1# explicitly set the namespace, because current
2# scheduling mechanism does not allow scheduling resources
3# into kube-system
4namespace: cert-manager
5apiVersion: kustomize.config.k8s.io/v1beta1
6kind: Kustomization
7resources:
8- ../../../third_party/k8s/certmanager
9components:
10- ../../components/edge/patches/server-preferred
11- ../../components/edge/patches/tolerations
12patches:
13- path: cm-cainjector-image-patch.yaml
14 target:
15 name: cert-manager-cainjector
16 kind: Deployment
17- path: cm-controller-image-patch.yaml
18 target:
19 name: cert-manager
20 kind: Deployment
21- path: cm-webhook-patch.yaml
22 target:
23 name: cert-manager-webhook
24 kind: Deployment
25# patch leader election args to reference cert-manager namespace
26# instead of kube-system
27patchesJson6902:
28- patch: |-
29 - op: replace
30 path: /spec/template/spec/containers/0/args/1
31 value: --leader-election-namespace=cert-manager
32 target:
33 name: cert-manager-cainjector
34 namespace: cert-manager
35 kind: Deployment
36 group: apps
37 version: v1
38- patch: |-
39 - op: replace
40 path: /spec/template/spec/containers/0/args/2
41 value: --leader-election-namespace=cert-manager
42 target:
43 name: cert-manager
44 namespace: cert-manager
45 kind: Deployment
46 group: apps
47 version: v1
View as plain text