| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975 |
- # This is an auto-generated file. DO NOT EDIT
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: clusterworkflowtemplates.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: ClusterWorkflowTemplate
- listKind: ClusterWorkflowTemplateList
- plural: clusterworkflowtemplates
- shortNames:
- - clusterwftmpl
- - cwft
- singular: clusterworkflowtemplate
- scope: Cluster
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: cronworkflows.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: CronWorkflow
- listKind: CronWorkflowList
- plural: cronworkflows
- shortNames:
- - cwf
- - cronwf
- singular: cronworkflow
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- status:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workflowartifactgctasks.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: WorkflowArtifactGCTask
- listKind: WorkflowArtifactGCTaskList
- plural: workflowartifactgctasks
- shortNames:
- - wfat
- singular: workflowartifactgctask
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- status:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- subresources:
- status: {}
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workfloweventbindings.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: WorkflowEventBinding
- listKind: WorkflowEventBindingList
- plural: workfloweventbindings
- shortNames:
- - wfeb
- singular: workfloweventbinding
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workflows.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: Workflow
- listKind: WorkflowList
- plural: workflows
- shortNames:
- - wf
- singular: workflow
- scope: Namespaced
- versions:
- - additionalPrinterColumns:
- - description: Status of the workflow
- jsonPath: .status.phase
- name: Status
- type: string
- - description: When the workflow was started
- format: date-time
- jsonPath: .status.startedAt
- name: Age
- type: date
- - description: Human readable message indicating details about why the workflow
- is in this condition.
- jsonPath: .status.message
- name: Message
- type: string
- name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- status:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- subresources: {}
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workflowtaskresults.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: WorkflowTaskResult
- listKind: WorkflowTaskResultList
- plural: workflowtaskresults
- singular: workflowtaskresult
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- message:
- type: string
- metadata:
- type: object
- outputs:
- properties:
- artifacts:
- items:
- properties:
- archive:
- properties:
- none:
- type: object
- tar:
- properties:
- compressionLevel:
- format: int32
- type: integer
- type: object
- zip:
- type: object
- type: object
- archiveLogs:
- type: boolean
- artifactGC:
- properties:
- podMetadata:
- properties:
- annotations:
- additionalProperties:
- type: string
- type: object
- labels:
- additionalProperties:
- type: string
- type: object
- type: object
- serviceAccountName:
- type: string
- strategy:
- enum:
- - ""
- - OnWorkflowCompletion
- - OnWorkflowDeletion
- - Never
- type: string
- type: object
- artifactory:
- properties:
- passwordSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- url:
- type: string
- usernameSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- required:
- - url
- type: object
- azure:
- properties:
- accountKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- blob:
- type: string
- container:
- type: string
- endpoint:
- type: string
- useSDKCreds:
- type: boolean
- required:
- - blob
- - container
- - endpoint
- type: object
- deleted:
- type: boolean
- from:
- type: string
- fromExpression:
- type: string
- gcs:
- properties:
- bucket:
- type: string
- key:
- type: string
- serviceAccountKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- required:
- - key
- type: object
- git:
- properties:
- branch:
- type: string
- depth:
- format: int64
- type: integer
- disableSubmodules:
- type: boolean
- fetch:
- items:
- type: string
- type: array
- insecureIgnoreHostKey:
- type: boolean
- passwordSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- repo:
- type: string
- revision:
- type: string
- singleBranch:
- type: boolean
- sshPrivateKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- usernameSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- required:
- - repo
- type: object
- globalName:
- type: string
- hdfs:
- properties:
- addresses:
- items:
- type: string
- type: array
- force:
- type: boolean
- hdfsUser:
- type: string
- krbCCacheSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- krbConfigConfigMap:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- krbKeytabSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- krbRealm:
- type: string
- krbServicePrincipalName:
- type: string
- krbUsername:
- type: string
- path:
- type: string
- required:
- - path
- type: object
- http:
- properties:
- auth:
- properties:
- basicAuth:
- properties:
- passwordSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- usernameSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- type: object
- clientCert:
- properties:
- clientCertSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- clientKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- type: object
- oauth2:
- properties:
- clientIDSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- clientSecretSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- endpointParams:
- items:
- properties:
- key:
- type: string
- value:
- type: string
- required:
- - key
- type: object
- type: array
- scopes:
- items:
- type: string
- type: array
- tokenURLSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- type: object
- type: object
- headers:
- items:
- properties:
- name:
- type: string
- value:
- type: string
- required:
- - name
- - value
- type: object
- type: array
- url:
- type: string
- required:
- - url
- type: object
- mode:
- format: int32
- type: integer
- name:
- type: string
- optional:
- type: boolean
- oss:
- properties:
- accessKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- bucket:
- type: string
- createBucketIfNotPresent:
- type: boolean
- endpoint:
- type: string
- key:
- type: string
- lifecycleRule:
- properties:
- markDeletionAfterDays:
- format: int32
- type: integer
- markInfrequentAccessAfterDays:
- format: int32
- type: integer
- type: object
- secretKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- securityToken:
- type: string
- useSDKCreds:
- type: boolean
- required:
- - key
- type: object
- path:
- type: string
- raw:
- properties:
- data:
- type: string
- required:
- - data
- type: object
- recurseMode:
- type: boolean
- s3:
- properties:
- accessKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- bucket:
- type: string
- caSecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- createBucketIfNotPresent:
- properties:
- objectLocking:
- type: boolean
- type: object
- encryptionOptions:
- properties:
- enableEncryption:
- type: boolean
- kmsEncryptionContext:
- type: string
- kmsKeyId:
- type: string
- serverSideCustomerKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- type: object
- endpoint:
- type: string
- insecure:
- type: boolean
- key:
- type: string
- region:
- type: string
- roleARN:
- type: string
- secretKeySecret:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- useSDKCreds:
- type: boolean
- type: object
- subPath:
- type: string
- required:
- - name
- type: object
- type: array
- exitCode:
- type: string
- parameters:
- items:
- properties:
- default:
- type: string
- description:
- type: string
- enum:
- items:
- type: string
- type: array
- globalName:
- type: string
- name:
- type: string
- value:
- type: string
- valueFrom:
- properties:
- configMapKeyRef:
- properties:
- key:
- type: string
- name:
- type: string
- optional:
- type: boolean
- required:
- - key
- type: object
- default:
- type: string
- event:
- type: string
- expression:
- type: string
- jqFilter:
- type: string
- jsonPath:
- type: string
- parameter:
- type: string
- path:
- type: string
- supplied:
- type: object
- type: object
- required:
- - name
- type: object
- type: array
- result:
- type: string
- type: object
- phase:
- type: string
- progress:
- type: string
- required:
- - metadata
- type: object
- served: true
- storage: true
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workflowtasksets.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: WorkflowTaskSet
- listKind: WorkflowTaskSetList
- plural: workflowtasksets
- shortNames:
- - wfts
- singular: workflowtaskset
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- status:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- subresources:
- status: {}
- ---
- apiVersion: apiextensions.k8s.io/v1
- kind: CustomResourceDefinition
- metadata:
- name: workflowtemplates.argoproj.io
- spec:
- group: argoproj.io
- names:
- kind: WorkflowTemplate
- listKind: WorkflowTemplateList
- plural: workflowtemplates
- shortNames:
- - wftmpl
- singular: workflowtemplate
- scope: Namespaced
- versions:
- - name: v1alpha1
- schema:
- openAPIV3Schema:
- properties:
- apiVersion:
- type: string
- kind:
- type: string
- metadata:
- type: object
- spec:
- type: object
- x-kubernetes-map-type: atomic
- x-kubernetes-preserve-unknown-fields: true
- required:
- - metadata
- - spec
- type: object
- served: true
- storage: true
- ---
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: argo
- namespace: cicd
- ---
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: argo-server
- namespace: cicd
- ---
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: github.com
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: argo-role
- namespace: cicd
- rules:
- - apiGroups:
- - coordination.k8s.io
- resources:
- - leases
- verbs:
- - create
- - get
- - update
- - apiGroups:
- - ""
- resources:
- - secrets
- verbs:
- - get
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- annotations:
- workflows.argoproj.io/description: |
- This is the minimum recommended permissions needed if you want to use the agent, e.g. for HTTP or plugin templates.
- If <= v3.2 you must replace `workflowtasksets/status` with `patch workflowtasksets`.
- name: agent
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets
- verbs:
- - list
- - watch
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtasksets/status
- verbs:
- - patch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- annotations:
- workflows.argoproj.io/description: |
- This is the minimum recommended permissions needed if you want to use artifact GC.
- name: artifactgc
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflowartifactgctasks
- verbs:
- - list
- - watch
- - apiGroups:
- - argoproj.io
- resources:
- - workflowartifactgctasks/status
- verbs:
- - patch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- annotations:
- workflows.argoproj.io/description: |
- Recomended minimum permissions for the `emissary` executor.
- name: executor
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtaskresults
- verbs:
- - create
- - patch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- annotations:
- workflows.argoproj.io/description: |
- This is an example of the permissions you would need if you wanted to use a resource template to create and manage
- other pods. The same pattern would be suitable for other resurces, e.g. a service
- name: pod-manager
- rules:
- - apiGroups:
- - ""
- resources:
- - pods
- verbs:
- - create
- - get
- - patch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: submit-workflow-template
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workfloweventbindings
- verbs:
- - list
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtemplates
- verbs:
- - get
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- verbs:
- - create
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- annotations:
- workflows.argoproj.io/description: |
- This is an example of the permissions you would need if you wanted to use a resource template to create and manage
- other workflows. The same pattern would be suitable for other resurces, e.g. a service
- name: workflow-manager
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- verbs:
- - create
- - get
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- labels:
- rbac.authorization.k8s.io/aggregate-to-admin: "true"
- name: argo-aggregate-to-admin
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- verbs:
- - create
- - delete
- - deletecollection
- - get
- - list
- - patch
- - update
- - watch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- labels:
- rbac.authorization.k8s.io/aggregate-to-edit: "true"
- name: argo-aggregate-to-edit
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- verbs:
- - create
- - delete
- - deletecollection
- - get
- - list
- - patch
- - update
- - watch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- labels:
- rbac.authorization.k8s.io/aggregate-to-view: "true"
- name: argo-aggregate-to-view
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workfloweventbindings
- - workfloweventbindings/finalizers
- - workflowtemplates
- - workflowtemplates/finalizers
- - cronworkflows
- - cronworkflows/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- - workflowtaskresults
- - workflowtaskresults/finalizers
- verbs:
- - get
- - list
- - watch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- name: argo-cluster-role
- rules:
- - apiGroups:
- - ""
- resources:
- - pods
- - pods/exec
- verbs:
- - create
- - get
- - list
- - watch
- - update
- - patch
- - delete
- - apiGroups:
- - ""
- resources:
- - configmaps
- verbs:
- - get
- - watch
- - list
- - apiGroups:
- - ""
- resources:
- - persistentvolumeclaims
- - persistentvolumeclaims/finalizers
- verbs:
- - create
- - update
- - delete
- - get
- - apiGroups:
- - argoproj.io
- resources:
- - workflows
- - workflows/finalizers
- - workflowtasksets
- - workflowtasksets/finalizers
- - workflowartifactgctasks
- verbs:
- - get
- - list
- - watch
- - update
- - patch
- - delete
- - create
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtemplates
- - workflowtemplates/finalizers
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- verbs:
- - get
- - list
- - watch
- - apiGroups:
- - argoproj.io
- resources:
- - workflowtaskresults
- verbs:
- - list
- - watch
- - deletecollection
- - apiGroups:
- - ""
- resources:
- - serviceaccounts
- verbs:
- - get
- - list
- - apiGroups:
- - argoproj.io
- resources:
- - cronworkflows
- - cronworkflows/finalizers
- verbs:
- - get
- - list
- - watch
- - update
- - patch
- - delete
- - apiGroups:
- - ""
- resources:
- - events
- verbs:
- - create
- - patch
- - apiGroups:
- - policy
- resources:
- - poddisruptionbudgets
- verbs:
- - create
- - get
- - delete
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- name: argo-clusterworkflowtemplate-role
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- verbs:
- - get
- - list
- - watch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- name: argo-server-cluster-role
- rules:
- - apiGroups:
- - ""
- resources:
- - configmaps
- verbs:
- - get
- - watch
- - list
- - apiGroups:
- - ""
- resources:
- - secrets
- verbs:
- - get
- - create
- - apiGroups:
- - ""
- resources:
- - pods
- - pods/exec
- - pods/log
- verbs:
- - get
- - list
- - watch
- - delete
- - apiGroups:
- - ""
- resources:
- - events
- verbs:
- - watch
- - create
- - patch
- - apiGroups:
- - ""
- resources:
- - serviceaccounts
- verbs:
- - get
- - list
- - watch
- - apiGroups:
- - argoproj.io
- resources:
- - eventsources
- - sensors
- - workflows
- - workfloweventbindings
- - workflowtemplates
- - cronworkflows
- - clusterworkflowtemplates
- verbs:
- - create
- - get
- - list
- - watch
- - update
- - patch
- - delete
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRole
- metadata:
- name: argo-server-clusterworkflowtemplate-role
- rules:
- - apiGroups:
- - argoproj.io
- resources:
- - clusterworkflowtemplates
- - clusterworkflowtemplates/finalizers
- verbs:
- - create
- - delete
- - watch
- - get
- - list
- - watch
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: argo-binding
- namespace: cicd
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: argo-role
- subjects:
- - kind: ServiceAccount
- name: argo
- namespace: cicd
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: agent-default
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: agent
- subjects:
- - kind: ServiceAccount
- name: default
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: artifactgc-default
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: artifactgc
- subjects:
- - kind: ServiceAccount
- name: default
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: executor-default
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: executor
- subjects:
- - kind: ServiceAccount
- name: default
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: github.com
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: submit-workflow-template
- subjects:
- - kind: ServiceAccount
- name: github.com
- namespace: cicd
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: pod-manager-default
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: pod-manager
- subjects:
- - kind: ServiceAccount
- name: default
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: workflow-manager-default
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: workflow-manager
- subjects:
- - kind: ServiceAccount
- name: default
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRoleBinding
- metadata:
- name: argo-binding
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-cluster-role
- subjects:
- - kind: ServiceAccount
- name: argo
- namespace: cicd
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRoleBinding
- metadata:
- name: argo-clusterworkflowtemplate-role-binding
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-clusterworkflowtemplate-role
- subjects:
- - kind: ServiceAccount
- name: argo
- namespace: cicd
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRoleBinding
- metadata:
- name: argo-server-binding
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-server-cluster-role
- subjects:
- - kind: ServiceAccount
- name: argo-server
- namespace: cicd
- ---
- apiVersion: rbac.authorization.k8s.io/v1
- kind: ClusterRoleBinding
- metadata:
- name: argo-server-clusterworkflowtemplate-role-binding
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: argo-server-clusterworkflowtemplate-role
- subjects:
- - kind: ServiceAccount
- name: argo-server
- namespace: cicd
- ---
- apiVersion: v1
- data:
- artifactRepository: |
- s3:
- bucket: my-bucket
- endpoint: minio:9000
- insecure: true
- accessKeySecret:
- name: my-minio-cred
- key: accesskey
- secretKeySecret:
- name: my-minio-cred
- key: secretkey
- columns: |
- - name: Workflow Completed
- type: label
- key: workflows.argoproj.io/completed
- executor: |
- resources:
- requests:
- cpu: 10m
- memory: 64Mi
- images: |
- docker/whalesay:v3.5.10:
- cmd: [cowsay]
- links: |
- - name: Workflow Link
- scope: workflow
- url: http://logging-facility?namespace=${metadata.namespace}&workflowName=${metadata.name}&startedAt=${status.startedAt}&finishedAt=${status.finishedAt}
- - name: Pod Link
- scope: pod
- url: http://logging-facility?namespace=${metadata.namespace}&podName=${metadata.name}&startedAt=${status.startedAt}&finishedAt=${status.finishedAt}
- - name: Pod Logs Link
- scope: pod-logs
- url: http://logging-facility?namespace=${metadata.namespace}&podName=${metadata.name}&startedAt=${status.startedAt}&finishedAt=${status.finishedAt}
- - name: Event Source Logs Link
- scope: event-source-logs
- url: http://logging-facility?namespace=${metadata.namespace}&podName=${metadata.name}&startedAt=${status.startedAt}&finishedAt=${status.finishedAt}
- - name: Sensor Logs Link
- scope: sensor-logs
- url: http://logging-facility?namespace=${metadata.namespace}&podName=${metadata.name}&startedAt=${status.startedAt}&finishedAt=${status.finishedAt}
- - name: Completed Workflows
- scope: workflow-list
- url: http://workflows?label=workflows.argoproj.io/completed=true
- metricsConfig: |
- enabled: true
- path: /metrics
- port: 9090
- namespaceParallelism: "10"
- retentionPolicy: |
- completed: 10
- failed: 3
- errored: 3
- kind: ConfigMap
- metadata:
- name: workflow-controller-configmap
- namespace: cicd
- ---
- apiVersion: v1
- data:
- default-v1: |
- archiveLogs: true
- s3:
- bucket: my-bucket
- endpoint: minio:9000
- insecure: true
- accessKeySecret:
- name: my-minio-cred
- key: accesskey
- secretKeySecret:
- name: my-minio-cred
- key: secretkey
- empty: ""
- my-key: |
- archiveLogs: true
- s3:
- bucket: my-bucket
- endpoint: minio:9000
- insecure: true
- accessKeySecret:
- name: my-minio-cred
- key: accesskey
- secretKeySecret:
- name: my-minio-cred
- key: secretkey
- kind: ConfigMap
- metadata:
- annotations:
- workflows.argoproj.io/default-artifact-repository: default-v1
- name: artifact-repositories
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- name: argo-server-sso
- stringData:
- clientID: argo-server
- clientSecret: ZXhhbXBsZS1hcHAtc2VjcmV0
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- name: argo-workflows-webhook-clients
- stringData:
- bitbucket.org: |
- type: bitbucket
- secret: "my-uuid"
- bitbucketserver: |
- type: bitbucketserver
- secret: "shh!"
- github.com: |
- type: github
- secret: "shh!"
- gitlab.com: |-
- type: gitlab
- secret: "shh!"
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- annotations:
- kubernetes.io/service-account.name: default
- name: default.service-account-token
- type: kubernetes.io/service-account-token
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- annotations:
- kubernetes.io/service-account.name: github.com
- name: github.com.service-account-token
- type: kubernetes.io/service-account-token
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- labels:
- app: httpbin
- name: my-httpbin-cred
- stringData:
- cert.pem: |
- -----BEGIN CERTIFICATE-----
- MIIEmjCCAoICCQDQejieQSZTxzANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDAR0
- ZXN0MB4XDTIyMDQyNTEzNDc0MloXDTMyMDQyMjEzNDc0MlowDzENMAsGA1UEAwwE
- dGVzdDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMHT/tfskuXizar1
- 5DDrSkaT1cuCdQhEO7b6haxfvfMJPY9sxaxR570bw5TWQzA0xdAeUzSCbRsvxw6b
- fEyLD4NajdXtcKocYUUcLclzjgyogTDPqlzAfDVZD25ySOTZ150pQaBuIi6TgnqH
- WdJEh9w5//5VZmKyMx49JZMW7ADb9qYxkKVPIan3aNEXOO4SxyjsSekUFefkZOld
- /RVZ8nO8hnDQ7r5NXsIIWVh35A94CA8y6QpKL2qiEFW1fofRcr/Fe/Y/5ohBQ1Ur
- NMcX87zm9kXX1y6wbp3wn5f1PUa1sCUPlxChmRmPPmr4yIqq0a8C1d71jOIbhkox
- 7A30HsP1D3rdxU6eb7KBYb7kShZge1batHRogRe5uX6hGO8iHBV/GdDE6jszoGPU
- ejhfwblr6AeR6ImrWmrJ4rAx/jNqcHPuktnMRlLsBzdhqRwelwgnN13O5ZYiEJg4
- X3YYp678kHnc58aOkhG2nM32cIGha4tkoGM/GpDnFAd0P0gyJVwKo2A2Wc4cMlzQ
- 7dokXbkkzK6lrHJnJjiOfzjD5yMB1Q1zQXKGHB2hJSWAMTjJ9f6qQd3ZaarYPTLx
- vc4WTu+547Sx81Vlnes2xTSgt6pyFSBppHpS7KkOxb+wRF2oIpgLA3mQmsq2c60+
- G8/ro91YAYN+cl+v7m1DyEpD9TW/AgMBAAEwDQYJKoZIhvcNAQELBQADggIBACO7
- 2hU2BSGU66FwpIOihgcaADH0SwokjrEJVXlnMv26JzG/Ja63gTNE5OyghufsJtUi
- E7E1gOH+dH6lVOIEmQdgGZazGxye20diLlicBATa5W2IuaBzb8Bq7ap75jOB7/sH
- Yh+ZV9w0CWgV7KgzJQsp6KPfpMUXn9aJkRkLlCToCj60tC1agw5wzQcokDhOMJaY
- 49FFVoKtVYwN6DfXL5Qi4GUmg7NwMUQAOGD6BQ8VLdbSJoWSHvgR2z5SDIubpdyy
- XDe2V6lusdka8jdRsFH+TUKyGubs3c5YVq80A8itavxPXBUM/OJCHhUA1VpL3rvz
- VgANVV7XFn5fN5TdTOrgJa2LBjflYBC3KiLf1jiW68ZT2rLDrC0yVdHFY0UJG/du
- kWWQpZTfdpGbZOl1rQcYQ3BREWkr5kAv8Sh3sPliibVRvyFzwAqpEUDbpCz/Z3kZ
- mRPU1Ukz8gjr5FBwzNn4x/l+80kgM22qXLMgxf7cqSLxH+dylmIieLGU0s1k7BqK
- Dw77DP1QZe4G6WwrdGooxSYSBn4joKV4TI9sbyd34HJQnkMch0ugz9dlpZyT1P8Y
- 3xU8Qj1BIF8yoyRuzbOokd9cEjNC6N+Z4g5lLEKYM/j1f0r3tGEoZAu2p39UGLa8
- aszMnFjeymK5OCkMUhg/KNr4WK58pc/3uFMhy8bn
- -----END CERTIFICATE-----
- clientID: admin
- clientSecret: password
- key.pem: |
- -----BEGIN PRIVATE KEY-----
- MIIJQgIBADANBgkqhkiG9w0BAQEFAASCCSwwggkoAgEAAoICAQDB0/7X7JLl4s2q
- 9eQw60pGk9XLgnUIRDu2+oWsX73zCT2PbMWsUee9G8OU1kMwNMXQHlM0gm0bL8cO
- m3xMiw+DWo3V7XCqHGFFHC3Jc44MqIEwz6pcwHw1WQ9uckjk2dedKUGgbiIuk4J6
- h1nSRIfcOf/+VWZisjMePSWTFuwA2/amMZClTyGp92jRFzjuEsco7EnpFBXn5GTp
- Xf0VWfJzvIZw0O6+TV7CCFlYd+QPeAgPMukKSi9qohBVtX6H0XK/xXv2P+aIQUNV
- KzTHF/O85vZF19cusG6d8J+X9T1GtbAlD5cQoZkZjz5q+MiKqtGvAtXe9YziG4ZK
- MewN9B7D9Q963cVOnm+ygWG+5EoWYHtW2rR0aIEXubl+oRjvIhwVfxnQxOo7M6Bj
- 1Ho4X8G5a+gHkeiJq1pqyeKwMf4zanBz7pLZzEZS7Ac3YakcHpcIJzddzuWWIhCY
- OF92GKeu/JB53OfGjpIRtpzN9nCBoWuLZKBjPxqQ5xQHdD9IMiVcCqNgNlnOHDJc
- 0O3aJF25JMyupaxyZyY4jn84w+cjAdUNc0FyhhwdoSUlgDE4yfX+qkHd2Wmq2D0y
- 8b3OFk7vueO0sfNVZZ3rNsU0oLeqchUgaaR6UuypDsW/sERdqCKYCwN5kJrKtnOt
- PhvP66PdWAGDfnJfr+5tQ8hKQ/U1vwIDAQABAoICAQCL2aAIv4MGJ2zpq10oBryi
- y8v4eHpkqobDcWK9ip8NGl+2em7t9HLWOZAWdboosAsCLL8wJeL/OKvRWFKJD9Tz
- m4S3FAi0VKHCMaC/t4aIj5QXWd676Y41F7tQn1kE9kDh/oCBdrVnEbuVGM+wLQ4x
- 0g9ovMmQ8K59ZPUVefZycEM4io6pF71cW0zfgHftHtNgLYzuhTWBCYPd9ZjDrRCI
- fUArajS4Ti7OpSOB948vshVukfcfG4O21pQeo0NWT8MRpzXX6Sc2rJAehXwhIqEU
- bTjIEAIMh/RoNNOR2rqJqFIdi3Ad6dsDXB1XJYXct39vXQZfRqCOC/oK0pZVQwxm
- aMbb6VzMjE/paHcBLKorvSIEpuAkgesUkqJeMPxhVnVG6Tg5Xl0WM0pCh/mfir6i
- gFGz/xXb0h8pj9Ksk6QpTOTqDf9JAHCuhp9hnuUR+wpnfKyOfOoDXfAyKjHR0bXz
- XF9DhycErHDY4CWlhFiu8+qzrtR/sZ/AIp2MfjOzBZYoq7Zj2Z3yXDsvr5fpXUW8
- EU+ClnE/dgRBj5z1sKEQd471+R7PU3Q5apw3YlQZClsaaciTIeWOMOwBjxm9PbZL
- CX9BzYaobVAy19ib+/7JgqNxsZ/3gL2xBQU1JoKeY2GnAyyyr8arLZaFR/CUGYyV
- SWOdWwLxgThXIJofA3c5QQKCAQEA701sUqcRN8W/m6nCcav8I2EMU/4h18J3bk88
- NbK8vCsDvvFl/2EcjU/6iKcuxhNg1CjHD96H42FeXVXApkdnf2pF24nJHW8M18yH
- uwPNzIDnLn9LSN6nJsgyo5LuVCXhf2C4UImv9P3Ae1meI/ApBJsad/bAY8MMHwtS
- G/ph/yzhbAb2xF4oJwgOXBm0G2c9sfA0OlHSvYM/kvsQE6770BQ5S1ltrfIv++4J
- qydiJ0Hq0RFM4aHCCi02cWp+43ALhh3EAPHN3ANpmV1IQKqyAeRFX1sqQuqpryQs
- wHQxdF9FLCXHwaF8JOwheu9MTclUZdrkIRf2xac2qdFIszxCkQKCAQEAz1pHtm+f
- HYJdOT3XKKgri4/OPZ7nzb1NcT34NbOPKmhRi38ZxutKrFTy+DCtpjUwF4YlE7oa
- r13upHaxgxHMa9cpLN+69hmT2Pg2oMBvfEIkAiDKt4dcFQBDDKw98lpXNIStsCDp
- nRcToI2TO1AMJNWCulAONov9vGggjS7mxt76cQ2QZH4k6W4yYDcC6g311vR+obA9
- MwJxZfuESw1CLzvE8Ua0esQnXQzpwECC05Q6oObeJ/44huQF7R2MP5iEmDLkgYjj
- G5cmHAdD3u0Ceol3zFqF0YDxcfuglMvpmdBpjNj2rl093ufziy84iVTXJ50CRceS
- e17et+3kKNF7TwKCAQBJpEHZjaA20ZwNg0hbQtns6Uip8GLpyuaGA8w7mi2KmpIk
- iJUi6fenZR1sQEacngoGQCZCM/ENgEFR57nJcd/fzgyBav2BGVOSdVavrpP+gwyh
- unqoihxWSvWKcQT20FF8qX8PCdAkTJKXYxTPanC1AiY7FKxQBw4L36f9BCh0JpOY
- cuwtsewZVtlUbnSGmlbaE1l/OP7pYyKFUM25wPetKQwYrAScqxMpLC+9g/koq5hf
- jjtilCzqhM9kR6mUxD5Hn5FZ2Q/IzSQKFjLN87mj62ON3Lg8r4pYY4GCGD+/2DGp
- TFcUt2VE14XWFx4cMgDO93WM2ZsPaE3iJI2C2uCBAoIBADGmr5da4SICzmnfif7d
- ThgMJlmRDHayhrHAIghR581Cz4v0smp0exwK92dA2MP85ngrkgNIRA2ME5HkLhtx
- jp6gFeb959n4Q/Pnc8VIbym0+MRdr80Ep6MLvgJx2B+JTGpx/tk2+Fm6ZePDIudI
- ArBrQ/NzKgQbv3V3BZxpB6/FQvkBQ3sczZ/r2Do70gHTt/Nx9kSnW/Az/I1sDcCe
- +yMuT7lqsdrXz4kzh2GW0Pzy+JsAzV+MO2LphRXDRosP7Wg4f4kZCzDXH7QEdVcT
- L83BzyLq5jJFiws9MrWOonBHfI7SgTc9coxGxIWmmAYif6anrRyibkwGapRmbYTs
- rHcCggEATsKrZHJkZIfxVdw1uELZxDssxtSd3KS09xN2aypGPdSvWg2Di3NbQsNt
- 4xSljnjWsYLZpxKYv3dUOOJIiIFGxVCPNCF1vL3ofqrBelXF3AAICa+ktzPQqBDI
- eGPj1/h/HodY2pVHVyhZmFFsFy8We/wD64QRx4xI0w9xFAt0qmKVMoCsJmdrXGcO
- kYqZnhkq3OyCswrk78OvFcB2Wnk7SWH2tYhBhOqFv8uPojaiRLOb/6xZaZOA9TPi
- 0mpJScl+pVxs1UGShVH74lIvhPaPq0AHgK1y1yYphKc1A07l2z0+S1tSYOvdQY8k
- NuJLvtwCMGDCxhdYm7OrJ0aUfZzP6w==
- -----END PRIVATE KEY-----
- pass: password
- tokenURL: http://httpbin:9100/response-headers?access_token=faketoken&token_type=Bearer
- user: admin
- type: Opaque
- ---
- apiVersion: v1
- kind: Secret
- metadata:
- labels:
- app: minio
- name: my-minio-cred
- stringData:
- accesskey: admin
- secretkey: password
- type: Opaque
- ---
- apiVersion: v1
- kind: Service
- metadata:
- name: argo-server
- namespace: cicd
- spec:
- ports:
- - name: web
- port: 2746
- targetPort: 2746
- selector:
- app: argo-server
- ---
- apiVersion: v1
- kind: Service
- metadata:
- labels:
- app: httpbin
- name: httpbin
- spec:
- ports:
- - name: api
- port: 9100
- protocol: TCP
- targetPort: 80
- selector:
- app: httpbin
- ---
- apiVersion: v1
- kind: Service
- metadata:
- labels:
- app: minio
- name: minio
- spec:
- ports:
- - name: api
- port: 9000
- protocol: TCP
- targetPort: 9000
- - name: dashboard
- port: 9001
- protocol: TCP
- targetPort: 9001
- selector:
- app: minio
- ---
- apiVersion: scheduling.k8s.io/v1
- kind: PriorityClass
- metadata:
- name: workflow-controller
- value: 1000000
- ---
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- name: argo-server
- namespace: cicd
- spec:
- selector:
- matchLabels:
- app: argo-server
- template:
- metadata:
- labels:
- app: argo-server
- spec:
- containers:
- - args:
- - server
- - --auth-mode
- - server
- - --auth-mode
- - client
- env: []
- image: quay.io/argoproj/argocli:v3.5.10
- name: argo-server
- ports:
- - containerPort: 2746
- name: web
- readinessProbe:
- httpGet:
- path: /
- port: 2746
- scheme: HTTPS
- initialDelaySeconds: 10
- periodSeconds: 20
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- runAsNonRoot: true
- volumeMounts:
- - mountPath: /tmp
- name: tmp
- nodeSelector:
- kubernetes.io/os: linux
- securityContext:
- runAsNonRoot: true
- serviceAccountName: argo-server
- volumes:
- - emptyDir: {}
- name: tmp
- ---
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- name: workflow-controller
- namespace: cicd
- spec:
- hostAliases:
- - ip: "172.24.100.101"
- hostnames:
- - "reg.cestong.com.cn"
- selector:
- matchLabels:
- app: workflow-controller
- template:
- metadata:
- labels:
- app: workflow-controller
- spec:
- containers:
- - args: []
- command:
- - workflow-controller
- env:
- - name: LEADER_ELECTION_IDENTITY
- valueFrom:
- fieldRef:
- apiVersion: v1
- fieldPath: metadata.name
- image: quay.io/argoproj/workflow-controller:v3.5.10
- livenessProbe:
- failureThreshold: 3
- httpGet:
- path: /healthz
- port: 6060
- initialDelaySeconds: 90
- periodSeconds: 60
- timeoutSeconds: 30
- name: workflow-controller
- ports:
- - containerPort: 9090
- name: metrics
- - containerPort: 6060
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- runAsNonRoot: true
- nodeSelector:
- kubernetes.io/os: linux
- priorityClassName: workflow-controller
- securityContext:
- runAsNonRoot: true
- serviceAccountName: argo
- ---
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- labels:
- app: httpbin
- name: httpbin
- spec:
- selector:
- matchLabels:
- app: httpbin
- template:
- metadata:
- labels:
- app: httpbin
- spec:
- automountServiceAccountToken: false
- containers:
- - image: kong/httpbin
- livenessProbe:
- httpGet:
- path: /get
- port: 80
- initialDelaySeconds: 5
- periodSeconds: 10
- name: main
- ports:
- - containerPort: 80
- name: api
- readinessProbe:
- httpGet:
- path: /get
- port: 80
- initialDelaySeconds: 5
- periodSeconds: 10
- ---
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- labels:
- app: minio
- name: minio
- spec:
- selector:
- matchLabels:
- app: minio
- template:
- metadata:
- labels:
- app: minio
- spec:
- automountServiceAccountToken: false
- containers:
- - command:
- - minio
- - server
- - --console-address
- - :9001
- - /data
- env:
- - name: MINIO_ACCESS_KEY
- value: admin
- - name: MINIO_SECRET_KEY
- value: password
- image: minio/minio:RELEASE.2022-11-17T23-20-09Z
- lifecycle:
- postStart:
- exec:
- command:
- - mkdir
- - -p
- - /data/my-bucket
- livenessProbe:
- httpGet:
- path: /minio/health/live
- port: 9000
- initialDelaySeconds: 5
- periodSeconds: 10
- name: main
- ports:
- - containerPort: 9000
- name: api
- - containerPort: 9001
- name: dashboard
- readinessProbe:
- httpGet:
- path: /minio/health/ready
- port: 9000
- initialDelaySeconds: 5
- periodSeconds: 10
|
