diff --git a/CHANGELOG.md b/CHANGELOG.md index 8168c96ce..439c6eed9 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,6 +5,7 @@ All releases and the changes included in them (pulled from git commits added sin ### Major Version Upgrades %%^^ ### Minor Version Upgrades %%^^ +- Updated teleport-kube-agent from version 16.2.1 to 16.3.0 - Updated teleport-cluster from version 16.2.1 to 16.3.0 - Updated opensearch-dashboards from version 2.21.2 to 2.22.0 - Updated opensearch from version 2.23.2 to 2.24.0 diff --git a/argocd-helm-charts/teleport-kube-agent/Chart.lock b/argocd-helm-charts/teleport-kube-agent/Chart.lock index 8ae0eedb0..172180310 100644 --- a/argocd-helm-charts/teleport-kube-agent/Chart.lock +++ b/argocd-helm-charts/teleport-kube-agent/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: teleport-kube-agent repository: https://charts.releases.teleport.dev - version: 16.2.1 -digest: sha256:798402f1cdf6af793e054d3e14ef4ae7ff2a12a50087236860a32a28f388c80b -generated: "2024-09-09T14:10:06.124959358+05:30" + version: 16.3.0 +digest: sha256:4ab34287bc18812a07f8c4c47a94cdf85814b04f7344cc0a5fc8b49890f5f4a3 +generated: "2024-09-16T19:19:00.948288534+05:30" diff --git a/argocd-helm-charts/teleport-kube-agent/Chart.yaml b/argocd-helm-charts/teleport-kube-agent/Chart.yaml index baa3b1283..2652c8231 100644 --- a/argocd-helm-charts/teleport-kube-agent/Chart.yaml +++ b/argocd-helm-charts/teleport-kube-agent/Chart.yaml @@ -7,6 +7,6 @@ keywords: - Teleport dependencies: - name: teleport-kube-agent - version: 16.2.1 + version: 16.3.0 repository: https://charts.releases.teleport.dev #repository: "oci://ghcr.io/Obmondo" diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/Chart.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/Chart.yaml index e8687b202..4b4e182c1 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/Chart.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/Chart.yaml @@ -1,9 +1,9 @@ apiVersion: v2 -appVersion: 16.2.1 +appVersion: 16.3.0 description: Teleport provides a secure SSH, Kubernetes, database and application remote access solution that doesn't get in the way. icon: https://goteleport.com/static/teleport-symbol-bimi.svg keywords: - Teleport name: teleport-kube-agent -version: 16.2.1 +version: 16.3.0 diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/delete_hook.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/delete_hook.yaml index 3690ae754..f0a4b2edf 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/delete_hook.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/delete_hook.yaml @@ -73,6 +73,15 @@ spec: template: metadata: name: {{ .Release.Name }}-delete-hook +{{- if .Values.annotations.pod }} + annotations: + {{- toYaml .Values.annotations.pod | nindent 8 }} +{{- end }} + labels: + app: {{ .Release.Name }} +{{- if .Values.extraLabels.pod }} + {{- toYaml .Values.extraLabels.pod | nindent 8 }} +{{- end }} spec: {{- if .Values.imagePullSecrets }} imagePullSecrets: diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/hook.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/hook.yaml index e6d7de50a..3a2f13e98 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/hook.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/hook.yaml @@ -63,6 +63,15 @@ spec: template: metadata: name: {{ .Release.Name }}-hook +{{- if .Values.annotations.pod }} + annotations: + {{- toYaml .Values.annotations.pod | nindent 8 }} +{{- end }} + labels: + app: {{ .Release.Name }} +{{- if .Values.extraLabels.pod }} + {{- toYaml .Values.extraLabels.pod | nindent 8 }} +{{- end }} spec: {{- if .Values.priorityClassName }} priorityClassName: {{ .Values.priorityClassName }} diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/statefulset.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/statefulset.yaml index 030fc7793..5018a8c38 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/statefulset.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/templates/statefulset.yaml @@ -13,6 +13,10 @@ metadata: {{- if .Values.extraLabels.deployment }} {{- toYaml .Values.extraLabels.deployment | nindent 4 }} {{- end }} + {{- if .Values.annotations.deployment }} + annotations: + {{- toYaml .Values.annotations.deployment | nindent 4 }} + {{- end }} spec: serviceName: {{ .Release.Name }} replicas: {{ $replicaCount }} diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap index 8f76158bc..ea85ee17f 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap @@ -32,7 +32,7 @@ sets Deployment annotations when specified if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -109,7 +109,7 @@ sets Deployment labels when specified if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -173,7 +173,7 @@ sets Pod annotations when specified if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -237,7 +237,7 @@ sets Pod labels when specified if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -322,7 +322,7 @@ should add emptyDir for data when existingDataVolume is not set if action is Upg value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -387,7 +387,7 @@ should add insecureSkipProxyTLSVerify to args when set in values if action is Up value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -451,7 +451,7 @@ should correctly configure existingDataVolume when set if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -513,7 +513,7 @@ should expose diag port if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -589,7 +589,7 @@ should have multiple replicas when replicaCount is set (using .replicaCount, dep value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -665,7 +665,7 @@ should have multiple replicas when replicaCount is set (using highAvailability.r value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -729,7 +729,7 @@ should have one replica when replicaCount is not set if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -793,7 +793,7 @@ should mount extraVolumes and extraVolumeMounts if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -862,7 +862,7 @@ should mount jamfCredentialsSecret if it already exists and when role is jamf an value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -932,7 +932,7 @@ should mount jamfCredentialsSecret.name when role is jamf and action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1004,7 +1004,7 @@ should mount tls.existingCASecretName and set environment when set in values if value: cluster.local - name: SSL_CERT_FILE value: /etc/teleport-tls-ca/ca.pem - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1078,7 +1078,7 @@ should mount tls.existingCASecretName and set extra environment when set in valu value: http://username:password@my.proxy.host:3128 - name: SSL_CERT_FILE value: /etc/teleport-tls-ca/ca.pem - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1148,7 +1148,7 @@ should provision initContainer correctly when set in values if action is Upgrade value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1270,7 +1270,7 @@ should set affinity when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1334,7 +1334,7 @@ should set default serviceAccountName when not set in values if action is Upgrad value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1411,7 +1411,7 @@ should set environment when extraEnv set in values if action is Upgrade: value: cluster.local - name: HTTPS_PROXY value: http://username:password@my.proxy.host:3128 - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1539,7 +1539,7 @@ should set imagePullPolicy when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: Always livenessProbe: failureThreshold: 6 @@ -1603,7 +1603,7 @@ should set nodeSelector if set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1669,7 +1669,7 @@ should set not set priorityClassName when not set in values if action is Upgrade value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1745,7 +1745,7 @@ should set preferred affinity when more than one replica is used if action is Up value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1809,7 +1809,7 @@ should set priorityClassName when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1874,7 +1874,7 @@ should set probeTimeoutSeconds when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1948,7 +1948,7 @@ should set required affinity when highAvailability.requireAntiAffinity is set if value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2012,7 +2012,7 @@ should set resources when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2083,7 +2083,7 @@ should set serviceAccountName when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2147,7 +2147,7 @@ should set tolerations when set in values if action is Upgrade: value: "true" - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/job_test.yaml.snap b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/job_test.yaml.snap index 9e79af11d..fe0a0afe4 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/job_test.yaml.snap +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/job_test.yaml.snap @@ -25,7 +25,7 @@ should create ServiceAccount for post-delete hook by default: fieldPath: metadata.namespace - name: RELEASE_NAME value: RELEASE-NAME - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent name: post-delete-job securityContext: @@ -91,6 +91,8 @@ should not create ServiceAccount for post-delete hook if serviceAccount.create i spec: template: metadata: + labels: + app: RELEASE-NAME name: RELEASE-NAME-delete-hook spec: containers: @@ -106,7 +108,7 @@ should not create ServiceAccount for post-delete hook if serviceAccount.create i fieldPath: metadata.namespace - name: RELEASE_NAME value: RELEASE-NAME - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent name: post-delete-job securityContext: @@ -136,7 +138,7 @@ should not create ServiceAccount, Role or RoleBinding for post-delete hook if se fieldPath: metadata.namespace - name: RELEASE_NAME value: RELEASE-NAME - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent name: post-delete-job securityContext: @@ -166,7 +168,7 @@ should set nodeSelector in post-delete hook: fieldPath: metadata.namespace - name: RELEASE_NAME value: RELEASE-NAME - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent name: post-delete-job securityContext: diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap index cc1532f15..1dc018fb9 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap @@ -18,7 +18,7 @@ sets Pod annotations when specified: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -90,7 +90,7 @@ sets Pod labels when specified: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -186,7 +186,7 @@ sets StatefulSet labels when specified: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -290,7 +290,7 @@ should add insecureSkipProxyTLSVerify to args when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -362,7 +362,7 @@ should add volumeClaimTemplate for data volume when using StatefulSet and action value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -454,7 +454,7 @@ should add volumeClaimTemplate for data volume when using StatefulSet and is Fre value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -536,7 +536,7 @@ should add volumeMount for data volume when using StatefulSet: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -608,7 +608,7 @@ should expose diag port: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -680,7 +680,7 @@ should generate Statefulset when storage is disabled and mode is a Upgrade: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -766,7 +766,7 @@ should have multiple replicas when replicaCount is set (using .replicaCount, dep value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -850,7 +850,7 @@ should have multiple replicas when replicaCount is set (using highAvailability.r value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -922,7 +922,7 @@ should have one replica when replicaCount is not set: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -994,7 +994,7 @@ should install Statefulset when storage is disabled and mode is a Fresh Install: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1068,7 +1068,7 @@ should mount extraVolumes and extraVolumeMounts: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1145,7 +1145,7 @@ should mount jamfCredentialsSecret if it already exists and when role is jamf: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1225,7 +1225,7 @@ should mount jamfCredentialsSecret.name when role is jamf: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1307,7 +1307,7 @@ should mount tls.existingCASecretName and set environment when set in values: value: cluster.local - name: SSL_CERT_FILE value: /etc/teleport-tls-ca/ca.pem - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1391,7 +1391,7 @@ should mount tls.existingCASecretName and set extra environment when set in valu value: /etc/teleport-tls-ca/ca.pem - name: HTTPS_PROXY value: http://username:password@my.proxy.host:3128 - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1471,7 +1471,7 @@ should not add emptyDir for data when using StatefulSet: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1543,7 +1543,7 @@ should provision initContainer correctly when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1673,7 +1673,7 @@ should set affinity when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1745,7 +1745,7 @@ should set default serviceAccountName when not set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1830,7 +1830,7 @@ should set environment when extraEnv set in values: value: cluster.local - name: HTTPS_PROXY value: http://username:password@my.proxy.host:3128 - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -1974,7 +1974,7 @@ should set imagePullPolicy when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: Always livenessProbe: failureThreshold: 6 @@ -2046,7 +2046,7 @@ should set nodeSelector if set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2132,7 +2132,7 @@ should set preferred affinity when more than one replica is used: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2204,7 +2204,7 @@ should set probeTimeoutSeconds when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2286,7 +2286,7 @@ should set required affinity when highAvailability.requireAntiAffinity is set: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2358,7 +2358,7 @@ should set resources when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2437,7 +2437,7 @@ should set serviceAccountName when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2509,7 +2509,7 @@ should set storage.requests when set in values and action is an Upgrade: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2581,7 +2581,7 @@ should set storage.storageClassName when set in values and action is an Upgrade: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -2653,7 +2653,7 @@ should set tolerations when set in values: value: RELEASE-NAME - name: TELEPORT_KUBE_CLUSTER_DOMAIN value: cluster.local - image: public.ecr.aws/gravitational/teleport-distroless:16.2.1 + image: public.ecr.aws/gravitational/teleport-distroless:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/updater_deployment_test.yaml.snap b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/updater_deployment_test.yaml.snap index 99d29b0a6..f1733575a 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/updater_deployment_test.yaml.snap +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/__snapshot__/updater_deployment_test.yaml.snap @@ -27,7 +27,7 @@ sets the affinity: - --base-image=public.ecr.aws/gravitational/teleport-distroless - --version-server=https://my-custom-version-server/v1 - --version-channel=custom/preview - image: public.ecr.aws/gravitational/teleport-kube-agent-updater:16.2.1 + image: public.ecr.aws/gravitational/teleport-kube-agent-updater:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 @@ -73,7 +73,7 @@ sets the tolerations: - --base-image=public.ecr.aws/gravitational/teleport-distroless - --version-server=https://my-custom-version-server/v1 - --version-channel=custom/preview - image: public.ecr.aws/gravitational/teleport-kube-agent-updater:16.2.1 + image: public.ecr.aws/gravitational/teleport-kube-agent-updater:16.3.0 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 6 diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/job_test.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/job_test.yaml index febb020f6..f694e0644 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/job_test.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/job_test.yaml @@ -251,3 +251,21 @@ tests: apiVersion: rbac.authorization.k8s.io/v1 - matchSnapshot: path: spec.template.spec + + - it: should contain pod labels in the Job's pod spec if extraLabels.pod is set + template: delete_hook.yaml + # documentIndex: 0=ServiceAccount 1=Role 2=RoleBinding 3=Job + documentIndex: 3 + values: + - ../.lint/backwards-compatibility.yaml + set: + extraLabels: + pod: + testLabel: testValue + asserts: + - equal: + path: spec.template.metadata.labels + value: + app: RELEASE-NAME + testLabel: testValue + diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/statefulset_test.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/statefulset_test.yaml index 4423ce87f..c346bffe3 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/statefulset_test.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/tests/statefulset_test.yaml @@ -44,6 +44,19 @@ tests: - matchSnapshot: path: spec.template.spec + - it: sets StatefulSet annotations when specified + template: statefulset.yaml + values: + - ../.lint/stateful.yaml + - ../.lint/annotations.yaml + asserts: + - equal: + path: metadata.annotations.kubernetes\.io/deployment + value: test-annotation + - equal: + path: metadata.annotations.kubernetes\.io/deployment-different + value: 3 + - it: sets Pod annotations when specified template: statefulset.yaml values: diff --git a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/values.yaml b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/values.yaml index 0af79df0e..beb0d284b 100644 --- a/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/values.yaml +++ b/argocd-helm-charts/teleport-kube-agent/charts/teleport-kube-agent/values.yaml @@ -1120,7 +1120,7 @@ extraLabels: # extraLabels.job(object) -- are labels to set on the post-delete Job created by the chart. job: {} # extraLabels.pod(object) -- are labels to set on the Pods created by the - # Deployment or StatefulSet. + # Deployment, StatefulSet, or Job. pod: {} # extraLabels.podDisruptionBudget(object) -- are labels to set on the podDisruptionBudget. podDisruptionBudget: {}