Skip to content

Commit 35778c6

Browse files
aramasearamase
committed
release: update manifest and helm charts for v0.0.20
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
1 parent 74dd773 commit 35778c6

16 files changed

+82
-37
lines changed

charts/index.yaml

Lines changed: 17 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,22 @@
11
apiVersion: v1
22
entries:
33
secrets-store-csi-driver:
4+
- apiVersion: v1
5+
appVersion: 0.0.20
6+
created: "2021-02-18T11:02:39.04869-08:00"
7+
description: A Helm chart to install the SecretsStore CSI Driver inside a Kubernetes cluster.
8+
digest: b08ef96a751c05859ea3cb21b5e39d11c9a66ad033ff020ee5f7ecbffb761aa1
9+
icon: https://github.com/kubernetes/kubernetes/blob/master/logo/logo.png
10+
kubeVersion: '>=1.16.0-0'
11+
maintainers:
12+
- email: ritazh@microsoft.com
13+
name: Rita Zhang
14+
name: secrets-store-csi-driver
15+
sources:
16+
- https://github.com/kubernetes-sigs/secrets-store-csi-driver
17+
urls:
18+
- https://raw.githubusercontent.com/kubernetes-sigs/secrets-store-csi-driver/master/charts/secrets-store-csi-driver-0.0.20.tgz
19+
version: 0.0.20
420
- apiVersion: v1
521
appVersion: 0.0.19
622
created: "2021-01-19T13:25:13.508507-08:00"
@@ -177,4 +193,4 @@ entries:
177193
urls:
178194
- https://raw.githubusercontent.com/kubernetes-sigs/secrets-store-csi-driver/master/charts/secrets-store-csi-driver-0.0.9.tgz
179195
version: 0.0.9
180-
generated: "2021-01-19T13:25:13.507607-08:00"
196+
generated: "2021-02-18T11:02:39.046817-08:00"

charts/secrets-store-csi-driver-0.0.20.tgz

6.97 KB
Binary file not shown.

charts/secrets-store-csi-driver/Chart.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
apiVersion: v1
22
name: secrets-store-csi-driver
3-
version: 0.0.19
4-
appVersion: 0.0.19
3+
version: 0.0.20
4+
appVersion: 0.0.20
55
kubeVersion: ">=1.16.0-0"
66
description: A Helm chart to install the SecretsStore CSI Driver inside a Kubernetes cluster.
77
icon: https://github.com/kubernetes/kubernetes/blob/master/logo/logo.png

charts/secrets-store-csi-driver/README.md

Lines changed: 12 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ The following table lists the configurable parameters of the csi-secrets-store-p
2525
| `fullnameOverride` | String to fully override secrets-store-csi-driver.fullname template with a string | `""` |
2626
| `linux.image.repository` | Linux image repository | `k8s.gcr.io/csi-secrets-store/driver` |
2727
| `linux.image.pullPolicy` | Linux image pull policy | `Always` |
28-
| `linux.image.tag` | Linux image tag | `v0.0.19` |
28+
| `linux.image.tag` | Linux image tag | `v0.0.20` |
2929
| `linux.driver.resources` | The resource request/limits for the linux secrets-store container image | `limits: 200m CPU, 200Mi; requests: 50m CPU, 100Mi` |
3030
| `linux.enabled` | Install secrets store csi driver on linux nodes | true |
3131
| `linux.kubeletRootDir` | Configure the kubelet root dir | `/var/lib/kubelet` |
@@ -37,17 +37,20 @@ The following table lists the configurable parameters of the csi-secrets-store-p
3737
| `linux.registrarImage.pullPolicy` | Linux node-driver-registrar image pull policy | `Always` |
3838
| `linux.registrarImage.tag` | Linux node-driver-registrar image tag | `v2.1.0` |
3939
| `linux.registrar.resources` | The resource request/limits for the linux node-driver-registrar container image | `limits: 100m CPU, 100Mi; requests: 10m CPU, 20Mi` |
40+
| `linux.registrar.logVerbosity` | Log level for node-driver-registrar. Uses V logs (klog) | `5` |
4041
| `linux.livenessProbeImage.repository` | Linux liveness-probe image repository | `k8s.gcr.io/sig-storage/livenessprobe` |
4142
| `linux.livenessProbeImage.pullPolicy` | Linux liveness-probe image pull policy | `Always` |
4243
| `linux.livenessProbeImage.tag` | Linux liveness-probe image tag | `v2.2.0` |
4344
| `linux.livenessProbe.resources` | The resource request/limits for the linux liveness-probe container image | `limits: 100m CPU, 100Mi; requests: 10m CPU, 20Mi` |
4445
| `linux.env` | Environment variables to be passed for the daemonset on linux nodes | `[]` |
4546
| `linux.priorityClassName` | Indicates the importance of a Pod relative to other Pods. | `""` |
46-
| `linux.annotations` | Linux *Daemonset* annotations | `{}` |
47+
| `linux.daemonsetAnnotations` | Linux *DaemonSet* annotations | `{}` |
48+
| `linux.podAnnotations` | Linux *Pod* annotations | `{}` |
49+
| `linux.podLabels` | Linux *Pod* labels | `{}` |
4750
| `linux.updateStrategy` | Configure a custom update strategy for the daemonset on linux nodes | `RollingUpdate with 1 maxUnavailable` |
4851
| `windows.image.repository` | Windows image repository | `k8s.gcr.io/csi-secrets-store/driver` |
4952
| `windows.image.pullPolicy` | Windows image pull policy | `IfNotPresent` |
50-
| `windows.image.tag` | Windows image tag | `v0.0.19` |
53+
| `windows.image.tag` | Windows image tag | `v0.0.20` |
5154
| `windows.driver.resources` | The resource request/limits for the windows secrets-store container image | `limits: 400m CPU, 400Mi; requests: 50m CPU, 100Mi` |
5255
| `windows.enabled` | Install secrets store csi driver on windows nodes | false |
5356
| `windows.kubeletRootDir` | Configure the kubelet root dir | `C:\var\lib\kubelet` |
@@ -59,21 +62,24 @@ The following table lists the configurable parameters of the csi-secrets-store-p
5962
| `windows.registrarImage.pullPolicy` | Windows node-driver-registrar image pull policy | `Always` |
6063
| `windows.registrarImage.tag` | Windows node-driver-registrar image tag | `v2.1.0` |
6164
| `windows.registrar.resources` | The resource request/limits for the windows node-driver-registrar container image | `limits: 200m CPU, 200Mi; requests: 10m CPU, 20Mi` |
65+
| `windows.registrar.logVerbosity` | Log level for node-driver-registrar. Uses V logs (klog) | `5` |
6266
| `windows.livenessProbeImage.repository` | Windows liveness-probe image repository | `k8s.gcr.io/sig-storage/livenessprobe` |
6367
| `windows.livenessProbeImage.pullPolicy` | Windows liveness-probe image pull policy | `Always` |
6468
| `windows.livenessProbeImage.tag` | Windows liveness-probe image tag | `v2.2.0` |
6569
| `windows.livenessProbe.resources` | The resource request/limits for the windows liveness-probe container image | `limits: 200m CPU, 200Mi; requests: 10m CPU, 20Mi` |
6670
| `windows.env` | Environment variables to be passed for the daemonset on windows nodes | `[]` |
6771
| `windows.priorityClassName` | Indicates the importance of a Pod relative to other Pods. | `""` |
68-
| `windows.annotations` | Windows *Daemonset* annotations | `{}` |
72+
| `windows.daemonsetAnnotations` | Windows *DaemonSet* annotations | `{}` |
73+
| `windows.podAnnotations` | Windows *Pod* annotations | `{}` |
74+
| `windows.podLabels` | Windows *Pod* labels | `{}` |
6975
| `windows.updateStrategy` | Configure a custom update strategy for the daemonset on windows nodes | `RollingUpdate with 1 maxUnavailable` |
7076
| `logVerbosity` | Log level. Uses V logs (klog) | `0` |
7177
| `logFormatJSON` | Use JSON logging format | `false` |
7278
| `livenessProbe.port` | Liveness probe port | `9808` |
7379
| `livenessProbe.logLevel` | Liveness probe container logging verbosity level | `2` |
7480
| `rbac.install` | Install default rbac roles and bindings | true |
7581
| `syncSecret.enabled` | Enable rbac roles and bindings required for syncing to Kubernetes native secrets (the default will change to false after v0.0.14) | true |
76-
| `minimumProviderVersions` | A comma delimited list of key-value pairs of minimum provider versions with driver | `""` |
77-
| `grpcSupportedProviders` | A `;` delimited list of providers that support grpc for driver-provider [alpha] | `"gcp;azure;"` |
82+
| `minimumProviderVersions` | [**DEPRECATED**] A comma delimited list of key-value pairs of minimum provider versions with driver | `""` |
83+
| `grpcSupportedProviders` | A `;` delimited list of providers that support grpc for driver-provider | `"gcp;azure;vault;"` |
7884
| `enableSecretRotation` | Enable secret rotation feature [alpha] | `false` |
7985
| `rotationPollInterval` | Secret rotation poll interval duration | `"120s"` |

charts/secrets-store-csi-driver/templates/NOTES.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,5 +4,5 @@ To verify that Secrets Store CSI Driver has started, run:
44

55
kubectl --namespace={{ .Release.Namespace }} get pods -l "app={{ template "sscd.name" . }}"
66

7-
Now you can follow these steps https://github.com/kubernetes-sigs/secrets-store-csi-driver#use-the-secrets-store-csi-driver
7+
Now you can follow these steps https://secrets-store-csi-driver.sigs.k8s.io/getting-started/usage.html
88
to create a SecretProviderClass resource, and a deployment using the SecretProviderClass.

charts/secrets-store-csi-driver/templates/secrets-store-csi-driver-windows.yaml

Lines changed: 11 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -5,9 +5,9 @@ metadata:
55
name: {{ template "sscd.fullname" . }}-windows
66
namespace: {{ .Release.Namespace }}
77
{{ include "sscd.labels" . | indent 2 }}
8-
{{- if .Values.windows.annotations }}
8+
{{- if .Values.windows.daemonsetAnnotations }}
99
annotations:
10-
{{ toYaml .Values.windows.annotations | indent 4 }}
10+
{{ toYaml .Values.windows.daemonsetAnnotations | indent 4 }}
1111
{{- end }}
1212
spec:
1313
selector:
@@ -17,14 +17,22 @@ spec:
1717
{{ toYaml .Values.windows.updateStrategy | indent 4 }}
1818
template:
1919
metadata:
20+
{{- if .Values.windows.podAnnotations }}
21+
annotations:
22+
kubectl.kubernetes.io/default-logs-container: secrets-store
23+
{{ toYaml .Values.windows.podAnnotations | indent 8 }}
24+
{{- end }}
2025
{{ include "sscd.labels" . | indent 6 }}
26+
{{- if .Values.windows.podLabels }}
27+
{{- toYaml .Values.windows.podLabels | nindent 8 }}
28+
{{- end }}
2129
spec:
2230
serviceAccountName: secrets-store-csi-driver
2331
containers:
2432
- name: node-driver-registrar
2533
image: "{{ .Values.windows.registrarImage.repository }}:{{ .Values.windows.registrarImage.tag }}"
2634
args:
27-
- --v=5
35+
- --v={{ .Values.windows.registrar.logVerbosity }}
2836
- "--csi-address=unix://C:\\csi\\csi.sock"
2937
- --kubelet-registration-path={{ .Values.windows.kubeletRootDir }}\plugins\csi-secrets-store\csi.sock
3038
env:

charts/secrets-store-csi-driver/templates/secrets-store-csi-driver.yaml

Lines changed: 11 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -5,9 +5,9 @@ metadata:
55
name: {{ template "sscd.fullname" . }}
66
namespace: {{ .Release.Namespace }}
77
{{ include "sscd.labels" . | indent 2 }}
8-
{{- if .Values.linux.annotations }}
8+
{{- if .Values.linux.daemonsetAnnotations }}
99
annotations:
10-
{{ toYaml .Values.linux.annotations | indent 4 }}
10+
{{ toYaml .Values.linux.daemonsetAnnotations | indent 4 }}
1111
{{- end }}
1212
spec:
1313
selector:
@@ -17,16 +17,22 @@ spec:
1717
{{ toYaml .Values.linux.updateStrategy | indent 4 }}
1818
template:
1919
metadata:
20+
{{- if .Values.linux.podAnnotations }}
21+
annotations:
22+
kubectl.kubernetes.io/default-logs-container: secrets-store
23+
{{ toYaml .Values.linux.podAnnotations | indent 8 }}
24+
{{- end }}
2025
{{ include "sscd.labels" . | indent 6 }}
26+
{{- if .Values.linux.podLabels }}
27+
{{- toYaml .Values.linux.podLabels | nindent 8 }}
28+
{{- end }}
2129
spec:
2230
serviceAccountName: secrets-store-csi-driver
23-
hostNetwork: true
24-
dnsPolicy: ClusterFirstWithHostNet
2531
containers:
2632
- name: node-driver-registrar
2733
image: "{{ .Values.linux.registrarImage.repository }}:{{ .Values.linux.registrarImage.tag }}"
2834
args:
29-
- --v=5
35+
- --v={{ .Values.linux.registrar.logVerbosity }}
3036
- --csi-address=/csi/csi.sock
3137
- --kubelet-registration-path={{ .Values.linux.kubeletRootDir }}/plugins/csi-secrets-store/csi.sock
3238
env:

charts/secrets-store-csi-driver/values.yaml

Lines changed: 12 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@ linux:
22
enabled: true
33
image:
44
repository: k8s.gcr.io/csi-secrets-store/driver
5-
tag: v0.0.19
5+
tag: v0.0.20
66
pullPolicy: Always
77

88
driver:
@@ -27,6 +27,7 @@ linux:
2727
requests:
2828
cpu: 10m
2929
memory: 20Mi
30+
logVerbosity: 5
3031

3132
livenessProbeImage:
3233
repository: k8s.gcr.io/sig-storage/livenessprobe
@@ -54,13 +55,15 @@ linux:
5455
metricsAddr: ":8095"
5556
env: []
5657
priorityClassName: ""
57-
annotations: {}
58+
daemonsetAnnotations: {}
59+
podAnnotations: {}
60+
podLabels: {}
5861

5962
windows:
6063
enabled: false
6164
image:
6265
repository: k8s.gcr.io/csi-secrets-store/driver
63-
tag: v0.0.19
66+
tag: v0.0.20
6467
pullPolicy: IfNotPresent
6568

6669
driver:
@@ -85,6 +88,7 @@ windows:
8588
requests:
8689
cpu: 10m
8790
memory: 20Mi
91+
logVerbosity: 5
8892

8993
livenessProbeImage:
9094
repository: k8s.gcr.io/sig-storage/livenessprobe
@@ -112,7 +116,9 @@ windows:
112116
metricsAddr: ":8095"
113117
env: []
114118
priorityClassName: ""
115-
annotations: {}
119+
daemonsetAnnotations: {}
120+
podAnnotations: {}
121+
podLabels: {}
116122

117123
# log level. Uses V logs (klog)
118124
logVerbosity: 0
@@ -133,13 +139,13 @@ rbac:
133139
syncSecret:
134140
enabled: true
135141

136-
## Minimum Provider Versions (optional)
142+
## [DEPRECATED] Minimum Provider Versions (optional)
137143
## A comma delimited list of key-value pairs of minimum provider versions
138144
## e.g. provider1=0.0.2,provider2=0.0.3
139145
minimumProviderVersions:
140146

141147
## ; delimited list of providers that support grpc for driver-provider [alpha]
142-
grpcSupportedProviders: gcp;azure;
148+
grpcSupportedProviders: gcp;azure;vault;
143149

144150
## Enable secret rotation feature [alpha]
145151
enableSecretRotation: false

0 commit comments

Comments
 (0)