Annotations for various objects were either multi-line strings or yaml
maps strings, so this is making them all multi-line strings for
consistency. Also updated the doc comment for namespaceSelector, since
it's being read as a yaml map (toYaml).
Adds affinity, tolerations, and nodeSelector options for the
injector deployment that are separate from those options on the vault
server statefulset.
Co-authored-by: Sergei Shishov <sergei.shishov@dubizzle.com>
Uses Values.injector.externalVaultAddr to control the vault address
env variable and server yaml rendering.
If injector.externalVaultAddr is empty, both the injector and vault
are deployed, with the injector using the local vault. If
injector.externalVaultAddr is not empty, only the injector is
deployed, and it uses the vault at the address specified in
injector.externalVaultAddr.
livenessProbe
* Set the scheme for vault.scheme to ensure that the check works if tls enabled or not
* Allow a configurable value initialDelaySeconds rather than the set 5 seconds
* Set the default initialDelaySeconds to 60 seconds before the probe starts to allow for vault unsealing
* Set the path to /v1/sys/health?standbyok=true to ensure a 200 response on standbys
readinessProbe
* Set the path comment to /v1/sys/health?standbyok=true to ensure a 200 response on standbys
* Set the scheme for vault.scheme to ensure that the check works if tls enabled or not
* Statefulset liveness probe path check set to /v1/sys/health?standbyok=true
* Server Statefulset test added for livenessProbe.initialDelaySeconds
* use a standard way to define image repo and tag
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* add tests
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* bump chart version
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* Revert "bump chart version"
This reverts commit 74cbc984a7d4cf9098acf78977cdc8598c557550.
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* nest image block inside server
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* add image pull policy and pull secrets
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* add unit tests
Signed-off-by: Janusz Bialy <jbialy@gmail.com>
* Changed vault service port and targetPort to values file
* Fixed typo in vaules, adding server-service changes and tests
* Changed port and targetPort to server.service
* feat: allow setting loadBalancerIP and externalPort for service-ui
* test: remove tests with wrong value
There is no `ui.service.enabled` field, `ui.enabled` is used to create
the service and that is tested in line 29.
* test: loadBalancerIP is used if set.
* Add Secret env vars
* Add custom path for volume mounting
* Add HTTPS support
* Add test for tls
* Simplify network setup
* Make tls_disable true as default
* Update values variable to camelCase
* support ui service annotations
* Update templates/ui-service.yaml
Co-Authored-By: Dat Truong <mr.anhdat@gmail.com>
* fix service annotation indent and write unit tests
