├── CONTRIBUTING.md ├── Cargo.lock ├── Cargo.toml ├── LICENSE ├── README.md ├── clippy.toml ├── helper.sh ├── lib ├── aws │ ├── bootstrap │ │ ├── chart_values │ │ │ ├── aws-load-balancer-controller.yaml │ │ │ ├── aws-node-term-handler.yaml │ │ │ ├── cluster-autoscaler.yaml │ │ │ ├── coredns-config.yaml │ │ │ ├── iam-eks-user-mapper.yaml │ │ │ ├── ingress-nginx.j2.yaml │ │ │ ├── karpenter-configuration.yaml │ │ │ ├── karpenter-crd.yaml │ │ │ ├── karpenter.yaml │ │ │ ├── kube-prometheus-stack-with-karpenter.yaml │ │ │ ├── kube-prometheus-stack.yaml │ │ │ ├── q-storageclass.yaml │ │ │ ├── thanos-with-karpenter.yaml │ │ │ └── thanos.yaml │ │ ├── charts │ │ │ ├── aws-limits-exporter │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── secrets.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ └── values.yaml │ │ │ ├── aws-load-balancer-controller │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── ci │ │ │ │ │ ├── extra_args │ │ │ │ │ └── values.yaml │ │ │ │ ├── crds │ │ │ │ │ └── crds.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingressclass.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── rbac.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── webhook.yaml │ │ │ │ └── values.yaml │ │ │ ├── aws-node-termination-handler │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── daemonset.linux.yaml │ │ │ │ │ ├── daemonset.windows.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── podmonitor.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ └── values.yaml │ │ │ ├── cluster-autoscaler │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── README.md.gotmpl │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── extra-manifests.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ │ ├── priority-expander-configmap.yaml │ │ │ │ │ ├── prometheusrule.yaml │ │ │ │ │ ├── role.yaml │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ ├── secret.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── vpa.yaml │ │ │ │ └── values.yaml │ │ │ ├── coredns-config │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ └── configmap.yml │ │ │ │ └── values.yaml │ │ │ ├── iam-eks-user-mapper │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── rbac.yaml │ │ │ │ │ └── secret.yaml │ │ │ │ └── values.yaml │ │ │ ├── karpenter-configuration │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── ec2nodeclass.yaml │ │ │ │ │ ├── nodepool.yaml │ │ │ │ │ └── stablenodepool.yaml │ │ │ │ └── values.yaml │ │ │ ├── karpenter-crd │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── README.md.gotmpl │ │ │ │ ├── artifacthub-repo.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── karpenter.k8s.aws_ec2nodeclasses.yaml │ │ │ │ │ ├── karpenter.sh_nodeclaims.yaml │ │ │ │ │ └── karpenter.sh_nodepools.yaml │ │ │ │ └── values.yaml │ │ │ ├── karpenter │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.lock │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── README.md.gotmpl │ │ │ │ ├── artifacthub-repo.yaml │ │ │ │ ├── crds │ │ │ │ │ ├── karpenter.k8s.aws_ec2nodeclasses.yaml │ │ │ │ │ ├── karpenter.sh_nodeclaims.yaml │ │ │ │ │ └── karpenter.sh_nodepools.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── aggregate-clusterrole.yaml │ │ │ │ │ ├── clusterrole-core.yaml │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── poddisruptionbudget.yaml │ │ │ │ │ ├── role.yaml │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ ├── secret-webhook-cert.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ └── values.yaml │ │ │ ├── prometheus-servicemonitor-crd │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ └── crd-servicemonitors.yaml │ │ │ │ └── values.yaml │ │ │ └── q-storageclass-aws │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ └── storageclass.yaml │ │ │ │ └── values.yaml │ │ └── terraform │ │ │ ├── README.md │ │ │ ├── backend.j2.tf │ │ │ ├── documentdb-qovery-network.j2.tf │ │ │ ├── documentdb-user-network.j2.tf │ │ │ ├── eks-addons-coredns.j2.tf │ │ │ ├── eks-addons-ebs-csi-driver.j2.tf │ │ │ ├── eks-addons-vpc-cni.j2.tf │ │ │ ├── eks-addons-vpc-kube-proxy.j2.tf │ │ │ ├── eks-iam-alb-controller.tf │ │ │ ├── eks-karpenter-fargate.j2.tf │ │ │ ├── eks-karpenter-iam.j2.tf │ │ │ ├── eks-master-cluster.j2.tf │ │ │ ├── eks-master-iam.j2.tf │ │ │ ├── eks-master-sec-group-qovery-network.j2.tf │ │ │ ├── eks-master-sec-group-user-network.j2.tf │ │ │ ├── eks-sqs-queue.j2.tf │ │ │ ├── eks-vpc-common.j2.tf │ │ │ ├── eks-vpc-flow-logs.j2.tf │ │ │ ├── eks-vpc-karpenter-fargate-subnets.j2.tf │ │ │ ├── eks-vpc-karpenter-with-nat-gateways.j2.tf │ │ │ ├── eks-vpc-with-nat-gateways.j2.tf │ │ │ ├── eks-vpc-without-nat-gateways-qovery-network.j2.tf │ │ │ ├── eks-vpc-without-nat-gateways-user-network.j2.tf │ │ │ ├── eks-workers-iam.tf │ │ │ ├── eks-workers-nodes.j2.tf │ │ │ ├── eks-workers-sec-group-qovery-network.j2.tf │ │ │ ├── eks-workers-sec-group-user-network.j2.tf │ │ │ ├── elasticcache-qovery-network.j2.tf │ │ │ ├── elasticcache-user-network.j2.tf │ │ │ ├── helm-aws-iam-eks-user-mapper.tf │ │ │ ├── helm-cluster-autoscaler.tf │ │ │ ├── helm-grafana.j2.tf │ │ │ ├── helm-loki-logging-bucket.j2.tf │ │ │ ├── helm-loki.j2.tf │ │ │ ├── helm-nginx-ingress.tf │ │ │ ├── helm-prometheus.j2.tf │ │ │ ├── helper.j2.sh │ │ │ ├── identity-provider.tf │ │ │ ├── qovery-tf-output.j2.tf │ │ │ ├── rds-qovery-network.j2.tf │ │ │ ├── rds-user-network.j2.tf │ │ │ ├── s3-vpc-flow-logs.j2.tf │ │ │ ├── tf-default-vars.j2.tf │ │ │ └── tf-providers-aws.j2.tf │ ├── chart_values │ │ ├── mongodb │ │ │ └── qovery-values.j2.yaml │ │ ├── mysql │ │ │ └── qovery-values.j2.yaml │ │ ├── postgresql │ │ │ └── qovery-values.j2.yaml │ │ └── redis │ │ │ └── qovery-values.j2.yaml │ └── services │ │ ├── common │ │ ├── backend.j2.tf │ │ ├── common-variables.j2.tf │ │ └── providers.j2.tf │ │ ├── mongodb │ │ ├── database-tf-config.j2.tf │ │ ├── local-vars.j2.tf │ │ ├── main.j2.tf │ │ └── variables.j2.tf │ │ ├── mysql │ │ ├── database-tf-config.j2.tf │ │ ├── local-vars.j2.tf │ │ ├── main.j2.tf │ │ └── variables.j2.tf │ │ ├── postgresql │ │ ├── database-tf-config.j2.tf │ │ ├── local-vars.j2.tf │ │ ├── main.j2.tf │ │ └── variables.j2.tf │ │ └── redis │ │ ├── database-tf-config.j2.tf │ │ ├── local-vars.j2.tf │ │ ├── main.j2.tf │ │ └── variables.j2.tf ├── azure │ ├── bootstrap │ │ ├── chart_values │ │ │ ├── coredns-config.yaml │ │ │ ├── ingress-nginx.j2.yaml │ │ │ ├── kube-prometheus-stack.yaml │ │ │ └── q-storageclass.yaml │ │ ├── charts │ │ │ ├── coredns-config │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ └── configmap.yml │ │ │ │ └── values.yaml │ │ │ └── q-storageclass-azure │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ └── storageclass.yaml │ │ │ │ └── values.yaml │ │ └── terraform │ │ │ ├── README.md │ │ │ ├── aks-cluster.j2.tf │ │ │ ├── backend.j2.tf │ │ │ ├── iam.j2.tf │ │ │ ├── networks.j2.tf │ │ │ ├── qovery-tf-output.j2.tf │ │ │ ├── resourcegroup.tf │ │ │ ├── storage-account.j2.tf │ │ │ ├── summary.md │ │ │ ├── tags-vars.j2.tf │ │ │ ├── tf-default-vars.j2.tf │ │ │ └── tf-providers.j2.tf │ └── chart_values │ │ ├── mongodb │ │ └── qovery-values.j2.yaml │ │ ├── mysql │ │ └── qovery-values.j2.yaml │ │ ├── postgresql │ │ └── qovery-values.j2.yaml │ │ └── redis │ │ └── qovery-values.j2.yaml ├── common │ ├── bootstrap │ │ ├── chart_values │ │ │ ├── cert-manager-configs.yaml │ │ │ ├── cert-manager.yaml │ │ │ ├── external-dns.yaml │ │ │ ├── grafana.yaml │ │ │ ├── kube-state-metrics.yaml │ │ │ ├── loki.yaml │ │ │ ├── loki_with_karpenter.yaml │ │ │ ├── metrics-server.yaml │ │ │ ├── prometheus-adapter-with-karpenter.yaml │ │ │ ├── prometheus-adapter.yaml │ │ │ ├── promtail.yaml │ │ │ ├── promtail_with_karpenter.yaml │ │ │ ├── qovery-cert-manager-webhook.yaml │ │ │ ├── qovery-cluster-agent.yaml │ │ │ ├── qovery-priority-class.yaml │ │ │ └── vertical-pod-autoscaler.yaml │ │ └── charts │ │ │ ├── cert-manager-configs │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── certificate.yaml │ │ │ │ ├── clusterissuer.yaml │ │ │ │ └── secret.yaml │ │ │ └── values.yaml │ │ │ ├── cert-manager │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── cainjector-config.yaml │ │ │ │ ├── cainjector-deployment.yaml │ │ │ │ ├── cainjector-poddisruptionbudget.yaml │ │ │ │ ├── cainjector-psp-clusterrole.yaml │ │ │ │ ├── cainjector-psp-clusterrolebinding.yaml │ │ │ │ ├── cainjector-psp.yaml │ │ │ │ ├── cainjector-rbac.yaml │ │ │ │ ├── cainjector-serviceaccount.yaml │ │ │ │ ├── controller-config.yaml │ │ │ │ ├── crds.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── extras-objects.yaml │ │ │ │ ├── networkpolicy-egress.yaml │ │ │ │ ├── networkpolicy-webhooks.yaml │ │ │ │ ├── poddisruptionbudget.yaml │ │ │ │ ├── podmonitor.yaml │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ ├── psp.yaml │ │ │ │ ├── rbac.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ ├── startupapicheck-job.yaml │ │ │ │ ├── startupapicheck-psp-clusterrole.yaml │ │ │ │ ├── startupapicheck-psp-clusterrolebinding.yaml │ │ │ │ ├── startupapicheck-psp.yaml │ │ │ │ ├── startupapicheck-rbac.yaml │ │ │ │ ├── startupapicheck-serviceaccount.yaml │ │ │ │ ├── webhook-config.yaml │ │ │ │ ├── webhook-deployment.yaml │ │ │ │ ├── webhook-mutating-webhook.yaml │ │ │ │ ├── webhook-poddisruptionbudget.yaml │ │ │ │ ├── webhook-psp-clusterrole.yaml │ │ │ │ ├── webhook-psp-clusterrolebinding.yaml │ │ │ │ ├── webhook-psp.yaml │ │ │ │ ├── webhook-rbac.yaml │ │ │ │ ├── webhook-service.yaml │ │ │ │ ├── webhook-serviceaccount.yaml │ │ │ │ └── webhook-validating-webhook.yaml │ │ │ └── values.yaml │ │ │ ├── datadog │ │ │ ├── .helmignore │ │ │ ├── CHANGELOG.md │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── README.md.gotmpl │ │ │ ├── charts │ │ │ │ ├── datadog-crds │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── CHANGELOG.md │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── README.md.gotmpl │ │ │ │ │ ├── ci │ │ │ │ │ │ └── kubeval.yaml │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ │ ├── datadoghq.com_datadogagents_v1.yaml │ │ │ │ │ │ ├── datadoghq.com_datadogagents_v1beta1.yaml │ │ │ │ │ │ ├── datadoghq.com_datadogmetrics_v1.yaml │ │ │ │ │ │ ├── datadoghq.com_datadogmetrics_v1beta1.yaml │ │ │ │ │ │ ├── datadoghq.com_datadogmonitors_v1.yaml │ │ │ │ │ │ └── datadoghq.com_datadogmonitors_v1beta1.yaml │ │ │ │ │ ├── update-crds.sh │ │ │ │ │ └── values.yaml │ │ │ │ └── kube-state-metrics │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── OWNERS │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── kubeconfig-secret.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ ├── role.yaml │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── stsdiscovery-role.yaml │ │ │ │ │ └── stsdiscovery-rolebinding.yaml │ │ │ │ │ └── values.yaml │ │ │ ├── ci │ │ │ │ ├── agent-with-dynamic-annotations-values.yaml │ │ │ │ ├── cluster-agent-advanced-confd.yaml │ │ │ │ ├── cluster-agent-and-worker-with-dedicated-rbac-values.yaml │ │ │ │ ├── cluster-agent-metrics-server-service-port-values.yaml │ │ │ │ ├── cluster-agent-values.yaml │ │ │ │ ├── cluster-agent-with-dynamic-annotations-values.yaml │ │ │ │ ├── default-values.yaml │ │ │ │ ├── disable-apparmor-values.yaml │ │ │ │ ├── dogstastd-socket-values.yaml │ │ │ │ ├── gke-autopilot-values.yaml │ │ │ │ ├── kubeval.yaml │ │ │ │ ├── network-policy-values.yaml │ │ │ │ ├── no_hardened_seccomp-values.yaml │ │ │ │ ├── psp-test-values.yaml │ │ │ │ ├── security-agent-compliance-values.yaml │ │ │ │ └── securitycontext-nil-values.yaml │ │ │ ├── docs │ │ │ │ └── Migration_1.x_to_2.x.md │ │ │ ├── requirements.lock │ │ │ ├── requirements.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _container-agent.yaml │ │ │ │ ├── _container-cri-volumemounts.yaml │ │ │ │ ├── _container-process-agent.yaml │ │ │ │ ├── _container-security-agent.yaml │ │ │ │ ├── _container-system-probe.yaml │ │ │ │ ├── _container-trace-agent.yaml │ │ │ │ ├── _containers-common-env.yaml │ │ │ │ ├── _containers-init-linux.yaml │ │ │ │ ├── _containers-init-windows.yaml │ │ │ │ ├── _daemonset-volumes-linux.yaml │ │ │ │ ├── _daemonset-volumes-windows.yaml │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── _system-probe-init.yaml │ │ │ │ ├── agent-apiservice.yaml │ │ │ │ ├── agent-cilium-network-policy.yaml │ │ │ │ ├── agent-clusterchecks-cilium-network-policy.yaml │ │ │ │ ├── agent-clusterchecks-deployment.yaml │ │ │ │ ├── agent-clusterchecks-network-policy.yaml │ │ │ │ ├── agent-clusterchecks-pdb.yaml │ │ │ │ ├── agent-clusterchecks-rbac.yaml │ │ │ │ ├── agent-network-policy.yaml │ │ │ │ ├── agent-psp.yaml │ │ │ │ ├── agent-scc.yaml │ │ │ │ ├── agent-services.yaml │ │ │ │ ├── checksd-configmap.yaml │ │ │ │ ├── cluster-agent-advanced-confd-configmap.yaml │ │ │ │ ├── cluster-agent-cilium-network-policy.yaml │ │ │ │ ├── cluster-agent-confd-configmap.yaml │ │ │ │ ├── cluster-agent-config-configmap.yaml │ │ │ │ ├── cluster-agent-deployment.yaml │ │ │ │ ├── cluster-agent-network-policy.yaml │ │ │ │ ├── cluster-agent-pdb.yaml │ │ │ │ ├── cluster-agent-psp.yaml │ │ │ │ ├── cluster-agent-rbac.yaml │ │ │ │ ├── cluster-agent-scc.yaml │ │ │ │ ├── confd-configmap.yaml │ │ │ │ ├── daemonset.yaml │ │ │ │ ├── datadog-yaml-configmap.yaml │ │ │ │ ├── hpa-external-metrics-rbac.yaml │ │ │ │ ├── install_info-configmap.yaml │ │ │ │ ├── kube-state-metrics-cilium-network-policy.yaml │ │ │ │ ├── kube-state-metrics-network-policy.yaml │ │ │ │ ├── rbac.yaml │ │ │ │ ├── secret-api-key.yaml │ │ │ │ ├── secret-application-key.yaml │ │ │ │ ├── secret-cluster-agent-token.yaml │ │ │ │ └── system-probe-configmap.yaml │ │ │ └── values.yaml │ │ │ ├── external-dns │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ └── common │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ ├── _affinities.tpl │ │ │ │ │ ├── _capabilities.tpl │ │ │ │ │ ├── _compatibility.tpl │ │ │ │ │ ├── _errors.tpl │ │ │ │ │ ├── _images.tpl │ │ │ │ │ ├── _ingress.tpl │ │ │ │ │ ├── _labels.tpl │ │ │ │ │ ├── _names.tpl │ │ │ │ │ ├── _resources.tpl │ │ │ │ │ ├── _secrets.tpl │ │ │ │ │ ├── _storage.tpl │ │ │ │ │ ├── _tplvalues.tpl │ │ │ │ │ ├── _utils.tpl │ │ │ │ │ ├── _warnings.tpl │ │ │ │ │ └── validations │ │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ │ └── _validations.tpl │ │ │ │ │ └── values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── configmap.yaml │ │ │ │ ├── crds │ │ │ │ │ └── crd.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── extra-list.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── podmonitor.yaml │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ ├── psp.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebindings.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ └── tls-secret.yaml │ │ │ └── values.yaml │ │ │ ├── external-name-svc │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ └── external-name-service.yaml │ │ │ └── values.yaml │ │ │ ├── grafana │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── ci │ │ │ │ ├── default-values.yaml │ │ │ │ ├── with-dashboard-json-values.yaml │ │ │ │ ├── with-dashboard-values.yaml │ │ │ │ └── with-image-renderer-values.yaml │ │ │ ├── dashboards │ │ │ │ ├── cert-manager.json │ │ │ │ ├── detailed-pods-resources.json │ │ │ │ ├── kubernetes-cluster.json │ │ │ │ └── node-exporter.json │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── _pod.tpl │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── configmap-dashboard-provider.yaml │ │ │ │ ├── configmap.yaml │ │ │ │ ├── dashboards-json-configmap.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── headless-service.yaml │ │ │ │ ├── hpa.yaml │ │ │ │ ├── image-renderer-deployment.yaml │ │ │ │ ├── image-renderer-network-policy.yaml │ │ │ │ ├── image-renderer-service.yaml │ │ │ │ ├── ingress.yaml │ │ │ │ ├── poddisruptionbudget.yaml │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ ├── pvc.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── secret-env.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ └── tests │ │ │ │ │ ├── test-configmap.yaml │ │ │ │ │ ├── test-podsecuritypolicy.yaml │ │ │ │ │ ├── test-role.yaml │ │ │ │ │ ├── test-rolebinding.yaml │ │ │ │ │ ├── test-serviceaccount.yaml │ │ │ │ │ └── test.yaml │ │ │ └── values.yaml │ │ │ ├── ingress-nginx │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── OWNERS │ │ │ ├── README.md │ │ │ ├── README.md.gotmpl │ │ │ ├── changelog │ │ │ │ ├── helm-chart-2.10.0.md │ │ │ │ ├── helm-chart-2.11.0.md │ │ │ │ ├── helm-chart-2.11.1.md │ │ │ │ ├── helm-chart-2.11.2.md │ │ │ │ ├── helm-chart-2.11.3.md │ │ │ │ ├── helm-chart-2.12.0.md │ │ │ │ ├── helm-chart-2.12.1.md │ │ │ │ ├── helm-chart-2.13.0.md │ │ │ │ ├── helm-chart-2.14.0.md │ │ │ │ ├── helm-chart-2.15.0.md │ │ │ │ ├── helm-chart-2.16.0.md │ │ │ │ ├── helm-chart-2.9.0.md │ │ │ │ ├── helm-chart-2.9.1.md │ │ │ │ ├── helm-chart-3.0.0.md │ │ │ │ ├── helm-chart-3.10.0.md │ │ │ │ ├── helm-chart-3.10.1.md │ │ │ │ ├── helm-chart-3.11.0.md │ │ │ │ ├── helm-chart-3.11.1.md │ │ │ │ ├── helm-chart-3.12.0.md │ │ │ │ ├── helm-chart-3.13.0.md │ │ │ │ ├── helm-chart-3.14.0.md │ │ │ │ ├── helm-chart-3.15.0.md │ │ │ │ ├── helm-chart-3.15.1.md │ │ │ │ ├── helm-chart-3.16.0.md │ │ │ │ ├── helm-chart-3.16.1.md │ │ │ │ ├── helm-chart-3.17.0.md │ │ │ │ ├── helm-chart-3.18.0.md │ │ │ │ ├── helm-chart-3.19.0.md │ │ │ │ ├── helm-chart-3.20.0.md │ │ │ │ ├── helm-chart-3.20.1.md │ │ │ │ ├── helm-chart-3.21.0.md │ │ │ │ ├── helm-chart-3.22.0.md │ │ │ │ ├── helm-chart-3.23.0.md │ │ │ │ ├── helm-chart-3.24.0.md │ │ │ │ ├── helm-chart-3.25.0.md │ │ │ │ ├── helm-chart-3.26.0.md │ │ │ │ ├── helm-chart-3.27.0.md │ │ │ │ ├── helm-chart-3.28.0.md │ │ │ │ ├── helm-chart-3.29.0.md │ │ │ │ ├── helm-chart-3.3.0.md │ │ │ │ ├── helm-chart-3.3.1.md │ │ │ │ ├── helm-chart-3.30.0.md │ │ │ │ ├── helm-chart-3.31.0.md │ │ │ │ ├── helm-chart-3.32.0.md │ │ │ │ ├── helm-chart-3.33.0.md │ │ │ │ ├── helm-chart-3.34.0.md │ │ │ │ ├── helm-chart-3.4.0.md │ │ │ │ ├── helm-chart-3.5.0.md │ │ │ │ ├── helm-chart-3.5.1.md │ │ │ │ ├── helm-chart-3.6.0.md │ │ │ │ ├── helm-chart-3.7.0.md │ │ │ │ ├── helm-chart-3.7.1.md │ │ │ │ ├── helm-chart-3.8.0.md │ │ │ │ ├── helm-chart-3.9.0.md │ │ │ │ ├── helm-chart-4.0.1.md │ │ │ │ ├── helm-chart-4.0.10.md │ │ │ │ ├── helm-chart-4.0.11.md │ │ │ │ ├── helm-chart-4.0.12.md │ │ │ │ ├── helm-chart-4.0.13.md │ │ │ │ ├── helm-chart-4.0.14.md │ │ │ │ ├── helm-chart-4.0.15.md │ │ │ │ ├── helm-chart-4.0.18.md │ │ │ │ ├── helm-chart-4.0.2.md │ │ │ │ ├── helm-chart-4.0.3.md │ │ │ │ ├── helm-chart-4.0.5.md │ │ │ │ ├── helm-chart-4.0.6.md │ │ │ │ ├── helm-chart-4.0.7.md │ │ │ │ ├── helm-chart-4.0.9.md │ │ │ │ ├── helm-chart-4.1.0.md │ │ │ │ ├── helm-chart-4.1.2.md │ │ │ │ ├── helm-chart-4.10.0.md │ │ │ │ ├── helm-chart-4.10.1.md │ │ │ │ ├── helm-chart-4.10.2.md │ │ │ │ ├── helm-chart-4.11.0.md │ │ │ │ ├── helm-chart-4.11.1.md │ │ │ │ ├── helm-chart-4.11.2.md │ │ │ │ ├── helm-chart-4.11.3.md │ │ │ │ ├── helm-chart-4.11.4.md │ │ │ │ ├── helm-chart-4.11.5.md │ │ │ │ ├── helm-chart-4.2.0.md │ │ │ │ ├── helm-chart-4.2.1.md │ │ │ │ ├── helm-chart-4.3.0.md │ │ │ │ ├── helm-chart-4.4.0.md │ │ │ │ ├── helm-chart-4.5.2.md │ │ │ │ ├── helm-chart-4.6.0.md │ │ │ │ ├── helm-chart-4.6.1.md │ │ │ │ ├── helm-chart-4.7.0.md │ │ │ │ ├── helm-chart-4.7.1.md │ │ │ │ ├── helm-chart-4.7.2.md │ │ │ │ ├── helm-chart-4.8.0-beta.0.md │ │ │ │ ├── helm-chart-4.8.0.md │ │ │ │ ├── helm-chart-4.8.1.md │ │ │ │ ├── helm-chart-4.8.2.md │ │ │ │ ├── helm-chart-4.8.3.md │ │ │ │ ├── helm-chart-4.9.0.md │ │ │ │ ├── helm-chart-4.9.1.md │ │ │ │ └── helm-chart.md.gotmpl │ │ │ ├── ci │ │ │ │ ├── admission-webhooks-cert-manager-values.yaml │ │ │ │ ├── controller-configmap-addheaders-values.yaml │ │ │ │ ├── controller-configmap-proxyheaders-values.yaml │ │ │ │ ├── controller-configmap-values.yaml │ │ │ │ ├── controller-daemonset-extra-modules-values.yaml │ │ │ │ ├── controller-daemonset-metrics-values.yaml │ │ │ │ ├── controller-daemonset-opentelemetry-values.yaml │ │ │ │ ├── controller-daemonset-podannotations-values.yaml │ │ │ │ ├── controller-daemonset-values.yaml │ │ │ │ ├── controller-deployment-extra-modules-values.yaml │ │ │ │ ├── controller-deployment-metrics-values.yaml │ │ │ │ ├── controller-deployment-opentelemetry-values.yaml │ │ │ │ ├── controller-deployment-podannotations-values.yaml │ │ │ │ ├── controller-deployment-values.yaml │ │ │ │ ├── controller-hpa-values.yaml │ │ │ │ ├── controller-ingressclass-values.yaml │ │ │ │ ├── controller-service-internal-values.yaml │ │ │ │ ├── controller-service-values.yaml │ │ │ │ ├── deamonset-psp-values.yaml │ │ │ │ ├── deamonset-webhook-and-psp-values.yaml │ │ │ │ ├── deployment-psp-values.yaml │ │ │ │ └── deployment-webhook-and-psp-values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── _params.tpl │ │ │ │ ├── admission-webhooks │ │ │ │ │ ├── cert-manager.yaml │ │ │ │ │ ├── job-patch │ │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ │ ├── job-createSecret.yaml │ │ │ │ │ │ ├── job-patchWebhook.yaml │ │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ │ ├── psp.yaml │ │ │ │ │ │ ├── role.yaml │ │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ │ └── serviceaccount.yaml │ │ │ │ │ └── validating-webhook.yaml │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── controller-configmap-addheaders.yaml │ │ │ │ ├── controller-configmap-proxyheaders.yaml │ │ │ │ ├── controller-configmap-tcp.yaml │ │ │ │ ├── controller-configmap-udp.yaml │ │ │ │ ├── controller-configmap.yaml │ │ │ │ ├── controller-daemonset.yaml │ │ │ │ ├── controller-deployment.yaml │ │ │ │ ├── controller-hpa.yaml │ │ │ │ ├── controller-ingressclass-aliases.yaml │ │ │ │ ├── controller-ingressclass.yaml │ │ │ │ ├── controller-keda.yaml │ │ │ │ ├── controller-networkpolicy.yaml │ │ │ │ ├── controller-poddisruptionbudget.yaml │ │ │ │ ├── controller-prometheusrule.yaml │ │ │ │ ├── controller-psp.yaml │ │ │ │ ├── controller-role.yaml │ │ │ │ ├── controller-rolebinding.yaml │ │ │ │ ├── controller-secret.yaml │ │ │ │ ├── controller-service-internal.yaml │ │ │ │ ├── controller-service-metrics.yaml │ │ │ │ ├── controller-service-webhook.yaml │ │ │ │ ├── controller-service.yaml │ │ │ │ ├── controller-serviceaccount.yaml │ │ │ │ ├── controller-servicemonitor.yaml │ │ │ │ ├── default-backend-deployment.yaml │ │ │ │ ├── default-backend-extra-configmaps.yaml │ │ │ │ ├── default-backend-hpa.yaml │ │ │ │ ├── default-backend-networkpolicy.yaml │ │ │ │ ├── default-backend-poddisruptionbudget.yaml │ │ │ │ ├── default-backend-psp.yaml │ │ │ │ ├── default-backend-role.yaml │ │ │ │ ├── default-backend-rolebinding.yaml │ │ │ │ ├── default-backend-service.yaml │ │ │ │ └── default-backend-serviceaccount.yaml │ │ │ ├── tests │ │ │ │ ├── admission-webhooks │ │ │ │ │ ├── job-patch │ │ │ │ │ │ ├── clusterrole_test.yaml │ │ │ │ │ │ ├── clusterrolebinding_test.yaml │ │ │ │ │ │ ├── role_test.yaml │ │ │ │ │ │ ├── rolebinding_test.yaml │ │ │ │ │ │ └── serviceaccount_test.yaml │ │ │ │ │ └── validating-webhook_test.yaml │ │ │ │ ├── controller-configmap-addheaders_test.yaml │ │ │ │ ├── controller-configmap-proxyheaders_test.yaml │ │ │ │ ├── controller-configmap_test.yaml │ │ │ │ ├── controller-daemonset_test.yaml │ │ │ │ ├── controller-deployment_test.yaml │ │ │ │ ├── controller-hpa_test.yaml │ │ │ │ ├── controller-ingressclass-aliases_test.yaml │ │ │ │ ├── controller-ingressclass_test.yaml │ │ │ │ ├── controller-keda_test.yaml │ │ │ │ ├── controller-networkpolicy_test.yaml │ │ │ │ ├── controller-poddisruptionbudget_test.yaml │ │ │ │ ├── controller-prometheusrule_test.yaml │ │ │ │ ├── controller-service-internal_test.yaml │ │ │ │ ├── controller-service-metrics_test.yaml │ │ │ │ ├── controller-service-webhook_test.yaml │ │ │ │ ├── controller-service_test.yaml │ │ │ │ ├── controller-serviceaccount_test.yaml │ │ │ │ ├── controller-servicemonitor_test.yaml │ │ │ │ ├── default-backend-deployment_test.yaml │ │ │ │ ├── default-backend-extra-configmaps_test.yaml │ │ │ │ ├── default-backend-poddisruptionbudget_test.yaml │ │ │ │ ├── default-backend-service_test.yaml │ │ │ │ └── default-backend-serviceaccount_test.yaml │ │ │ └── values.yaml │ │ │ ├── k8s-event-logger │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── LICENSE │ │ │ ├── README.md │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── kube-prometheus-stack │ │ │ ├── .editorconfig │ │ │ ├── .helmignore │ │ │ ├── CONTRIBUTING.md │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ ├── crds │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ └── crds │ │ │ │ │ │ ├── crd-alertmanagerconfigs.yaml │ │ │ │ │ │ ├── crd-alertmanagers.yaml │ │ │ │ │ │ ├── crd-podmonitors.yaml │ │ │ │ │ │ ├── crd-probes.yaml │ │ │ │ │ │ ├── crd-prometheusagents.yaml │ │ │ │ │ │ ├── crd-prometheuses.yaml │ │ │ │ │ │ ├── crd-prometheusrules.yaml │ │ │ │ │ │ ├── crd-scrapeconfigs.yaml │ │ │ │ │ │ ├── crd-servicemonitors.yaml │ │ │ │ │ │ └── crd-thanosrulers.yaml │ │ │ │ ├── grafana │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── ci │ │ │ │ │ │ ├── default-values.yaml │ │ │ │ │ │ ├── with-affinity-values.yaml │ │ │ │ │ │ ├── with-dashboard-json-values.yaml │ │ │ │ │ │ ├── with-dashboard-values.yaml │ │ │ │ │ │ ├── with-extraconfigmapmounts-values.yaml │ │ │ │ │ │ ├── with-image-renderer-values.yaml │ │ │ │ │ │ ├── with-nondefault-values.yaml │ │ │ │ │ │ ├── with-persistence.yaml │ │ │ │ │ │ └── with-sidecars-envvaluefrom-values.yaml │ │ │ │ │ ├── dashboards │ │ │ │ │ │ └── custom-dashboard.json │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _config.tpl │ │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ │ ├── _pod.tpl │ │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ │ ├── configSecret.yaml │ │ │ │ │ │ ├── configmap-dashboard-provider.yaml │ │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ │ ├── dashboards-json-configmap.yaml │ │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ │ ├── extra-manifests.yaml │ │ │ │ │ │ ├── headless-service.yaml │ │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ │ ├── image-renderer-deployment.yaml │ │ │ │ │ │ ├── image-renderer-hpa.yaml │ │ │ │ │ │ ├── image-renderer-network-policy.yaml │ │ │ │ │ │ ├── image-renderer-service.yaml │ │ │ │ │ │ ├── image-renderer-servicemonitor.yaml │ │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ │ ├── poddisruptionbudget.yaml │ │ │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ │ │ ├── pvc.yaml │ │ │ │ │ │ ├── role.yaml │ │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ │ ├── route.yaml │ │ │ │ │ │ ├── secret-env.yaml │ │ │ │ │ │ ├── secret.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ │ ├── statefulset.yaml │ │ │ │ │ │ └── tests │ │ │ │ │ │ │ ├── test-configmap.yaml │ │ │ │ │ │ │ ├── test-podsecuritypolicy.yaml │ │ │ │ │ │ │ ├── test-role.yaml │ │ │ │ │ │ │ ├── test-rolebinding.yaml │ │ │ │ │ │ │ ├── test-serviceaccount.yaml │ │ │ │ │ │ │ └── test.yaml │ │ │ │ │ └── values.yaml │ │ │ │ ├── kube-state-metrics │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ │ ├── ciliumnetworkpolicy.yaml │ │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ │ ├── crs-configmap.yaml │ │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ │ ├── extra-manifests.yaml │ │ │ │ │ │ ├── kubeconfig-secret.yaml │ │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ │ ├── rbac-configmap.yaml │ │ │ │ │ │ ├── role.yaml │ │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ │ ├── stsdiscovery-role.yaml │ │ │ │ │ │ ├── stsdiscovery-rolebinding.yaml │ │ │ │ │ │ └── verticalpodautoscaler.yaml │ │ │ │ │ └── values.yaml │ │ │ │ ├── prometheus-node-exporter │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── ci │ │ │ │ │ │ ├── common-labels-values.yaml │ │ │ │ │ │ ├── default-values.yaml │ │ │ │ │ │ ├── kube-rbac-proxy-tlssecret-values.yaml │ │ │ │ │ │ ├── networkpolicy-values.yaml │ │ │ │ │ │ ├── pod-labels-values.yaml │ │ │ │ │ │ ├── port-values.yaml │ │ │ │ │ │ ├── service-labels-values.yaml │ │ │ │ │ │ └── serviceport-values.yaml │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ │ ├── daemonset.yaml │ │ │ │ │ │ ├── endpoints.yaml │ │ │ │ │ │ ├── extra-manifests.yaml │ │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ │ ├── podmonitor.yaml │ │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ │ ├── psp.yaml │ │ │ │ │ │ ├── rbac-configmap.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ │ └── verticalpodautoscaler.yaml │ │ │ │ │ └── values.yaml │ │ │ │ └── prometheus-windows-exporter │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── config.yaml │ │ │ │ │ ├── daemonset.yaml │ │ │ │ │ ├── podmonitor.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ └── values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── alertmanager │ │ │ │ │ ├── alertmanager.yaml │ │ │ │ │ ├── extrasecret.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── ingressperreplica.yaml │ │ │ │ │ ├── podDisruptionBudget.yaml │ │ │ │ │ ├── psp-role.yaml │ │ │ │ │ ├── psp-rolebinding.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── route.yaml │ │ │ │ │ ├── secret.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── serviceperreplica.yaml │ │ │ │ ├── exporters │ │ │ │ │ ├── core-dns │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-api-server │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-controller-manager │ │ │ │ │ │ ├── endpoints.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-dns │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-etcd │ │ │ │ │ │ ├── endpoints.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-proxy │ │ │ │ │ │ ├── endpoints.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ ├── kube-scheduler │ │ │ │ │ │ ├── endpoints.yaml │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ │ └── kubelet │ │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ ├── extra-objects.yaml │ │ │ │ ├── grafana │ │ │ │ │ ├── configmap-dashboards.yaml │ │ │ │ │ ├── configmaps-datasources.yaml │ │ │ │ │ └── dashboards-1.14 │ │ │ │ │ │ ├── alertmanager-overview.yaml │ │ │ │ │ │ ├── apiserver.yaml │ │ │ │ │ │ ├── cluster-total.yaml │ │ │ │ │ │ ├── controller-manager.yaml │ │ │ │ │ │ ├── etcd.yaml │ │ │ │ │ │ ├── grafana-overview.yaml │ │ │ │ │ │ ├── k8s-coredns.yaml │ │ │ │ │ │ ├── k8s-resources-cluster.yaml │ │ │ │ │ │ ├── k8s-resources-multicluster.yaml │ │ │ │ │ │ ├── k8s-resources-namespace.yaml │ │ │ │ │ │ ├── k8s-resources-node.yaml │ │ │ │ │ │ ├── k8s-resources-pod.yaml │ │ │ │ │ │ ├── k8s-resources-windows-cluster.yaml │ │ │ │ │ │ ├── k8s-resources-windows-namespace.yaml │ │ │ │ │ │ ├── k8s-resources-windows-pod.yaml │ │ │ │ │ │ ├── k8s-resources-workload.yaml │ │ │ │ │ │ ├── k8s-resources-workloads-namespace.yaml │ │ │ │ │ │ ├── k8s-windows-cluster-rsrc-use.yaml │ │ │ │ │ │ ├── k8s-windows-node-rsrc-use.yaml │ │ │ │ │ │ ├── kubelet.yaml │ │ │ │ │ │ ├── namespace-by-pod.yaml │ │ │ │ │ │ ├── namespace-by-workload.yaml │ │ │ │ │ │ ├── node-cluster-rsrc-use.yaml │ │ │ │ │ │ ├── node-rsrc-use.yaml │ │ │ │ │ │ ├── nodes-aix.yaml │ │ │ │ │ │ ├── nodes-darwin.yaml │ │ │ │ │ │ ├── nodes.yaml │ │ │ │ │ │ ├── persistentvolumesusage.yaml │ │ │ │ │ │ ├── pod-total.yaml │ │ │ │ │ │ ├── prometheus-remote-write.yaml │ │ │ │ │ │ ├── prometheus.yaml │ │ │ │ │ │ ├── proxy.yaml │ │ │ │ │ │ ├── scheduler.yaml │ │ │ │ │ │ └── workload-total.yaml │ │ │ │ ├── prometheus-operator │ │ │ │ │ ├── _prometheus-operator.tpl │ │ │ │ │ ├── admission-webhooks │ │ │ │ │ │ ├── _prometheus-operator-webhook.tpl │ │ │ │ │ │ ├── deployment │ │ │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ │ │ ├── service.yaml │ │ │ │ │ │ │ └── serviceaccount.yaml │ │ │ │ │ │ ├── job-patch │ │ │ │ │ │ │ ├── ciliumnetworkpolicy-createSecret.yaml │ │ │ │ │ │ │ ├── ciliumnetworkpolicy-patchWebhook.yaml │ │ │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ │ │ ├── job-createSecret.yaml │ │ │ │ │ │ │ ├── job-patchWebhook.yaml │ │ │ │ │ │ │ ├── networkpolicy-createSecret.yaml │ │ │ │ │ │ │ ├── networkpolicy-patchWebhook.yaml │ │ │ │ │ │ │ ├── psp.yaml │ │ │ │ │ │ │ ├── role.yaml │ │ │ │ │ │ │ ├── rolebinding.yaml │ │ │ │ │ │ │ └── serviceaccount.yaml │ │ │ │ │ │ ├── mutatingWebhookConfiguration.yaml │ │ │ │ │ │ └── validatingWebhookConfiguration.yaml │ │ │ │ │ ├── aggregate-clusterroles.yaml │ │ │ │ │ ├── certmanager.yaml │ │ │ │ │ ├── ciliumnetworkpolicy.yaml │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── verticalpodautoscaler.yaml │ │ │ │ ├── prometheus │ │ │ │ │ ├── _rules.tpl │ │ │ │ │ ├── additionalAlertRelabelConfigs.yaml │ │ │ │ │ ├── additionalAlertmanagerConfigs.yaml │ │ │ │ │ ├── additionalPrometheusRules.yaml │ │ │ │ │ ├── additionalScrapeConfigs.yaml │ │ │ │ │ ├── ciliumnetworkpolicy.yaml │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── csi-secret.yaml │ │ │ │ │ ├── extrasecret.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── ingressThanosSidecar.yaml │ │ │ │ │ ├── ingressperreplica.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── podDisruptionBudget.yaml │ │ │ │ │ ├── podmonitors.yaml │ │ │ │ │ ├── prometheus.yaml │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── route.yaml │ │ │ │ │ ├── rules-1.14 │ │ │ │ │ │ ├── alertmanager.rules.yaml │ │ │ │ │ │ ├── config-reloaders.yaml │ │ │ │ │ │ ├── etcd.yaml │ │ │ │ │ │ ├── general.rules.yaml │ │ │ │ │ │ ├── k8s.rules.container_cpu_limits.yaml │ │ │ │ │ │ ├── k8s.rules.container_cpu_requests.yaml │ │ │ │ │ │ ├── k8s.rules.container_cpu_usage_seconds_total.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_cache.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_limits.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_requests.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_rss.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_swap.yaml │ │ │ │ │ │ ├── k8s.rules.container_memory_working_set_bytes.yaml │ │ │ │ │ │ ├── k8s.rules.container_resource.yaml │ │ │ │ │ │ ├── k8s.rules.pod_owner.yaml │ │ │ │ │ │ ├── kube-apiserver-availability.rules.yaml │ │ │ │ │ │ ├── kube-apiserver-burnrate.rules.yaml │ │ │ │ │ │ ├── kube-apiserver-histogram.rules.yaml │ │ │ │ │ │ ├── kube-apiserver-slos.yaml │ │ │ │ │ │ ├── kube-prometheus-general.rules.yaml │ │ │ │ │ │ ├── kube-prometheus-node-recording.rules.yaml │ │ │ │ │ │ ├── kube-scheduler.rules.yaml │ │ │ │ │ │ ├── kube-state-metrics.yaml │ │ │ │ │ │ ├── kubelet.rules.yaml │ │ │ │ │ │ ├── kubernetes-apps.yaml │ │ │ │ │ │ ├── kubernetes-resources.yaml │ │ │ │ │ │ ├── kubernetes-storage.yaml │ │ │ │ │ │ ├── kubernetes-system-apiserver.yaml │ │ │ │ │ │ ├── kubernetes-system-controller-manager.yaml │ │ │ │ │ │ ├── kubernetes-system-kube-proxy.yaml │ │ │ │ │ │ ├── kubernetes-system-kubelet.yaml │ │ │ │ │ │ ├── kubernetes-system-scheduler.yaml │ │ │ │ │ │ ├── kubernetes-system.yaml │ │ │ │ │ │ ├── node-exporter.rules.yaml │ │ │ │ │ │ ├── node-exporter.yaml │ │ │ │ │ │ ├── node-network.yaml │ │ │ │ │ │ ├── node.rules.yaml │ │ │ │ │ │ ├── prometheus-operator.yaml │ │ │ │ │ │ ├── prometheus.yaml │ │ │ │ │ │ ├── windows.node.rules.yaml │ │ │ │ │ │ └── windows.pod.rules.yaml │ │ │ │ │ ├── secret.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceThanosSidecar.yaml │ │ │ │ │ ├── serviceThanosSidecarExternal.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── servicemonitorThanosSidecar.yaml │ │ │ │ │ ├── servicemonitors.yaml │ │ │ │ │ └── serviceperreplica.yaml │ │ │ │ └── thanos-ruler │ │ │ │ │ ├── extrasecret.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── podDisruptionBudget.yaml │ │ │ │ │ ├── route.yaml │ │ │ │ │ ├── ruler.yaml │ │ │ │ │ ├── secret.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ └── values.yaml │ │ │ ├── kube-state-metrics │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── ciliumnetworkpolicy.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── crs-configmap.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── extra-manifests.yaml │ │ │ │ ├── kubeconfig-secret.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ ├── rbac-configmap.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ ├── stsdiscovery-role.yaml │ │ │ │ ├── stsdiscovery-rolebinding.yaml │ │ │ │ └── verticalpodautoscaler.yaml │ │ │ └── values.yaml │ │ │ ├── loki │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── Makefile │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ ├── grafana-agent-operator │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── README.md.gotmpl │ │ │ │ │ ├── crds │ │ │ │ │ │ ├── monitoring.coreos.com_podmonitors.yaml │ │ │ │ │ │ ├── monitoring.coreos.com_probes.yaml │ │ │ │ │ │ ├── monitoring.coreos.com_servicemonitors.yaml │ │ │ │ │ │ ├── monitoring.grafana.com_grafanaagents.yaml │ │ │ │ │ │ ├── monitoring.grafana.com_integrations.yaml │ │ │ │ │ │ ├── monitoring.grafana.com_logsinstances.yaml │ │ │ │ │ │ ├── monitoring.grafana.com_metricsinstances.yaml │ │ │ │ │ │ └── monitoring.grafana.com_podlogs.yaml │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ │ ├── operator-clusterrole.yaml │ │ │ │ │ │ ├── operator-clusterrolebinding.yaml │ │ │ │ │ │ ├── operator-deployment.yaml │ │ │ │ │ │ ├── operator-serviceaccount.yaml │ │ │ │ │ │ └── tests │ │ │ │ │ │ │ └── test-grafanaagent.yaml │ │ │ │ │ └── values.yaml │ │ │ │ └── minio │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ ├── _helper_create_bucket.txt │ │ │ │ │ ├── _helper_create_policy.txt │ │ │ │ │ ├── _helper_create_user.txt │ │ │ │ │ ├── _helper_custom_command.txt │ │ │ │ │ ├── _helper_policy.tpl │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── console-ingress.yaml │ │ │ │ │ ├── console-service.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── gateway-deployment.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── poddisruptionbudget.yaml │ │ │ │ │ ├── post-install-create-bucket-job.yaml │ │ │ │ │ ├── post-install-create-policy-job.yaml │ │ │ │ │ ├── post-install-create-user-job.yaml │ │ │ │ │ ├── post-install-custom-command.yaml │ │ │ │ │ ├── pvc.yaml │ │ │ │ │ ├── secrets.yaml │ │ │ │ │ ├── securitycontextconstraints.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── statefulset.yaml │ │ │ │ │ └── values.yaml │ │ │ ├── docs │ │ │ │ └── examples │ │ │ │ │ ├── README.md │ │ │ │ │ ├── enterprise │ │ │ │ │ ├── README.md │ │ │ │ │ ├── enterprise-secrets.yaml │ │ │ │ │ └── overrides-enterprise-gcs.yaml │ │ │ │ │ └── oss │ │ │ │ │ ├── README.md │ │ │ │ │ ├── oss-secrets.yaml │ │ │ │ │ └── overrides-oss-gcs.yaml │ │ │ ├── reference.md.gotmpl │ │ │ ├── src │ │ │ │ ├── .yamllint.yaml │ │ │ │ ├── alerts.yaml.tpl │ │ │ │ ├── dashboards │ │ │ │ │ ├── loki-chunks.json │ │ │ │ │ ├── loki-deletion.json │ │ │ │ │ ├── loki-logs.json │ │ │ │ │ ├── loki-mixin-recording-rules.json │ │ │ │ │ ├── loki-operational.json │ │ │ │ │ ├── loki-reads-resources.json │ │ │ │ │ ├── loki-reads.json │ │ │ │ │ ├── loki-retention.json │ │ │ │ │ ├── loki-writes-resources.json │ │ │ │ │ └── loki-writes.json │ │ │ │ ├── helm-test │ │ │ │ │ ├── README.md │ │ │ │ │ ├── canary_test.go │ │ │ │ │ └── default.nix │ │ │ │ └── rules.yaml.tpl │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── backend │ │ │ │ │ ├── _helpers-backend.tpl │ │ │ │ │ ├── clusterrole.yaml │ │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── poddisruptionbudget-backend.yaml │ │ │ │ │ ├── query-scheduler-discovery.yaml │ │ │ │ │ ├── service-backend-headless.yaml │ │ │ │ │ ├── service-backend.yaml │ │ │ │ │ └── statefulset-backend.yaml │ │ │ │ ├── ciliumnetworkpolicy.yaml │ │ │ │ ├── config.yaml │ │ │ │ ├── extra-manifests.yaml │ │ │ │ ├── gateway │ │ │ │ │ ├── _helpers-gateway.tpl │ │ │ │ │ ├── configmap-gateway.yaml │ │ │ │ │ ├── deployment-gateway.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress-gateway.yaml │ │ │ │ │ ├── poddisruptionbudget-gateway.yaml │ │ │ │ │ ├── secret-gateway.yaml │ │ │ │ │ └── service-gateway.yaml │ │ │ │ ├── ingress.yaml │ │ │ │ ├── loki-canary │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── daemonset.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ └── serviceaccount.yaml │ │ │ │ ├── monitoring │ │ │ │ │ ├── _helpers-monitoring.tpl │ │ │ │ │ ├── dashboards │ │ │ │ │ │ ├── _helpers-dashboards.tpl │ │ │ │ │ │ ├── configmap-1.yaml │ │ │ │ │ │ └── configmap-2.yaml │ │ │ │ │ ├── grafana-agent.yaml │ │ │ │ │ ├── logs-instance.yaml │ │ │ │ │ ├── loki-alerts.yaml │ │ │ │ │ ├── loki-rules.yaml │ │ │ │ │ ├── metrics-instance.yaml │ │ │ │ │ ├── pod-logs.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ ├── provisioner │ │ │ │ │ ├── _helpers.yaml │ │ │ │ │ ├── job-provisioner.yaml │ │ │ │ │ ├── role-provisioner.yaml │ │ │ │ │ ├── rolebinding-provisioner.yaml │ │ │ │ │ └── serviceaccount-provisioner.yaml │ │ │ │ ├── read │ │ │ │ │ ├── _helpers-read.tpl │ │ │ │ │ ├── deployment-read.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── poddisruptionbudget-read.yaml │ │ │ │ │ ├── service-read-headless.yaml │ │ │ │ │ ├── service-read.yaml │ │ │ │ │ └── statefulset-read.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── runtime-configmap.yaml │ │ │ │ ├── secret-license.yaml │ │ │ │ ├── securitycontextconstraints.yaml │ │ │ │ ├── service-memberlist.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── single-binary │ │ │ │ │ ├── _helpers-single-binary.tpl │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── service-headless.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ └── statefulset.yaml │ │ │ │ ├── table-manager │ │ │ │ │ ├── _helpers-table-manager.tpl │ │ │ │ │ ├── deployment-table-manager.yaml │ │ │ │ │ ├── service-table-manager.yaml │ │ │ │ │ └── servicemonitor-table-manager.yaml │ │ │ │ ├── tests │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ └── test-canary.yaml │ │ │ │ ├── tokengen │ │ │ │ │ ├── _helpers.yaml │ │ │ │ │ ├── clusterrole-tokengen.yaml │ │ │ │ │ ├── clusterrolebinding-tokengen.yaml │ │ │ │ │ ├── job-tokengen.yaml │ │ │ │ │ └── serviceaccount-tokengen.yaml │ │ │ │ ├── validate.yaml │ │ │ │ └── write │ │ │ │ │ ├── _helpers-write.tpl │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── poddisruptionbudget-write.yaml │ │ │ │ │ ├── service-write-headless.yaml │ │ │ │ │ ├── service-write.yaml │ │ │ │ │ └── statefulset-write.yaml │ │ │ └── values.yaml │ │ │ ├── metrics-server │ │ │ ├── .helmignore │ │ │ ├── CHANGELOG.md │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── RELEASE.md │ │ │ ├── ci │ │ │ │ └── ci-values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── apiservice.yaml │ │ │ │ ├── clusterrole-aggregated-reader.yaml │ │ │ │ ├── clusterrole-nanny.yaml │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding-auth-delegator.yaml │ │ │ │ ├── clusterrolebinding-nanny.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── configmaps-nanny.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── psp.yaml │ │ │ │ ├── role-nanny.yaml │ │ │ │ ├── rolebinding-nanny.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ └── servicemonitor.yaml │ │ │ └── values.yaml │ │ │ ├── prometheus-adapter │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── ci │ │ │ │ ├── default-values.yaml │ │ │ │ └── external-rules-values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── certmanager.yaml │ │ │ │ ├── cluster-role-binding-auth-delegator.yaml │ │ │ │ ├── cluster-role-binding-auth-reader.yaml │ │ │ │ ├── cluster-role-binding-resource-reader.yaml │ │ │ │ ├── cluster-role-resource-reader.yaml │ │ │ │ ├── configmap.yaml │ │ │ │ ├── custom-metrics-apiservice.yaml │ │ │ │ ├── custom-metrics-cluster-role-binding-hpa.yaml │ │ │ │ ├── custom-metrics-cluster-role.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── external-metrics-apiservice.yaml │ │ │ │ ├── external-metrics-cluster-role-binding-hpa.yaml │ │ │ │ ├── external-metrics-cluster-role.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── psp.yaml │ │ │ │ ├── resource-metrics-apiservice.yaml │ │ │ │ ├── resource-metrics-cluster-role-binding.yaml │ │ │ │ ├── resource-metrics-cluster-role.yaml │ │ │ │ ├── role-binding-auth-reader.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── prometheus-nginx-exporter │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ └── nginx │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.lock │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── charts │ │ │ │ │ └── common │ │ │ │ │ │ ├── .helmignore │ │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ │ ├── README.md │ │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _affinities.tpl │ │ │ │ │ │ ├── _capabilities.tpl │ │ │ │ │ │ ├── _errors.tpl │ │ │ │ │ │ ├── _images.tpl │ │ │ │ │ │ ├── _ingress.tpl │ │ │ │ │ │ ├── _labels.tpl │ │ │ │ │ │ ├── _names.tpl │ │ │ │ │ │ ├── _secrets.tpl │ │ │ │ │ │ ├── _storage.tpl │ │ │ │ │ │ ├── _tplvalues.tpl │ │ │ │ │ │ ├── _utils.tpl │ │ │ │ │ │ ├── _warnings.tpl │ │ │ │ │ │ └── validations │ │ │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ │ │ └── _validations.tpl │ │ │ │ │ │ └── values.yaml │ │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── extra-list.yaml │ │ │ │ │ ├── health-ingress.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── prometheusrules.yaml │ │ │ │ │ ├── server-block-configmap.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── svc.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ │ ├── values.schema.json │ │ │ │ │ └── values.yaml │ │ │ ├── ci │ │ │ │ └── ci-values.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── deployment.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ └── servicemonitor.yaml │ │ │ └── values.yaml │ │ │ ├── prometheus-operator-crds │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ └── crds │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ └── templates │ │ │ │ │ ├── crd-alertmanagerconfigs.yaml │ │ │ │ │ ├── crd-alertmanagers.yaml │ │ │ │ │ ├── crd-podmonitors.yaml │ │ │ │ │ ├── crd-probes.yaml │ │ │ │ │ ├── crd-prometheusagents.yaml │ │ │ │ │ ├── crd-prometheuses.yaml │ │ │ │ │ ├── crd-prometheusrules.yaml │ │ │ │ │ ├── crd-scrapeconfigs.yaml │ │ │ │ │ ├── crd-servicemonitors.yaml │ │ │ │ │ └── crd-thanosrulers.yaml │ │ │ ├── ci │ │ │ │ └── lint.sh │ │ │ ├── hack │ │ │ │ └── update_crds.sh │ │ │ └── values.yaml │ │ │ ├── promtail │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── README.md.gotmpl │ │ │ ├── ci │ │ │ │ ├── autoscaled-deployment-values.yaml │ │ │ │ ├── default-values.yaml │ │ │ │ ├── deployment-values.yaml │ │ │ │ ├── netpol-values.yaml │ │ │ │ └── service-values.yaml │ │ │ ├── templates │ │ │ │ ├── NOTES.txt │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── _pod.tpl │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── configmap.yaml │ │ │ │ ├── daemonset.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── extra-manifests.yaml │ │ │ │ ├── hpa.yaml │ │ │ │ ├── ingress.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── podsecuritypolicy.yaml │ │ │ │ ├── prometheus-rules.yaml │ │ │ │ ├── role.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service-extra.yaml │ │ │ │ ├── service-metrics.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ └── verticalpodautoscaler.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-cert-manager-webhook │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── apiservice.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── pki.yaml │ │ │ │ ├── rbac.yaml │ │ │ │ ├── secret-qovery-registry.yaml │ │ │ │ └── service.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-cluster-agent │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── admission-controller-webhook-configuration.yaml │ │ │ │ ├── certificate.yaml │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── secret-tls.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-engine │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── autoscaler.yaml │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── network-policies.yaml │ │ │ │ ├── overprovisionned-deploy.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── podmonitor.yaml │ │ │ │ ├── priotiyclass.yaml │ │ │ │ ├── secret.yaml │ │ │ │ ├── service.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-portal │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── configmap.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── ingress.yaml │ │ │ │ ├── oauthingress.yaml │ │ │ │ ├── service.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-priority-class │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ └── priorityclass.yaml │ │ │ └── values.yaml │ │ │ ├── qovery-shell-agent │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── debug_rbac.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── secret.yaml │ │ │ │ └── serviceaccount.yaml │ │ │ └── values.yaml │ │ │ ├── thanos │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── charts │ │ │ │ ├── common │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _affinities.tpl │ │ │ │ │ │ ├── _capabilities.tpl │ │ │ │ │ │ ├── _compatibility.tpl │ │ │ │ │ │ ├── _errors.tpl │ │ │ │ │ │ ├── _images.tpl │ │ │ │ │ │ ├── _ingress.tpl │ │ │ │ │ │ ├── _labels.tpl │ │ │ │ │ │ ├── _names.tpl │ │ │ │ │ │ ├── _resources.tpl │ │ │ │ │ │ ├── _secrets.tpl │ │ │ │ │ │ ├── _storage.tpl │ │ │ │ │ │ ├── _tplvalues.tpl │ │ │ │ │ │ ├── _utils.tpl │ │ │ │ │ │ ├── _warnings.tpl │ │ │ │ │ │ └── validations │ │ │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ │ │ └── _validations.tpl │ │ │ │ │ └── values.yaml │ │ │ │ └── minio │ │ │ │ │ ├── .helmignore │ │ │ │ │ ├── Chart.lock │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ ├── README.md │ │ │ │ │ ├── charts │ │ │ │ │ └── common │ │ │ │ │ │ ├── .helmignore │ │ │ │ │ │ ├── Chart.yaml │ │ │ │ │ │ ├── README.md │ │ │ │ │ │ ├── templates │ │ │ │ │ │ ├── _affinities.tpl │ │ │ │ │ │ ├── _capabilities.tpl │ │ │ │ │ │ ├── _compatibility.tpl │ │ │ │ │ │ ├── _errors.tpl │ │ │ │ │ │ ├── _images.tpl │ │ │ │ │ │ ├── _ingress.tpl │ │ │ │ │ │ ├── _labels.tpl │ │ │ │ │ │ ├── _names.tpl │ │ │ │ │ │ ├── _resources.tpl │ │ │ │ │ │ ├── _secrets.tpl │ │ │ │ │ │ ├── _storage.tpl │ │ │ │ │ │ ├── _tplvalues.tpl │ │ │ │ │ │ ├── _utils.tpl │ │ │ │ │ │ ├── _warnings.tpl │ │ │ │ │ │ └── validations │ │ │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ │ │ └── _validations.tpl │ │ │ │ │ │ └── values.yaml │ │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── api-ingress.yaml │ │ │ │ │ ├── distributed │ │ │ │ │ │ ├── headless-svc.yaml │ │ │ │ │ │ └── statefulset.yaml │ │ │ │ │ ├── extra-list.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── prometheusrule.yaml │ │ │ │ │ ├── provisioning-configmap.yaml │ │ │ │ │ ├── provisioning-job.yaml │ │ │ │ │ ├── provisioning-networkpolicy.yaml │ │ │ │ │ ├── pvc.yaml │ │ │ │ │ ├── secrets.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── standalone │ │ │ │ │ │ └── deployment.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ │ └── values.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── alert-rule │ │ │ │ │ ├── absent_rules.yml │ │ │ │ │ ├── compaction.yml │ │ │ │ │ ├── query.yml │ │ │ │ │ ├── receive.yml │ │ │ │ │ ├── replicate.yml │ │ │ │ │ ├── ruler.yml │ │ │ │ │ ├── sidecar.yml │ │ │ │ │ └── store_gateway.yml │ │ │ │ ├── bucketweb │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ ├── compactor │ │ │ │ │ ├── _pod-template.tpl │ │ │ │ │ ├── cronjob.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pvc.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ ├── extra-list.yaml │ │ │ │ ├── grpc-tls-secrets.yaml │ │ │ │ ├── http-certs-secret.yaml │ │ │ │ ├── httpconfig-secret.yaml │ │ │ │ ├── objstore-secret.yaml │ │ │ │ ├── prometheusrule.yaml │ │ │ │ ├── query-frontend │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ ├── query │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress-grpc.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── psp-clusterrole.yaml │ │ │ │ │ ├── psp-clusterrolebinding.yaml │ │ │ │ │ ├── psp.yaml │ │ │ │ │ ├── sd-configmap.yaml │ │ │ │ │ ├── service-grpc-headless.yaml │ │ │ │ │ ├── service-grpc.yaml │ │ │ │ │ ├── service-headless.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── tls-secrets-grpc.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ ├── receive-distributor │ │ │ │ │ ├── deployment.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ └── servicemonitor.yaml │ │ │ │ ├── receive │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── service-headless.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── statefulset.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ ├── ruler │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── secret.yaml │ │ │ │ │ ├── service-headless.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── statefulset.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ │ └── storegateway │ │ │ │ │ ├── configmap.yaml │ │ │ │ │ ├── hpa-sharded.yaml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ ├── ingress-grpc.yaml │ │ │ │ │ ├── ingress.yaml │ │ │ │ │ ├── networkpolicy.yaml │ │ │ │ │ ├── pdb-sharded.yaml │ │ │ │ │ ├── pdb.yaml │ │ │ │ │ ├── service-headless.yaml │ │ │ │ │ ├── service-sharded.yaml │ │ │ │ │ ├── service.yaml │ │ │ │ │ ├── serviceaccount.yaml │ │ │ │ │ ├── servicemonitor.yaml │ │ │ │ │ ├── statefulset-sharded.yaml │ │ │ │ │ ├── statefulset.yaml │ │ │ │ │ └── tls-secrets.yaml │ │ │ └── values.yaml │ │ │ ├── vertical-pod-autoscaler-configs │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ └── vpa.yaml │ │ │ └── values.yaml │ │ │ └── vertical-pod-autoscaler │ │ │ ├── .helmignore │ │ │ ├── Chart.lock │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── README.md.gotmpl │ │ │ ├── charts │ │ │ └── metrics-server │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── ci │ │ │ │ └── ci-values.yaml │ │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ ├── apiservice.yaml │ │ │ │ ├── clusterrole-aggregated-reader.yaml │ │ │ │ ├── clusterrole-nanny.yaml │ │ │ │ ├── clusterrole.yaml │ │ │ │ ├── clusterrolebinding-auth-delegator.yaml │ │ │ │ ├── clusterrolebinding-nanny.yaml │ │ │ │ ├── clusterrolebinding.yaml │ │ │ │ ├── configmaps-nanny.yaml │ │ │ │ ├── deployment.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── psp.yaml │ │ │ │ ├── role-nanny.yaml │ │ │ │ ├── rolebinding-nanny.yaml │ │ │ │ ├── rolebinding.yaml │ │ │ │ ├── service.yaml │ │ │ │ ├── serviceaccount.yaml │ │ │ │ └── servicemonitor.yaml │ │ │ │ └── values.yaml │ │ │ ├── ci │ │ │ └── test-values.yaml │ │ │ ├── crds │ │ │ └── vpa-v1-crd.yaml │ │ │ ├── templates │ │ │ ├── _helpers.tpl │ │ │ ├── admission-controller-deployment.yaml │ │ │ ├── admission-controller-pdb.yaml │ │ │ ├── admission-controller-rbac.yaml │ │ │ ├── admission-controller-service-account.yaml │ │ │ ├── admission-controller-service.yaml │ │ │ ├── clusterrolebindings.yaml │ │ │ ├── clusterroles.yaml │ │ │ ├── recommender-deployment.yaml │ │ │ ├── recommender-pdb.yaml │ │ │ ├── recommender-podmonitor.yaml │ │ │ ├── recommender-service-account.yaml │ │ │ ├── tests │ │ │ │ ├── _test_helpers.tpl │ │ │ │ ├── crds-available.yaml │ │ │ │ ├── create-vpa.yaml │ │ │ │ ├── metrics.yaml │ │ │ │ ├── rbac.yaml │ │ │ │ └── webhook.yaml │ │ │ ├── updater-deployment.yaml │ │ │ ├── updater-pdb.yaml │ │ │ ├── updater-podmonitor.yaml │ │ │ ├── updater-service-account.yaml │ │ │ └── webhooks │ │ │ │ ├── _webhook_helpers.tpl │ │ │ │ ├── jobs │ │ │ │ ├── certgen-clusterrole.yaml │ │ │ │ ├── certgen-clusterrolebinding.yaml │ │ │ │ ├── certgen-create.yaml │ │ │ │ ├── certgen-patch.yaml │ │ │ │ ├── certgen-role.yaml │ │ │ │ ├── certgen-rolebinding.yaml │ │ │ │ └── certgen-sa.yaml │ │ │ │ └── mutating.yaml │ │ │ └── values.yaml │ ├── charts │ │ ├── external-name-svc │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ └── external-name-service.yaml │ │ │ └── values.j2.yaml │ │ ├── q-container │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── deployment.j2.yaml │ │ │ │ ├── horizontal_autoscaler.j2.yaml │ │ │ │ ├── mounted_files_secret.j2.yaml │ │ │ │ ├── pdb.j2.yaml │ │ │ │ ├── secret.j2.yaml │ │ │ │ ├── service.j2.yaml │ │ │ │ └── statefulset.j2.yaml │ │ │ └── values.yaml │ │ ├── q-ingress-tls │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── additional-service.j2.yaml │ │ │ │ ├── ingress-grpc.j2.yaml │ │ │ │ ├── ingress-http.j2.yaml │ │ │ │ └── secret-htaccess.j2.yaml │ │ │ └── values.yaml │ │ ├── q-job │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ │ ├── cronjob.j2.yaml │ │ │ │ ├── job.j2.yaml │ │ │ │ ├── mounted_files_config_map.j2.yaml │ │ │ │ ├── pdb.j2.yaml │ │ │ │ ├── rbac.j2.yaml │ │ │ │ └── secret.j2.yaml │ │ │ └── values.yaml │ │ └── q-terraform-service │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── templates │ │ │ ├── job.j2.yaml │ │ │ ├── pdb.j2.yaml │ │ │ ├── pvc.j2.yaml │ │ │ ├── rbac.j2.yaml │ │ │ └── secret.j2.yaml │ │ │ └── values.yaml │ └── services │ │ ├── mongodb │ │ ├── .helmignore │ │ ├── Chart.lock │ │ ├── Chart.yaml │ │ ├── README.md │ │ ├── charts │ │ │ └── common │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── templates │ │ │ │ ├── _affinities.tpl │ │ │ │ ├── _capabilities.tpl │ │ │ │ ├── _errors.tpl │ │ │ │ ├── _images.tpl │ │ │ │ ├── _ingress.tpl │ │ │ │ ├── _labels.tpl │ │ │ │ ├── _names.tpl │ │ │ │ ├── _secrets.tpl │ │ │ │ ├── _storage.tpl │ │ │ │ ├── _tplvalues.tpl │ │ │ │ ├── _utils.tpl │ │ │ │ ├── _warnings.tpl │ │ │ │ └── validations │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ └── _validations.tpl │ │ │ │ └── values.yaml │ │ ├── templates │ │ │ ├── _helpers.tpl │ │ │ ├── arbiter │ │ │ │ ├── configmap.yaml │ │ │ │ ├── headless-svc.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ └── statefulset.yaml │ │ │ ├── common-scripts-cm.yaml │ │ │ ├── configmap.yaml │ │ │ ├── extra-list.yaml │ │ │ ├── hidden │ │ │ │ ├── configmap.yaml │ │ │ │ ├── external-access-svc.yaml │ │ │ │ ├── headless-svc.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ └── statefulset.yaml │ │ │ ├── initialization-configmap.yaml │ │ │ ├── metrics-svc.yaml │ │ │ ├── prometheusrule.yaml │ │ │ ├── psp.yaml │ │ │ ├── replicaset │ │ │ │ ├── external-access-svc.yaml │ │ │ │ ├── headless-svc.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── scripts-configmap.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ └── svc.yaml │ │ │ ├── role.yaml │ │ │ ├── rolebinding.yaml │ │ │ ├── secrets-ca.yaml │ │ │ ├── secrets.yaml │ │ │ ├── serviceaccount.yaml │ │ │ ├── servicemonitor.yaml │ │ │ └── standalone │ │ │ │ ├── dep-sts.yaml │ │ │ │ ├── pvc.yaml │ │ │ │ └── svc.yaml │ │ ├── values.schema.json │ │ └── values.yaml │ │ ├── mysql │ │ ├── .helmignore │ │ ├── Chart.lock │ │ ├── Chart.yaml │ │ ├── README.md │ │ ├── charts │ │ │ └── common │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── templates │ │ │ │ ├── _affinities.tpl │ │ │ │ ├── _capabilities.tpl │ │ │ │ ├── _errors.tpl │ │ │ │ ├── _images.tpl │ │ │ │ ├── _ingress.tpl │ │ │ │ ├── _labels.tpl │ │ │ │ ├── _names.tpl │ │ │ │ ├── _secrets.tpl │ │ │ │ ├── _storage.tpl │ │ │ │ ├── _tplvalues.tpl │ │ │ │ ├── _utils.tpl │ │ │ │ ├── _warnings.tpl │ │ │ │ └── validations │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ └── _validations.tpl │ │ │ │ └── values.yaml │ │ ├── templates │ │ │ ├── _helpers.tpl │ │ │ ├── extra-list.yaml │ │ │ ├── metrics-svc.yaml │ │ │ ├── networkpolicy.yaml │ │ │ ├── primary │ │ │ │ ├── configmap.yaml │ │ │ │ ├── initialization-configmap.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ ├── svc-headless.yaml │ │ │ │ └── svc.yaml │ │ │ ├── prometheusrule.yaml │ │ │ ├── role.yaml │ │ │ ├── rolebinding.yaml │ │ │ ├── secondary │ │ │ │ ├── configmap.yaml │ │ │ │ ├── pdb.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ ├── svc-headless.yaml │ │ │ │ └── svc.yaml │ │ │ ├── secrets.yaml │ │ │ ├── serviceaccount.yaml │ │ │ └── servicemonitor.yaml │ │ ├── values.schema.json │ │ └── values.yaml │ │ ├── postgresql │ │ ├── .helmignore │ │ ├── Chart.lock │ │ ├── Chart.yaml │ │ ├── README.md │ │ ├── charts │ │ │ └── common │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── README.md │ │ │ │ ├── templates │ │ │ │ ├── _affinities.tpl │ │ │ │ ├── _capabilities.tpl │ │ │ │ ├── _errors.tpl │ │ │ │ ├── _images.tpl │ │ │ │ ├── _ingress.tpl │ │ │ │ ├── _labels.tpl │ │ │ │ ├── _names.tpl │ │ │ │ ├── _secrets.tpl │ │ │ │ ├── _storage.tpl │ │ │ │ ├── _tplvalues.tpl │ │ │ │ ├── _utils.tpl │ │ │ │ ├── _warnings.tpl │ │ │ │ └── validations │ │ │ │ │ ├── _cassandra.tpl │ │ │ │ │ ├── _mariadb.tpl │ │ │ │ │ ├── _mongodb.tpl │ │ │ │ │ ├── _mysql.tpl │ │ │ │ │ ├── _postgresql.tpl │ │ │ │ │ ├── _redis.tpl │ │ │ │ │ └── _validations.tpl │ │ │ │ └── values.yaml │ │ ├── templates │ │ │ ├── _helpers.tpl │ │ │ ├── extra-list.yaml │ │ │ ├── networkpolicy-egress.yaml │ │ │ ├── primary │ │ │ │ ├── configmap.yaml │ │ │ │ ├── extended-configmap.yaml │ │ │ │ ├── initialization-configmap.yaml │ │ │ │ ├── metrics-configmap.yaml │ │ │ │ ├── metrics-svc.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ ├── svc-headless.yaml │ │ │ │ └── svc.yaml │ │ │ ├── prometheusrule.yaml │ │ │ ├── psp.yaml │ │ │ ├── read │ │ │ │ ├── extended-configmap.yaml │ │ │ │ ├── metrics-configmap.yaml │ │ │ │ ├── metrics-svc.yaml │ │ │ │ ├── networkpolicy.yaml │ │ │ │ ├── servicemonitor.yaml │ │ │ │ ├── statefulset.yaml │ │ │ │ ├── svc-headless.yaml │ │ │ │ └── svc.yaml │ │ │ ├── role.yaml │ │ │ ├── rolebinding.yaml │ │ │ ├── secrets.yaml │ │ │ ├── serviceaccount.yaml │ │ │ └── tls-secrets.yaml │ │ ├── values.schema.json │ │ └── values.yaml │ │ ├── q-job │ │ ├── .helmignore │ │ ├── Chart.yaml │ │ ├── templates │ │ │ ├── _helpers.tpl │ │ │ └── job.j2.yaml │ │ └── values.yaml │ │ └── redis │ │ ├── .helmignore │ │ ├── Chart.lock │ │ ├── Chart.yaml │ │ ├── README.md │ │ ├── charts │ │ └── common │ │ │ ├── .helmignore │ │ │ ├── Chart.yaml │ │ │ ├── README.md │ │ │ ├── templates │ │ │ ├── _affinities.tpl │ │ │ ├── _capabilities.tpl │ │ │ ├── _errors.tpl │ │ │ ├── _images.tpl │ │ │ ├── _ingress.tpl │ │ │ ├── _labels.tpl │ │ │ ├── _names.tpl │ │ │ ├── _secrets.tpl │ │ │ ├── _storage.tpl │ │ │ ├── _tplvalues.tpl │ │ │ ├── _utils.tpl │ │ │ ├── _warnings.tpl │ │ │ └── validations │ │ │ │ ├── _cassandra.tpl │ │ │ │ ├── _mariadb.tpl │ │ │ │ ├── _mongodb.tpl │ │ │ │ ├── _mysql.tpl │ │ │ │ ├── _postgresql.tpl │ │ │ │ ├── _redis.tpl │ │ │ │ └── _validations.tpl │ │ │ └── values.yaml │ │ ├── img │ │ ├── redis-cluster-topology.png │ │ └── redis-topology.png │ │ ├── templates │ │ ├── _helpers.tpl │ │ ├── configmap.yaml │ │ ├── extra-list.yaml │ │ ├── headless-svc.yaml │ │ ├── health-configmap.yaml │ │ ├── master │ │ │ ├── application.yaml │ │ │ ├── psp.yaml │ │ │ ├── pvc.yaml │ │ │ ├── service.yaml │ │ │ └── serviceaccount.yaml │ │ ├── metrics-svc.yaml │ │ ├── networkpolicy.yaml │ │ ├── pdb.yaml │ │ ├── prometheusrule.yaml │ │ ├── replicas │ │ │ ├── hpa.yaml │ │ │ ├── service.yaml │ │ │ ├── serviceaccount.yaml │ │ │ └── statefulset.yaml │ │ ├── role.yaml │ │ ├── rolebinding.yaml │ │ ├── scripts-configmap.yaml │ │ ├── secret.yaml │ │ ├── sentinel │ │ │ ├── hpa.yaml │ │ │ ├── node-services.yaml │ │ │ ├── ports-configmap.yaml │ │ │ ├── service.yaml │ │ │ └── statefulset.yaml │ │ ├── serviceaccount.yaml │ │ ├── servicemonitor.yaml │ │ └── tls-secret.yaml │ │ ├── values.schema.json │ │ └── values.yaml ├── gcp │ ├── bootstrap │ │ ├── chart_values │ │ │ ├── ingress-nginx.j2.yaml │ │ │ ├── kube-prometheus-stack.yaml │ │ │ ├── promtail.yaml │ │ │ ├── q-storageclass.yaml │ │ │ └── thanos.yaml │ │ ├── charts │ │ │ └── q-storageclass-gcp │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ └── storageclass.yaml │ │ │ │ └── values.yaml │ │ ├── scripts │ │ │ ├── delete-default-resource.sh │ │ │ └── kubectl_wrapper.sh │ │ └── terraform │ │ │ ├── README.md │ │ │ ├── backend.j2.tf │ │ │ ├── cluster.j2.tf │ │ │ ├── dns.tf │ │ │ ├── firewall.tf │ │ │ ├── gcp-credentials.j2.json │ │ │ ├── helper.j2.sh │ │ │ ├── main.tf │ │ │ ├── masq.tf │ │ │ ├── networks-nat-gateway.j2.tf │ │ │ ├── networks.j2.tf │ │ │ ├── qovery-tf-output.j2.tf │ │ │ ├── sa-loki.j2.tf │ │ │ ├── sa-prometheus-thanos.j2.tf │ │ │ ├── sa.tf │ │ │ ├── tags-vars.j2.tf │ │ │ ├── tf-default-vars.j2.tf │ │ │ └── tf-providers-google.j2.tf │ └── chart_values │ │ ├── mongodb │ │ └── qovery-values.j2.yaml │ │ ├── mysql │ │ └── qovery-values.j2.yaml │ │ ├── postgresql │ │ └── qovery-values.j2.yaml │ │ └── redis │ │ └── qovery-values.j2.yaml ├── helm-freeze.yaml ├── scaleway │ ├── bootstrap │ │ ├── chart_values │ │ │ ├── coredns-config.yaml │ │ │ ├── ingress-nginx.j2.yaml │ │ │ ├── kube-prometheus-stack.yaml │ │ │ ├── q-storageclass.yaml │ │ │ └── thanos.yaml │ │ ├── charts │ │ │ ├── coredns-config │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ │ ├── _helpers.tpl │ │ │ │ │ ├── configmap.yml │ │ │ │ │ ├── hpa.yaml │ │ │ │ │ └── pdb.yaml │ │ │ │ └── values.yaml │ │ │ └── q-storageclass-scaleway │ │ │ │ ├── .helmignore │ │ │ │ ├── Chart.yaml │ │ │ │ ├── templates │ │ │ │ ├── _helpers.tpl │ │ │ │ └── storageclass.yaml │ │ │ │ └── values.yaml │ │ └── terraform │ │ │ ├── backend.j2.tf │ │ │ ├── ks-locals.j2.tf │ │ │ ├── ks-master-cluster.j2.tf │ │ │ ├── ks-workers-nodes.j2.tf │ │ │ ├── qovery-tf-output.j2.tf │ │ │ ├── tf-default-vars.j2.tf │ │ │ └── tf-providers.j2.tf │ ├── chart_values │ │ ├── mongodb │ │ │ └── qovery-values.j2.yaml │ │ ├── mysql │ │ │ └── qovery-values.j2.yaml │ │ ├── postgresql │ │ │ └── qovery-values.j2.yaml │ │ └── redis │ │ │ └── qovery-values.j2.yaml │ └── services │ │ ├── common │ │ ├── backend.j2.tf │ │ └── providers.j2.tf │ │ ├── mysql │ │ ├── main.j2.tf │ │ └── variables.j2.tf │ │ └── postgresql │ │ ├── main.j2.tf │ │ └── variables.j2.tf └── self-managed │ ├── chart_values │ ├── mongodb │ │ └── qovery-values.j2.yaml │ ├── mysql │ │ └── qovery-values.j2.yaml │ ├── postgresql │ │ └── qovery-values.j2.yaml │ └── redis │ │ └── qovery-values.j2.yaml │ └── demo_chart_values │ ├── cert-manager-configs.yaml │ ├── cert-manager.yaml │ ├── external-dns.yaml │ ├── ingress-nginx.yaml │ ├── loki.yaml │ ├── metrics-server.yaml │ ├── promtail.yaml │ ├── qovery-cert-manager-webhook.yaml │ ├── qovery-cluster-agent.yaml │ ├── qovery-engine.yaml │ └── qovery-shell-agent.yaml ├── nextest.config.toml ├── rustfmt.toml ├── src ├── byok_chart_gen │ ├── chart_dot_yaml.rs │ ├── demo_chart_values │ │ └── ingress-nginx.yaml │ ├── io.rs │ ├── mod.rs │ └── values_dot_yaml.rs ├── cmd │ ├── command.rs │ ├── docker.rs │ ├── git.rs │ ├── git_lfs.rs │ ├── helm.rs │ ├── helm_utils.rs │ ├── kubectl.rs │ ├── kubent.rs │ ├── mod.rs │ ├── skopeo.rs │ ├── structs.rs │ ├── terraform.rs │ └── terraform_validators │ │ ├── mod.rs │ │ └── no_destructive_changes_validator.rs ├── constants.rs ├── engine_task │ ├── mod.rs │ └── qovery_api.rs ├── environment │ ├── action │ │ ├── check_dns.rs │ │ ├── deploy_application.rs │ │ ├── deploy_container.rs │ │ ├── deploy_database.rs │ │ ├── deploy_environment.rs │ │ ├── deploy_helm.rs │ │ ├── deploy_helm_chart.rs │ │ ├── deploy_job.rs │ │ ├── deploy_namespace.rs │ │ ├── deploy_router.rs │ │ ├── deploy_terraform.rs │ │ ├── deploy_terraform_service.rs │ │ ├── mod.rs │ │ ├── pause_service.rs │ │ ├── restart_service.rs │ │ ├── test_utils.rs │ │ └── utils.rs │ ├── mod.rs │ ├── models │ │ ├── abort.rs │ │ ├── annotations_group.rs │ │ ├── application.rs │ │ ├── aws │ │ │ ├── database.rs │ │ │ ├── database_utils.rs │ │ │ ├── job.rs │ │ │ ├── mod.rs │ │ │ ├── router.rs │ │ │ └── terraform_service.rs │ │ ├── azure │ │ │ ├── database.rs │ │ │ ├── job.rs │ │ │ ├── mod.rs │ │ │ ├── router.rs │ │ │ └── terraform_service.rs │ │ ├── container.rs │ │ ├── database.rs │ │ ├── database_utils.rs │ │ ├── domain.rs │ │ ├── environment.rs │ │ ├── gcp │ │ │ ├── database.rs │ │ │ ├── io.rs │ │ │ ├── job.rs │ │ │ ├── mod.rs │ │ │ ├── router.rs │ │ │ └── terraform_service.rs │ │ ├── helm_chart.rs │ │ ├── job.rs │ │ ├── kubernetes.rs │ │ ├── labels_group.rs │ │ ├── mod.rs │ │ ├── probe.rs │ │ ├── registry_image_source.rs │ │ ├── router.rs │ │ ├── scaleway │ │ │ ├── database.rs │ │ │ ├── database_utils.rs │ │ │ ├── job.rs │ │ │ ├── mod.rs │ │ │ ├── router.rs │ │ │ └── terraform_service.rs │ │ ├── selfmanaged │ │ │ ├── database.rs │ │ │ ├── job.rs │ │ │ ├── mod.rs │ │ │ ├── router.rs │ │ │ └── terraform_service.rs │ │ ├── terraform_service.rs │ │ ├── third_parties.rs │ │ ├── types.rs │ │ └── utils.rs │ ├── report │ │ ├── application │ │ │ ├── mod.rs │ │ │ ├── renderer.rs │ │ │ └── reporter.rs │ │ ├── database │ │ │ ├── mod.rs │ │ │ ├── renderer.rs │ │ │ └── reporter.rs │ │ ├── helm_chart │ │ │ ├── mod.rs │ │ │ └── reporter.rs │ │ ├── job │ │ │ ├── mod.rs │ │ │ ├── renderer.rs │ │ │ └── reporter.rs │ │ ├── logger.rs │ │ ├── mod.rs │ │ ├── obfuscation_service.rs │ │ ├── recap_reporter.rs │ │ ├── router │ │ │ ├── mod.rs │ │ │ └── reporter.rs │ │ ├── terraform_service │ │ │ ├── mod.rs │ │ │ └── reporter.rs │ │ └── utils.rs │ └── task.rs ├── errors │ ├── io.rs │ └── mod.rs ├── events │ ├── io.rs │ └── mod.rs ├── fs.rs ├── helm.rs ├── infrastructure │ ├── action │ │ ├── azure │ │ │ ├── cluster_create.rs │ │ │ ├── cluster_delete.rs │ │ │ ├── cluster_pause.rs │ │ │ ├── cluster_upgrade.rs │ │ │ ├── helm_charts │ │ │ │ ├── gen_charts.rs │ │ │ │ └── mod.rs │ │ │ ├── mod.rs │ │ │ └── tera_context.rs │ │ ├── cluster_outputs_helper.rs │ │ ├── delete_kube_apps.rs │ │ ├── deploy_helms.rs │ │ ├── deploy_terraform.rs │ │ ├── eks │ │ │ ├── cluster_bootstrap.rs │ │ │ ├── cluster_create.rs │ │ │ ├── cluster_delete.rs │ │ │ ├── cluster_pause.rs │ │ │ ├── cluster_upgrade.rs │ │ │ ├── custom_vpc.rs │ │ │ ├── helm_charts │ │ │ │ ├── aws_alb_controller_chart.rs │ │ │ │ ├── aws_iam_eks_user_mapper_chart.rs │ │ │ │ ├── aws_node_term_handler_chart.rs │ │ │ │ ├── cluster_autoscaler_chart.rs │ │ │ │ ├── gen_charts.rs │ │ │ │ ├── gen_karpenter_charts.rs │ │ │ │ ├── karpenter.rs │ │ │ │ ├── karpenter_configuration.rs │ │ │ │ ├── karpenter_crd.rs │ │ │ │ └── mod.rs │ │ │ ├── karpenter.rs │ │ │ ├── mod.rs │ │ │ ├── nodegroup.rs │ │ │ ├── sdk.rs │ │ │ ├── tera_context │ │ │ │ ├── core_dns_addon.rs │ │ │ │ ├── ebs_csi_addon.rs │ │ │ │ ├── kube_proxy_addon.rs │ │ │ │ ├── mod.rs │ │ │ │ └── vpc_cni_addon.rs │ │ │ └── utils.rs │ │ ├── gen_metrics_charts.rs │ │ ├── gke │ │ │ ├── cluster_create.rs │ │ │ ├── cluster_delete.rs │ │ │ ├── cluster_pause.rs │ │ │ ├── cluster_upgrade.rs │ │ │ ├── helm_charts │ │ │ │ ├── gen_charts.rs │ │ │ │ └── mod.rs │ │ │ ├── mod.rs │ │ │ └── tera_context.rs │ │ ├── kubeconfig_helper.rs │ │ ├── kubectl_utils.rs │ │ ├── mod.rs │ │ ├── scaleway │ │ │ ├── cluster_create.rs │ │ │ ├── cluster_delete.rs │ │ │ ├── cluster_pause.rs │ │ │ ├── cluster_upgrade.rs │ │ │ ├── helm_charts │ │ │ │ ├── gen_charts.rs │ │ │ │ └── mod.rs │ │ │ ├── mod.rs │ │ │ ├── nodegroup.rs │ │ │ └── tera_context.rs │ │ ├── self_managed │ │ │ └── mod.rs │ │ └── utils.rs │ ├── helm_charts │ │ ├── cert_manager_chart.rs │ │ ├── cert_manager_config_chart.rs │ │ ├── coredns_config_chart.rs │ │ ├── external_dns_chart.rs │ │ ├── grafana_chart.rs │ │ ├── k8s_event_logger.rs │ │ ├── kube_prometheus_stack_chart.rs │ │ ├── kube_state_metrics.rs │ │ ├── loki_chart.rs │ │ ├── metrics_server_chart.rs │ │ ├── mod.rs │ │ ├── nginx_ingress_chart.rs │ │ ├── prometheus_adapter_chart.rs │ │ ├── prometheus_operator_crds.rs │ │ ├── promtail_chart.rs │ │ ├── qovery_cert_manager_webhook_chart.rs │ │ ├── qovery_cluster_agent_chart.rs │ │ ├── qovery_priority_class_chart.rs │ │ ├── qovery_shell_agent_chart.rs │ │ ├── qovery_storage_class_chart.rs │ │ ├── thanos.rs │ │ └── vertical_pod_autoscaler.rs │ ├── infrastructure_context.rs │ ├── mod.rs │ ├── models │ │ ├── build_platform │ │ │ ├── dockerfile_utils.rs │ │ │ ├── local_docker.rs │ │ │ └── mod.rs │ │ ├── cloud_provider │ │ │ ├── aws │ │ │ │ ├── database_instance_type.rs │ │ │ │ ├── mod.rs │ │ │ │ └── regions.rs │ │ │ ├── azure │ │ │ │ ├── locations.rs │ │ │ │ └── mod.rs │ │ │ ├── gcp │ │ │ │ ├── locations.rs │ │ │ │ └── mod.rs │ │ │ ├── io.rs │ │ │ ├── mod.rs │ │ │ ├── scaleway │ │ │ │ ├── database_instance_type.rs │ │ │ │ └── mod.rs │ │ │ ├── self_managed │ │ │ │ └── mod.rs │ │ │ └── service.rs │ │ ├── container_registry │ │ │ ├── README.md │ │ │ ├── azure_container_registry.rs │ │ │ ├── ecr.rs │ │ │ ├── errors.rs │ │ │ ├── generic_cr.rs │ │ │ ├── github_cr.rs │ │ │ ├── google_artifact_registry.rs │ │ │ ├── mod.rs │ │ │ └── scaleway_container_registry.rs │ │ ├── dns_provider │ │ │ ├── cloudflare.rs │ │ │ ├── errors.rs │ │ │ ├── io.rs │ │ │ ├── mod.rs │ │ │ └── qoverydns.rs │ │ ├── kubernetes │ │ │ ├── aws │ │ │ │ ├── eks.rs │ │ │ │ ├── mod.rs │ │ │ │ └── node.rs │ │ │ ├── azure │ │ │ │ ├── aks.rs │ │ │ │ ├── mod.rs │ │ │ │ ├── node.rs │ │ │ │ └── node_group.rs │ │ │ ├── gcp │ │ │ │ └── mod.rs │ │ │ ├── karpenter.rs │ │ │ ├── mod.rs │ │ │ ├── scaleway │ │ │ │ ├── kapsule.rs │ │ │ │ ├── mod.rs │ │ │ │ └── node.rs │ │ │ └── self_managed │ │ │ │ ├── mod.rs │ │ │ │ └── on_premise.rs │ │ ├── mod.rs │ │ └── object_storage │ │ │ ├── azure_object_storage.rs │ │ │ ├── errors.rs │ │ │ ├── google_object_storage.rs │ │ │ ├── mod.rs │ │ │ ├── s3.rs │ │ │ └── scaleway_object_storage.rs │ └── task.rs ├── io_models │ ├── annotations_group.rs │ ├── application.rs │ ├── azure.rs │ ├── container.rs │ ├── context.rs │ ├── database.rs │ ├── engine_location.rs │ ├── engine_request.rs │ ├── environment.rs │ ├── gke.rs │ ├── helm_chart.rs │ ├── job.rs │ ├── labels_group.rs │ ├── metrics.rs │ ├── mod.rs │ ├── models.rs │ ├── probe.rs │ ├── router.rs │ ├── terraform_service.rs │ ├── types.rs │ └── variable_utils.rs ├── kubers_utils.rs ├── lib.rs ├── log_file_writer.rs ├── logger.rs ├── metrics_registry.rs ├── msg_publisher.rs ├── runtime.rs ├── services │ ├── aws │ │ ├── load_balancers.rs │ │ ├── mod.rs │ │ └── models.rs │ ├── azure │ │ ├── azure_cloud_sdk_types.rs │ │ ├── blob_storage_regions.rs │ │ ├── blob_storage_service.rs │ │ ├── container_registry_service.rs │ │ └── mod.rs │ ├── gcp │ │ ├── artifact_registry_service.rs │ │ ├── auth_service.rs │ │ ├── cloud_job_service.rs │ │ ├── google_cloud_sdk_types.rs │ │ ├── mod.rs │ │ ├── object_storage_regions.rs │ │ └── object_storage_service.rs │ ├── kube_client.rs │ ├── kubernetes_api_deprecation_service.rs │ └── mod.rs ├── string.rs ├── template.rs ├── tera_utils.rs ├── unit_conversion.rs └── utilities.rs └── tests ├── README.md ├── aws ├── aws_databases.rs ├── aws_ecr.rs ├── aws_environment.rs ├── aws_kubernetes.rs ├── aws_s3.rs ├── aws_whole_enchilada.rs └── mod.rs ├── azure ├── azure_blob_storage.rs ├── azure_container_registry.rs ├── azure_environment.rs ├── azure_kubernetes.rs └── mod.rs ├── container_registries ├── github_cr.rs └── mod.rs ├── docker └── multi_stage_simple │ ├── Dockerfile │ ├── Dockerfile.buildkit │ └── hello.sh ├── gcp ├── gcp_artifact_registry_service.rs ├── gcp_databases.rs ├── gcp_environment.rs ├── gcp_kubernetes.rs ├── gcp_object_storage_service.rs ├── gcp_whole_enchilada.rs └── mod.rs ├── helm ├── cert_manager.rs ├── chart_testing.rs ├── mod.rs ├── simple_app_deployment │ ├── Chart.yaml │ ├── templates │ │ ├── _helpers.tpl │ │ ├── deployment.j2.yaml │ │ └── tests │ │ │ └── test-connection.yaml │ └── values.yaml └── simple_nginx │ ├── .helmignore │ ├── Chart.yaml │ ├── templates │ ├── _helpers.tpl │ ├── deployment.yaml │ ├── hpa.yaml │ ├── ingress.yaml │ ├── service.yaml │ ├── serviceaccount.yaml │ └── tests │ │ └── test-connection.yaml │ └── values.yaml ├── helpers ├── aws.rs ├── azure.rs ├── common.rs ├── database.rs ├── dns.rs ├── environment.rs ├── gcp.rs ├── git_server.rs ├── kubernetes.rs ├── mod.rs ├── on_premise.rs ├── scaleway.rs └── utilities.rs ├── kube ├── application.rs ├── container.rs ├── database.rs ├── jobs.rs └── mod.rs ├── lib.rs └── scaleway ├── mod.rs ├── scw_container_registry.rs ├── scw_databases.rs ├── scw_environment.rs ├── scw_kubernetes.rs ├── scw_object_storage.rs ├── scw_utility_kubernetes_kapsule_test_cluster.rs └── scw_whole_enchilada.rs /CONTRIBUTING.md: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | -------------------------------------------------------------------------------- /clippy.toml: -------------------------------------------------------------------------------- 1 | too-many-arguments-threshold = 32 2 | upper-case-acronyms-aggressive = false -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/aws-load-balancer-controller.yaml: -------------------------------------------------------------------------------- 1 | clusterName: set-by-engine-code 2 | 3 | serviceAccount: 4 | annotations: 5 | eks.amazonaws.com/role-arn: set-by-engine-code 6 | 7 | replicaCount: 1 8 | 9 | enableServiceMutatorWebhook: set-by-engine-code 10 | enableCertManager: true 11 | 12 | autoscaling: 13 | enabled: true 14 | 15 | resources: 16 | limits: 17 | cpu: set-by-engine-code 18 | memory: set-by-engine-code 19 | requests: 20 | cpu: set-by-engine-code 21 | memory: set-by-engine-code -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/aws-node-term-handler.yaml: -------------------------------------------------------------------------------- 1 | nameOverride: set-by-engine-code 2 | fullnameOverride: set-by-engine-code 3 | 4 | enableSpotInterruptionDraining: true 5 | enableScheduledEventDraining: true 6 | deleteLocalData: true 7 | ignoreDaemonSets: true 8 | podTerminationGracePeriod: 300 9 | nodeTerminationGracePeriod: 120 10 | 11 | rbac: 12 | pspEnabled: false 13 | 14 | resources: 15 | requests: 16 | cpu: 50m 17 | memory: 64Mi 18 | limits: 19 | cpu: 100m 20 | memory: 64Mi 21 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/coredns-config.yaml: -------------------------------------------------------------------------------- 1 | declare_node_hosts: set-by-engine-code 2 | managed_dns: set-by-engine-code 3 | managed_dns_resolvers: set-by-engine-code 4 | extra_config: null # set-by-engine-code 5 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/karpenter-configuration.yaml: -------------------------------------------------------------------------------- 1 | clusterName: set-by-engine-code 2 | securityGroupId: set-by-engine-code 3 | diskSizeInGib: set-by-engine-code 4 | capacity_type: set-by-engine-code 5 | explicitSubnetIds: [] 6 | 7 | tags: 8 | ClusterId: set-by-engine-code 9 | ClusterLongId: set-by-engine-code 10 | OrganizationId: set-by-engine-code 11 | OrganizationLongId: set-by-engine-code 12 | Region: set-by-engine-code 13 | 14 | global_node_pools: 15 | requirements: [] 16 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/karpenter-crd.yaml: -------------------------------------------------------------------------------- 1 | webhook: 2 | enabled: true 3 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/chart_values/q-storageclass.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: set-by-engine-code 2 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-limits-exporter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-limits-exporter/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: aws-limits-exporter 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.1.0 6 | appVersion: 0.3.0 7 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-limits-exporter/templates/secrets.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: aws-limits-exporter 5 | type: Opaque 6 | data: 7 | awsAccessKey: {{ .Values.awsCredentials.awsAccessKey | b64enc}} 8 | awsSecretKey: {{ .Values.awsCredentials.awsSecretKey | b64enc}} 9 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-limits-exporter/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: {{ include "aws-limits-exporter.fullname" . }} 5 | labels: 6 | app: aws-limits-exporter 7 | {{- include "aws-limits-exporter.labels" . | nindent 4 }} 8 | spec: 9 | type: {{ .Values.service.type }} 10 | ports: 11 | - port: {{ .Values.service.port }} 12 | targetPort: http-metrics 13 | protocol: TCP 14 | name: http-metrics 15 | selector: 16 | {{- include "aws-limits-exporter.selectorLabels" . | nindent 4 }} 17 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-limits-exporter/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ include "aws-limits-exporter.serviceAccountName" . }} 6 | labels: 7 | {{- include "aws-limits-exporter.labels" . | nindent 4 }} 8 | {{- with .Values.serviceAccount.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-load-balancer-controller/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | crds/kustomization.yaml 25 | test.yaml 26 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-load-balancer-controller/ci/extra_args: -------------------------------------------------------------------------------- 1 | --set clusterName=k8s-ci-cluster 2 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-load-balancer-controller/ci/values.yaml: -------------------------------------------------------------------------------- 1 | # CI testing values for aws-load-balancer-controller 2 | 3 | region: us-west-2 4 | image: 5 | repository: public.ecr.aws/eks/aws-load-balancer-controller 6 | tag: v2.4.5 7 | pullPolicy: Always 8 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-node-termination-handler/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | example-values*.yaml 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/aws-node-termination-handler/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ template "aws-node-termination-handler.serviceAccountName" . }} 6 | namespace: {{ .Release.Namespace }} 7 | labels: 8 | {{- include "aws-node-termination-handler.labels" . | nindent 4 }} 9 | {{- with .Values.serviceAccount.annotations }} 10 | annotations: 11 | {{- toYaml . | nindent 4 }} 12 | {{- end }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/cluster-autoscaler/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/cluster-autoscaler/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | appVersion: 1.31.0 3 | description: Scales Kubernetes worker nodes within autoscaling groups. 4 | home: https://github.com/kubernetes/autoscaler 5 | icon: https://github.com/kubernetes/kubernetes/raw/master/logo/logo.png 6 | maintainers: 7 | - email: guyjtempleton@googlemail.com 8 | name: gjtempleton 9 | name: cluster-autoscaler 10 | sources: 11 | - https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler 12 | type: application 13 | version: 9.39.0 14 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/cluster-autoscaler/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraObjects }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/coredns-config/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/coredns-config/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: coredns-config 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.1.1 6 | appVersion: 0.1 7 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/coredns-config/values.yaml: -------------------------------------------------------------------------------- 1 | # Declare node hosts 2 | declare_node_hosts: false 3 | # List of managed DNS 4 | managed_dns: [] 5 | # List of resolvers 6 | managed_dns_resolvers: [] 7 | # Extra config from advanced settings 8 | extra_config: "" 9 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/iam-eks-user-mapper/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/iam-eks-user-mapper/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | appVersion: 0.5.2 3 | description: A Helm chart for iam-eks-user-mapper, a tool to automatically give AWS 4 | IAM users access to your Kubernetes cluster. 5 | name: iam-eks-user-mapper 6 | type: application 7 | version: 1.5.0 8 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter-configuration/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter-crd/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter-crd/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | appVersion: 1.0.9 3 | description: A Helm chart for Karpenter Custom Resource Definitions (CRDs). 4 | home: https://karpenter.sh/ 5 | icon: https://repository-images.githubusercontent.com/278480393/dab059c8-caa1-4b55-aaa7-3d30e47a5616 6 | keywords: 7 | - cluster 8 | - node 9 | - scheduler 10 | - autoscaling 11 | - lifecycle 12 | name: karpenter-crd 13 | sources: 14 | - https://github.com/aws/karpenter/ 15 | type: application 16 | version: 1.0.9 17 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter-crd/artifacthub-repo.yaml: -------------------------------------------------------------------------------- 1 | repositoryID: 2cfb6f76-afe1-447f-b036-cd2e230d07d7 2 | owners: [] 3 | # - name: awsadmin1 4 | # email: artifacthub1@aws.com 5 | ignore: 6 | - name: karpenter-crd 7 | version: (?:^\d+$)|(?:^v?0\.0\.0)|(?:^v?\d+\-) 8 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter-crd/values.yaml: -------------------------------------------------------------------------------- 1 | webhook: 2 | # -- Whether to enable the webhooks. 3 | enabled: true 4 | serviceName: karpenter 5 | serviceNamespace: "" 6 | # -- The container port to use for the webhook. 7 | port: 8443 -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: [] 2 | digest: sha256:5595919ac269b4105dd65d20eb27cb271b8976c1d10903e0b504d349df30f017 3 | generated: "2020-12-02T11:48:25.741819-08:00" 4 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter/artifacthub-repo.yaml: -------------------------------------------------------------------------------- 1 | repositoryID: 356cb63f-9ee3-4956-9c20-003e416715c7 2 | owners: [] 3 | # - name: awsadmin1 4 | # email: artifacthub1@aws.com 5 | ignore: 6 | - name: karpenter 7 | version: (?:^\d+$)|(?:^v?0\.0\.0)|(?:^v?\d+\-) 8 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/karpenter/templates/secret-webhook-cert.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.webhook.enabled }} 2 | apiVersion: v1 3 | kind: Secret 4 | metadata: 5 | name: {{ include "karpenter.fullname" . }}-cert 6 | namespace: {{ .Release.Namespace }} 7 | labels: 8 | {{- include "karpenter.labels" . | nindent 4 }} 9 | {{- with .Values.additionalAnnotations }} 10 | annotations: 11 | {{- toYaml . | nindent 4 }} 12 | {{- end }} 13 | # data: {} # Injected by karpenter-webhook 14 | {{- end }} 15 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/prometheus-servicemonitor-crd/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/prometheus-servicemonitor-crd/templates/crd-servicemonitors.yaml: -------------------------------------------------------------------------------- 1 | ../../../../..//common/bootstrap/charts/kube-prometheus-stack/charts/crds/crds/crd-servicemonitors.yaml -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/q-storageclass-aws/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/charts/q-storageclass-aws/values.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: "" -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/backend.j2.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | backend "s3" { 3 | access_key = "{{ aws_access_key_tfstates_account }}" 4 | secret_key = "{{ aws_secret_key_tfstates_account }}" 5 | bucket = "{{ aws_terraform_backend_bucket }}" 6 | key = "{{ kubernetes_cluster_id }}/{{ aws_terraform_backend_bucket }}.tfstate" 7 | dynamodb_table = "{{ aws_terraform_backend_dynamodb_table }}" 8 | region = "{{ aws_region_tfstates_account }}" 9 | } 10 | } 11 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/eks-addons-vpc-kube-proxy.j2.tf: -------------------------------------------------------------------------------- 1 | resource "aws_eks_addon" "kube_proxy" { 2 | cluster_name = aws_eks_cluster.eks_cluster.name 3 | addon_name = "kube-proxy" 4 | 5 | # Pick the recommended version for the k8s version or override if set 6 | addon_version = "{{ eks_addon_kube_proxy.version }}" 7 | resolve_conflicts_on_update = "OVERWRITE" 8 | resolve_conflicts_on_create = "OVERWRITE" 9 | 10 | tags = local.tags_eks 11 | } 12 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/eks-master-sec-group-qovery-network.j2.tf: -------------------------------------------------------------------------------- 1 | {%- if not user_provided_network -%} 2 | 3 | resource "aws_security_group" "eks_cluster" { 4 | name = "qovery-eks-${var.kubernetes_cluster_id}" 5 | description = "Cluster communication with worker nodes" 6 | vpc_id = aws_vpc.eks.id 7 | 8 | egress { 9 | from_port = 0 10 | to_port = 0 11 | protocol = "-1" 12 | cidr_blocks = ["0.0.0.0/0"] 13 | } 14 | 15 | tags = local.tags_eks 16 | } 17 | 18 | {%- endif -%} 19 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/eks-master-sec-group-user-network.j2.tf: -------------------------------------------------------------------------------- 1 | {%- if user_provided_network -%} 2 | 3 | resource "aws_security_group" "eks_cluster" { 4 | name = "qovery-eks-${var.kubernetes_cluster_id}" 5 | description = "Cluster communication with worker nodes" 6 | vpc_id = data.aws_vpc.eks.id 7 | 8 | egress { 9 | from_port = 0 10 | to_port = 0 11 | protocol = "-1" 12 | cidr_blocks = ["0.0.0.0/0"] 13 | ipv6_cidr_blocks = ["::/0"] 14 | } 15 | 16 | tags = local.tags_eks 17 | } 18 | 19 | {%- endif -%} 20 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/eks-vpc-flow-logs.j2.tf: -------------------------------------------------------------------------------- 1 | {%- if not user_provided_network %} 2 | {%- if aws_enable_vpc_flow_logs %} 3 | # VPC flow logs 4 | resource "aws_flow_log" "eks_vpc_flow_logs" { 5 | log_destination = aws_s3_bucket.vpc_flow_logs.arn 6 | log_destination_type = "s3" 7 | traffic_type = "ALL" 8 | vpc_id = aws_vpc.eks.id 9 | } 10 | {% endif %} 11 | {% endif %} 12 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/eks-workers-sec-group-user-network.j2.tf: -------------------------------------------------------------------------------- 1 | {%- if user_provided_network -%} 2 | 3 | {%- endif -%} 4 | -------------------------------------------------------------------------------- /lib/aws/bootstrap/terraform/identity-provider.tf: -------------------------------------------------------------------------------- 1 | data "tls_certificate" "cluster_cert" { 2 | url = aws_eks_cluster.eks_cluster.identity[0].oidc[0].issuer 3 | } 4 | 5 | resource "aws_iam_openid_connect_provider" "oidc" { 6 | client_id_list = ["sts.amazonaws.com"] 7 | thumbprint_list = [data.tls_certificate.cluster_cert.certificates[0].sha1_fingerprint] 8 | url = aws_eks_cluster.eks_cluster.identity[0].oidc[0].issuer 9 | tags = local.tags_eks 10 | } -------------------------------------------------------------------------------- /lib/aws/services/mongodb/database-tf-config.j2.tf: -------------------------------------------------------------------------------- 1 | locals { 2 | database_tf_config = < Patch Job > ClusterRole 2 | templates: 3 | - admission-webhooks/job-patch/clusterrole.yaml 4 | 5 | tests: 6 | - it: should not create a ClusterRole if `controller.admissionWebhooks.patch.rbac.create` is false 7 | set: 8 | controller.admissionWebhooks.patch.rbac.create: false 9 | asserts: 10 | - hasDocuments: 11 | count: 0 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml: -------------------------------------------------------------------------------- 1 | suite: Admission Webhooks > Patch Job > ClusterRoleBinding 2 | templates: 3 | - admission-webhooks/job-patch/clusterrolebinding.yaml 4 | 5 | tests: 6 | - it: should not create a ClusterRoleBinding if `controller.admissionWebhooks.patch.rbac.create` is false 7 | set: 8 | controller.admissionWebhooks.patch.rbac.create: false 9 | asserts: 10 | - hasDocuments: 11 | count: 0 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml: -------------------------------------------------------------------------------- 1 | suite: Admission Webhooks > Patch Job > Role 2 | templates: 3 | - admission-webhooks/job-patch/role.yaml 4 | 5 | tests: 6 | - it: should not create a Role if `controller.admissionWebhooks.patch.rbac.create` is false 7 | set: 8 | controller.admissionWebhooks.patch.rbac.create: false 9 | asserts: 10 | - hasDocuments: 11 | count: 0 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml: -------------------------------------------------------------------------------- 1 | suite: Admission Webhooks > Patch Job > RoleBinding 2 | templates: 3 | - admission-webhooks/job-patch/rolebinding.yaml 4 | 5 | tests: 6 | - it: should not create a RoleBinding if `controller.admissionWebhooks.patch.rbac.create` is false 7 | set: 8 | controller.admissionWebhooks.patch.rbac.create: false 9 | asserts: 10 | - hasDocuments: 11 | count: 0 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/k8s-event-logger/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/k8s-event-logger/templates/clusterrole.yaml: -------------------------------------------------------------------------------- 1 | kind: ClusterRole 2 | apiVersion: rbac.authorization.k8s.io/v1 3 | metadata: 4 | name: {{ include "k8s-event-logger.fullname" . }} 5 | labels: 6 | app.kubernetes.io/name: {{ include "k8s-event-logger.name" . }} 7 | helm.sh/chart: {{ include "k8s-event-logger.chart" . }} 8 | app.kubernetes.io/instance: {{ .Release.Name }} 9 | app.kubernetes.io/managed-by: {{ .Release.Service }} 10 | rules: 11 | - apiGroups: [""] 12 | resources: ["events"] 13 | verbs: ["get", "list", "watch"] 14 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/k8s-event-logger/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | kind: ServiceAccount 2 | apiVersion: v1 3 | metadata: 4 | name: {{ include "k8s-event-logger.fullname" . }} 5 | labels: 6 | app.kubernetes.io/name: {{ include "k8s-event-logger.name" . }} 7 | helm.sh/chart: {{ include "k8s-event-logger.chart" . }} 8 | app.kubernetes.io/instance: {{ .Release.Name }} 9 | app.kubernetes.io/managed-by: {{ .Release.Service }} 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/.editorconfig: -------------------------------------------------------------------------------- 1 | root = true 2 | 3 | [files/dashboards/*.json] 4 | indent_size = 2 5 | indent_style = space -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/crds/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: crds 3 | version: 0.0.0 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/crds/README.md: -------------------------------------------------------------------------------- 1 | # crds subchart 2 | 3 | See: [https://github.com/prometheus-community/helm-charts/issues/3548](https://github.com/prometheus-community/helm-charts/issues/3548) 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .vscode 20 | .project 21 | .idea/ 22 | *.tmproj 23 | OWNERS 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/ci/default-values.yaml: -------------------------------------------------------------------------------- 1 | # Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml. 2 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/ci/with-extraconfigmapmounts-values.yaml: -------------------------------------------------------------------------------- 1 | extraConfigmapMounts: 2 | - name: '{{ include "grafana.fullname" . }}' 3 | configMap: '{{ include "grafana.fullname" . }}' 4 | mountPath: /var/lib/grafana/dashboards/test-dashboard.json 5 | # This is not a realistic test, but for this we only care about extraConfigmapMounts not being empty and pointing to an existing ConfigMap 6 | subPath: grafana.ini 7 | readOnly: true 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/ci/with-persistence.yaml: -------------------------------------------------------------------------------- 1 | persistence: 2 | type: pvc 3 | enabled: true 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/dashboards/custom-dashboard.json: -------------------------------------------------------------------------------- 1 | {} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraObjects }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/grafana/templates/secret-env.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.envRenderSecret }} 2 | apiVersion: v1 3 | kind: Secret 4 | metadata: 5 | name: {{ include "grafana.fullname" . }}-env 6 | namespace: {{ include "grafana.namespace" . }} 7 | labels: 8 | {{- include "grafana.labels" . | nindent 4 }} 9 | type: Opaque 10 | data: 11 | {{- range $key, $val := .Values.envRenderSecret }} 12 | {{ $key }}: {{ tpl ($val | toString) $ | b64enc | quote }} 13 | {{- end }} 14 | {{- end }} 15 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/kube-state-metrics/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/kube-state-metrics/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraManifests }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/kube-state-metrics/templates/kubeconfig-secret.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.kubeconfig.enabled -}} 2 | apiVersion: v1 3 | kind: Secret 4 | metadata: 5 | name: {{ template "kube-state-metrics.fullname" . }}-kubeconfig 6 | namespace: {{ template "kube-state-metrics.namespace" . }} 7 | labels: 8 | {{- include "kube-state-metrics.labels" . | indent 4 }} 9 | type: Opaque 10 | data: 11 | config: '{{ .Values.kubeconfig.secret }}' 12 | {{- end -}} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/common-labels-values.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | commonLabels: 3 | foo: bar 4 | baz: '{{ include "prometheus-node-exporter.fullname" . }}' 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/default-values.yaml: -------------------------------------------------------------------------------- 1 | ## Default values test case 2 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/networkpolicy-values.yaml: -------------------------------------------------------------------------------- 1 | networkPolicy: 2 | enabled: true 3 | ingress: 4 | - ports: 5 | - port: 9100 6 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/pod-labels-values.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | podLabels: 3 | foo: bar 4 | baz: '{{ .Chart.AppVersion }}' 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/port-values.yaml: -------------------------------------------------------------------------------- 1 | service: 2 | targetPort: 9102 3 | port: 9102 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/service-labels-values.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | service: 3 | labels: 4 | foo: bar 5 | baz: quux 6 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/ci/serviceport-values.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | service: 3 | servicePort: 80 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-node-exporter/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraManifests }} 2 | --- 3 | {{ tpl . $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-windows-exporter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/charts/prometheus-windows-exporter/templates/config.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: ConfigMap 3 | metadata: 4 | name: {{ include "prometheus-windows-exporter.fullname" . }} 5 | namespace: {{ include "prometheus-windows-exporter.namespace" . }} 6 | labels: 7 | {{- include "prometheus-windows-exporter.labels" $ | nindent 4 }} 8 | {{- with .Values.service.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | data: 13 | config.yml: | 14 | {{- .Values.config | nindent 4 }} 15 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/templates/NOTES.txt: -------------------------------------------------------------------------------- 1 | {{ $.Chart.Name }} has been installed. Check its status by running: 2 | kubectl --namespace {{ template "kube-prometheus-stack.namespace" . }} get pods -l "release={{ $.Release.Name }}" 3 | 4 | Visit https://github.com/prometheus-operator/kube-prometheus for instructions on how to create & configure Alertmanager and Prometheus instances using the Operator. 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/templates/extra-objects.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraManifests }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-prometheus-stack/templates/prometheus-operator/_prometheus-operator.tpl: -------------------------------------------------------------------------------- 1 | {{/* Generate basic labels for prometheus-operator */}} 2 | {{- define "kube-prometheus-stack.prometheus-operator.labels" }} 3 | {{- include "kube-prometheus-stack.labels" . }} 4 | app: {{ template "kube-prometheus-stack.name" . }}-operator 5 | app.kubernetes.io/name: {{ template "kube-prometheus-stack.name" . }}-prometheus-operator 6 | app.kubernetes.io/component: prometheus-operator 7 | {{- end }} 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-state-metrics/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-state-metrics/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraManifests }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/kube-state-metrics/templates/kubeconfig-secret.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.kubeconfig.enabled -}} 2 | apiVersion: v1 3 | kind: Secret 4 | metadata: 5 | name: {{ template "kube-state-metrics.fullname" . }}-kubeconfig 6 | namespace: {{ template "kube-state-metrics.namespace" . }} 7 | labels: 8 | {{- include "kube-state-metrics.labels" . | indent 4 }} 9 | type: Opaque 10 | data: 11 | config: '{{ .Values.kubeconfig.secret }}' 12 | {{- end -}} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: minio 3 | repository: https://charts.min.io/ 4 | version: 4.0.15 5 | - name: grafana-agent-operator 6 | repository: https://grafana.github.io/helm-charts 7 | version: 0.2.16 8 | digest: sha256:56eeb13a669bc816c1452cde5d6dddc61f6893f8aff3da1d2b56ce3bdcbcf84d 9 | generated: "2023-11-09T12:22:25.317696-03:00" 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/Makefile: -------------------------------------------------------------------------------- 1 | .DEFAULT_GOAL := all 2 | .PHONY: lint lint-yaml 3 | 4 | lint: lint-yaml 5 | 6 | lint-yaml: 7 | yamllint -c $(CURDIR)/src/.yamllint.yaml $(CURDIR)/src 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/grafana-agent-operator/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/grafana-agent-operator/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | appVersion: 0.34.1 3 | description: A Helm chart for Grafana Agent Operator 4 | home: https://grafana.com/docs/agent/v0.32/ 5 | icon: https://raw.githubusercontent.com/grafana/agent/v0.34.1/docs/sources/assets/logo_and_name.png 6 | maintainers: 7 | - email: grafana-agent-team@googlegroups.com 8 | name: Grafana Agent Team 9 | name: grafana-agent-operator 10 | sources: 11 | - https://github.com/grafana/agent/tree/v0.34.1/pkg/operator 12 | type: application 13 | version: 0.2.16 14 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/grafana-agent-operator/templates/operator-serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ template "ga-operator.serviceAccountName" . }} 6 | labels: 7 | {{ include "ga-operator.labels" . | indent 4 }} 8 | {{- end -}} 9 | 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/minio/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | # OWNERS file for Kubernetes 23 | OWNERS -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/minio/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | appVersion: RELEASE.2022-09-17T00-09-45Z 3 | description: Multi-Cloud Object Storage 4 | home: https://min.io 5 | icon: https://min.io/resources/img/logo/MINIO_wordmark.png 6 | keywords: 7 | - minio 8 | - storage 9 | - object-storage 10 | - s3 11 | - cluster 12 | maintainers: 13 | - email: dev@minio.io 14 | name: MinIO, Inc 15 | name: minio 16 | sources: 17 | - https://github.com/minio/minio 18 | version: 4.0.15 19 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/minio/templates/poddisruptionbudget.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.podDisruptionBudget.enabled }} 2 | apiVersion: policy/v1beta1 3 | kind: PodDisruptionBudget 4 | metadata: 5 | name: minio 6 | namespace: {{ .Release.Namespace | quote }} 7 | labels: 8 | app: {{ template "minio.name" . }} 9 | spec: 10 | maxUnavailable: {{ .Values.podDisruptionBudget.maxUnavailable }} 11 | selector: 12 | matchLabels: 13 | app: {{ template "minio.name" . }} 14 | {{- end }} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/charts/minio/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ .Values.serviceAccount.name | quote }} 6 | namespace: {{ .Release.Namespace | quote }} 7 | {{- end -}} 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/docs/examples/README.md: -------------------------------------------------------------------------------- 1 | ## Introduction 2 | The Helm Charts found under the examples directory are getting started examples which you can use to deploy Loki using the Simple Scalable architecture quickly. Currently, the examples include: 3 | - [Deploying Grafana Enterprise Logs (Loki in Enterprise mode)](https://github.com/grafana/loki/tree/main/production/helm/loki/docs/examples/enterprise) 4 | - [Deploying Loki OSS](https://github.com/grafana/loki/tree/main/production/helm/loki/docs/examples/oss) 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/docs/examples/enterprise/enterprise-secrets.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: gel-secrets 5 | type: Opaque 6 | stringData: 7 | gcp_service_account.json: | 8 | { 9 | GCP_SERVICE_ACCOUNT_JSON_HERE 10 | } 11 | 12 | license.jwt: LICENSE_HERE 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/docs/examples/oss/oss-secrets.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: loki-secrets 5 | type: Opaque 6 | stringData: 7 | gcp_service_account.json: | 8 | { 9 | GCP_SERVICE_ACCOUNT_JSON_HERE 10 | } -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/src/.yamllint.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | rules: 3 | quoted-strings: 4 | required: true 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraObjects }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/gateway/configmap-gateway.yaml: -------------------------------------------------------------------------------- 1 | {{- if and .Values.gateway.enabled }} 2 | apiVersion: v1 3 | kind: ConfigMap 4 | metadata: 5 | name: {{ include "loki.gatewayFullname" . }} 6 | namespace: {{ $.Release.Namespace }} 7 | labels: 8 | {{- include "loki.gatewayLabels" . | nindent 4 }} 9 | data: 10 | nginx.conf: | 11 | {{- tpl .Values.gateway.nginxConfig.file . | indent 2 }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/gateway/secret-gateway.yaml: -------------------------------------------------------------------------------- 1 | {{- with .Values.gateway }} 2 | {{- if and .enabled .basicAuth.enabled (not .basicAuth.existingSecret) }} 3 | apiVersion: v1 4 | kind: Secret 5 | metadata: 6 | name: {{ include "loki.gatewayFullname" $ }} 7 | namespace: {{ $.Release.Namespace }} 8 | labels: 9 | {{- include "loki.gatewayLabels" $ | nindent 4 }} 10 | stringData: 11 | .htpasswd: | 12 | {{- tpl .basicAuth.htpasswd $ | nindent 4 }} 13 | {{- end }} 14 | {{- end }} 15 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/monitoring/dashboards/_helpers-dashboards.tpl: -------------------------------------------------------------------------------- 1 | {{/* 2 | dashboards name 3 | */}} 4 | {{- define "loki.dashboardsName" -}} 5 | {{ include "loki.name" . }}-dashboards 6 | {{- end }} 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/runtime-configmap.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: ConfigMap 3 | metadata: 4 | name: {{ include "loki.name" . }}-runtime 5 | namespace: {{ $.Release.Namespace }} 6 | labels: 7 | {{- include "loki.labels" . | nindent 4 }} 8 | data: 9 | runtime-config.yaml: | 10 | {{- tpl (toYaml .Values.loki.runtimeConfig) . | nindent 4 }} 11 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/secret-license.yaml: -------------------------------------------------------------------------------- 1 | {{- if and (not .Values.enterprise.useExternalLicense) .Values.enterprise.enabled -}} 2 | apiVersion: v1 3 | kind: Secret 4 | metadata: 5 | name: enterprise-logs-license 6 | namespace: {{ $.Release.Namespace }} 7 | labels: 8 | {{- include "loki.labels" . | nindent 4 }} 9 | data: 10 | license.jwt: {{ .Values.enterprise.license.contents | b64enc }} 11 | {{- end }} 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/loki/templates/tests/_helpers.tpl: -------------------------------------------------------------------------------- 1 | {{/* 2 | Docker image name for loki helm test 3 | */}} 4 | {{- define "loki.helmTestImage" -}} 5 | {{- $dict := dict "service" .Values.test.image "global" .Values.global.image "defaultVersion" "latest" -}} 6 | {{- include "loki.baseImage" $dict -}} 7 | {{- end -}} 8 | 9 | 10 | {{/* 11 | test common labels 12 | */}} 13 | {{- define "loki.helmTestLabels" -}} 14 | {{ include "loki.labels" . }} 15 | app.kubernetes.io/component: helm-test 16 | {{- end }} 17 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/metrics-server/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/metrics-server/RELEASE.md: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/metrics-server/ci/ci-values.yaml: -------------------------------------------------------------------------------- 1 | args: 2 | - --kubelet-insecure-tls 3 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/metrics-server/templates/NOTES.txt: -------------------------------------------------------------------------------- 1 | *********************************************************************** 2 | * Metrics Server * 3 | *********************************************************************** 4 | Chart version: {{ .Chart.Version }} 5 | App version: {{ .Chart.AppVersion }} 6 | Image tag: {{ include "metrics-server.image" . }} 7 | *********************************************************************** 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/metrics-server/templates/clusterrole-nanny.yaml: -------------------------------------------------------------------------------- 1 | {{- if and .Values.rbac.create .Values.addonResizer.enabled -}} 2 | apiVersion: rbac.authorization.k8s.io/v1 3 | kind: ClusterRole 4 | metadata: 5 | name: {{ printf "system:%s-nanny" (include "metrics-server.fullname" .) }} 6 | labels: 7 | {{- include "metrics-server.labels" . | nindent 4 }} 8 | rules: 9 | - nonResourceURLs: 10 | - /metrics 11 | verbs: 12 | - get 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-adapter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-adapter/ci/default-values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Qovery/engine/7600f55260801dca7c94373e08a1cc01708ee28f/lib/common/bootstrap/charts/prometheus-adapter/ci/default-values.yaml -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-adapter/ci/external-rules-values.yaml: -------------------------------------------------------------------------------- 1 | rules: 2 | external: 3 | - seriesQuery: '{__name__=~"^some_metric_count$"}' 4 | resources: 5 | template: <<.Resource>> 6 | name: 7 | matches: "" 8 | as: "my_custom_metric" 9 | metricsQuery: sum(<<.Series>>{<<.LabelMatchers>>}) by (<<.GroupBy>>) 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-adapter/templates/NOTES.txt: -------------------------------------------------------------------------------- 1 | {{ template "k8s-prometheus-adapter.fullname" . }} has been deployed. 2 | In a few minutes you should be able to list metrics using the following command(s): 3 | {{ if .Values.rules.resource }} 4 | kubectl get --raw /apis/metrics.k8s.io/v1beta1 5 | {{- end }} 6 | kubectl get --raw /apis/custom.metrics.k8s.io/v1beta1 7 | {{ if .Values.rules.external }} 8 | kubectl get --raw /apis/external.metrics.k8s.io/v1beta1 9 | {{- end }} 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: nginx 3 | repository: https://charts.bitnami.com/bitnami 4 | version: 15.3.4 5 | digest: sha256:c5ee96dcdfa5a8ef4aa0a91e734ddedeb3c43f04fa29775a9ec6465f5eeb0192 6 | generated: "2023-10-15T13:18:06.969016+03:00" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/charts/nginx/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/charts/nginx/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.13.2 5 | digest: sha256:551ae9c020597fd0a1d62967d9899a3c57a12e92f49e7a3967b6a187efdcaead 6 | generated: "2023-10-09T20:20:43.008542294Z" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/charts/nginx/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/charts/nginx/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | # Copyright VMware, Inc. 2 | # SPDX-License-Identifier: APACHE-2.0 3 | 4 | ## bitnami/common 5 | ## It is required by CI/CD tools and processes. 6 | ## @skip exampleValue 7 | ## 8 | exampleValue: common-chart 9 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/charts/nginx/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- /* 2 | Copyright VMware, Inc. 3 | SPDX-License-Identifier: APACHE-2.0 4 | */}} 5 | 6 | {{- range .Values.extraDeploy }} 7 | --- 8 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 9 | {{- end }} 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/ci/ci-values.yaml: -------------------------------------------------------------------------------- 1 | nginxServer: http://ci-nginx:8080/stub_status 2 | 3 | nginx: 4 | enabled: true 5 | 6 | fullnameOverride: ci-nginx 7 | 8 | service: 9 | type: ClusterIP 10 | ports: 11 | http: 8080 12 | 13 | serverBlock: |- 14 | server { 15 | listen 0.0.0.0:8080; 16 | root /app; 17 | location / { 18 | index index.html; 19 | } 20 | location /stub_status { 21 | stub_status on; 22 | } 23 | } 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-nginx-exporter/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | {{- if .Values.serviceAccount.create -}} 3 | apiVersion: v1 4 | kind: ServiceAccount 5 | metadata: 6 | {{- with .Values.additionalAnnotations }} 7 | annotations: {{ toYaml . | nindent 4 }} 8 | {{- end }} 9 | labels: 10 | {{- include "prometheus-nginx-exporter.labels" . | indent 4 }} 11 | name: {{ template "prometheus-nginx-exporter.serviceAccountName" . }} 12 | namespace: {{ template "prometheus-nginx-exporter.namespace" . }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-operator-crds/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-operator-crds/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: crds 3 | repository: "" 4 | version: 0.0.0 5 | digest: sha256:aeada3fbffa2565a325406ad014001fd2685f7c0c9cfc1167da4f10c75a1bd65 6 | generated: "2024-12-18T18:36:25.339242935Z" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-operator-crds/charts/crds/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: crds 3 | version: 0.0.0 4 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-operator-crds/ci/lint.sh: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | 3 | set -euo pipefail 4 | 5 | { 6 | SCRIPT_DIR=$(cd -- "$(dirname -- "${BASH_SOURCE[0]}")" &>/dev/null && pwd) 7 | 8 | cd "${SCRIPT_DIR}/../" 9 | 10 | ./hack/update_crds.sh 11 | if ! git diff "$GITHUB_SHA" --color=always --exit-code; then 12 | echo "Please run ./hack/update_crds.sh" 13 | exit 1 14 | fi 15 | } 2>&1 16 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/prometheus-operator-crds/values.yaml: -------------------------------------------------------------------------------- 1 | ## Annotations for CRDs 2 | ## 3 | crds: 4 | annotations: {} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/ci/autoscaled-deployment-values.yaml: -------------------------------------------------------------------------------- 1 | daemonset: 2 | enabled: false 3 | deployment: 4 | enabled: true 5 | autoscaling: 6 | enabled: true 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/ci/default-values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Qovery/engine/7600f55260801dca7c94373e08a1cc01708ee28f/lib/common/bootstrap/charts/promtail/ci/default-values.yaml -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/ci/deployment-values.yaml: -------------------------------------------------------------------------------- 1 | daemonset: 2 | enabled: false 3 | deployment: 4 | enabled: true 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/templates/clusterrole.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.rbac.create }} 2 | kind: ClusterRole 3 | apiVersion: rbac.authorization.k8s.io/v1 4 | metadata: 5 | name: {{ include "promtail.fullname" . }} 6 | labels: 7 | {{- include "promtail.labels" . | nindent 4 }} 8 | rules: 9 | - apiGroups: 10 | - "" 11 | resources: 12 | - nodes 13 | - nodes/proxy 14 | - services 15 | - endpoints 16 | - pods 17 | verbs: 18 | - get 19 | - watch 20 | - list 21 | {{- end }} 22 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/templates/configmap.yaml: -------------------------------------------------------------------------------- 1 | {{- if and .Values.config.enabled .Values.configmap.enabled }} 2 | apiVersion: v1 3 | kind: ConfigMap 4 | metadata: 5 | name: {{ include "promtail.fullname" . }} 6 | namespace: {{ include "promtail.namespaceName" . }} 7 | labels: 8 | {{- include "promtail.labels" . | nindent 4 }} 9 | data: 10 | promtail.yaml: | 11 | {{- tpl .Values.config.file . | nindent 4 }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/templates/extra-manifests.yaml: -------------------------------------------------------------------------------- 1 | {{ range .Values.extraObjects }} 2 | --- 3 | {{ tpl (toYaml .) $ }} 4 | {{ end }} 5 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/promtail/templates/podsecuritypolicy.yaml: -------------------------------------------------------------------------------- 1 | {{- if and (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") .Values.rbac.create .Values.rbac.pspEnabled }} 2 | apiVersion: policy/v1beta1 3 | kind: PodSecurityPolicy 4 | metadata: 5 | name: {{ include "promtail.fullname" . }} 6 | labels: 7 | {{- include "promtail.labels" . | nindent 4 }} 8 | spec: 9 | {{- toYaml .Values.podSecurityPolicy | nindent 2 }} 10 | {{- end }} 11 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cert-manager-webhook/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | appVersion: "0.1.16" 3 | description: Cert-Manager webhook for Qovery 4 | name: qovery-cert-manager-webhook 5 | version: 0.1.16 6 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cluster-agent/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cluster-agent/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: qovery-cluster-agent 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.1.0 6 | appVersion: 0.1.0 -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cluster-agent/templates/secret.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: {{ include "qovery-cluster-agent.fullname" . }} 5 | namespace: {{ .Values.namespace }} 6 | labels: 7 | {{- include "qovery-cluster-agent.labels" . | nindent 4 }} 8 | type: Opaque 9 | stringData: 10 | {{- toYaml .Values.environmentVariables | nindent 2 }} 11 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cluster-agent/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: {{ include "qovery-cluster-agent.fullname" . }}-service 5 | namespace: qovery 6 | spec: 7 | selector: 8 | {{- include "qovery-cluster-agent.selectorLabels" . | nindent 6 }} 9 | ports: 10 | - protocol: TCP 11 | port: 443 12 | targetPort: 8080 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-cluster-agent/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ include "qovery-cluster-agent.serviceAccountName" . }} 6 | labels: 7 | {{- include "qovery-cluster-agent.labels" . | nindent 4 }} 8 | {{- with .Values.serviceAccount.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: qovery-engine 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.0.0 6 | appVersion: 0.0.0 -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/templates/priotiyclass.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.overprovisionning.enabled }} 2 | apiVersion: scheduling.k8s.io/v1 3 | kind: PriorityClass 4 | metadata: 5 | name: qovery-engine-overprovisioning 6 | value: -1 7 | globalDefault: false 8 | {{- end }} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/templates/secret.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: {{ include "qovery-engine.fullname" . }} 5 | labels: 6 | {{- include "qovery-engine.labels" . | nindent 4 }} 7 | type: Opaque 8 | stringData: 9 | {{- toYaml .Values.environmentVariables | nindent 2 }} 10 | {{- toYaml .Values.buildContainer.environmentVariables | nindent 2 }} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/templates/service.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.metrics.enabled }} 2 | apiVersion: v1 3 | kind: Service 4 | metadata: 5 | name: qovery-engine 6 | labels: 7 | {{- include "qovery-engine.labels" . | nindent 4 }} 8 | spec: 9 | ports: 10 | - name: {{ .Values.metrics.portName }} 11 | port: {{ .Values.metrics.port }} 12 | targetPort: {{ .Values.metrics.port }} 13 | protocol: TCP 14 | selector: 15 | app.kubernetes.io/instance: qovery-engine 16 | {{- end }} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-engine/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ include "qovery-engine.serviceAccountName" . }} 6 | labels: 7 | {{- include "qovery-engine.labels" . | nindent 4 }} 8 | {{- with .Values.serviceAccount.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-portal/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-portal/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | appVersion: 0.1.0 3 | description: Provide an oauth proxy in order to access a cluster's metrics tools 4 | home: https://github.com/Qovery/ 5 | name: qovery-portal 6 | type: application 7 | version: 0.1.0 8 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-portal/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ include "kubernetes.serviceAccountName" . }} 6 | labels: 7 | {{- include "kubernetes.labels" . | nindent 4 }} 8 | {{- with .Values.serviceAccount.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-priority-class/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-priority-class/values.yaml: -------------------------------------------------------------------------------- 1 | priorityClass: 2 | highPriority: 3 | enable: true 4 | standardPriority: 5 | enable: true -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-shell-agent/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-shell-agent/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: qovery-shell-agent 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.1.0 6 | appVersion: 0.1.0 -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-shell-agent/templates/secret.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Secret 3 | metadata: 4 | name: {{ include "qovery-shell-agent.fullname" . }} 5 | namespace: {{ .Values.namespace }} 6 | labels: 7 | {{- include "qovery-shell-agent.labels" . | nindent 4 }} 8 | type: Opaque 9 | stringData: 10 | {{- toYaml .Values.environmentVariables | nindent 2 }} -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/qovery-shell-agent/templates/serviceaccount.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.serviceAccount.create -}} 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: {{ include "qovery-shell-agent.serviceAccountName" . }} 6 | labels: 7 | {{- include "qovery-shell-agent.labels" . | nindent 4 }} 8 | {{- with .Values.serviceAccount.annotations }} 9 | annotations: 10 | {{- toYaml . | nindent 4 }} 11 | {{- end }} 12 | {{- end }} 13 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | # img folder 23 | img/ 24 | # Changelog 25 | CHANGELOG.md 26 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: minio 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 15.0.1 5 | - name: common 6 | repository: oci://registry-1.docker.io/bitnamicharts 7 | version: 2.29.1 8 | digest: sha256:8dfe150bd6d06a04f88500c0e98b7d19aad974985312b33671420d7567af1368 9 | generated: "2025-02-05T03:48:53.327315713Z" 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | # img folder 24 | img/ 25 | # Changelog 26 | CHANGELOG.md 27 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | # Copyright Broadcom, Inc. All Rights Reserved. 2 | # SPDX-License-Identifier: APACHE-2.0 3 | 4 | ## bitnami/common 5 | ## It is required by CI/CD tools and processes. 6 | ## @skip exampleValue 7 | ## 8 | exampleValue: common-chart 9 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/minio/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | # img folder 23 | img/ 24 | # Changelog 25 | CHANGELOG.md 26 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/minio/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.29.1 5 | digest: sha256:0d3abbd4a9bdc95c1a5f504d253e347f723d9565222939020973dd3c4e1dd1f4 6 | generated: "2025-01-29T11:03:09.948463749Z" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/minio/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | # img folder 24 | img/ 25 | # Changelog 26 | CHANGELOG.md 27 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/minio/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | # Copyright Broadcom, Inc. All Rights Reserved. 2 | # SPDX-License-Identifier: APACHE-2.0 3 | 4 | ## bitnami/common 5 | ## It is required by CI/CD tools and processes. 6 | ## @skip exampleValue 7 | ## 8 | exampleValue: common-chart 9 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/charts/minio/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- /* 2 | Copyright Broadcom, Inc. All Rights Reserved. 3 | SPDX-License-Identifier: APACHE-2.0 4 | */}} 5 | 6 | {{- range .Values.extraDeploy }} 7 | --- 8 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 9 | {{- end }} 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/thanos/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- /* 2 | Copyright Broadcom, Inc. All Rights Reserved. 3 | SPDX-License-Identifier: APACHE-2.0 4 | */}} 5 | 6 | {{- range .Values.extraDeploy }} 7 | --- 8 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 9 | {{- end }} 10 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler-configs/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler-configs/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: vertical-pod-autoscaler-configs 3 | description: A Helm chart for VPA configs 4 | type: application 5 | version: 0.1.0 6 | appVersion: "0.1.0" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler-configs/values.yaml: -------------------------------------------------------------------------------- 1 | vpa_config: 2 | [] 3 | #- targetRefName: "xxx" 4 | # targetRefApiVersion: "apps/v1" 5 | # targetRefKind: "Deployment" 6 | # containerName: "*" 7 | # minAllowedCpu: "50m" 8 | # minAllowedMemory: "200Mi" 9 | # maxAllowedCpu: "50m" 10 | # maxAllowedMemory: "200Mi" 11 | # controlledResources: ["cpu", "memory"] 12 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: metrics-server 3 | repository: https://kubernetes-sigs.github.io/metrics-server/ 4 | version: 3.11.0 5 | digest: sha256:8e75a50c785978534cc73098c2c0d9f366060e8799348a794c819f986a133029 6 | generated: "2023-08-16T10:36:48.403971-06:00" 7 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/charts/metrics-server/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/charts/metrics-server/ci/ci-values.yaml: -------------------------------------------------------------------------------- 1 | args: 2 | - --kubelet-insecure-tls 3 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/charts/metrics-server/templates/clusterrole-nanny.yaml: -------------------------------------------------------------------------------- 1 | {{- if and .Values.rbac.create .Values.addonResizer.enabled -}} 2 | apiVersion: rbac.authorization.k8s.io/v1 3 | kind: ClusterRole 4 | metadata: 5 | name: {{ printf "system:%s-nanny" (include "metrics-server.fullname" .) }} 6 | labels: 7 | {{- include "metrics-server.labels" . | nindent 4 }} 8 | rules: 9 | - nonResourceURLs: 10 | - /metrics 11 | verbs: 12 | - get 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/bootstrap/charts/vertical-pod-autoscaler/templates/admission-controller-service.yaml: -------------------------------------------------------------------------------- 1 | {{- if .Values.admissionController.enabled }} 2 | apiVersion: v1 3 | kind: Service 4 | metadata: 5 | name: {{ include "vpa.fullname" . }}-webhook 6 | spec: 7 | ports: 8 | - port: 443 9 | targetPort: {{ .Values.admissionController.httpPort | default 8000 }} 10 | selector: 11 | app.kubernetes.io/component: admission-controller 12 | {{- include "vpa.selectorLabels" . | nindent 4 }} 13 | {{- end }} 14 | -------------------------------------------------------------------------------- /lib/common/charts/external-name-svc/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/charts/external-name-svc/values.j2.yaml: -------------------------------------------------------------------------------- 1 | target_hostname: "" 2 | source_fqdn: "" 3 | service_name: "" 4 | envId: "" 5 | envLongId: "" 6 | projectLongId: "" 7 | #appId: "" 8 | #appLongId: "" 9 | #databaseId: "" 10 | #databaseLongId: "" 11 | publicly_accessible: {{ publicly_accessible }} -------------------------------------------------------------------------------- /lib/common/charts/q-container/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/charts/q-container/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: q-container 3 | description: A Qovery Helm chart for Kubernetes deployments 4 | type: application 5 | version: 0.2.0 6 | appVersion: 0.1.0 7 | icon: https://uploads-ssl.webflow.com/5de176bfd41c9b0a91bbb0a4/5de17c383719a1490cdb4b82_qovery%20logo-svg%202.png 8 | -------------------------------------------------------------------------------- /lib/common/charts/q-container/values.yaml: -------------------------------------------------------------------------------- 1 | # Don't add anyhting here 2 | # Jinja2 is taken on behalf of Go template 3 | -------------------------------------------------------------------------------- /lib/common/charts/q-ingress-tls/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/charts/q-ingress-tls/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: q-ingress-tls 3 | description: A Qovery Helm chart for Kubernetes deployments 4 | type: application 5 | version: 0.2.0 6 | icon: https://uploads-ssl.webflow.com/5de176bfd41c9b0a91bbb0a4/5de17c383719a1490cdb4b82_qovery%20logo-svg%202.png 7 | -------------------------------------------------------------------------------- /lib/common/charts/q-ingress-tls/values.yaml: -------------------------------------------------------------------------------- 1 | # Don't add anyhting here(git hash-object -t tree /dev/null) 2 | # Jinja2 is taken on behalf of Go template 3 | -------------------------------------------------------------------------------- /lib/common/charts/q-job/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/charts/q-job/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: q-job 3 | description: A Qovery Helm chart for Kubernetes jobs 4 | type: application 5 | version: 0.2.0 6 | appVersion: 0.1.0 7 | icon: https://uploads-ssl.webflow.com/5de176bfd41c9b0a91bbb0a4/5de17c383719a1490cdb4b82_qovery%20logo-svg%202.png 8 | -------------------------------------------------------------------------------- /lib/common/charts/q-job/values.yaml: -------------------------------------------------------------------------------- 1 | # Don't add anyhting here 2 | # Jinja2 is taken on behalf of Go template 3 | -------------------------------------------------------------------------------- /lib/common/charts/q-terraform-service/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/charts/q-terraform-service/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: q-terraform-service 3 | description: A Qovery Helm chart for Qovery Terraform Service 4 | type: application 5 | version: 0.2.0 6 | appVersion: 0.1.0 7 | icon: https://uploads-ssl.webflow.com/5de176bfd41c9b0a91bbb0a4/5de17c383719a1490cdb4b82_qovery%20logo-svg%202.png 8 | -------------------------------------------------------------------------------- /lib/common/charts/q-terraform-service/values.yaml: -------------------------------------------------------------------------------- 1 | # Don't add anyhting here 2 | # Jinja2 is taken on behalf of Go template 3 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.4.0 5 | digest: sha256:8c1a5dc923412d11d4d841420494b499cb707305c8b9f87f45ea1a8bf3172cb3 6 | generated: "2023-05-21T17:53:42.156234762Z" 7 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/charts/common/templates/_tplvalues.tpl: -------------------------------------------------------------------------------- 1 | {{/* vim: set filetype=mustache: */}} 2 | {{/* 3 | Renders a value that contains template. 4 | Usage: 5 | {{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }} 6 | */}} 7 | {{- define "common.tplvalues.render" -}} 8 | {{- if typeIs "string" .value }} 9 | {{- tpl .value .context }} 10 | {{- else }} 11 | {{- tpl (.value | toYaml) .context }} 12 | {{- end }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | ## bitnami/common 2 | ## It is required by CI/CD tools and processes. 3 | ## @skip exampleValue 4 | ## 5 | exampleValue: common-chart 6 | -------------------------------------------------------------------------------- /lib/common/services/mongodb/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- range .Values.extraDeploy }} 2 | --- 3 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 4 | {{- end }} 5 | -------------------------------------------------------------------------------- /lib/common/services/mysql/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/services/mysql/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.4.0 5 | digest: sha256:8c1a5dc923412d11d4d841420494b499cb707305c8b9f87f45ea1a8bf3172cb3 6 | generated: "2023-05-21T16:18:55.681404482Z" 7 | -------------------------------------------------------------------------------- /lib/common/services/mysql/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/services/mysql/charts/common/templates/_tplvalues.tpl: -------------------------------------------------------------------------------- 1 | {{/* vim: set filetype=mustache: */}} 2 | {{/* 3 | Renders a value that contains template. 4 | Usage: 5 | {{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }} 6 | */}} 7 | {{- define "common.tplvalues.render" -}} 8 | {{- if typeIs "string" .value }} 9 | {{- tpl .value .context }} 10 | {{- else }} 11 | {{- tpl (.value | toYaml) .context }} 12 | {{- end }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/services/mysql/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | ## bitnami/common 2 | ## It is required by CI/CD tools and processes. 3 | ## @skip exampleValue 4 | ## 5 | exampleValue: common-chart 6 | -------------------------------------------------------------------------------- /lib/common/services/mysql/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- range .Values.extraDeploy }} 2 | --- 3 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 4 | {{- end }} 5 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.2.5 5 | digest: sha256:318f438acfeaced11d9060877d615caf1985417d2865810defaa886d3496f8d3 6 | generated: "2023-05-08T19:26:58.084687094Z" 7 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/charts/common/templates/_tplvalues.tpl: -------------------------------------------------------------------------------- 1 | {{/* vim: set filetype=mustache: */}} 2 | {{/* 3 | Renders a value that contains template. 4 | Usage: 5 | {{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }} 6 | */}} 7 | {{- define "common.tplvalues.render" -}} 8 | {{- if typeIs "string" .value }} 9 | {{- tpl .value .context }} 10 | {{- else }} 11 | {{- tpl (.value | toYaml) .context }} 12 | {{- end }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | ## bitnami/common 2 | ## It is required by CI/CD tools and processes. 3 | ## @skip exampleValue 4 | ## 5 | exampleValue: common-chart 6 | -------------------------------------------------------------------------------- /lib/common/services/postgresql/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- range .Values.extraDeploy }} 2 | --- 3 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 4 | {{- end }} 5 | -------------------------------------------------------------------------------- /lib/common/services/q-job/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/common/services/q-job/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Qovery/engine/7600f55260801dca7c94373e08a1cc01708ee28f/lib/common/services/q-job/values.yaml -------------------------------------------------------------------------------- /lib/common/services/redis/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | -------------------------------------------------------------------------------- /lib/common/services/redis/Chart.lock: -------------------------------------------------------------------------------- 1 | dependencies: 2 | - name: common 3 | repository: oci://registry-1.docker.io/bitnamicharts 4 | version: 2.4.0 5 | digest: sha256:8c1a5dc923412d11d4d841420494b499cb707305c8b9f87f45ea1a8bf3172cb3 6 | generated: "2023-05-21T16:05:08.152199835Z" 7 | -------------------------------------------------------------------------------- /lib/common/services/redis/charts/common/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *~ 18 | # Various IDEs 19 | .project 20 | .idea/ 21 | *.tmproj 22 | .vscode/ 23 | -------------------------------------------------------------------------------- /lib/common/services/redis/charts/common/templates/_tplvalues.tpl: -------------------------------------------------------------------------------- 1 | {{/* vim: set filetype=mustache: */}} 2 | {{/* 3 | Renders a value that contains template. 4 | Usage: 5 | {{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }} 6 | */}} 7 | {{- define "common.tplvalues.render" -}} 8 | {{- if typeIs "string" .value }} 9 | {{- tpl .value .context }} 10 | {{- else }} 11 | {{- tpl (.value | toYaml) .context }} 12 | {{- end }} 13 | {{- end -}} 14 | -------------------------------------------------------------------------------- /lib/common/services/redis/charts/common/values.yaml: -------------------------------------------------------------------------------- 1 | ## bitnami/common 2 | ## It is required by CI/CD tools and processes. 3 | ## @skip exampleValue 4 | ## 5 | exampleValue: common-chart 6 | -------------------------------------------------------------------------------- /lib/common/services/redis/img/redis-cluster-topology.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Qovery/engine/7600f55260801dca7c94373e08a1cc01708ee28f/lib/common/services/redis/img/redis-cluster-topology.png -------------------------------------------------------------------------------- /lib/common/services/redis/img/redis-topology.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Qovery/engine/7600f55260801dca7c94373e08a1cc01708ee28f/lib/common/services/redis/img/redis-topology.png -------------------------------------------------------------------------------- /lib/common/services/redis/templates/extra-list.yaml: -------------------------------------------------------------------------------- 1 | {{- range .Values.extraDeploy }} 2 | --- 3 | {{ include "common.tplvalues.render" (dict "value" . "context" $) }} 4 | {{- end }} 5 | -------------------------------------------------------------------------------- /lib/gcp/bootstrap/chart_values/q-storageclass.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: set-by-engine-code 2 | -------------------------------------------------------------------------------- /lib/gcp/bootstrap/charts/q-storageclass-gcp/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/gcp/bootstrap/charts/q-storageclass-gcp/values.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: "" -------------------------------------------------------------------------------- /lib/gcp/bootstrap/terraform/backend.j2.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | backend "s3" { 3 | access_key = "{{ aws_access_key_tfstates_account }}" 4 | secret_key = "{{ aws_secret_key_tfstates_account }}" 5 | bucket = "{{ aws_terraform_backend_bucket }}" 6 | key = "{{ kubernetes_cluster_id }}/{{ aws_terraform_backend_bucket }}.tfstate" 7 | dynamodb_table = "{{ aws_terraform_backend_dynamodb_table }}" 8 | region = "{{ aws_region_tfstates_account }}" 9 | } 10 | } 11 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/chart_values/coredns-config.yaml: -------------------------------------------------------------------------------- 1 | declare_node_hosts: set-by-engine-code 2 | managed_dns: set-by-engine-code 3 | managed_dns_resolvers: set-by-engine-code 4 | extra_config: null # set-by-engine-code 5 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/chart_values/q-storageclass.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: set-by-engine-code 2 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/coredns-config/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/coredns-config/Chart.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v2 2 | name: coredns-config 3 | description: A Helm chart for Kubernetes 4 | type: application 5 | version: 0.1.1 6 | appVersion: 0.1 7 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/coredns-config/templates/pdb.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: policy/v1 2 | kind: PodDisruptionBudget 3 | metadata: 4 | name: coredns-pdb 5 | namespace: kube-system 6 | labels: 7 | k8s-app: kube-dns 8 | kubernetes.io/name: CoreDNS 9 | spec: 10 | selector: 11 | matchLabels: 12 | k8s-app: kube-dns 13 | maxUnavailable: 1 14 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/coredns-config/values.yaml: -------------------------------------------------------------------------------- 1 | # Declare node hosts 2 | declare_node_hosts: false 3 | # List of managed DNS 4 | managed_dns: [] 5 | # List of resolvers 6 | managed_dns_resolvers: [] 7 | # Extra config from advanced settings 8 | extra_config: "" 9 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/q-storageclass-scaleway/.helmignore: -------------------------------------------------------------------------------- 1 | # Patterns to ignore when building packages. 2 | # This supports shell glob matching, relative path matching, and 3 | # negation (prefixed with !). Only one pattern per line. 4 | .DS_Store 5 | # Common VCS dirs 6 | .git/ 7 | .gitignore 8 | .bzr/ 9 | .bzrignore 10 | .hg/ 11 | .hgignore 12 | .svn/ 13 | # Common backup files 14 | *.swp 15 | *.bak 16 | *.tmp 17 | *.orig 18 | *~ 19 | # Various IDEs 20 | .project 21 | .idea/ 22 | *.tmproj 23 | .vscode/ 24 | -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/charts/q-storageclass-scaleway/values.yaml: -------------------------------------------------------------------------------- 1 | defaultStorageClassName: "" -------------------------------------------------------------------------------- /lib/scaleway/bootstrap/terraform/backend.j2.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | backend "s3" { 3 | access_key = "{{ aws_access_key_tfstates_account }}" 4 | secret_key = "{{ aws_secret_key_tfstates_account }}" 5 | bucket = "{{ aws_terraform_backend_bucket }}" 6 | key = "{{ kubernetes_cluster_id }}/{{ aws_terraform_backend_bucket }}.tfstate" 7 | dynamodb_table = "{{ aws_terraform_backend_dynamodb_table }}" 8 | region = "{{ aws_region_tfstates_account }}" 9 | } 10 | } -------------------------------------------------------------------------------- /lib/scaleway/services/common/backend.j2.tf: -------------------------------------------------------------------------------- 1 | terraform { 2 | backend "kubernetes" { 3 | secret_suffix = "{{ tfstate_suffix_name }}" 4 | load_config_file = true 5 | config_path = "{{ kubeconfig_path }}" 6 | namespace = "{{ namespace }}" 7 | } 8 | } 9 | -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/cert-manager-configs.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: cert-manager-configs 2 | externalDnsProvider: pdns # Qovery DNS 3 | namespace: "qovery" 4 | managedDns: [*domain] 5 | acme: 6 | letsEncrypt: 7 | emailReport: *acmeEmailAddr 8 | # set the Let's Encrypt URL 9 | # Test: https://acme-staging-v02.api.letsencrypt.org/directory 10 | # Prod: 11 | acmeUrl: https://acme-v02.api.letsencrypt.org/directory 12 | provider: 13 | pdns: 14 | apiPort: "443" 15 | apiUrl: *qoveryDnsUrl 16 | apiKey: *jwtToken -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/cert-manager.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: cert-manager 2 | global: 3 | leaderElection: 4 | namespace: qovery 5 | installCRDs: true 6 | replicaCount: 1 7 | startupapicheck: 8 | jobAnnotations: 9 | helm.sh/hook: post-install,post-upgrade 10 | rbac: 11 | annotations: 12 | helm.sh/hook: post-install,post-upgrade 13 | serviceAccount: 14 | annotations: 15 | helm.sh/hook: post-install,post-upgrade -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/external-dns.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: external-dns 2 | provider: pdns 3 | domainFilters: [*rootDomain] 4 | txtOwnerId: *clusterShortId 5 | txtPrefix: *externalDnsPrefix 6 | annotationFilter: "external-dns.alpha.kubernetes.io/exclude notin (true)" 7 | pdns: 8 | apiUrl: *qoveryDnsUrl 9 | apiKey: *jwtToken 10 | apiPort: 443 -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/metrics-server.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: metrics-server 2 | defaultArgs: 3 | - --cert-dir=/tmp 4 | - --kubelet-preferred-address-types=InternalIP,ExternalIP,Hostname 5 | - --kubelet-use-node-status-port 6 | - --metric-resolution=15s 7 | - --kubelet-insecure-tls 8 | apiService: 9 | create: false -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/qovery-cert-manager-webhook.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: qovery-cert-manager-webhook 2 | certManager: 3 | namespace: qovery 4 | serviceAccountName: cert-manager 5 | secret: 6 | apiUrl: *qoveryDnsUrl 7 | apiKey: *jwtToken -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/qovery-cluster-agent.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: qovery-cluster-agent 2 | image: 3 | tag: 2a2fb514aa6029fd80147180d68017c29c6ea4d2 4 | environmentVariables: 5 | CLUSTER_ID: *clusterId 6 | CLUSTER_JWT_TOKEN: *jwtToken 7 | LOKI_URL: *lokiUrl 8 | ORGANIZATION_ID: *organizationId 9 | RUST_LOG: "info" -------------------------------------------------------------------------------- /lib/self-managed/demo_chart_values/qovery-shell-agent.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: qovery-shell-agent 2 | image: 3 | tag: 2a2fb514aa6029fd80147180d68017c29c6ea4d2 4 | environmentVariables: 5 | CLUSTER_ID: *clusterId 6 | CLUSTER_JWT_TOKEN: *jwtToken 7 | CLUSTER_TOKEN: "" 8 | ORGANIZATION_ID: *organizationId 9 | RUST_LOG: "info" -------------------------------------------------------------------------------- /nextest.config.toml: -------------------------------------------------------------------------------- 1 | [profile.default.junit] 2 | path = "junit.xml" # output junit report 3 | 4 | -------------------------------------------------------------------------------- /rustfmt.toml: -------------------------------------------------------------------------------- 1 | edition = "2024" 2 | max_width = 120 3 | fn_call_width = 80 4 | attr_fn_like_width = 80 5 | use_field_init_shorthand = true 6 | -------------------------------------------------------------------------------- /src/byok_chart_gen/demo_chart_values/ingress-nginx.yaml: -------------------------------------------------------------------------------- 1 | fullnameOverride: ingress-nginx 2 | controller: 3 | useComponentLabel: true 4 | allowSnippetAnnotations: true 5 | ingressClassResource: 6 | name: nginx-qovery 7 | enabled: true 8 | ingressClass: nginx-qovery 9 | extraArgs: 10 | default-ssl-certificate: "qovery/letsencrypt-acme-qovery-cert" 11 | publishService: 12 | enabled: true -------------------------------------------------------------------------------- /src/cmd/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod command; 2 | pub mod docker; 3 | pub mod git; 4 | pub mod git_lfs; 5 | pub mod helm; 6 | pub mod helm_utils; 7 | pub mod kubectl; 8 | pub mod kubent; 9 | pub mod skopeo; 10 | pub mod structs; 11 | pub mod terraform; 12 | pub mod terraform_validators; 13 | -------------------------------------------------------------------------------- /src/environment/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod action; 2 | pub mod models; 3 | pub mod report; 4 | pub mod task; 5 | -------------------------------------------------------------------------------- /src/environment/models/aws/job.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::job::Job; 2 | use crate::environment::models::types::{AWS, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Job { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | Ok(TeraContext::from_serialize(self.default_tera_context(target)).unwrap_or_default()) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/aws/router.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::router::Router; 2 | use crate::environment::models::types::{AWS, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Router { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | self.default_tera_context(target) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/azure/job.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::job::Job; 2 | use crate::environment::models::types::{Azure, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Job { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | Ok(TeraContext::from_serialize(self.default_tera_context(target)).unwrap_or_default()) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/azure/router.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::router::Router; 2 | use crate::environment::models::types::{Azure, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Router { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | self.default_tera_context(target) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/gcp/job.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::job::Job; 2 | use crate::environment::models::types::{GCP, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Job { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | Ok(TeraContext::from_serialize(self.default_tera_context(target)).unwrap_or_default()) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/gcp/router.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::router::Router; 2 | use crate::environment::models::types::{GCP, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Router { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | self.default_tera_context(target) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/scaleway/job.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::job::Job; 2 | use crate::environment::models::types::{SCW, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Job { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | Ok(TeraContext::from_serialize(self.default_tera_context(target)).unwrap_or_default()) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/scaleway/router.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::router::Router; 2 | use crate::environment::models::types::{SCW, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Router { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | self.default_tera_context(target) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/selfmanaged/job.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::job::Job; 2 | use crate::environment::models::types::{OnPremise, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Job { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | Ok(TeraContext::from_serialize(self.default_tera_context(target)).unwrap_or_default()) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/models/selfmanaged/router.rs: -------------------------------------------------------------------------------- 1 | use crate::environment::models::router::Router; 2 | use crate::environment::models::types::{OnPremise, ToTeraContext}; 3 | use crate::errors::EngineError; 4 | use crate::infrastructure::models::cloud_provider::DeploymentTarget; 5 | use tera::Context as TeraContext; 6 | 7 | impl ToTeraContext for Router { 8 | fn to_tera_context(&self, target: &DeploymentTarget) -> Result> { 9 | self.default_tera_context(target) 10 | } 11 | } 12 | -------------------------------------------------------------------------------- /src/environment/report/application/mod.rs: -------------------------------------------------------------------------------- 1 | mod renderer; 2 | pub mod reporter; 3 | -------------------------------------------------------------------------------- /src/environment/report/database/mod.rs: -------------------------------------------------------------------------------- 1 | mod renderer; 2 | pub mod reporter; 3 | -------------------------------------------------------------------------------- /src/environment/report/helm_chart/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod reporter; 2 | -------------------------------------------------------------------------------- /src/environment/report/job/mod.rs: -------------------------------------------------------------------------------- 1 | mod renderer; 2 | pub mod reporter; 3 | -------------------------------------------------------------------------------- /src/environment/report/router/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod reporter; 2 | -------------------------------------------------------------------------------- /src/environment/report/terraform_service/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod reporter; 2 | -------------------------------------------------------------------------------- /src/infrastructure/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod action; 2 | pub mod helm_charts; 3 | pub mod infrastructure_context; 4 | pub mod models; 5 | pub mod task; 6 | -------------------------------------------------------------------------------- /src/infrastructure/models/kubernetes/scaleway/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod kapsule; 2 | pub mod node; 3 | -------------------------------------------------------------------------------- /src/infrastructure/models/kubernetes/self_managed/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod on_premise; 2 | -------------------------------------------------------------------------------- /src/infrastructure/models/mod.rs: -------------------------------------------------------------------------------- 1 | pub mod build_platform; 2 | pub mod cloud_provider; 3 | pub mod container_registry; 4 | pub mod dns_provider; 5 | pub mod kubernetes; 6 | pub mod object_storage; 7 | -------------------------------------------------------------------------------- /src/io_models/engine_location.rs: -------------------------------------------------------------------------------- 1 | use serde::{Deserialize, Serialize}; 2 | 3 | #[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)] 4 | pub enum EngineLocation { 5 | ClientSide, 6 | QoverySide, 7 | } 8 | -------------------------------------------------------------------------------- /src/io_models/labels_group.rs: -------------------------------------------------------------------------------- 1 | use serde_derive::{Deserialize, Serialize}; 2 | 3 | #[derive(Serialize, Deserialize, Clone, Eq, PartialEq, Hash, Debug)] 4 | pub struct LabelsGroup { 5 | #[serde(default)] 6 | pub labels: Vec