Managed Apps
Added
- Add host name to auditd logs.
Added
- HPA: Align to upstream. (#369)
- HPA: Add labels & annotations.
- HPA: Add
controller.kind switch. - HPA: Add
controller.autoscalingTemplate. - HPA: Add
controller.autoscaling.behavior. - HPA: Add all KEDA values.
- PDB: Add
minAvailable. (#373) - Webhook: Align to upstream. (#374)
- Webhook: Add
controller.admissionWebhooks.service.clusterIP. - Webhook: Add
controller.admissionWebhooks.service.externalIPs. - Webhook: Add
controller.admissionWebhooks.service.loadBalancerIP. - Webhook: Add
controller.admissionWebhooks.service.loadBalancerSourceRanges.
- Ingress Class: Align to upstream. (#377)
- Ingress Class: Add
controller.ingressClass.
- RBAC: Align to upstream. (#378)
- Values: Add RBAC & service account configuration.
- Helpers: Add
ingress-nginx.serviceAccountName. - Values: Add
controller.electionID. - Helpers: Add
podSecurityPolicy.apiGroup. - Values: Add
controller.existingPsp. - Values: Add
controller.hostNetwork & controller.hostPort. - Values: Add
controller.image.chroot. - Values: Add
controller.sysctls. - Values: Add
controller.metrics.enabled & controller.metrics.portName. - Values: Add
tcp & udp.
Changed
- HPA: Align to upstream. (#369)
- HPA: Reorder name & namespace.
- HPA: Use
ingress-nginx.controller.fullname. - HPA: Use
autoscaling/v2beta2. - HPA: Fix indention.
- HPA: Swap CPU & memory block.
- HPA: Disable when KEDA is enabled.
- Admission Webhooks: Align from upstream. (#370)
- Ingress Class: Align from upstream. (#371, #374, #377)
- Helpers: Rename
labels.selector to ingress-nginx.selectorLabels. (#372) - PDB: Align from upstream. (#373)
- Webhook: Align to upstream. (#374)
- RBAC: Align to upstream. (#378)
- RBAC: Move
ClusterRoleBinding to separate file. - RBAC: Move
RoleBinding to separate file. - RBAC: Move
ClusterRole to separate file. - RBAC: Move
Role to separate file. - RBAC: Rename
service-account.yaml to controller-serviceaccount.yaml. - RBAC: Rename
psp.yaml to controller-psp.yaml. - RBAC: Move PSP
ClusterRoleBinding to clusterrolebinding.yaml. - RBAC: Move PSP
ClusterRole to clusterrole.yaml. - RBAC: Align
ServiceAccount. - RBAC: Align
ClusterRoleBinding to upstream. - RBAC: Align
ClusterRole to upstream. - RBAC: Reorder
coordination.k8s.io/leases in ClusterRole. - RBAC: Indent
ClusterRole. - RBAC: Indent
Role. - Helpers: Rename
controller.leader.election.id to ingress-nginx.controller.electionID. - Helpers: Align
ingress-nginx.controller.electionID to upstream. - RBAC: Align
Role to upstream. - RBAC: Align
RoleBinding to upstream. - RBAC: Move PSP
ClusterRole & PSP ClusterRoleBinding to Role. - RBAC: Reorder & indent
PodSecurityPolicy. - RBAC: Align
PodSecurityPolicy to upstream.
Added
- Add projected volumes for
capa (#219). - Add nodeSelector, affinity, topologySpreadContraints and tolerations values to align to upstream (223)
Changed
- ServiceAccount: Align to upstream (#222).
- Labels: Add labels from values.
- Allow overrides of service account annotations (#221).
Modified
- Migrated to chart dependency
- ⚠ Major upgrade, breaking changes
- values structure changes. We rely on a subchart, meaning all of previous setup goes to a
promtail section
Added
Changed
- Move nodeselector
label:value to values.yaml to allow customizing it for CAPZ - Add toleration for
node-role.kubernetes.io/control-plane to masters instance
Changed
- Use inline schema for ‘image’, avoid external schema.
Fixed
- Fixed labels in certs-secret Helm template
Removed
- Remove CA pem example from readme as it is no longer required
Changed
- Update icon url in chart
- Started using the falco-no-driver image! Reducing lots of vulnerabilities!
Changed
- Excludes
kube-system namespace from webhooks. - Bump
kyverno-plugin resources.
Added
- Add support for filtering connectors with
connector_filter query parameter on connector selection (login) page.
Changed
- Use external image schema.
- Allowed null values of OIDC connectors in the values schema
