bitnami
/
charts


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118
							gcp:
  enabled: true
agent:
  cniPlugin:
    install: true
  enablePprof: true
  containerSecurityContext:
    enabled: true
    runAsUser: 0
    allowPrivilegeEscalation: true
    privileged: true
  containerPorts:
    health: 9879
    pprof: 6060
    hubblePeer: 4244
    metrics: 9962
    hubbleMetrics: 9965
  priorityClassName: ""
  serviceAccount:
    create: true
    automountServiceAccountToken: true
  metrics:
    enabled: true
    service:
      port: 9962
operator:
  metrics:
    enabled: true
envoy:
  metrics:
    enabled: true
hubble:
  tls:
    enabled: true
    autoGenerated:
      enabled: true
      engine: helm
  peers:
    service:
      port: 4244
    metrics:
      enabled: true
      service:
        port: 9965
  relay:
    enabled: true
    metrics:
      enabled: true
  ui:
    enabled: true
    service:
      ports:
        http: 80
      type: LoadBalancer
extraDeploy:
- |
  apiVersion: rbac.authorization.k8s.io/v1
  kind: Role
  metadata:
    name: deployment-restart
    namespace: "{{ include "common.names.namespace" . }}"
  rules:
    - apiGroups: ["apps"]
      resources: ["deployments"]
      verbs: ["get", "update", "patch"]
    - apiGroups: ["apps"]
      resources: ["daemonsets"]
      verbs: ["get", "list", "watch"]
    - apiGroups: [""]
      resources: ["pods"]
      verbs: ["get", "list"]
  ---
  apiVersion: rbac.authorization.k8s.io/v1
  kind: RoleBinding
  metadata:
    name: deployment-restart
    namespace: {{ include "common.names.namespace" . }}
  subjects:
  - kind: ServiceAccount
    name: deployment-restarter
    namespace: {{ include "common.names.namespace" . }}
  roleRef:
    kind: Role
    name: deployment-restart
  ---
  apiVersion: v1
  kind: ServiceAccount
  metadata:
    name: deployment-restarter
    namespace: {{ include "common.names.namespace" . }}
  ---
  apiVersion: batch/v1
  kind: Job
  metadata:
    name: deployment-restarter
    namespace: {{ include "common.names.namespace" . }}
  spec:
    template:
      spec:
        automountServiceAccountToken: true
        serviceAccountName: deployment-restarter
        restartPolicy: OnFailure
        containers:
          - name: kubectl
            image: docker.io/bitnami/kubectl:latest
            command:
              - /bin/bash
            args:
              - -ec
              - |
                set -o errexit
                set -o nounset
                set -o pipefail

                kubectl rollout status --namespace {{ include "common.names.namespace" . }} daemonset {{ include "cilium.agent.fullname" . }}
                echo "Cilium agents are ready"
                kubectl rollout restart deployment --namespace {{ include "common.names.namespace" . }} {{ include "cilium.hubble.relay.fullname" . }}
                kubectl rollout restart deployment --namespace {{ include "common.names.namespace" . }} {{ include "cilium.hubble.ui.fullname" . }}