Home Explore Help
Sign In
cecf
/
deploy
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e4538f3d9b
Branches Tags
deploy
/
ingress-nginx
/
templates
/
_helpers.tpl

_helpers.tpl 5.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195 
  1. {{/* vim: set filetype=mustache: */}}
    2. 

  2. {{/*
    3. 

  3. Expand the name of the chart.
    4. 

  4. */}}
    5. 

  5. {{- define "ingress-nginx.name" -}}
    6. 

  6. {{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
    7. 

  7. {{- end -}}
    8. 

  8. 

  9. {{/*
    10. 

  10. Create chart name and version as used by the chart label.
    11. 

  11. */}}
    12. 

  12. {{- define "ingress-nginx.chart" -}}
    13. 

  13. {{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
    14. 

  14. {{- end -}}
    15. 

  15. 

  16. {{/*
    17. 

  17. Create a default fully qualified app name.
    18. 

  18. We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
    19. 

  19. */}}
    20. 

  20. {{- define "ingress-nginx.fullname" -}}
    21. 

  21. {{- if .Values.fullnameOverride -}}
    22. 

  22. {{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
    23. 

  23. {{- else -}}
    24. 

  24. {{- $name := default .Chart.Name .Values.nameOverride -}}
    25. 

  25. {{- if contains $name .Release.Name -}}
    26. 

  26. {{- .Release.Name | trunc 63 | trimSuffix "-" -}}
    27. 

  27. {{- else -}}
    28. 

  28. {{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
    29. 

  29. {{- end -}}
    30. 

  30. {{- end -}}
    31. 

  31. {{- end -}}
    32. 

  32. 

  33. 

  34. {{/*
    35. 

  35. Container SecurityContext.
    36. 

  36. */}}
    37. 

  37. {{- define "controller.containerSecurityContext" -}}
    38. 

  38. {{- if .Values.controller.containerSecurityContext -}}
    39. 

  39. {{- toYaml .Values.controller.containerSecurityContext -}}
    40. 

  40. {{- else -}}
    41. 

  41. capabilities:
    42. 

  42.   drop:
    43. 

  43.   - ALL
    44. 

  44.   add:
    45. 

  45.   - NET_BIND_SERVICE
    46. 

  46.   {{- if .Values.controller.image.chroot }}
    47. 

  47.   - SYS_CHROOT
    48. 

  48.   {{- end }}
    49. 

  49. runAsUser: {{ .Values.controller.image.runAsUser }}
    50. 

  50. allowPrivilegeEscalation: {{ .Values.controller.image.allowPrivilegeEscalation }}
    51. 

  51. {{- end }}
    52. 

  52. {{- end -}}
    53. 

  53. 

  54. {{/*
    55. 

  55. Get specific image
    56. 

  56. */}}
    57. 

  57. {{- define "ingress-nginx.image" -}}
    58. 

  58. {{- if .chroot -}}
    59. 

  59. {{- printf "%s-chroot" .image -}}
    60. 

  60. {{- else -}}
    61. 

  61. {{- printf "%s" .image -}}
    62. 

  62. {{- end }}
    63. 

  63. {{- end -}}
    64. 

  64. 

  65. {{/*
    66. 

  66. Get specific image digest
    67. 

  67. */}}
    68. 

  68. {{- define "ingress-nginx.imageDigest" -}}
    69. 

  69. {{- if .chroot -}}
    70. 

  70. {{- if .digestChroot -}}
    71. 

  71. {{- printf "@%s" .digestChroot -}}
    72. 

  72. {{- end }}
    73. 

  73. {{- else -}}
    74. 

  74. {{ if .digest -}}
    75. 

  75. {{- printf "@%s" .digest -}}
    76. 

  76. {{- end -}}
    77. 

  77. {{- end -}}
    78. 

  78. {{- end -}}
    79. 

  79. 

  80. {{/*
    81. 

  81. Create a default fully qualified controller name.
    82. 

  82. We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
    83. 

  83. */}}
    84. 

  84. {{- define "ingress-nginx.controller.fullname" -}}
    85. 

  85. {{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.controller.name | trunc 63 | trimSuffix "-" -}}
    86. 

  86. {{- end -}}
    87. 

  87. 

  88. {{/*
    89. 

  89. Construct a unique electionID.
    90. 

  90. Users can provide an override for an explicit electionID if they want via `.Values.controller.electionID`
    91. 

  91. */}}
    92. 

  92. {{- define "ingress-nginx.controller.electionID" -}}
    93. 

  93. {{- $defElectionID := printf "%s-leader" (include "ingress-nginx.fullname" .) -}}
    94. 

  94. {{- $electionID := default $defElectionID .Values.controller.electionID -}}
    95. 

  95. {{- print $electionID -}}
    96. 

  96. {{- end -}}
    97. 

  97. 

  98. {{/*
    99. 

  99. Construct the path for the publish-service.
    100. 

  100. 

  101. By convention this will simply use the <namespace>/<controller-name> to match the name of the
    102. 

  102. service generated.
    103. 

  103. 

  104. Users can provide an override for an explicit service they want bound via `.Values.controller.publishService.pathOverride`
    105. 

  105. 

  106. */}}
    107. 

  107. {{- define "ingress-nginx.controller.publishServicePath" -}}
    108. 

  108. {{- $defServiceName := printf "%s/%s" "$(POD_NAMESPACE)" (include "ingress-nginx.controller.fullname" .) -}}
    109. 

  109. {{- $servicePath := default $defServiceName .Values.controller.publishService.pathOverride }}
    110. 

  110. {{- print $servicePath | trimSuffix "-" -}}
    111. 

  111. {{- end -}}
    112. 

  112. 

  113. {{/*
    114. 

  114. Create a default fully qualified default backend name.
    115. 

  115. We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
    116. 

  116. */}}
    117. 

  117. {{- define "ingress-nginx.defaultBackend.fullname" -}}
    118. 

  118. {{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.defaultBackend.name | trunc 63 | trimSuffix "-" -}}
    119. 

  119. {{- end -}}
    120. 

  120. 

  121. {{/*
    122. 

  122. Common labels
    123. 

  123. */}}
    124. 

  124. {{- define "ingress-nginx.labels" -}}
    125. 

  125. helm.sh/chart: {{ include "ingress-nginx.chart" . }}
    126. 

  126. {{ include "ingress-nginx.selectorLabels" . }}
    127. 

  127. {{- if .Chart.AppVersion }}
    128. 

  128. app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
    129. 

  129. {{- end }}
    130. 

  130. app.kubernetes.io/part-of: {{ template "ingress-nginx.name" . }}
    131. 

  131. app.kubernetes.io/managed-by: {{ .Release.Service }}
    132. 

  132. {{- if .Values.commonLabels}}
    133. 

  133. {{ toYaml .Values.commonLabels }}
    134. 

  134. {{- end }}
    135. 

  135. {{- end -}}
    136. 

  136. 

  137. {{/*
    138. 

  138. Selector labels
    139. 

  139. */}}
    140. 

  140. {{- define "ingress-nginx.selectorLabels" -}}
    141. 

  141. app.kubernetes.io/name: {{ include "ingress-nginx.name" . }}
    142. 

  142. app.kubernetes.io/instance: {{ .Release.Name }}
    143. 

  143. {{- end -}}
    144. 

  144. 

  145. {{/*
    146. 

  146. Create the name of the controller service account to use
    147. 

  147. */}}
    148. 

  148. {{- define "ingress-nginx.serviceAccountName" -}}
    149. 

  149. {{- if .Values.serviceAccount.create -}}
    150. 

  150.     {{ default (include "ingress-nginx.fullname" .) .Values.serviceAccount.name }}
    151. 

  151. {{- else -}}
    152. 

  152.     {{ default "default" .Values.serviceAccount.name }}
    153. 

  153. {{- end -}}
    154. 

  154. {{- end -}}
    155. 

  155. 

  156. {{/*
    157. 

  157. Create the name of the backend service account to use - only used when podsecuritypolicy is also enabled
    158. 

  158. */}}
    159. 

  159. {{- define "ingress-nginx.defaultBackend.serviceAccountName" -}}
    160. 

  160. {{- if .Values.defaultBackend.serviceAccount.create -}}
    161. 

  161.     {{ default (printf "%s-backend" (include "ingress-nginx.fullname" .)) .Values.defaultBackend.serviceAccount.name }}
    162. 

  162. {{- else -}}
    163. 

  163.     {{ default "default-backend" .Values.defaultBackend.serviceAccount.name }}
    164. 

  164. {{- end -}}
    165. 

  165. {{- end -}}
    166. 

  166. 

  167. {{/*
    168. 

  168. Return the appropriate apiGroup for PodSecurityPolicy.
    169. 

  169. */}}
    170. 

  170. {{- define "podSecurityPolicy.apiGroup" -}}
    171. 

  171. {{- if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion -}}
    172. 

  172. {{- print "policy" -}}
    173. 

  173. {{- else -}}
    174. 

  174. {{- print "extensions" -}}
    175. 

  175. {{- end -}}
    176. 

  176. {{- end -}}
    177. 

  177. 

  178. {{/*
    179. 

  179. Check the ingress controller version tag is at most three versions behind the last release
    180. 

  180. */}}
    181. 

  181. {{- define "isControllerTagValid" -}}
    182. 

  182. {{- if not (semverCompare ">=0.27.0-0" .Values.controller.image.tag) -}}
    183. 

  183. {{- fail "Controller container image tag should be 0.27.0 or higher" -}}
    184. 

  184. {{- end -}}
    185. 

  185. {{- end -}}
    186. 

  186. 

  187. {{/*
    188. 

  188. IngressClass parameters.
    189. 

  189. */}}
    190. 

  190. {{- define "ingressClass.parameters" -}}
    191. 

  191.   {{- if .Values.controller.ingressClassResource.parameters -}}
    192. 

  192.           parameters:
    193. 

  193. {{ toYaml .Values.controller.ingressClassResource.parameters | indent 4}}
    194. 

  194.   {{ end }}
    195. 

  195. {{- end -}}
    196.