1apiVersion: policy.linkerd.io/v1beta1
2kind: Server
3metadata:
4 name: flux-healthz
5 namespace: flux-system
6 labels:
7 app.kubernetes.io/instance: flux-system
8 app.kubernetes.io/part-of: flux
9 workload.edge.ncr.com: 'platform'
10 cluster_hash: ${cluster_hash}
11 cluster_uuid: ${cluster_uuid}
12 annotations:
13 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
14 pallet.edge.ncr.com/name: fluxcd-operators
15 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
16 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
17 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
18 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
19spec:
20 port: healthz
21 podSelector:
22 matchLabels: {} # every pod
23 proxyProtocol: HTTP/1
24---
25apiVersion: policy.linkerd.io/v1beta1
26kind: Server
27metadata:
28 name: flux-http-prom
29 namespace: flux-system
30 labels:
31 app.kubernetes.io/instance: flux-system
32 app.kubernetes.io/part-of: flux
33 workload.edge.ncr.com: 'platform'
34 cluster_hash: ${cluster_hash}
35 cluster_uuid: ${cluster_uuid}
36 annotations:
37 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
38 pallet.edge.ncr.com/name: fluxcd-operators
39 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
40 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
41 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
42 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
43spec:
44 port: http-prom
45 podSelector:
46 matchLabels: {} # every pod
47 proxyProtocol: HTTP/1
48---
49apiVersion: policy.linkerd.io/v1beta1
50kind: Server
51metadata:
52 name: flux-notification-controller-event-server
53 namespace: flux-system
54 labels:
55 app.kubernetes.io/instance: flux-system
56 app.kubernetes.io/part-of: flux
57 workload.edge.ncr.com: 'platform'
58 cluster_hash: ${cluster_hash}
59 cluster_uuid: ${cluster_uuid}
60 annotations:
61 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
62 pallet.edge.ncr.com/name: fluxcd-operators
63 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
64 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
65 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
66 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
67spec:
68 port: http
69 podSelector:
70 matchLabels:
71 app: notification-controller
72 proxyProtocol: HTTP/1
73---
74apiVersion: policy.linkerd.io/v1beta1
75kind: Server
76metadata:
77 name: flux-source-controller-file-server
78 namespace: flux-system
79 labels:
80 app.kubernetes.io/instance: flux-system
81 app.kubernetes.io/part-of: flux
82 workload.edge.ncr.com: 'platform'
83 cluster_hash: ${cluster_hash}
84 cluster_uuid: ${cluster_uuid}
85 annotations:
86 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
87 pallet.edge.ncr.com/name: fluxcd-operators
88 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
89 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
90 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
91 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
92spec:
93 port: http
94 podSelector:
95 matchLabels:
96 app: source-controller
97 proxyProtocol: HTTP/1
98---
99apiVersion: policy.linkerd.io/v1beta1
100kind: ServerAuthorization
101metadata:
102 name: flux-healthz
103 namespace: flux-system
104 labels:
105 app.kubernetes.io/instance: flux-system
106 app.kubernetes.io/part-of: flux
107 workload.edge.ncr.com: 'platform'
108 cluster_hash: ${cluster_hash}
109 cluster_uuid: ${cluster_uuid}
110 annotations:
111 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
112 pallet.edge.ncr.com/name: fluxcd-operators
113 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
114 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
115 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
116 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
117spec:
118 client:
119 unauthenticated: true
120 server:
121 name: flux-healthz
122---
123apiVersion: policy.linkerd.io/v1beta1
124kind: ServerAuthorization
125metadata:
126 name: flux-http-prom
127 namespace: flux-system
128 labels:
129 app.kubernetes.io/instance: flux-system
130 app.kubernetes.io/part-of: flux
131 workload.edge.ncr.com: 'platform'
132 cluster_hash: ${cluster_hash}
133 cluster_uuid: ${cluster_uuid}
134 annotations:
135 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
136 pallet.edge.ncr.com/name: fluxcd-operators
137 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
138 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
139 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
140 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
141spec:
142 client:
143 meshTLS:
144 serviceAccounts:
145 - name: prometheus
146 namespace: prometheus
147 server:
148 name: flux-http-prom
149---
150apiVersion: policy.linkerd.io/v1beta1
151kind: ServerAuthorization
152metadata:
153 name: flux-notification-controller-event-server
154 namespace: flux-system
155 labels:
156 app.kubernetes.io/instance: flux-system
157 app.kubernetes.io/part-of: flux
158 workload.edge.ncr.com: 'platform'
159 cluster_hash: ${cluster_hash}
160 cluster_uuid: ${cluster_uuid}
161 annotations:
162 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
163 pallet.edge.ncr.com/name: fluxcd-operators
164 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
165 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
166 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
167 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
168spec:
169 # this doesnt allow for webhook receivers:
170 # https://github.com/fluxcd/notification-controller/blob/main/docs/spec/README.md#webhook-receivers-1
171 client:
172 meshTLS:
173 identities:
174 # all service accounts in the flux-system namespace
175 - "*.flux-system.serviceaccount.identity.linkerd.cluster.local"
176 server:
177 name: flux-notification-controller-event-server
178---
179apiVersion: policy.linkerd.io/v1beta1
180kind: ServerAuthorization
181metadata:
182 name: flux-source-controller-file-server
183 namespace: flux-system
184 labels:
185 app.kubernetes.io/instance: flux-system
186 app.kubernetes.io/part-of: flux
187 workload.edge.ncr.com: 'platform'
188 cluster_hash: ${cluster_hash}
189 cluster_uuid: ${cluster_uuid}
190 annotations:
191 pallet.edge.ncr.com/created: "2023-02-16T21:26:39Z"
192 pallet.edge.ncr.com/name: fluxcd-operators
193 pallet.edge.ncr.com/revision: 696897a3df910b6e84a88c9336907a17b18159c1
194 pallet.edge.ncr.com/source: https://github.com/ncrvoyix-swt-retail/edge-infra/tree/696897a3df910b6e84a88c9336907a17b18159c1
195 pallet.edge.ncr.com/team: '@ncrvoyix-swt-retail/edge-infra'
196 pallet.edge.ncr.com/version: 7.7.7-rc.1676582799+commit.696897a
197spec:
198 client:
199 # source controller uses http endpoint for readiness probe
200 # this should be removed after the following issue is closed:
201 # https://github.com/linkerd/linkerd2/issues/7050#issuecomment-1054808996
202 unauthenticated: true
203 server:
204 name: flux-source-controller-file-server
View as plain text