1{{ if .Values.collector.enabled -}}
2---
3apiVersion: policy.linkerd.io/v1beta2
4kind: Server
5metadata:
6 namespace: {{ .Release.Namespace }}
7 name: collector-otlp
8 labels:
9 linkerd.io/extension: jaeger
10 component: collector
11 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
12 annotations:
13 {{ include "partials.annotations.created-by" . }}
14spec:
15 podSelector:
16 matchLabels:
17 component: collector
18 port: 4317
19 proxyProtocol: gRPC
20---
21apiVersion: policy.linkerd.io/v1beta2
22kind: Server
23metadata:
24 namespace: {{ .Release.Namespace }}
25 name: collector-otlp-http
26 labels:
27 linkerd.io/extension: jaeger
28 component: collector
29 annotations:
30 {{ include "partials.annotations.created-by" . }}
31spec:
32 podSelector:
33 matchLabels:
34 component: collector
35 port: 4318
36 proxyProtocol: HTTP/1
37---
38apiVersion: policy.linkerd.io/v1beta2
39kind: Server
40metadata:
41 namespace: {{ .Release.Namespace }}
42 name: collector-opencensus
43 labels:
44 linkerd.io/extension: jaeger
45 component: collector
46 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
47 annotations:
48 {{ include "partials.annotations.created-by" . }}
49spec:
50 podSelector:
51 matchLabels:
52 component: collector
53 port: 55678
54 proxyProtocol: gRPC
55---
56apiVersion: policy.linkerd.io/v1beta2
57kind: Server
58metadata:
59 namespace: {{ .Release.Namespace }}
60 name: collector-zipkin
61 labels:
62 linkerd.io/extension: jaeger
63 component: collector
64 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
65 annotations:
66 {{ include "partials.annotations.created-by" . }}
67spec:
68 podSelector:
69 matchLabels:
70 component: collector
71 port: 9411
72---
73apiVersion: policy.linkerd.io/v1beta2
74kind: Server
75metadata:
76 namespace: {{ .Release.Namespace }}
77 name: collector-jaeger-thrift
78 labels:
79 linkerd.io/extension: jaeger
80 component: collector
81 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
82 annotations:
83 {{ include "partials.annotations.created-by" . }}
84spec:
85 podSelector:
86 matchLabels:
87 component: collector
88 port: 14268
89---
90apiVersion: policy.linkerd.io/v1beta2
91kind: Server
92metadata:
93 namespace: {{ .Release.Namespace }}
94 name: collector-jaeger-grpc
95 labels:
96 linkerd.io/extension: jaeger
97 component: collector
98 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
99 annotations:
100 {{ include "partials.annotations.created-by" . }}
101spec:
102 podSelector:
103 matchLabels:
104 component: collector
105 port: 14250
106---
107apiVersion: policy.linkerd.io/v1beta2
108kind: Server
109metadata:
110 namespace: {{ .Release.Namespace }}
111 name: collector-admin
112 labels:
113 linkerd.io/extension: jaeger
114 component: collector
115 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
116 annotations:
117 {{ include "partials.annotations.created-by" . }}
118spec:
119 podSelector:
120 matchLabels:
121 component: collector
122 port: 13133
123 proxyProtocol: HTTP/1
124---
125apiVersion: policy.linkerd.io/v1alpha1
126kind: AuthorizationPolicy
127metadata:
128 namespace: {{ .Release.Namespace }}
129 name: collector-otlp
130 labels:
131 linkerd.io/extension: jaeger
132 component: collector
133 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
134 annotations:
135 {{ include "partials.annotations.created-by" . }}
136spec:
137 targetRef:
138 group: policy.linkerd.io
139 kind: Server
140 name: collector-otlp
141 # allow connections from any pod (meshed or not) sending trace data
142 requiredAuthenticationRefs: []
143---
144apiVersion: policy.linkerd.io/v1alpha1
145kind: AuthorizationPolicy
146metadata:
147 namespace: {{ .Release.Namespace }}
148 name: collector-otlp-http
149 labels:
150 linkerd.io/extension: jaeger
151 component: collector
152 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
153 annotations:
154 {{ include "partials.annotations.created-by" . }}
155spec:
156 targetRef:
157 group: policy.linkerd.io
158 kind: Server
159 name: collector-otlp-http
160 # allow connections from any pod (meshed or not) sending trace data
161 requiredAuthenticationRefs: []
162---
163apiVersion: policy.linkerd.io/v1alpha1
164kind: AuthorizationPolicy
165metadata:
166 namespace: {{ .Release.Namespace }}
167 name: collector-opencensus
168 labels:
169 linkerd.io/extension: jaeger
170 component: collector
171 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
172 annotations:
173 {{ include "partials.annotations.created-by" . }}
174spec:
175 targetRef:
176 group: policy.linkerd.io
177 kind: Server
178 name: collector-opencensus
179 # allow connections from any pod (meshed or not) sending trace data
180 requiredAuthenticationRefs: []
181---
182apiVersion: policy.linkerd.io/v1alpha1
183kind: AuthorizationPolicy
184metadata:
185 namespace: {{ .Release.Namespace }}
186 name: collector-zipkin
187 labels:
188 linkerd.io/extension: jaeger
189 component: collector
190 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
191 annotations:
192 {{ include "partials.annotations.created-by" . }}
193spec:
194 targetRef:
195 group: policy.linkerd.io
196 kind: Server
197 name: collector-zipkin
198 # allow connections from any pod (meshed or not) sending trace data
199 requiredAuthenticationRefs: []
200---
201apiVersion: policy.linkerd.io/v1alpha1
202kind: AuthorizationPolicy
203metadata:
204 namespace: {{ .Release.Namespace }}
205 name: collector-jaeger-thrift
206 labels:
207 linkerd.io/extension: jaeger
208 component: collector
209 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
210 annotations:
211 {{ include "partials.annotations.created-by" . }}
212spec:
213 targetRef:
214 group: policy.linkerd.io
215 kind: Server
216 name: collector-jaeger-thrift
217 # allow connections from any pod (meshed or not) sending trace data
218 requiredAuthenticationRefs: []
219---
220apiVersion: policy.linkerd.io/v1alpha1
221kind: AuthorizationPolicy
222metadata:
223 namespace: {{ .Release.Namespace }}
224 name: collector-jaeger-grpc
225 labels:
226 linkerd.io/extension: jaeger
227 component: collector
228 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
229 annotations:
230 {{ include "partials.annotations.created-by" . }}
231spec:
232 targetRef:
233 group: policy.linkerd.io
234 kind: Server
235 name: collector-jaeger-grpc
236 # allow connections from any pod (meshed or not) sending trace data
237 requiredAuthenticationRefs: []
238---
239apiVersion: policy.linkerd.io/v1beta2
240kind: Server
241metadata:
242 namespace: {{ .Release.Namespace }}
243 name: jaeger-grpc
244 labels:
245 linkerd.io/extension: jaeger
246 component: jaeger
247 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
248 annotations:
249 {{ include "partials.annotations.created-by" . }}
250spec:
251 podSelector:
252 matchLabels:
253 component: jaeger
254 port: grpc
255 proxyProtocol: gRPC
256---
257apiVersion: policy.linkerd.io/v1alpha1
258kind: AuthorizationPolicy
259metadata:
260 namespace: {{ .Release.Namespace }}
261 name: jaeger-grpc
262 labels:
263 linkerd.io/extension: jaeger
264 component: jaeger
265 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
266 annotations:
267 {{ include "partials.annotations.created-by" . }}
268spec:
269 targetRef:
270 group: policy.linkerd.io
271 kind: Server
272 name: jaeger-grpc
273 requiredAuthenticationRefs:
274 - kind: ServiceAccount
275 name: collector
276 namespace: {{.Release.Namespace}}
277---
278apiVersion: policy.linkerd.io/v1beta2
279kind: Server
280metadata:
281 namespace: {{ .Release.Namespace }}
282 name: jaeger-admin
283 labels:
284 linkerd.io/extension: jaeger
285 component: jaeger
286 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
287 annotations:
288 {{ include "partials.annotations.created-by" . }}
289spec:
290 podSelector:
291 matchLabels:
292 component: jaeger
293 port: admin
294 proxyProtocol: HTTP/1
295---
296apiVersion: policy.linkerd.io/v1alpha1
297kind: AuthorizationPolicy
298metadata:
299 namespace: {{ .Release.Namespace }}
300 name: jaeger-admin
301 labels:
302 linkerd.io/extension: jaeger
303 component: jaeger
304 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
305 annotations:
306 {{ include "partials.annotations.created-by" . }}
307spec:
308 targetRef:
309 group: policy.linkerd.io
310 kind: Server
311 name: jaeger-admin
312 requiredAuthenticationRefs:
313 # if not using linkerd-viz' prometheus, replace its SA here
314 - kind: ServiceAccount
315 name: prometheus
316 namespace: linkerd-viz
317---
318apiVersion: policy.linkerd.io/v1beta2
319kind: Server
320metadata:
321 namespace: {{ .Release.Namespace }}
322 name: jaeger-ui
323 labels:
324 linkerd.io/extension: jaeger
325 component: jaeger
326 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
327 annotations:
328 {{ include "partials.annotations.created-by" . }}
329spec:
330 podSelector:
331 matchLabels:
332 component: jaeger
333 port: ui
334 proxyProtocol: HTTP/1
335---
336apiVersion: policy.linkerd.io/v1alpha1
337kind: AuthorizationPolicy
338metadata:
339 namespace: {{ .Release.Namespace }}
340 name: jaeger-ui
341 labels:
342 linkerd.io/extension: jaeger
343 component: jaeger
344 {{- with .Values.commonLabels }}{{ toYaml . | trim | nindent 4 }}{{- end }}
345 annotations:
346 {{ include "partials.annotations.created-by" . }}
347spec:
348 targetRef:
349 group: policy.linkerd.io
350 kind: Server
351 name: jaeger-ui
352 requiredAuthenticationRefs:
353 # for the optional dashboard integration
354 - kind: ServiceAccount
355 name: web
356 namespace: linkerd-viz
357{{ end -}}
View as plain text