Skip to content

Commit

Permalink
operator oracle-oci-ccm-operator (0.0.10)
Browse files Browse the repository at this point in the history
  • Loading branch information
DavidCampbellAtOracle committed Nov 3, 2023
1 parent 42e6eaa commit ad3d3ff
Show file tree
Hide file tree
Showing 7 changed files with 661 additions and 0 deletions.
Original file line number Diff line number Diff line change
@@ -0,0 +1,100 @@
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
creationTimestamp: null
name: ocicloudmanagers.ccm.oraclecloud.com
spec:
group: ccm.oraclecloud.com
names:
kind: OCICloudManager
listKind: OCICloudManagerList
plural: ocicloudmanagers
singular: ocicloudmanager
scope: Cluster
versions:
- name: v1alpha1
schema:
openAPIV3Schema:
description: OCICloudManager is the Schema for the ocicloudmanagers API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type: string
metadata:
type: object
spec:
description: Spec defines the desired state of OCICloudManager
properties:
compartment:
description: Compartment configures Compartment within which the cluster
resides.
type: string
driverNamespace:
description: Namespace to isntall drivers
type: string
loadBalancer:
properties:
securityList:
description: Specification of which security lists to modify per
subnet. This does not apply if security list management is off.
type: string
securityListManagementMode:
description: |-
SecurityListManagementMode configures how security lists are managed by the CCM.
If you choose to have security lists managed by the CCM, ensure you have setup the following additional OCI policy:
Allow dynamic-group [your dynamic group name] to manage security-lists in compartment [your compartment name]
"All" (default): Manage all required security list rules for load balancer services.
"Frontend": Manage only security list rules for ingress to the load
balancer. Requires that the user has setup a rule that
allows inbound traffic to the appropriate ports for kube
proxy health port, node port ranges, and health check port ranges.
E.g. 10.82.0.0/16 30000-32000.
"None": Disables all security list management. Requires that the
user has setup a rule that allows inbound traffic to the
appropriate ports for kube proxy health port, node port
anges, and health check port ranges. E.g. 10.82.0.0/16 30000-32000.
Additionally requires the user to mange rules to allow
inbound traffic to load balancers.
type: string
subnet:
type: string
required:
- subnet
- securityListManagementMode
type: object
vcn:
description: Vcn configures the Virtual Cloud Network (VCN) within
which the cluster resides.
type: string
required:
- compartment
- vcn
- loadBalancer
- driverNamespace
type: object
status:
description: Status defines the observed state of OCICloudManager
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
x-kubernetes-validations:
- rule: has(self.metadata.name)
- rule: self.metadata.name == 'ocicloudmanager'
served: true
storage: true
subresources:
status: {}
status:
acceptedNames:
kind: ""
plural: ""
conditions: null
storedVersions: null
Original file line number Diff line number Diff line change
@@ -0,0 +1,68 @@
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
creationTimestamp: null
name: ocicsidrivers.ccm.oraclecloud.com
spec:
group: ccm.oraclecloud.com
names:
kind: OCICsiDriver
listKind: OCICsiDriverList
plural: ocicsidrivers
singular: ocicsidriver
scope: Cluster
versions:
- name: v1alpha1
schema:
openAPIV3Schema:
description: OCICsiDriver is the Schema for the ocicsidrivers API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type: string
metadata:
type: object
spec:
description: Spec defines the desired state of OCICloudManager
properties:
compartment:
description: Compartment configures Compartment within which the cluster
resides.
type: string
driverNamespace:
description: Namespace to isntall drivers
type: string
vcn:
description: Vcn configures the Virtual Cloud Network (VCN) within
which the cluster resides.
type: string
required:
- compartment
- vcn
- driverNamespace
type: object
status:
description: Status defines the observed state of OCICsiDriver
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
x-kubernetes-validations:
- rule: has(self.metadata.name)
- rule: self.metadata.name == 'ocicsidriver'
served: true
storage: true
subresources:
status: {}
status:
acceptedNames:
kind: ""
plural: ""
conditions: null
storedVersions: null
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
apiVersion: v1
kind: Service
metadata:
creationTimestamp: null
labels:
app.kubernetes.io/component: kube-rbac-proxy
app.kubernetes.io/created-by: oci-ccm-operator
app.kubernetes.io/instance: controller-manager-metrics-service
app.kubernetes.io/managed-by: kustomize
app.kubernetes.io/name: service
app.kubernetes.io/part-of: oci-ccm-operator
control-plane: controller-manager
name: oci-ccm-operator-controller-manager-metrics-service
spec:
ports:
- name: https
port: 8443
protocol: TCP
targetPort: https
selector:
control-plane: controller-manager
status:
loadBalancer: {}
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
creationTimestamp: null
labels:
app.kubernetes.io/component: kube-rbac-proxy
app.kubernetes.io/created-by: oci-ccm-operator
app.kubernetes.io/instance: metrics-reader
app.kubernetes.io/managed-by: kustomize
app.kubernetes.io/name: clusterrole
app.kubernetes.io/part-of: oci-ccm-operator
name: oci-ccm-operator-metrics-reader
rules:
- nonResourceURLs:
- /metrics
verbs:
- get
Loading

0 comments on commit ad3d3ff

Please sign in to comment.