helm · k8s-ci-robot · Aug 19, 2019 · May 30, 2019 · Jul 30, 2019 · Aug 6, 2019
diff --git a/stable/kong/Chart.yaml b/stable/kong/Chart.yaml
@@ -10,5 +10,5 @@ maintainers:
 name: kong
 sources:
 - https://github.com/Kong/kong
-version: 0.11.2
+version: 0.13.0
 appVersion: 1.1
diff --git a/stable/kong/README.md b/stable/kong/README.md
@@ -105,12 +105,12 @@ the value provided by you as opposed to constructing a listen variable
 from fields like `proxy.http.containerPort` and `proxy.http.enabled`. This allows
 you to be more prescriptive when defining listen directives.
 
-**Note:** Overriding `env.proxy_listen` and `env.admin_listen` will potentially cause 
-`admin.containerPort`, `proxy.http.containerPort` and `proxy.tls.containerPort` to become out of sync, 
+**Note:** Overriding `env.proxy_listen` and `env.admin_listen` will potentially cause
+`admin.containerPort`, `proxy.http.containerPort` and `proxy.tls.containerPort` to become out of sync,
 and therefore must be updated accordingly.
 
-I.E. updatating to `env.proxy_listen: 0.0.0.0:4444, 0.0.0.0:4443 ssl` will need 
-`proxy.http.containerPort: 4444` and `proxy.tls.containerPort: 4443` to be set in order 
+I.E. updatating to `env.proxy_listen: 0.0.0.0:4444, 0.0.0.0:4443 ssl` will need
+`proxy.http.containerPort: 4444` and `proxy.tls.containerPort: 4443` to be set in order
 for the service definition to work properly.
 
 ### Kong-specific parameters
@@ -157,7 +157,7 @@ kong:
             key: kong
             name: postgres
 ```
- 
+
 
 For complete list of Kong configurations please check https://getkong.org/docs/latest/configuration/.
 
@@ -218,12 +218,39 @@ You can can learn about kong ingress custom resource definitions here:
 
 - [https://github.com/Kong/kubernetes-ingress-controller/blob/master/docs/custom-resources.md]()
 
-| Parameter        | Description                                 | Default                                                                      |
-| ---------------  | -----------------------------------------   | ---------------------------------------------------------------------------- |
-| enabled          | Deploy the ingress controller, rbac and crd | false                                                                        |
-| replicaCount     | Number of desired ingress controllers       | 1                                                                            |
-| image.repository | Docker image with the ingress controller    | kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller |
-| image.tag        | Version of the ingress controller           | 0.2.0                                                                        |
-| readinessProbe   | Kong ingress controllers readiness probe    |                                                                              |
-| livenessProbe    | Kong ingress controllers liveness probe     |                                                                              |
-| ingressClass     | The ingress-class value for controller      | nginx
+#### Expose metrics in Prometheus format
+
+Kong can expose metrics in Prometheus format if prometheus plugin is enabled.
+Presence of Kong Ingress Controller allows you to enable this plugin, using
+KongPlugin custom resource during the chart installation:
+
+```bash
+helm install stable/kong --set ingressController.enabled=true \
+  --set ingressController.metrics.enabled=true --name kong --namespace kong
+```
+
+Optionaly you can install a ServiceMonitor for Prometheus Operator:
+
+```bash
+helm install stable/kong --set ingressController.enabled=true \
+  --set ingressController.metrics.enabled=true \
+  --set ingressController.metrics.serviceMonitor.create=true \
+  --name kong --namespace kong
+```
+
+
+| Parameter                        | Description                                                                            | Default                                                                      |
+| ---------------                  | ------------------------------------------                                             | ---------------------------------------------------------------------------- |
+| enabled                          | Deploy the ingress controller, rbac and crd                                            | false                                                                        |
+| replicaCount                     | Number of desired ingress controllers                                                  | 1                                                                            |
+| image.repository                 | Docker image with the ingress controller                                               | kong-docker-kubernetes-ingress-controller.bintray.io/kong-ingress-controller |
+| image.tag                        | Version of the ingress controller                                                      | 0.4.0                                                                        |
+| readinessProbe                   | Kong ingress controllers readiness probe                                               |                                                                              |
+| livenessProbe                    | Kong ingress controllers liveness probe                                                |                                                                              |
+| ingressClass                     | The ingress-class value for controller                                                 | kong                                                                         |
+| installCRDs                      | Install Kong ingress controllers custom resource definitions                           | true                                                                         |
+| cleanUpCRDs                      | Delete CRDs with the release (useful for CI scenarios)                                 | false                                                                        |
+| metrics.enabled                  | Enable Kong Prometheus plugin as KongPlugin (requires ingressController to be enabled) | false                                                                        |
+| metrics.serviceMonitor.create    | Create ServiceMonitor for Prometheus Operator                                          | false                                                                        |
+| metrics.serviceMonitor.interval  | Scrapping interval                                                                     | 10s                                                                          |
+| metrics.serviceMonitor.namespace | Where to create ServiceMonitor                                                         |                                                                              |
diff --git a/stable/kong/ci/dbless.yaml b/stable/kong/ci/dbless.yaml
@@ -1,6 +1,7 @@
 # CI test for testing dbless deployment
 ingressController:
   enabled: true
+  cleanUpCRDs: true
 env:
   database: "off"
 postgresql:

diff --git a/stable/kong/ci/ingressController-values.yaml b/stable/kong/ci/ingressController-values.yaml
@@ -1,3 +1,4 @@
 # CI test for Ingress controller basic installation
 ingressController:
   enabled: true
+  cleanUpCRDs: true
diff --git a/stable/kong/templates/cleanup-crds.yaml b/stable/kong/templates/cleanup-crds.yaml
@@ -0,0 +1,40 @@
+{{- if .Values.ingressController.cleanUpCRDs }}
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: {{ template "kong.fullname" . }}-cleanup-crds
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-delete
+    "helm.sh/hook-weight": "3"
+    "helm.sh/hook-delete-policy": hook-succeeded
+  labels:
+    app: {{ template "kong.name" . }}
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    release: "{{ .Release.Name }}"
+    heritage: "{{ .Release.Service }}"
+spec:
+  template:
+    metadata:
+      name: kong-cleanup-crds
+    spec:
+      serviceAccountName: {{ include "kong.serviceAccountName" . }}
+      containers:
+        - name: kubectl
+          image: docker.io/bitnami/kubectl:1.14.1
+          imagePullPolicy: IfNotPresent
+          command:
+            - /bin/sh
+            - -c
+            - >
+              kubectl delete kongconsumers --all;
+              kubectl delete kongcredentials --all;
+              kubectl delete kongingresses --all;
+              kubectl delete kongplugins --all;
+              sleep 10;
+              kubectl delete crd kongconsumers.configuration.konghq.com;
+              kubectl delete crd kongcredentials.configuration.konghq.com;
+              kubectl delete crd kongingresses.configuration.konghq.com;
+              kubectl delete crd kongplugins.configuration.konghq.com;
+      restartPolicy: OnFailure
+{{- end }}
diff --git a/stable/kong/templates/crd-kongconsumer.yaml b/stable/kong/templates/crd-kongconsumer.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
+{{- if and .Release.IsInstall .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
 apiVersion: apiextensions.k8s.io/v1beta1
 kind: CustomResourceDefinition
 metadata:
@@ -8,6 +8,9 @@ metadata:
     chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
     release: "{{ .Release.Name }}"
     heritage: "{{ .Release.Service }}"
+  annotations:
+    "helm.sh/hook": crd-install
+    "helm.sh/hook-delete-policy": "before-hook-creation"
 spec:
   group: configuration.konghq.com
   version: v1

diff --git a/stable/kong/templates/crd-kongcredential.yaml b/stable/kong/templates/crd-kongcredential.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
+{{- if and .Release.IsInstall .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
 apiVersion: apiextensions.k8s.io/v1beta1
 kind: CustomResourceDefinition
 metadata:
@@ -8,6 +8,9 @@ metadata:
     chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
     release: "{{ .Release.Name }}"
     heritage: "{{ .Release.Service }}"
+  annotations:
+    "helm.sh/hook": crd-install
+    "helm.sh/hook-delete-policy": "before-hook-creation"
 spec:
   group: configuration.konghq.com
   version: v1

diff --git a/stable/kong/templates/crd-kongingress.yaml b/stable/kong/templates/crd-kongingress.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
+{{- if and .Release.IsInstall .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
 apiVersion: apiextensions.k8s.io/v1beta1
 kind: CustomResourceDefinition
 metadata:
@@ -8,6 +8,9 @@ metadata:
     chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
     release: "{{ .Release.Name }}"
     heritage: "{{ .Release.Service }}"
+  annotations:
+    "helm.sh/hook": crd-install
+    "helm.sh/hook-delete-policy": "before-hook-creation"
 spec:
   group: configuration.konghq.com
   version: v1

diff --git a/stable/kong/templates/crd-kongplugins.yaml b/stable/kong/templates/crd-kongplugins.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
+{{- if and .Release.IsInstall .Values.ingressController.enabled .Values.ingressController.installCRDs -}}
 apiVersion: apiextensions.k8s.io/v1beta1
 kind: CustomResourceDefinition
 metadata:
@@ -8,6 +8,9 @@ metadata:
     chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
     release: "{{ .Release.Name }}"
     heritage: "{{ .Release.Service }}"
+  annotations:
+    "helm.sh/hook": crd-install
+    "helm.sh/hook-delete-policy": "before-hook-creation"
 spec:
   group: configuration.konghq.com
   version: v1

diff --git a/stable/kong/templates/prometheus-plugin.yaml b/stable/kong/templates/prometheus-plugin.yaml
@@ -0,0 +1,13 @@
+{{- if and .Values.ingressController.enabled .Values.ingressController.metrics.enabled }}
+apiVersion: configuration.konghq.com/v1
+kind: KongPlugin
+metadata:
+  name: prometheus
+  labels:
+    app: {{ template "kong.name" . }}
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    release: "{{ .Release.Name }}"
+    heritage: "{{ .Release.Service }}"
+    global: "true"
+plugin: prometheus
+{{- end }}
diff --git a/stable/kong/templates/servicemonitor.yaml b/stable/kong/templates/servicemonitor.yaml
@@ -0,0 +1,33 @@
+{{- if and ( .Capabilities.APIVersions.Has "monitoring.coreos.com/v1" ) .Values.ingressController.enabled .Values.ingressController.metrics.serviceMonitor.create }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ template "kong.fullname" . }}
+  {{- if .Values.ingressController.metrics.serviceMonitor.namespace }}
+  namespace: {{ .Values.ingressController.metrics.serviceMonitor.namespace }}
+  {{- end }}
+  labels:
+    app: {{ template "kong.name" . }}
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  endpoints:
+  - port: kong-admin
+    {{- if .Values.ingressController.metrics.serviceMonitor.interval }}
+    interval: {{ .Values.ingressController.metrics.serviceMonitor.interval }}
+    {{- end }}
+    {{- if .Values.admin.useTLS }}
+    scheme: https
+    tlsConfig:
+      insecureSkipVerify: true
+    {{- end }}
+  jobLabel: {{ .Release.Name }}
+  namespaceSelector:
+    matchNames:
+    - {{ .Release.Namespace }}
+  selector:
+    matchLabels:
+      app: {{ template "kong.name" . }}
+      release: {{ .Release.Name }}
+{{- end }}
diff --git a/stable/kong/values.yaml b/stable/kong/values.yaml
@@ -200,6 +200,7 @@ ingressController:
     timeoutSeconds: 5
 
   installCRDs: true
+  cleanUpCRDs: false
 
   rbac:
     # Specifies whether RBAC resources should be created
@@ -213,3 +214,13 @@ ingressController:
     name:
 
   ingressClass: kong
+
+  metrics:
+    # Enables Kong Prometheus plugin as KongPlugin object
+    enabled: false
+    serviceMonitor:
+      # Specifies whether ServiceMonitor for Prometheus operator should be created
+      create: false
+      # interval: 10s
+      # Specifies namespace, where ServiceMonitor should be installed
+      # namespace: monitoring