-
Notifications
You must be signed in to change notification settings - Fork 0
/
values.yaml
107 lines (95 loc) · 2.85 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
_: &config
execProviderConfig:
apiVersion: client.authentication.k8s.io/v1beta1
command: argocd-k8s-auth
env:
AAD_ENVIRONMENT_NAME: AzurePublicCloud
AAD_LOGIN_METHOD: msi
AZURE_TENANT_ID: <AZURE_TENANT_ID>
# ArgoCD Cluster Kubelet Identity
# Take from the `argocd_identity` Terraform output
AZURE_CLIENT_ID: <AZURE_CLIENT_ID>
args:
- azure
tlsClientConfig:
insecure: true
global:
domain: argocd.owlish.cloud
configs:
cm:
create: true
admin.enabled: true
timeout.reconciliation: 20s
timeout.hard.reconciliation: 0s
kustomize.buildOptions: --enable-helm
resource.customizations.ignoreDifferences.admissionregistration.k8s.io_ValidatingWebhookConfiguration: |
jqPathExpressions:
- .webhooks[].namespaceSelector.matchExpressions[] | select(.key == "control-plane")
- .webhooks[].namespaceSelector.matchExpressions[] | select(.key == "kubernetes.azure.com/managedby")
params:
create: true
server.insecure: "true"
repositories:
argocd-demo-repo:
url: https://github.com/devOwlish/argocd-demo
clusterCredentials:
- name: demo-worker1
labels:
reflector.demo.owlish.cloud/enabled: "true"
annotations:
nginx.demo.owlish.cloud/version: "4.9.1"
# Cluster endpoint
# Take from the `worker1_host` Terraform output
server: https://demo-worker1-kkapl87c.hcp.eastus2.azmk8s.io:443
config: *config
- name: demo-worker2
labels:
reflector.demo.owlish.cloud/enabled: "true"
annotations:
reflector.demo.owlish.cloud/version: "6.1.47"
# Cluster endpoint
# Take from the `worker1_host` Terraform output
server: https://demo-worker2-ym9zdh79.hcp.eastus2.azmk8s.io:443
config: *config
secret:
# admin
argocdServerAdminPassword: "$2a$10$p7bNbfp4fkash35ZZmoM5.mYrpcQljU.Keu/vkXhtMCjzDzpETkcm"
server:
ingress:
enabled: true
ingressClassName: "nginx"
# App used to sync ArgoCD with ArgoCD
extraObjects:
- apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: argocd
namespace: argocd
labels:
tier: cluster-addons
finalizers:
- resources-finalizer.argocd.argoproj.io
spec:
destination:
name: in-cluster
namespace: argocd
project: default
sources:
- chart: argo-cd
repoURL: https://argoproj.github.io/argo-helm
targetRevision: 6.5.0
helm:
valueFiles:
- $values/argocd/values.yaml
- repoURL: https://github.com/devOwlish/argocd-demo
targetRevision: main
ref: values
syncPolicy:
automated:
allowEmpty: true
selfHeal: true
prune: true
syncOptions:
- Validate=true
- CreateNamespace=true
- PruneLast=true