From 3b26b33108bd9a45f94fa1e0b2a07db324c74e77 Mon Sep 17 00:00:00 2001
From: Gaurav Mehta <gaurav@rancher.com>
Date: Mon, 17 Jul 2023 21:29:21 +1000
Subject: [PATCH] updates for harvester-seeder to support webhook

---
 charts/harvester-seeder/Chart.yaml            |  4 +--
 .../templates/deployment.yaml                 |  5 +++-
 charts/harvester-seeder/templates/rbac.yaml   | 25 +++++++++++++++++++
 .../harvester-seeder/templates/service.yaml   |  4 +++
 4 files changed, 35 insertions(+), 3 deletions(-)

diff --git a/charts/harvester-seeder/Chart.yaml b/charts/harvester-seeder/Chart.yaml
index b916f9b2..dc72ca39 100644
--- a/charts/harvester-seeder/Chart.yaml
+++ b/charts/harvester-seeder/Chart.yaml
@@ -15,7 +15,7 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.0.0-dev
+version: 0.0.1-dev
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
@@ -24,4 +24,4 @@ version: 0.0.0-dev
 appVersion: v0.1.0
 
 maintainers:
-- name: harvester
+  - name: harvester
diff --git a/charts/harvester-seeder/templates/deployment.yaml b/charts/harvester-seeder/templates/deployment.yaml
index c8b84077..00a7c80b 100644
--- a/charts/harvester-seeder/templates/deployment.yaml
+++ b/charts/harvester-seeder/templates/deployment.yaml
@@ -53,7 +53,10 @@ spec:
               protocol: TCP
             - name: leader
               containerPort: 9443
-              protocol: TCP     
+              protocol: TCP
+            - name: webhook
+              containerPort: 443
+              protocol: TCP         
           livenessProbe:
             httpGet:
               path: /metrics
diff --git a/charts/harvester-seeder/templates/rbac.yaml b/charts/harvester-seeder/templates/rbac.yaml
index 85d91dc7..e426bfd0 100644
--- a/charts/harvester-seeder/templates/rbac.yaml
+++ b/charts/harvester-seeder/templates/rbac.yaml
@@ -23,6 +23,8 @@ rules:
   - get
   - list
   - watch
+  - create
+  - update
 - apiGroups:
   - bmc.tinkerbell.org
   resources:
@@ -82,6 +84,29 @@ rules:
     - events
   verbs:
     - create
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - watch
+  - list
+  - update
+  - create
+  - delete
+  - patch
+- apiGroups:
+  - apiregistration.k8s.io
+  resources:
+  - apiservices
+  verbs:
+  - get
+  - watch
+  - list
+  - update
+  - create
+  - delete
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
diff --git a/charts/harvester-seeder/templates/service.yaml b/charts/harvester-seeder/templates/service.yaml
index 7f4fc205..da8fb7f3 100644
--- a/charts/harvester-seeder/templates/service.yaml
+++ b/charts/harvester-seeder/templates/service.yaml
@@ -11,5 +11,9 @@ spec:
       targetPort: http
       protocol: TCP
       name: http
+    - port: 443
+      targetPort: webhook
+      protocol: TCP
+      name: webhook
   selector:
     {{- include "seeder.selectorLabels" . | nindent 4 }}