1- # zero-trust-workload-identity-manager
1+ # ztwim
22
33<!-- markdownlint-disable MD013 -->
4-
5- ![ Version: 0.1.0] ( https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square ) ![ Type: application] ( https://img.shields.io/badge/Type-application-informational?style=flat-square )
6-
4+ ![ Version: 0.1.1] ( https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square ) ![ Type: application] ( https://img.shields.io/badge/Type-application-informational?style=flat-square )
75<!-- markdownlint-enable MD013 -->
86
97<!-- markdownlint-disable MD013 -->
10-
118Zero Trust Workload Identity Manager Helm Chart
12-
139<!-- markdownlint-enable MD013 -->
1410
1511This chart is used to serve as the template for Validated Patterns Charts
@@ -20,54 +16,51 @@ This chart is used to serve as the template for Validated Patterns Charts
2016
2117## Maintainers
2218
23- | Name | Email | Url |
24- | ----------------------- | ------------------------------ ------ | --- |
25- | Validated Patterns Team | < validatedpatterns@googlegroups.com > | |
19+ | Name | Email | Url |
20+ | ---- | ------ | --- |
21+ | Validated Patterns Team | < validatedpatterns@googlegroups.com > | |
2622
2723<!-- markdownlint-disable MD013 MD034 MD060 -->
28-
2924## Values
3025
31- | Key | Type | Default | Description |
32- | -------------------------------------------------------------------------------- | ------ | -------------------------------------------------------------------------------- | ----------- |
33- | global.hubClusterDomain | string | ` "hub.example.com" ` | |
34- | global.localClusterDomain | string | ` "local.example.com" ` | |
35- | spiffe.csi.agentSocketPath | string | ` "/run/spire/agent-sockets" ` | |
36- | spire.agent.nodeAttestor.k8sPSATEnabled | string | ` "true" ` | |
37- | spire.agent.workloadAttestors.k8sEnabled | string | ` "true" ` | |
38- | spire.agent.workloadAttestors.workloadAttestorsVerification.hostCertBasePath | string | ` "/var/lib/kubelet/pki" ` | |
39- | spire.agent.workloadAttestors.workloadAttestorsVerification.hostCertFileName | string | ` "" ` | |
40- | spire.agent.workloadAttestors.workloadAttestorsVerification.type | string | ` "auto" ` | |
41- | spire.bundleConfigMap | string | ` "spire-bundle" ` | |
42- | spire.clusterName | string | ` "cluster" ` | |
43- | spire.oidcDiscoveryProvider.ingress.annotations."route.openshift.io/termination" | string | ` "reencrypt" ` | |
44- | spire.oidcDiscoveryProvider.ingress.host | string | ` "spire-spiffe-oidc-discovery-provider.{{ .Values.global.localClusterDomain }}" ` | |
45- | spire.oidcDiscoveryProvider.ingress.operatorManaged | string | ` "true" ` | |
46- | spire.oidcDiscoveryProvider.service.name | string | ` "spire-spiffe-oidc-discovery-provider" ` | |
47- | spire.oidcDiscoveryProvider.service.port | int | ` 443 ` | |
48- | spire.server.ca.commonName | string | ` "redhat.com" ` | |
49- | spire.server.ca.country | string | ` "US" ` | |
50- | spire.server.ca.organization | string | ` "Red Hat" ` | |
51- | spire.server.datastore.connMaxLifetime | int | ` 0 ` | |
52- | spire.server.datastore.connectionString | string | ` "/run/spire/data/datastore.sqlite3" ` | |
53- | spire.server.datastore.databaseType | string | ` "sqlite3" ` | |
54- | spire.server.datastore.maxIdleConns | int | ` 10 ` | |
55- | spire.server.datastore.maxOpenConns | int | ` 100 ` | |
56- | spire.server.federation.bundleEndpoint.profile | string | ` "https_spiffe" ` | |
57- | spire.server.federation.enabled | string | ` "false" ` | |
58- | spire.server.federation.federatesWith | list | ` [] ` | |
59- | spire.server.federation.ingress.annotations."route.openshift.io/termination" | string | ` "passthrough" ` | |
60- | spire.server.federation.ingress.host | string | ` "spire-server.{{ .Values.global.localClusterDomain }}" ` | |
61- | spire.server.federation.ingress.operatorManaged | string | ` "true" ` | |
62- | spire.server.persistence.accessMode | string | ` "ReadWriteOnce" ` | |
63- | spire.server.persistence.size | string | ` "5Gi" ` | |
64- | spire.server.persistence.storageClass | string | ` "" ` | |
65- | spire.server.service.name | string | ` "spire-server" ` | |
66- | spire.server.service.port | int | ` 443 ` | |
67- | spire.trustDomain | string | ` "{{ .Values.global.localClusterDomain }}" ` | |
68-
26+ | Key | Type | Default | Description |
27+ | -----| ------| ---------| -------------|
28+ | global.hubClusterDomain | string | ` "hub.example.com" ` | |
29+ | global.localClusterDomain | string | ` "local.example.com" ` | |
30+ | spiffe.csi.agentSocketPath | string | ` "/run/spire/agent-sockets" ` | |
31+ | spire.agent.nodeAttestor.k8sPSATEnabled | string | ` "true" ` | |
32+ | spire.agent.workloadAttestors.k8sEnabled | string | ` "true" ` | |
33+ | spire.agent.workloadAttestors.workloadAttestorsVerification.hostCertBasePath | string | ` "/var/lib/kubelet/pki" ` | |
34+ | spire.agent.workloadAttestors.workloadAttestorsVerification.hostCertFileName | string | ` "" ` | |
35+ | spire.agent.workloadAttestors.workloadAttestorsVerification.type | string | ` "auto" ` | |
36+ | spire.bundleConfigMap | string | ` "spire-bundle" ` | |
37+ | spire.clusterName | string | ` "cluster" ` | |
38+ | spire.oidcDiscoveryProvider.ingress.annotations."route.openshift.io/termination" | string | ` "reencrypt" ` | |
39+ | spire.oidcDiscoveryProvider.ingress.host | string | ` "spire-spiffe-oidc-discovery-provider.{{ .Values.global.localClusterDomain }}" ` | |
40+ | spire.oidcDiscoveryProvider.ingress.operatorManaged | string | ` "true" ` | |
41+ | spire.oidcDiscoveryProvider.service.name | string | ` "spire-spiffe-oidc-discovery-provider" ` | |
42+ | spire.oidcDiscoveryProvider.service.port | int | ` 443 ` | |
43+ | spire.server.ca.commonName | string | ` "redhat.com" ` | |
44+ | spire.server.ca.country | string | ` "US" ` | |
45+ | spire.server.ca.organization | string | ` "Red Hat" ` | |
46+ | spire.server.datastore.connMaxLifetime | int | ` 0 ` | |
47+ | spire.server.datastore.connectionString | string | ` "/run/spire/data/datastore.sqlite3" ` | |
48+ | spire.server.datastore.databaseType | string | ` "sqlite3" ` | |
49+ | spire.server.datastore.maxIdleConns | int | ` 10 ` | |
50+ | spire.server.datastore.maxOpenConns | int | ` 100 ` | |
51+ | spire.server.federation.bundleEndpoint.profile | string | ` "https_spiffe" ` | |
52+ | spire.server.federation.enabled | string | ` "false" ` | |
53+ | spire.server.federation.federatesWith | list | ` [] ` | |
54+ | spire.server.federation.ingress.annotations."route.openshift.io/termination" | string | ` "passthrough" ` | |
55+ | spire.server.federation.ingress.host | string | ` "spire-server.{{ .Values.global.localClusterDomain }}" ` | |
56+ | spire.server.federation.ingress.operatorManaged | string | ` "true" ` | |
57+ | spire.server.persistence.accessMode | string | ` "ReadWriteOnce" ` | |
58+ | spire.server.persistence.size | string | ` "5Gi" ` | |
59+ | spire.server.persistence.storageClass | string | ` "" ` | |
60+ | spire.server.service.name | string | ` "spire-server" ` | |
61+ | spire.server.service.port | int | ` 443 ` | |
62+ | spire.trustDomain | string | ` "{{ .Values.global.localClusterDomain }}" ` | |
6963<!-- markdownlint-enable MD013 MD034 MD060 -->
7064
71- ---
72-
65+ ----------------------------------------------
7366Autogenerated from chart metadata using [ helm-docs v1.14.2] ( https://github.com/norwoodj/helm-docs/releases/v1.14.2 )
0 commit comments