projects / osm / devops.git / blob
? search:


103ba4b4996592c2a9ba9c46adc7c39b35ea355a
[osm/devops.git] /
1 #######################################################################################
2 # Copyright ETSI Contributors and Others.
3 #
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
7 #
8 #    http://www.apache.org/licenses/LICENSE-2.0
9 #
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
13 # implied.
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
16 #######################################################################################
17
18 # This is an auto-generated file. DO NOT EDIT
19 apiVersion: apiextensions.k8s.io/v1
20 kind: CustomResourceDefinition
21 metadata:
22   name: clusterworkflowtemplates.argoproj.io
23 spec:
24   group: argoproj.io
25   names:
26     kind: ClusterWorkflowTemplate
27     listKind: ClusterWorkflowTemplateList
28     plural: clusterworkflowtemplates
29     shortNames:
30     - clusterwftmpl
31     - cwft
32     singular: clusterworkflowtemplate
33   scope: Cluster
34   versions:
35   - name: v1alpha1
36     schema:
37       openAPIV3Schema:
38         properties:
39           apiVersion:
40             type: string
41           kind:
42             type: string
43           metadata:
44             type: object
45           spec:
46             type: object
47             x-kubernetes-map-type: atomic
48             x-kubernetes-preserve-unknown-fields: true
49         required:
50         - metadata
51         - spec
52         type: object
53     served: true
54     storage: true
55 ---
56 apiVersion: apiextensions.k8s.io/v1
57 kind: CustomResourceDefinition
58 metadata:
59   name: cronworkflows.argoproj.io
60 spec:
61   group: argoproj.io
62   names:
63     kind: CronWorkflow
64     listKind: CronWorkflowList
65     plural: cronworkflows
66     shortNames:
67     - cwf
68     - cronwf
69     singular: cronworkflow
70   scope: Namespaced
71   versions:
72   - name: v1alpha1
73     schema:
74       openAPIV3Schema:
75         properties:
76           apiVersion:
77             type: string
78           kind:
79             type: string
80           metadata:
81             type: object
82           spec:
83             type: object
84             x-kubernetes-map-type: atomic
85             x-kubernetes-preserve-unknown-fields: true
86           status:
87             type: object
88             x-kubernetes-map-type: atomic
89             x-kubernetes-preserve-unknown-fields: true
90         required:
91         - metadata
92         - spec
93         type: object
94     served: true
95     storage: true
96 ---
97 apiVersion: apiextensions.k8s.io/v1
98 kind: CustomResourceDefinition
99 metadata:
100   name: workflowartifactgctasks.argoproj.io
101 spec:
102   group: argoproj.io
103   names:
104     kind: WorkflowArtifactGCTask
105     listKind: WorkflowArtifactGCTaskList
106     plural: workflowartifactgctasks
107     shortNames:
108     - wfat
109     singular: workflowartifactgctask
110   scope: Namespaced
111   versions:
112   - name: v1alpha1
113     schema:
114       openAPIV3Schema:
115         properties:
116           apiVersion:
117             type: string
118           kind:
119             type: string
120           metadata:
121             type: object
122           spec:
123             type: object
124             x-kubernetes-map-type: atomic
125             x-kubernetes-preserve-unknown-fields: true
126           status:
127             type: object
128             x-kubernetes-map-type: atomic
129             x-kubernetes-preserve-unknown-fields: true
130         required:
131         - metadata
132         - spec
133         type: object
134     served: true
135     storage: true
136     subresources:
137       status: {}
138 ---
139 apiVersion: apiextensions.k8s.io/v1
140 kind: CustomResourceDefinition
141 metadata:
142   name: workfloweventbindings.argoproj.io
143 spec:
144   group: argoproj.io
145   names:
146     kind: WorkflowEventBinding
147     listKind: WorkflowEventBindingList
148     plural: workfloweventbindings
149     shortNames:
150     - wfeb
151     singular: workfloweventbinding
152   scope: Namespaced
153   versions:
154   - name: v1alpha1
155     schema:
156       openAPIV3Schema:
157         properties:
158           apiVersion:
159             type: string
160           kind:
161             type: string
162           metadata:
163             type: object
164           spec:
165             type: object
166             x-kubernetes-map-type: atomic
167             x-kubernetes-preserve-unknown-fields: true
168         required:
169         - metadata
170         - spec
171         type: object
172     served: true
173     storage: true
174 ---
175 apiVersion: apiextensions.k8s.io/v1
176 kind: CustomResourceDefinition
177 metadata:
178   name: workflows.argoproj.io
179 spec:
180   group: argoproj.io
181   names:
182     kind: Workflow
183     listKind: WorkflowList
184     plural: workflows
185     shortNames:
186     - wf
187     singular: workflow
188   scope: Namespaced
189   versions:
190   - additionalPrinterColumns:
191     - description: Status of the workflow
192       jsonPath: .status.phase
193       name: Status
194       type: string
195     - description: When the workflow was started
196       format: date-time
197       jsonPath: .status.startedAt
198       name: Age
199       type: date
200     - description: Human readable message indicating details about why the workflow
201         is in this condition.
202       jsonPath: .status.message
203       name: Message
204       type: string
205     name: v1alpha1
206     schema:
207       openAPIV3Schema:
208         properties:
209           apiVersion:
210             type: string
211           kind:
212             type: string
213           metadata:
214             type: object
215           spec:
216             type: object
217             x-kubernetes-map-type: atomic
218             x-kubernetes-preserve-unknown-fields: true
219           status:
220             type: object
221             x-kubernetes-map-type: atomic
222             x-kubernetes-preserve-unknown-fields: true
223         required:
224         - metadata
225         - spec
226         type: object
227     served: true
228     storage: true
229     subresources: {}
230 ---
231 apiVersion: apiextensions.k8s.io/v1
232 kind: CustomResourceDefinition
233 metadata:
234   name: workflowtaskresults.argoproj.io
235 spec:
236   group: argoproj.io
237   names:
238     kind: WorkflowTaskResult
239     listKind: WorkflowTaskResultList
240     plural: workflowtaskresults
241     singular: workflowtaskresult
242   scope: Namespaced
243   versions:
244   - name: v1alpha1
245     schema:
246       openAPIV3Schema:
247         properties:
248           apiVersion:
249             type: string
250           kind:
251             type: string
252           message:
253             type: string
254           metadata:
255             type: object
256           outputs:
257             properties:
258               artifacts:
259                 items:
260                   properties:
261                     archive:
262                       properties:
263                         none:
264                           type: object
265                         tar:
266                           properties:
267                             compressionLevel:
268                               format: int32
269                               type: integer
270                           type: object
271                         zip:
272                           type: object
273                       type: object
274                     archiveLogs:
275                       type: boolean
276                     artifactGC:
277                       properties:
278                         podMetadata:
279                           properties:
280                             annotations:
281                               additionalProperties:
282                                 type: string
283                               type: object
284                             labels:
285                               additionalProperties:
286                                 type: string
287                               type: object
288                           type: object
289                         serviceAccountName:
290                           type: string
291                         strategy:
292                           enum:
293                           - ""
294                           - OnWorkflowCompletion
295                           - OnWorkflowDeletion
296                           - Never
297                           type: string
298                       type: object
299                     artifactory:
300                       properties:
301                         passwordSecret:
302                           properties:
303                             key:
304                               type: string
305                             name:
306                               type: string
307                             optional:
308                               type: boolean
309                           required:
310                           - key
311                           type: object
312                         url:
313                           type: string
314                         usernameSecret:
315                           properties:
316                             key:
317                               type: string
318                             name:
319                               type: string
320                             optional:
321                               type: boolean
322                           required:
323                           - key
324                           type: object
325                       required:
326                       - url
327                       type: object
328                     azure:
329                       properties:
330                         accountKeySecret:
331                           properties:
332                             key:
333                               type: string
334                             name:
335                               type: string
336                             optional:
337                               type: boolean
338                           required:
339                           - key
340                           type: object
341                         blob:
342                           type: string
343                         container:
344                           type: string
345                         endpoint:
346                           type: string
347                         useSDKCreds:
348                           type: boolean
349                       required:
350                       - blob
351                       - container
352                       - endpoint
353                       type: object
354                     deleted:
355                       type: boolean
356                     from:
357                       type: string
358                     fromExpression:
359                       type: string
360                     gcs:
361                       properties:
362                         bucket:
363                           type: string
364                         key:
365                           type: string
366                         serviceAccountKeySecret:
367                           properties:
368                             key:
369                               type: string
370                             name:
371                               type: string
372                             optional:
373                               type: boolean
374                           required:
375                           - key
376                           type: object
377                       required:
378                       - key
379                       type: object
380                     git:
381                       properties:
382                         branch:
383                           type: string
384                         depth:
385                           format: int64
386                           type: integer
387                         disableSubmodules:
388                           type: boolean
389                         fetch:
390                           items:
391                             type: string
392                           type: array
393                         insecureIgnoreHostKey:
394                           type: boolean
395                         passwordSecret:
396                           properties:
397                             key:
398                               type: string
399                             name:
400                               type: string
401                             optional:
402                               type: boolean
403                           required:
404                           - key
405                           type: object
406                         repo:
407                           type: string
408                         revision:
409                           type: string
410                         singleBranch:
411                           type: boolean
412                         sshPrivateKeySecret:
413                           properties:
414                             key:
415                               type: string
416                             name:
417                               type: string
418                             optional:
419                               type: boolean
420                           required:
421                           - key
422                           type: object
423                         usernameSecret:
424                           properties:
425                             key:
426                               type: string
427                             name:
428                               type: string
429                             optional:
430                               type: boolean
431                           required:
432                           - key
433                           type: object
434                       required:
435                       - repo
436                       type: object
437                     globalName:
438                       type: string
439                     hdfs:
440                       properties:
441                         addresses:
442                           items:
443                             type: string
444                           type: array
445                         force:
446                           type: boolean
447                         hdfsUser:
448                           type: string
449                         krbCCacheSecret:
450                           properties:
451                             key:
452                               type: string
453                             name:
454                               type: string
455                             optional:
456                               type: boolean
457                           required:
458                           - key
459                           type: object
460                         krbConfigConfigMap:
461                           properties:
462                             key:
463                               type: string
464                             name:
465                               type: string
466                             optional:
467                               type: boolean
468                           required:
469                           - key
470                           type: object
471                         krbKeytabSecret:
472                           properties:
473                             key:
474                               type: string
475                             name:
476                               type: string
477                             optional:
478                               type: boolean
479                           required:
480                           - key
481                           type: object
482                         krbRealm:
483                           type: string
484                         krbServicePrincipalName:
485                           type: string
486                         krbUsername:
487                           type: string
488                         path:
489                           type: string
490                       required:
491                       - path
492                       type: object
493                     http:
494                       properties:
495                         auth:
496                           properties:
497                             basicAuth:
498                               properties:
499                                 passwordSecret:
500                                   properties:
501                                     key:
502                                       type: string
503                                     name:
504                                       type: string
505                                     optional:
506                                       type: boolean
507                                   required:
508                                   - key
509                                   type: object
510                                 usernameSecret:
511                                   properties:
512                                     key:
513                                       type: string
514                                     name:
515                                       type: string
516                                     optional:
517                                       type: boolean
518                                   required:
519                                   - key
520                                   type: object
521                               type: object
522                             clientCert:
523                               properties:
524                                 clientCertSecret:
525                                   properties:
526                                     key:
527                                       type: string
528                                     name:
529                                       type: string
530                                     optional:
531                                       type: boolean
532                                   required:
533                                   - key
534                                   type: object
535                                 clientKeySecret:
536                                   properties:
537                                     key:
538                                       type: string
539                                     name:
540                                       type: string
541                                     optional:
542                                       type: boolean
543                                   required:
544                                   - key
545                                   type: object
546                               type: object
547                             oauth2:
548                               properties:
549                                 clientIDSecret:
550                                   properties:
551                                     key:
552                                       type: string
553                                     name:
554                                       type: string
555                                     optional:
556                                       type: boolean
557                                   required:
558                                   - key
559                                   type: object
560                                 clientSecretSecret:
561                                   properties:
562                                     key:
563                                       type: string
564                                     name:
565                                       type: string
566                                     optional:
567                                       type: boolean
568                                   required:
569                                   - key
570                                   type: object
571                                 endpointParams:
572                                   items:
573                                     properties:
574                                       key:
575                                         type: string
576                                       value:
577                                         type: string
578                                     required:
579                                     - key
580                                     type: object
581                                   type: array
582                                 scopes:
583                                   items:
584                                     type: string
585                                   type: array
586                                 tokenURLSecret:
587                                   properties:
588                                     key:
589                                       type: string
590                                     name:
591                                       type: string
592                                     optional:
593                                       type: boolean
594                                   required:
595                                   - key
596                                   type: object
597                               type: object
598                           type: object
599                         headers:
600                           items:
601                             properties:
602                               name:
603                                 type: string
604                               value:
605                                 type: string
606                             required:
607                             - name
608                             - value
609                             type: object
610                           type: array
611                         url:
612                           type: string
613                       required:
614                       - url
615                       type: object
616                     mode:
617                       format: int32
618                       type: integer
619                     name:
620                       type: string
621                     optional:
622                       type: boolean
623                     oss:
624                       properties:
625                         accessKeySecret:
626                           properties:
627                             key:
628                               type: string
629                             name:
630                               type: string
631                             optional:
632                               type: boolean
633                           required:
634                           - key
635                           type: object
636                         bucket:
637                           type: string
638                         createBucketIfNotPresent:
639                           type: boolean
640                         endpoint:
641                           type: string
642                         key:
643                           type: string
644                         lifecycleRule:
645                           properties:
646                             markDeletionAfterDays:
647                               format: int32
648                               type: integer
649                             markInfrequentAccessAfterDays:
650                               format: int32
651                               type: integer
652                           type: object
653                         secretKeySecret:
654                           properties:
655                             key:
656                               type: string
657                             name:
658                               type: string
659                             optional:
660                               type: boolean
661                           required:
662                           - key
663                           type: object
664                         securityToken:
665                           type: string
666                         useSDKCreds:
667                           type: boolean
668                       required:
669                       - key
670                       type: object
671                     path:
672                       type: string
673                     raw:
674                       properties:
675                         data:
676                           type: string
677                       required:
678                       - data
679                       type: object
680                     recurseMode:
681                       type: boolean
682                     s3:
683                       properties:
684                         accessKeySecret:
685                           properties:
686                             key:
687                               type: string
688                             name:
689                               type: string
690                             optional:
691                               type: boolean
692                           required:
693                           - key
694                           type: object
695                         bucket:
696                           type: string
697                         caSecret:
698                           properties:
699                             key:
700                               type: string
701                             name:
702                               type: string
703                             optional:
704                               type: boolean
705                           required:
706                           - key
707                           type: object
708                         createBucketIfNotPresent:
709                           properties:
710                             objectLocking:
711                               type: boolean
712                           type: object
713                         encryptionOptions:
714                           properties:
715                             enableEncryption:
716                               type: boolean
717                             kmsEncryptionContext:
718                               type: string
719                             kmsKeyId:
720                               type: string
721                             serverSideCustomerKeySecret:
722                               properties:
723                                 key:
724                                   type: string
725                                 name:
726                                   type: string
727                                 optional:
728                                   type: boolean
729                               required:
730                               - key
731                               type: object
732                           type: object
733                         endpoint:
734                           type: string
735                         insecure:
736                           type: boolean
737                         key:
738                           type: string
739                         region:
740                           type: string
741                         roleARN:
742                           type: string
743                         secretKeySecret:
744                           properties:
745                             key:
746                               type: string
747                             name:
748                               type: string
749                             optional:
750                               type: boolean
751                           required:
752                           - key
753                           type: object
754                         useSDKCreds:
755                           type: boolean
756                       type: object
757                     subPath:
758                       type: string
759                   required:
760                   - name
761                   type: object
762                 type: array
763               exitCode:
764                 type: string
765               parameters:
766                 items:
767                   properties:
768                     default:
769                       type: string
770                     description:
771                       type: string
772                     enum:
773                       items:
774                         type: string
775                       type: array
776                     globalName:
777                       type: string
778                     name:
779                       type: string
780                     value:
781                       type: string
782                     valueFrom:
783                       properties:
784                         configMapKeyRef:
785                           properties:
786                             key:
787                               type: string
788                             name:
789                               type: string
790                             optional:
791                               type: boolean
792                           required:
793                           - key
794                           type: object
795                         default:
796                           type: string
797                         event:
798                           type: string
799                         expression:
800                           type: string
801                         jqFilter:
802                           type: string
803                         jsonPath:
804                           type: string
805                         parameter:
806                           type: string
807                         path:
808                           type: string
809                         supplied:
810                           type: object
811                       type: object
812                   required:
813                   - name
814                   type: object
815                 type: array
816               result:
817                 type: string
818             type: object
819           phase:
820             type: string
821           progress:
822             type: string
823         required:
824         - metadata
825         type: object
826     served: true
827     storage: true
828 ---
829 apiVersion: apiextensions.k8s.io/v1
830 kind: CustomResourceDefinition
831 metadata:
832   name: workflowtasksets.argoproj.io
833 spec:
834   group: argoproj.io
835   names:
836     kind: WorkflowTaskSet
837     listKind: WorkflowTaskSetList
838     plural: workflowtasksets
839     shortNames:
840     - wfts
841     singular: workflowtaskset
842   scope: Namespaced
843   versions:
844   - name: v1alpha1
845     schema:
846       openAPIV3Schema:
847         properties:
848           apiVersion:
849             type: string
850           kind:
851             type: string
852           metadata:
853             type: object
854           spec:
855             type: object
856             x-kubernetes-map-type: atomic
857             x-kubernetes-preserve-unknown-fields: true
858           status:
859             type: object
860             x-kubernetes-map-type: atomic
861             x-kubernetes-preserve-unknown-fields: true
862         required:
863         - metadata
864         - spec
865         type: object
866     served: true
867     storage: true
868     subresources:
869       status: {}
870 ---
871 apiVersion: apiextensions.k8s.io/v1
872 kind: CustomResourceDefinition
873 metadata:
874   name: workflowtemplates.argoproj.io
875 spec:
876   group: argoproj.io
877   names:
878     kind: WorkflowTemplate
879     listKind: WorkflowTemplateList
880     plural: workflowtemplates
881     shortNames:
882     - wftmpl
883     singular: workflowtemplate
884   scope: Namespaced
885   versions:
886   - name: v1alpha1
887     schema:
888       openAPIV3Schema:
889         properties:
890           apiVersion:
891             type: string
892           kind:
893             type: string
894           metadata:
895             type: object
896           spec:
897             type: object
898             x-kubernetes-map-type: atomic
899             x-kubernetes-preserve-unknown-fields: true
900         required:
901         - metadata
902         - spec
903         type: object
904     served: true
905     storage: true
906 ---
907 apiVersion: v1
908 kind: ServiceAccount
909 metadata:
910   name: argo
911   namespace: argo
912 ---
913 apiVersion: v1
914 kind: ServiceAccount
915 metadata:
916   name: argo-server
917   namespace: argo
918 ---
919 apiVersion: rbac.authorization.k8s.io/v1
920 kind: Role
921 metadata:
922   name: argo-role
923   namespace: argo
924 rules:
925 - apiGroups:
926   - coordination.k8s.io
927   resources:
928   - leases
929   verbs:
930   - create
931   - get
932   - update
933 - apiGroups:
934   - ""
935   resources:
936   - secrets
937   verbs:
938   - get
939 ---
940 apiVersion: rbac.authorization.k8s.io/v1
941 kind: ClusterRole
942 metadata:
943   labels:
944     rbac.authorization.k8s.io/aggregate-to-admin: "true"
945   name: argo-aggregate-to-admin
946 rules:
947 - apiGroups:
948   - argoproj.io
949   resources:
950   - workflows
951   - workflows/finalizers
952   - workfloweventbindings
953   - workfloweventbindings/finalizers
954   - workflowtemplates
955   - workflowtemplates/finalizers
956   - cronworkflows
957   - cronworkflows/finalizers
958   - clusterworkflowtemplates
959   - clusterworkflowtemplates/finalizers
960   - workflowtasksets
961   - workflowtasksets/finalizers
962   - workflowtaskresults
963   - workflowtaskresults/finalizers
964   verbs:
965   - create
966   - delete
967   - deletecollection
968   - get
969   - list
970   - patch
971   - update
972   - watch
973 ---
974 apiVersion: rbac.authorization.k8s.io/v1
975 kind: ClusterRole
976 metadata:
977   labels:
978     rbac.authorization.k8s.io/aggregate-to-edit: "true"
979   name: argo-aggregate-to-edit
980 rules:
981 - apiGroups:
982   - argoproj.io
983   resources:
984   - workflows
985   - workflows/finalizers
986   - workfloweventbindings
987   - workfloweventbindings/finalizers
988   - workflowtemplates
989   - workflowtemplates/finalizers
990   - cronworkflows
991   - cronworkflows/finalizers
992   - clusterworkflowtemplates
993   - clusterworkflowtemplates/finalizers
994   - workflowtaskresults
995   - workflowtaskresults/finalizers
996   verbs:
997   - create
998   - delete
999   - deletecollection
1000   - get
1001   - list
1002   - patch
1003   - update
1004   - watch
1005 ---
1006 apiVersion: rbac.authorization.k8s.io/v1
1007 kind: ClusterRole
1008 metadata:
1009   labels:
1010     rbac.authorization.k8s.io/aggregate-to-view: "true"
1011   name: argo-aggregate-to-view
1012 rules:
1013 - apiGroups:
1014   - argoproj.io
1015   resources:
1016   - workflows
1017   - workflows/finalizers
1018   - workfloweventbindings
1019   - workfloweventbindings/finalizers
1020   - workflowtemplates
1021   - workflowtemplates/finalizers
1022   - cronworkflows
1023   - cronworkflows/finalizers
1024   - clusterworkflowtemplates
1025   - clusterworkflowtemplates/finalizers
1026   - workflowtaskresults
1027   - workflowtaskresults/finalizers
1028   verbs:
1029   - get
1030   - list
1031   - watch
1032 ---
1033 apiVersion: rbac.authorization.k8s.io/v1
1034 kind: ClusterRole
1035 metadata:
1036   name: argo-cluster-role
1037 rules:
1038 - apiGroups:
1039   - ""
1040   resources:
1041   - pods
1042   - pods/exec
1043   verbs:
1044   - create
1045   - get
1046   - list
1047   - watch
1048   - update
1049   - patch
1050   - delete
1051 - apiGroups:
1052   - ""
1053   resources:
1054   - configmaps
1055   verbs:
1056   - get
1057   - watch
1058   - list
1059 - apiGroups:
1060   - ""
1061   resources:
1062   - persistentvolumeclaims
1063   - persistentvolumeclaims/finalizers
1064   verbs:
1065   - create
1066   - update
1067   - delete
1068   - get
1069 - apiGroups:
1070   - argoproj.io
1071   resources:
1072   - workflows
1073   - workflows/finalizers
1074   - workflowtasksets
1075   - workflowtasksets/finalizers
1076   - workflowartifactgctasks
1077   verbs:
1078   - get
1079   - list
1080   - watch
1081   - update
1082   - patch
1083   - delete
1084   - create
1085 - apiGroups:
1086   - argoproj.io
1087   resources:
1088   - workflowtemplates
1089   - workflowtemplates/finalizers
1090   - clusterworkflowtemplates
1091   - clusterworkflowtemplates/finalizers
1092   verbs:
1093   - get
1094   - list
1095   - watch
1096 - apiGroups:
1097   - argoproj.io
1098   resources:
1099   - workflowtaskresults
1100   verbs:
1101   - list
1102   - watch
1103   - deletecollection
1104 - apiGroups:
1105   - ""
1106   resources:
1107   - serviceaccounts
1108   verbs:
1109   - get
1110   - list
1111 - apiGroups:
1112   - argoproj.io
1113   resources:
1114   - cronworkflows
1115   - cronworkflows/finalizers
1116   verbs:
1117   - get
1118   - list
1119   - watch
1120   - update
1121   - patch
1122   - delete
1123 - apiGroups:
1124   - ""
1125   resources:
1126   - events
1127   verbs:
1128   - create
1129   - patch
1130 - apiGroups:
1131   - policy
1132   resources:
1133   - poddisruptionbudgets
1134   verbs:
1135   - create
1136   - get
1137   - delete
1138 ---
1139 apiVersion: rbac.authorization.k8s.io/v1
1140 kind: ClusterRole
1141 metadata:
1142   name: argo-server-cluster-role
1143 rules:
1144 - apiGroups:
1145   - ""
1146   resources:
1147   - configmaps
1148   verbs:
1149   - get
1150   - watch
1151   - list
1152 - apiGroups:
1153   - ""
1154   resources:
1155   - secrets
1156   verbs:
1157   - get
1158   - create
1159 - apiGroups:
1160   - ""
1161   resources:
1162   - pods
1163   - pods/exec
1164   - pods/log
1165   verbs:
1166   - get
1167   - list
1168   - watch
1169   - delete
1170 - apiGroups:
1171   - ""
1172   resources:
1173   - events
1174   verbs:
1175   - watch
1176   - create
1177   - patch
1178 - apiGroups:
1179   - ""
1180   resources:
1181   - serviceaccounts
1182   verbs:
1183   - get
1184   - list
1185   - watch
1186 - apiGroups:
1187   - argoproj.io
1188   resources:
1189   - eventsources
1190   - sensors
1191   - workflows
1192   - workfloweventbindings
1193   - workflowtemplates
1194   - cronworkflows
1195   - clusterworkflowtemplates
1196   verbs:
1197   - create
1198   - get
1199   - list
1200   - watch
1201   - update
1202   - patch
1203   - delete
1204 ---
1205 apiVersion: rbac.authorization.k8s.io/v1
1206 kind: RoleBinding
1207 metadata:
1208   name: argo-binding
1209   namespace: argo
1210 roleRef:
1211   apiGroup: rbac.authorization.k8s.io
1212   kind: Role
1213   name: argo-role
1214 subjects:
1215 - kind: ServiceAccount
1216   name: argo
1217   namespace: argo
1218 ---
1219 apiVersion: rbac.authorization.k8s.io/v1
1220 kind: ClusterRoleBinding
1221 metadata:
1222   name: argo-binding
1223 roleRef:
1224   apiGroup: rbac.authorization.k8s.io
1225   kind: ClusterRole
1226   name: argo-cluster-role
1227 subjects:
1228 - kind: ServiceAccount
1229   name: argo
1230   namespace: argo
1231 ---
1232 apiVersion: rbac.authorization.k8s.io/v1
1233 kind: ClusterRoleBinding
1234 metadata:
1235   name: argo-server-binding
1236 roleRef:
1237   apiGroup: rbac.authorization.k8s.io
1238   kind: ClusterRole
1239   name: argo-server-cluster-role
1240 subjects:
1241 - kind: ServiceAccount
1242   name: argo-server
1243   namespace: argo
1244 ---
1245 apiVersion: v1
1246 kind: ConfigMap
1247 metadata:
1248   name: workflow-controller-configmap
1249   namespace: argo
1250 ---
1251 apiVersion: v1
1252 kind: Service
1253 metadata:
1254   name: argo-server
1255   namespace: argo
1256 spec:
1257   ports:
1258   - name: web
1259     port: 2746
1260     targetPort: 2746
1261   selector:
1262     app: argo-server
1263 ---
1264 apiVersion: scheduling.k8s.io/v1
1265 kind: PriorityClass
1266 metadata:
1267   name: workflow-controller
1268 value: 1000000
1269 ---
1270 apiVersion: apps/v1
1271 kind: Deployment
1272 metadata:
1273   name: argo-server
1274   namespace: argo
1275 spec:
1276   selector:
1277     matchLabels:
1278       app: argo-server
1279   template:
1280     metadata:
1281       labels:
1282         app: argo-server
1283     spec:
1284       containers:
1285       - args:
1286         - server
1287         env: []
1288         image: quay.io/argoproj/argocli:v3.5.1
1289         name: argo-server
1290         ports:
1291         - containerPort: 2746
1292           name: web
1293         readinessProbe:
1294           httpGet:
1295             path: /
1296             port: 2746
1297             scheme: HTTPS
1298           initialDelaySeconds: 10
1299           periodSeconds: 20
1300         securityContext:
1301           allowPrivilegeEscalation: false
1302           capabilities:
1303             drop:
1304             - ALL
1305           readOnlyRootFilesystem: true
1306           runAsNonRoot: true
1307         volumeMounts:
1308         - mountPath: /tmp
1309           name: tmp
1310       nodeSelector:
1311         kubernetes.io/os: linux
1312       securityContext:
1313         runAsNonRoot: true
1314       serviceAccountName: argo-server
1315       volumes:
1316       - emptyDir: {}
1317         name: tmp
1318 ---
1319 apiVersion: apps/v1
1320 kind: Deployment
1321 metadata:
1322   name: workflow-controller
1323   namespace: argo
1324 spec:
1325   selector:
1326     matchLabels:
1327       app: workflow-controller
1328   template:
1329     metadata:
1330       labels:
1331         app: workflow-controller
1332     spec:
1333       containers:
1334       - args: []
1335         command:
1336         - workflow-controller
1337         env:
1338         - name: LEADER_ELECTION_IDENTITY
1339           valueFrom:
1340             fieldRef:
1341               apiVersion: v1
1342               fieldPath: metadata.name
1343         image: quay.io/argoproj/workflow-controller:v3.5.1
1344         livenessProbe:
1345           failureThreshold: 3
1346           httpGet:
1347             path: /healthz
1348             port: 6060
1349           initialDelaySeconds: 90
1350           periodSeconds: 60
1351           timeoutSeconds: 30
1352         name: workflow-controller
1353         ports:
1354         - containerPort: 9090
1355           name: metrics
1356         - containerPort: 6060
1357         securityContext:
1358           allowPrivilegeEscalation: false
1359           capabilities:
1360             drop:
1361             - ALL
1362           readOnlyRootFilesystem: true
1363           runAsNonRoot: true
1364       nodeSelector:
1365         kubernetes.io/os: linux
1366       priorityClassName: workflow-controller
1367       securityContext:
1368         runAsNonRoot: true
1369       serviceAccountName: argo