Skip to content
This repository has been archived by the owner on Oct 12, 2023. It is now read-only.

Commit

Permalink
release: update manifest and helm charts for v1.8.14 (#1370)
Browse files Browse the repository at this point in the history 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
  • Loading branch information
@aramase
aramase committed Dec 13, 2022
1 parent 85c39cc commit e818bb6
Show file tree
Hide file tree
Showing 24 changed files with 106 additions and 46 deletions.
Binary file added charts/aad-pod-identity-4.1.15.tgz
View file
Binary file not shown.
4 changes: 2 additions & 2 deletions charts/aad-pod-identity/Chart.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
apiVersion: v2
description: Deploy components for aad-pod-identity
name: aad-pod-identity
version: 4.1.14
appVersion: 1.8.13
version: 4.1.15
appVersion: 1.8.14
home: https://github.com/Azure/aad-pod-identity
sources:
- https://github.com/Azure/aad-pod-identity
Expand Down
8 changes: 4 additions & 4 deletions charts/aad-pod-identity/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ The following steps will help you create a new Azure identity ([Managed Service

### Prerequisites
* [Azure Subscription](https://azure.microsoft.com/)
* [Azure Kubernetes Service (AKS)](https://azure.microsoft.com/services/kubernetes-service/) or [AKS Engine](https://github.com/Azure/aks-engine) deployment
* [Azure Kubernetes Service (AKS)](https://azure.microsoft.com/services/kubernetes-service/) deployment
* [kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/) (authenticated to your Kubernetes cluster)
* [Helm 3](https://v3.helm.sh/)
* [Azure CLI 2.0](https://docs.microsoft.com/en-us/cli/azure/install-azure-cli?view=azure-cli-latest)
Expand Down Expand Up @@ -252,7 +252,7 @@ The following tables list the configurable parameters of the aad-pod-identity ch
| `adminsecret.useMSI` | Set to `true` when using a user managed identity | ` ` |
| `adminsecret.userAssignedMSIClientID` | Azure user managed identity client ID | ` ` |
| `mic.image` | MIC image name | `mic` |
| `mic.tag` | MIC image tag | `v1.8.13` |
| `mic.tag` | MIC image tag | `v1.8.14` |
| `mic.priorityClassName` | MIC priority class (can only be set when deploying to kube-system namespace) | |
| `mic.logVerbosity` | Log level. Uses V logs (klog) | `0` |
| `mic.loggingFormat` | Log format. One of (text \| json) | `text` |
Expand All @@ -278,15 +278,15 @@ The following tables list the configurable parameters of the aad-pod-identity ch
| `mic.updateUserMSIRetryInterval` | The duration to wait before retrying UpdateUserMSI (batch assigning/un-assigning identity from VM/VMSS) in case of errors | If not provided, default value is `1s` |
| `mic.identityAssignmentReconcileInterval` | The interval between reconciling identity assignment on Azure based on an existing list of AzureAssignedIdentities | If not provided, default value is `3m` |
| `nmi.image` | NMI image name | `nmi` |
| `nmi.tag` | NMI image tag | `v1.8.13` |
| `nmi.tag` | NMI image tag | `v1.8.14` |
| `nmi.priorityClassName` | NMI priority class (can only be set when deploying to kube-system namespace) | |
| `nmi.logVerbosity` | Log level. Uses V logs (klog) | `0` |
| `nmi.loggingFormat` | Log format. One of (text \| json) | `text` |
| `nmi.resources` | Resource limit for NMI | `{}` |
| `nmi.podAnnotations` | Pod annotations for NMI | `{}` |
| `nmi.podLabels` | Pod labels for NMI | `{}` |
| `nmi.affinity` | Affinity settings | `{}` |
| `nmi.tolerations` | List of node taints to tolerate | `[]` |
| `nmi.tolerations` | List of node taints to tolerate | `[{"operator": "Exists"}]` |
| `nmi.ipTableUpdateTimeIntervalInSeconds` | Override iptables update interval in seconds | `60` |
| `nmi.micNamespace` | Override mic namespace to short circuit MIC token requests | If not provided, default is `default` namespace |
| `nmi.probePort` | Override http liveliness probe port | If not provided, default is `8085` |
Expand Down
11 changes: 6 additions & 5 deletions charts/aad-pod-identity/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@ operationMode: "standard"

mic:
image: mic
tag: v1.8.13
tag: v1.8.14

# ref: https://kubernetes.io/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical
priorityClassName: ""
Expand Down Expand Up @@ -163,7 +163,7 @@ mic:

nmi:
image: nmi
tag: v1.8.13
tag: v1.8.14

# ref: https://kubernetes.io/docs/tasks/administer-cluster/guaranteed-scheduling-critical-addon-pods/#marking-pod-as-critical
priorityClassName: ""
Expand Down Expand Up @@ -194,9 +194,10 @@ nmi:
nodeSelector:
kubernetes.io/os: linux

tolerations: []
# - key: "CriticalAddonsOnly"
# operator: "Exists"
## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/
## An empty key with operator Exists matches all keys, values and effects which means this will tolerate everything.
tolerations:
- operator: "Exists"

# ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
affinity: {}
Expand Down
17 changes: 16 additions & 1 deletion charts/index.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,21 @@
apiVersion: v1
entries:
aad-pod-identity:
- apiVersion: v2
appVersion: 1.8.14
created: "2022-12-08T22:25:24.92663713Z"
description: Deploy components for aad-pod-identity
digest: 6227d3661a5ef5d7f79d0a6317334936f78d164a2a47d0c5269d9599c60a5688
home: https://github.com/Azure/aad-pod-identity
maintainers:
- email: anish.ramasekar@gmail.com
name: aramase
name: aad-pod-identity
sources:
- https://github.com/Azure/aad-pod-identity
urls:
- https://raw.githubusercontent.com/Azure/aad-pod-identity/master/charts/aad-pod-identity-4.1.15.tgz
version: 4.1.15
- apiVersion: v2
appVersion: 1.8.13
created: "2022-10-12T17:16:18.073622064Z"
Expand Down Expand Up @@ -451,4 +466,4 @@ entries:
urls:
- https://raw.githubusercontent.com/Azure/aad-pod-identity/master/charts/aad-pod-identity-1.5.2.tgz
version: 1.5.2
generated: "2022-10-12T17:16:18.06692047Z"
generated: "2022-12-08T22:25:24.925460108Z"
2 changes: 1 addition & 1 deletion deploy/demo/deployment.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ spec:
spec:
containers:
- name: demo
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/demo:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/demo:v1.8.14"
args:
- "--subscription-id=SUBSCRIPTION_ID"
- "--identity-client-id=CLIENT_ID"
Expand Down
6 changes: 4 additions & 2 deletions deploy/infra/deployment-rbac.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -475,7 +475,7 @@ spec:
type: FileOrCreate
containers:
- name: nmi
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.14"
args:
- "--node=$(NODE_NAME)"
- "--http-probe-port=8085"
Expand Down Expand Up @@ -518,6 +518,8 @@ spec:
port: 8085
initialDelaySeconds: 10
periodSeconds: 5
tolerations:
- operator: Exists
nodeSelector:
kubernetes.io/os: linux
---
Expand Down Expand Up @@ -595,7 +597,7 @@ spec:
serviceAccountName: aad-pod-id-mic-service-account
containers:
- name: mic
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.14"
args:
- "--cloudconfig=/etc/kubernetes/azure.json"
- "--logtostderr"
Expand Down
6 changes: 4 additions & 2 deletions deploy/infra/deployment.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -431,7 +431,7 @@ spec:
type: FileOrCreate
containers:
- name: nmi
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.14"
args:
- "--node=$(NODE_NAME)"
- "--http-probe-port=8085"
Expand Down Expand Up @@ -474,6 +474,8 @@ spec:
port: 8085
initialDelaySeconds: 10
periodSeconds: 5
tolerations:
- operator: Exists
nodeSelector:
kubernetes.io/os: linux
---
Expand All @@ -496,7 +498,7 @@ spec:
spec:
containers:
- name: mic
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.14"
args:
- "--kubeconfig=/var/lib/kubelet/kubeconfig"
- "--cloudconfig=/etc/kubernetes/azure.json"
Expand Down
4 changes: 3 additions & 1 deletion deploy/infra/managed-mode-deployment.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -306,7 +306,7 @@ spec:
type: FileOrCreate
containers:
- name: nmi
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.14"
args:
- "--node=$(NODE_NAME)"
- "--operation-mode=managed"
Expand Down Expand Up @@ -351,5 +351,7 @@ spec:
port: 8085
initialDelaySeconds: 10
periodSeconds: 5
tolerations:
- operator: Exists
nodeSelector:
kubernetes.io/os: linux
6 changes: 4 additions & 2 deletions deploy/infra/noazurejson/deployment-rbac.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -473,7 +473,7 @@ spec:
type: FileOrCreate
containers:
- name: nmi
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.14"
args:
- "--node=$(NODE_NAME)"
- "--http-probe-port=8085"
Expand Down Expand Up @@ -516,6 +516,8 @@ spec:
port: 8085
initialDelaySeconds: 10
periodSeconds: 5
tolerations:
- operator: Exists
nodeSelector:
kubernetes.io/os: linux
---
Expand Down Expand Up @@ -605,7 +607,7 @@ spec:
serviceAccountName: aad-pod-id-mic-service-account
containers:
- name: mic
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.14"
args:
- "--logtostderr"
securityContext:
Expand Down
6 changes: 4 additions & 2 deletions deploy/infra/noazurejson/deployment.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -429,7 +429,7 @@ spec:
type: FileOrCreate
containers:
- name: nmi
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/nmi:v1.8.14"
args:
- "--node=$(NODE_NAME)"
- "--http-probe-port=8085"
Expand Down Expand Up @@ -472,6 +472,8 @@ spec:
port: 8085
initialDelaySeconds: 10
periodSeconds: 5
tolerations:
- operator: Exists
nodeSelector:
kubernetes.io/os: linux
---
Expand Down Expand Up @@ -508,7 +510,7 @@ spec:
spec:
containers:
- name: mic
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.13"
image: "mcr.microsoft.com/oss/azure/aad-pod-identity/mic:v1.8.14"
args:
- "--kubeconfig=/var/lib/kubelet/kubeconfig"
- "--logtostderr"
Expand Down
4 changes: 2 additions & 2 deletions manifest_staging/charts/aad-pod-identity/Chart.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
apiVersion: v2
description: Deploy components for aad-pod-identity
name: aad-pod-identity
version: 4.1.14
appVersion: 1.8.13
version: 4.1.15
appVersion: 1.8.14
home: https://github.com/Azure/aad-pod-identity
sources:
- https://github.com/Azure/aad-pod-identity
Expand Down
Loading

0 comments on commit e818bb6

Please sign in to comment.