From ea5a394c5c804178d81207bf85d956a5faa5fdd1 Mon Sep 17 00:00:00 2001 From: chaoyux Date: Wed, 8 May 2024 15:59:55 -0700 Subject: [PATCH] Release artifacts for release v1.0.5 --- README.md | 2 +- config/manager/kustomization.yaml | 2 +- docs/guides/deploy.md | 4 +- ...{deploy-v1.0.0.yaml => deploy-v1.0.5.yaml} | 113 +++++++++++++++++- helm/Chart.yaml | 4 +- helm/values.yaml | 2 +- 6 files changed, 117 insertions(+), 10 deletions(-) rename files/controller-installation/{deploy-v1.0.0.yaml => deploy-v1.0.5.yaml} (99%) diff --git a/README.md b/README.md index 3641e239..3ced814f 100644 --- a/README.md +++ b/README.md @@ -55,5 +55,5 @@ This project is licensed under the Apache-2.0 License. [getting-started]: https://www.gateway-api-controller.eks.aws.dev/guides/getstarted/ [spec]: https://www.gateway-api-controller.eks.aws.dev/api-reference/ [concepts]: https://www.gateway-api-controller.eks.aws.dev/concepts/ -[gh_release]: https://github.com/aws/aws-application-networking-k8s/releases/tag/v1.0.4 +[gh_release]: https://github.com/aws/aws-application-networking-k8s/releases/tag/v1.0.5 [godoc]: https://www.gateway-api-controller.eks.aws.dev/ diff --git a/config/manager/kustomization.yaml b/config/manager/kustomization.yaml index 85977aff..24ba27f2 100644 --- a/config/manager/kustomization.yaml +++ b/config/manager/kustomization.yaml @@ -13,4 +13,4 @@ configMapGenerator: images: - name: controller newName: public.ecr.aws/aws-application-networking-k8s/aws-gateway-controller - newTag: v1.0.4 + newTag: v1.0.5 diff --git a/docs/guides/deploy.md b/docs/guides/deploy.md index 06850612..7885884f 100644 --- a/docs/guides/deploy.md +++ b/docs/guides/deploy.md @@ -181,7 +181,7 @@ You can choose from [Pod Identities](https://docs.aws.amazon.com/eks/latest/user # Run helm with either install or upgrade helm install gateway-api-controller \ oci://public.ecr.aws/aws-application-networking-k8s/aws-gateway-controller-chart \ - --version=v1.0.4 \ + --version=v1.0.5 \ --set=serviceAccount.create=false \ --namespace aws-application-networking-system \ --set=log.level=info # use "debug" for debug level logs @@ -190,7 +190,7 @@ You can choose from [Pod Identities](https://docs.aws.amazon.com/eks/latest/user === "Kubectl" ```bash - kubectl apply -f https://raw.githubusercontent.com/aws/aws-application-networking-k8s/main/files/controller-installation/deploy-v1.0.4.yaml + kubectl apply -f https://raw.githubusercontent.com/aws/aws-application-networking-k8s/main/files/controller-installation/deploy-v1.0.5.yaml ``` diff --git a/files/controller-installation/deploy-v1.0.0.yaml b/files/controller-installation/deploy-v1.0.5.yaml similarity index 99% rename from files/controller-installation/deploy-v1.0.0.yaml rename to files/controller-installation/deploy-v1.0.5.yaml index c3f0d9ff..cf6fc8d3 100644 --- a/files/controller-installation/deploy-v1.0.0.yaml +++ b/files/controller-installation/deploy-v1.0.5.yaml @@ -7362,6 +7362,26 @@ rules: - get - patch - update +- apiGroups: + - discovery.k8s.io + resources: + - endpointslices + verbs: + - create + - delete + - get + - list + - patch + - update + - watch +- apiGroups: + - discovery.k8s.io + resources: + - endpointslices/status + verbs: + - get + - patch + - update - apiGroups: - "" resources: @@ -7624,6 +7644,14 @@ rules: - targetgrouppolicies/finalizers verbs: - update +- apiGroups: + - application-networking.k8s.aws + resources: + - targetgrouppolicies/status + verbs: + - get + - patch + - update - apiGroups: - application-networking.k8s.aws resources: @@ -7642,6 +7670,14 @@ rules: - vpcassociationpolicies/finalizers verbs: - update +- apiGroups: + - application-networking.k8s.aws + resources: + - vpcassociationpolicies/status + verbs: + - get + - patch + - update - apiGroups: - application-networking.k8s.aws resources: @@ -7768,6 +7804,16 @@ metadata: name: manager-config --- apiVersion: v1 +data: + tls.crt: Cg== + tls.key: Cg== +kind: Secret +metadata: + name: webhook-cert + namespace: aws-application-networking-system +type: kubernetes.io/tls +--- +apiVersion: v1 kind: Service metadata: labels: @@ -7783,6 +7829,18 @@ spec: selector: control-plane: gateway-api-controller --- +apiVersion: v1 +kind: Service +metadata: + name: webhook-service + namespace: aws-application-networking-system +spec: + ports: + - port: 443 + targetPort: 9443 + selector: + control-plane: gateway-api-controller +--- apiVersion: apps/v1 kind: Deployment metadata: @@ -7791,7 +7849,7 @@ metadata: name: gateway-api-controller namespace: aws-application-networking-system spec: - replicas: 1 + replicas: 2 selector: matchLabels: control-plane: gateway-api-controller @@ -7820,7 +7878,10 @@ spec: - --leader-elect command: - /manager - image: public.ecr.aws/aws-application-networking-k8s/aws-gateway-controller:v1.0.0 + env: + - name: WEBHOOK_ENABLED + value: "" + image: public.ecr.aws/aws-application-networking-k8s/aws-gateway-controller:v1.0.5 livenessProbe: httpGet: path: /healthz @@ -7845,9 +7906,55 @@ spec: allowPrivilegeEscalation: false capabilities: drop: - - ALL + - ALL readOnlyRootFilesystem: true + volumeMounts: + - mountPath: /etc/webhook-cert + name: webhook-cert + readOnly: true securityContext: runAsNonRoot: true serviceAccountName: gateway-api-controller terminationGracePeriodSeconds: 10 + volumes: + - name: webhook-cert + secret: + defaultMode: 420 + secretName: webhook-cert +--- +apiVersion: admissionregistration.k8s.io/v1 +kind: MutatingWebhookConfiguration +metadata: + name: aws-appnet-gwc-mutating-webhook +webhooks: +- admissionReviewVersions: + - v1 + clientConfig: + service: + name: webhook-service + namespace: aws-application-networking-system + path: /mutate-pod + failurePolicy: Fail + name: mpod.gwc.k8s.aws + namespaceSelector: + matchExpressions: + - key: application-networking.k8s.aws/pod-readiness-gate-inject + operator: In + values: + - enabled + objectSelector: + matchExpressions: + - key: app.kubernetes.io/name + operator: NotIn + values: + - gateway-api-controller + rules: + - apiGroups: + - "" + apiVersions: + - v1 + operations: + - CREATE + resources: + - pods + sideEffects: None diff --git a/helm/Chart.yaml b/helm/Chart.yaml index 51b2ae53..93451ee2 100644 --- a/helm/Chart.yaml +++ b/helm/Chart.yaml @@ -1,8 +1,8 @@ apiVersion: v1 name: aws-gateway-controller-chart description: A Helm chart for the Gateway Controller for AWS VPC Lattice -version: v1.0.4 -appVersion: v1.0.4 +version: v1.0.5 +appVersion: v1.0.5 home: https://github.com/aws/aws-application-networking-k8s icon: https://raw.githubusercontent.com/aws/eks-charts/master/docs/logo/aws.png sources: diff --git a/helm/values.yaml b/helm/values.yaml index a04ab6dc..2fcc4414 100644 --- a/helm/values.yaml +++ b/helm/values.yaml @@ -4,7 +4,7 @@ image: repository: public.ecr.aws/aws-application-networking-k8s/aws-gateway-controller - tag: v1.0.4 + tag: v1.0.5 pullPolicy: IfNotPresent pullSecrets: []