Home Explore Help
Sign In
cecf
/
deploy
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
deploy
/
ch
/
charts
/
common
/
templates
/
_warnings.tpl

_warnings.tpl 4.6 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109 
  1. {{/*
    2. 

  2. Copyright Broadcom, Inc. All Rights Reserved.
    3. 

  3. SPDX-License-Identifier: APACHE-2.0
    4. 

  4. */}}
    5. 

  5. 

  6. {{/* vim: set filetype=mustache: */}}
    7. 

  7. {{/*
    8. 

  8. Warning about using rolling tag.
    9. 

  9. Usage:
    10. 

  10. {{ include "common.warnings.rollingTag" .Values.path.to.the.imageRoot }}
    11. 

  11. */}}
    12. 

  12. {{- define "common.warnings.rollingTag" -}}
    13. 

  13. 

  14. {{- if and (contains "bitnami/" .repository) (not (.tag | toString | regexFind "-r\\d+$|sha256:")) }}
    15. 

  15. WARNING: Rolling tag detected ({{ .repository }}:{{ .tag }}), please note that it is strongly recommended to avoid using rolling tags in a production environment.
    16. 

  16. +info https://docs.vmware.com/en/VMware-Tanzu-Application-Catalog/services/tutorials/GUID-understand-rolling-tags-containers-index.html
    17. 

  17. {{- end }}
    18. 

  18. {{- end -}}
    19. 

  19. 

  20. {{/*
    21. 

  21. Warning about replaced images from the original.
    22. 

  22. Usage:
    23. 

  23. {{ include "common.warnings.modifiedImages" (dict "images" (list .Values.path.to.the.imageRoot) "context" $) }}
    24. 

  24. */}}
    25. 

  25. {{- define "common.warnings.modifiedImages" -}}
    26. 

  26. {{- $affectedImages := list -}}
    27. 

  27. {{- $printMessage := false -}}
    28. 

  28. {{- $originalImages := .context.Chart.Annotations.images -}}
    29. 

  29. {{- range .images -}}
    30. 

  30.   {{- $fullImageName := printf (printf "%s/%s:%s" .registry .repository .tag) -}}
    31. 

  31.   {{- if not (contains $fullImageName $originalImages) }}
    32. 

  32.     {{- $affectedImages = append $affectedImages (printf "%s/%s:%s" .registry .repository .tag) -}}
    33. 

  33.     {{- $printMessage = true -}}
    34. 

  34.   {{- end -}}
    35. 

  35. {{- end -}}
    36. 

  36. {{- if $printMessage }}
    37. 

  37. 

  38. ⚠ SECURITY WARNING: Original containers have been substituted. This Helm chart was designed, tested, and validated on multiple platforms using a specific set of Bitnami and Tanzu Application Catalog containers. Substituting other containers is likely to cause degraded security and performance, broken chart features, and missing environment variables.
    39. 

  39. 

  40. Substituted images detected:
    41. 

  41. {{- range $affectedImages }}
    42. 

  42.   - {{ . }}
    43. 

  43. {{- end }}
    44. 

  44. {{- end -}}
    45. 

  45. {{- end -}}
    46. 

  46. 

  47. {{/*
    48. 

  48. Warning about not setting the resource object in all deployments.
    49. 

  49. Usage:
    50. 

  50. {{ include "common.warnings.resources" (dict "sections" (list "path1" "path2") context $) }}
    51. 

  51. Example:
    52. 

  52. {{- include "common.warnings.resources" (dict "sections" (list "csiProvider.provider" "server" "volumePermissions" "") "context" $) }}
    53. 

  53. The list in the example assumes that the following values exist:
    54. 

  54.   - csiProvider.provider.resources
    55. 

  55.   - server.resources
    56. 

  56.   - volumePermissions.resources
    57. 

  57.   - resources
    58. 

  58. */}}
    59. 

  59. {{- define "common.warnings.resources" -}}
    60. 

  60. {{- $values := .context.Values -}}
    61. 

  61. {{- $printMessage := false -}}
    62. 

  62. {{ $affectedSections := list -}}
    63. 

  63. {{- range .sections -}}
    64. 

  64.   {{- if eq . "" -}}
    65. 

  65.     {{/* Case where the resources section is at the root (one main deployment in the chart) */}}
    66. 

  66.     {{- if not (index $values "resources") -}}
    67. 

  67.     {{- $affectedSections = append $affectedSections "resources" -}}
    68. 

  68.     {{- $printMessage = true -}}
    69. 

  69.     {{- end -}}
    70. 

  70.   {{- else -}}
    71. 

  71.     {{/* Case where the are multiple resources sections (more than one main deployment in the chart) */}}
    72. 

  72.     {{- $keys := split "." . -}}
    73. 

  73.     {{/* We iterate through the different levels until arriving to the resource section. Example: a.b.c.resources */}}
    74. 

  74.     {{- $section := $values -}}
    75. 

  75.     {{- range $keys -}}
    76. 

  76.       {{- $section = index $section . -}}
    77. 

  77.     {{- end -}}
    78. 

  78.     {{- if not (index $section "resources") -}}
    79. 

  79.       {{/* If the section has enabled=false or replicaCount=0, do not include it */}}
    80. 

  80.       {{- if and (hasKey $section "enabled") -}}
    81. 

  81.         {{- if index $section "enabled" -}}
    82. 

  82.           {{/* enabled=true */}}
    83. 

  83.           {{- $affectedSections = append $affectedSections (printf "%s.resources" .) -}}
    84. 

  84.           {{- $printMessage = true -}}
    85. 

  85.         {{- end -}}
    86. 

  86.       {{- else if and (hasKey $section "replicaCount")  -}}
    87. 

  87.         {{/* We need a casting to int because number 0 is not treated as an int by default */}}
    88. 

  88.         {{- if (gt (index $section "replicaCount" | int) 0) -}}
    89. 

  89.           {{/* replicaCount > 0 */}}
    90. 

  90.           {{- $affectedSections = append $affectedSections (printf "%s.resources" .) -}}
    91. 

  91.           {{- $printMessage = true -}}
    92. 

  92.         {{- end -}}
    93. 

  93.       {{- else -}}
    94. 

  94.         {{/* Default case, add it to the affected sections */}}
    95. 

  95.         {{- $affectedSections = append $affectedSections (printf "%s.resources" .) -}}
    96. 

  96.         {{- $printMessage = true -}}
    97. 

  97.       {{- end -}}
    98. 

  98.     {{- end -}}
    99. 

  99.   {{- end -}}
    100. 

  100. {{- end -}}
    101. 

  101. {{- if $printMessage }}
    102. 

  102. 

  103. WARNING: There are "resources" sections in the chart not set. Using "resourcesPreset" is not recommended for production. For production installations, please set the following values according to your workload needs:
    104. 

  104. {{- range $affectedSections }}
    105. 

  105.   - {{ . }}
    106. 

  106. {{- end }}
    107. 

  107. +info https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
    108. 

  108. {{- end -}}
    109. 

  109. {{- end -}}
    110.