diff --git a/charts/argocd-certificate-refresh/Chart.yaml b/charts/argocd-certificate-refresh/Chart.yaml index a3a1e808..6802e294 100644 --- a/charts/argocd-certificate-refresh/Chart.yaml +++ b/charts/argocd-certificate-refresh/Chart.yaml @@ -1,8 +1,9 @@ name: argocd-certificate-refresh description: Helm chart to deploy argocd certificate refresh CronJob. -version: 0.10.5 +version: 0.10.6 appVersion: 0.1.0 apiVersion: v1 maintainers: - email: ajay@devtron.ai name: Ajay + diff --git a/charts/argocd-certificate-refresh/README.md b/charts/argocd-certificate-refresh/README.md index 45248442..f9c4c1d1 100644 --- a/charts/argocd-certificate-refresh/README.md +++ b/charts/argocd-certificate-refresh/README.md @@ -1,2 +1,3 @@ # Devtron helm chart to deploy argocd certificate refresh cronjob +To get the script, please follow this link-: https://github.com/devtron-labs/devtron-utilities/tree/main/scripts/argo-cert-refresh diff --git a/charts/argocd-certificate-refresh/templates/argo-cert-expire-alert-job.yaml b/charts/argocd-certificate-refresh/templates/argo-cert-expire-alert-job.yaml new file mode 100644 index 00000000..469bc3db --- /dev/null +++ b/charts/argocd-certificate-refresh/templates/argo-cert-expire-alert-job.yaml @@ -0,0 +1,37 @@ +{{- if $.Values.alert.enabled -}} +{{- if .Capabilities.APIVersions.Has "batch/v1/CronJob" }} +apiVersion: batch/v1 +{{- else -}} +apiVersion: batch/v1beta1 +{{- end }} +kind: CronJob +metadata: + name: argocd-cert-alert +spec: + schedule: {{ $.Values.alert.schedule | quote }} + jobTemplate: + spec: + template: + spec: + {{- if $.Values.podSecurityContext }} + securityContext: +{{ toYaml $.Values.podSecurityContext | indent 12 }} + {{- end }} + serviceAccountName: argocd-cert-sa + serviceAccount: argocd-cert-sa + containers: + - name: argocd-alert-container + image: {{ $.Values.alert.image }} + imagePullPolicy: IfNotPresent + command: ["./alert.sh"] + env: + - name: discord_url + value: {{$.Values.alert.discord_url }} + - name: alert_before + value: {{$.Values.alert.alert_before }} + {{- if $.Values.containerSecurityContext }} + securityContext: +{{ toYaml $.Values.containerSecurityContext | indent 14 }} + {{- end}} + restartPolicy: OnFailure +{{- end }} \ No newline at end of file diff --git a/charts/argocd-certificate-refresh/templates/cronjob.yaml b/charts/argocd-certificate-refresh/templates/cronjob.yaml index e625fd22..7c4feb4c 100644 --- a/charts/argocd-certificate-refresh/templates/cronjob.yaml +++ b/charts/argocd-certificate-refresh/templates/cronjob.yaml @@ -12,11 +12,19 @@ spec: spec: template: spec: + {{- if $.Values.podSecurityContext }} + securityContext: +{{ toYaml $.Values.podSecurityContext | indent 12 }} + {{- end }} serviceAccountName: argocd-cert-sa serviceAccount: argocd-cert-sa containers: - name: argocd-cert-con image: {{ $.Values.image }} imagePullPolicy: IfNotPresent - command: ["./argocd.sh"] + command: ["./argocd.sh"] + {{- if $.Values.containerSecurityContext }} + securityContext: +{{ toYaml $.Values.containerSecurityContext | indent 14 }} + {{- end}} restartPolicy: OnFailure \ No newline at end of file diff --git a/charts/argocd-certificate-refresh/values.yaml b/charts/argocd-certificate-refresh/values.yaml index 4665a9db..7f578e69 100644 --- a/charts/argocd-certificate-refresh/values.yaml +++ b/charts/argocd-certificate-refresh/values.yaml @@ -14,7 +14,20 @@ cronjob: +#set up this If you need alert for argocd cert expire +alert: + enabled: true + image: quay.io/devtron/k8s-utils:3f8c7b04-489-16490 + discord_url: " " + schedule: "59 23 * */6 *" + alert_before: 10 - +podSecurityContext: {} + # runAsGroup: 1000 + # runAsUser: 1000 +containerSecurityContext: {} + # allowPrivilegeEscalation: false + # runAsUser: 1000 + # runAsNonRoot: true