fix(argo): Use https for readiness probe in secure mode

Signed-off-by: Joseph McGovern <joseph.mcgovern@workiva.com>
2020-11-24 10:52:57 -06:00 · 2020-11-24 10:52:57 -06:00 · 1a727a0423
commit 1a727a0423
parent 15a76e56d0
3 changed files with 14 additions and 1 deletions
--- a/charts/argo/Chart.yaml
+++ b/charts/argo/Chart.yaml
@ -2,7 +2,7 @@ apiVersion: v1
 appVersion: v2.11.7
 description: A Helm chart for Argo Workflows
 name: argo
-version: 0.13.8
+version: 0.13.10
 icon: https://raw.githubusercontent.com/argoproj/argo/master/docs/assets/argo.png
 home: https://github.com/argoproj/argo-helm
 maintainers:
--- a/charts/argo/templates/server-deployment.yaml
+++ b/charts/argo/templates/server-deployment.yaml
@ -38,6 +38,9 @@ spec:
          {{- if .Values.server.extraArgs }}
          {{- toYaml .Values.server.extraArgs | nindent 10 }}
          {{- end }}
+          {{- if .Values.server.secure }}
+          - "--secure"
+          {{- end }}
          {{- if .Values.singleNamespace }}
          - "--namespaced"
          {{- end }}
@ -52,7 +55,11 @@ spec:
            httpGet:
              path: /
              port: 2746
+              {{- if .Values.server.secure }}
+              scheme: HTTPS
+              {{- else }}
              scheme: HTTP
+              {{- end }}
            initialDelaySeconds: 10
            periodSeconds: 20
          env:
--- a/charts/argo/values.yaml
+++ b/charts/argo/values.yaml
@ -201,6 +201,12 @@ server:
  # PriorityClass: system-cluster-critical
  priorityClassName: ""

+  # Run the argo server in "secure" mode. Configure this value instead of
+  # "--secure" in extraArgs. See the following documentation for more details
+  # on secure mode:
+  # https://argoproj.github.io/argo/tls/#encrypted
+  secure: false
+
  # Extra arguments to provide to the Argo server binary.
  extraArgs: []