mirror of
https://github.com/bitnami/charts.git
synced 2026-03-10 15:07:49 +08:00
[bitnami/kuberay] Add feature toggle for Role/RoleBinding creation when operator.watchAllNamespaces is set to false (#34333)
* feat(kuberay): toggle Role/RoleBinding creation New `operator.crNamespacedRbacEnable` property allows to disable the creation of Role/RoleBinding CRs when `operator.watchAllNamespaces` is set to `false`. This is an important feature available in the original Helm Chart to play nicely with Argo CD. Otherwise, the operator will fail unless the Argo CD AppProject also has rights to create resources in namespaces other than the one where the operator is being installed. Signed-off-by: cmontemuino <1761056+cmontemuino@users.noreply.github.com> * chore: revert changes to README.md Signed-off-by: cmontemuino <1761056+cmontemuino@users.noreply.github.com> * chore: add missing symbol in values comment Signed-off-by: cmontemuino <1761056+cmontemuino@users.noreply.github.com> * Update CHANGELOG.md Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com> * Update README.md with readme-generator-for-helm Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com> * Update CHANGELOG.md Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com> * Update CHANGELOG.md Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com> --------- Signed-off-by: cmontemuino <1761056+cmontemuino@users.noreply.github.com> Signed-off-by: Bitnami Bot <bitnami.bot@broadcom.com> Signed-off-by: Juan José Martos <jota.martos@broadcom.com> Co-authored-by: Bitnami Bot <bitnami.bot@broadcom.com> Co-authored-by: Juan José Martos <jota.martos@broadcom.com>
This commit is contained in:
Carlos M.
@@ -1,8 +1,12 @@
|
||||
# Changelog
|
||||
|
||||
## 1.4.16 (2025-06-18)
|
||||
## 1.4.17 (2025-06-19)
|
||||
|
||||
* [bitnami/kuberay] :zap: :arrow_up: Update dependency references ([#34553](https://github.com/bitnami/charts/pull/34553))
|
||||
* [bitnami/kuberay] Add feature toggle for Role/RoleBinding creation when operator.watchAllNamespaces is set to false ([#34333](https://github.com/bitnami/charts/pull/34333))
|
||||
|
||||
## <small>1.4.16 (2025-06-18)</small>
|
||||
|
||||
* [bitnami/kuberay] :zap: :arrow_up: Update dependency references (#34553) ([6dab9b2](https://github.com/bitnami/charts/commit/6dab9b2653e47160b076656aee7ae6035e5b6d46)), closes [#34553](https://github.com/bitnami/charts/issues/34553)
|
||||
|
||||
## <small>1.4.15 (2025-06-18)</small>
|
||||
|
||||
|
||||
@@ -34,4 +34,4 @@ maintainers:
|
||||
name: kuberay
|
||||
sources:
|
||||
- https://github.com/bitnami/charts/tree/main/bitnami/kuberay
|
||||
version: 1.4.16
|
||||
version: 1.4.17
|
||||
|
||||
@@ -211,6 +211,7 @@ As an alternative, use one of the preset configurations for pod affinity, pod an
|
||||
| `operator.customStartupProbe` | Custom startupProbe that overrides the default one | `{}` |
|
||||
| `operator.watchAllNamespaces` | Watch for KubeRay resources in all namespaces | `true` |
|
||||
| `operator.watchNamespaces` | Watch for KubeRay resources in the given namespaces | `[]` |
|
||||
| `operator.crNamespacedRbacEnable` | Specifies whether a RBAC resources should be created when `operator.watchAllNamespaces` is set to `false` | `true` |
|
||||
| `operator.enableBatchScheduler` | Enable batch scheduler component | `false` |
|
||||
| `operator.resourcesPreset` | Set container resources according to one common preset (allowed values: none, nano, micro, small, medium, large, xlarge, 2xlarge). This is ignored if operator.resources is set (operator.resources is recommended for production). | `nano` |
|
||||
| `operator.resources` | Set container requests and limits for different resources like CPU or memory (essential for production workloads) | `{}` |
|
||||
|
||||
@@ -53,7 +53,7 @@ rules:
|
||||
- get
|
||||
- list
|
||||
- update
|
||||
{{- if not .Values.operator.watchAllNamespaces }}
|
||||
{{- if and (not .Values.operator.watchAllNamespaces) .Values.operator.crNamespacedRbacEnable }}
|
||||
{{- $watchNamespaces := default (list (include "common.names.namespace" .)) .Values.operator.watchNamespaces }}
|
||||
{{- range $namespace := $watchNamespaces }}
|
||||
---
|
||||
|
||||
@@ -25,7 +25,7 @@ subjects:
|
||||
- kind: ServiceAccount
|
||||
name: {{ template "kuberay.operator.serviceAccountName" . }}
|
||||
namespace: {{ include "common.names.namespace" . | quote }}
|
||||
{{- if not .Values.operator.watchAllNamespaces }}
|
||||
{{- if and (not .Values.operator.watchAllNamespaces) .Values.operator.crNamespacedRbacEnable }}
|
||||
{{- $watchNamespaces := default (list (include "common.names.namespace" .)) .Values.operator.watchNamespaces }}
|
||||
{{- range $namespace := $watchNamespaces }}
|
||||
---
|
||||
|
||||
@@ -213,6 +213,9 @@ operator:
|
||||
## @param operator.watchNamespaces [array] Watch for KubeRay resources in the given namespaces
|
||||
##
|
||||
watchNamespaces: []
|
||||
## @param operator.crNamespacedRbacEnable Specifies whether a RBAC resources should be created when `operator.watchAllNamespaces` is set to `false`
|
||||
##
|
||||
crNamespacedRbacEnable: true
|
||||
## @param operator.enableBatchScheduler Enable batch scheduler component
|
||||
##
|
||||
enableBatchScheduler: false
|
||||
|
||||
Reference in New Issue
Block a user