .Values.config.secret) | ternary (include "nodepool.fullname" .) .Values.config.secret }}
{{- with .Values.tolerations }} {{- with .Values.tolerations }}
tolerations: tolerations:
{{ toYaml . | indent 8 }} {{ toYaml . | indent 8 }}

4
charts/nodepool/templates/secret.yaml
View File

@ -1,4 +1,5 @@
--- ---
{{ if not .Values.config.secret }}
apiVersion: v1 apiVersion: v1
kind: Secret kind: Secret
metadata: metadata:
@ -11,4 +12,5 @@ stringData:
{{ toYaml .Values.config | indent 4 }} {{ toYaml .Values.config | indent 4 }}
clouds.yaml: | clouds.yaml: |
clouds: clouds:
{{ toYaml .Values.clouds | indent 6 }} {{ toYaml .Values.clouds | indent 6 }}
{{ end }}