Add the ability to access files inside templates #70
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Jesús Fernández <jesus.fernandez@nexthink.com>
fernandezcuesta
force-pushed
the
main
branch
from
6ea6b56
to
1857e73
Compare
|
Just to add more clarity on the usecase, the idea is to inject some files "as is". These files are copied in configMaps which are:
configMapGenerator:
- name: my-composition
namespace: crossplane-system
files:
- terraform/variables.tf
- terraform/main.tf
- terraform/data.tf
generatorOptions:
disableNameSuffixHash: true
labels:
part-of: function-go-templating
annotations:
k8s-sidecar-target-directory: terraform
apiVersion: pkg.crossplane.io/v1beta1
kind: DeploymentRuntimeConfig
metadata:
name: function-go-templating
# DeploymentRuntimeConfig is not namespaced, but this is required by
# kustomize to properly inject the generated ConfigMap
namespace: crossplane-system
spec:
deploymentTemplate:
metadata:
labels:
kubernetes.io/part-of: crossplane
spec:
selector: {}
template:
spec:
containers:
- name: configmap-mounter
env:
# All configmaps labeled `part-of: function-go-templating` will be
# mounted in `/templates`
- name: LABEL
value: part-of
- name: LABEL_VALUE
value: function-go-templating
- name: FOLDER
value: /templates
image: kiwigrid/k8s-sidecar:1.25.4
imagePullPolicy: IfNotPresent
volumeMounts:
- mountPath: /templates
name: templates
- name: package-runtime
args:
- --debug
volumeMounts:
- name: templates
mountPath: /templates
volumes:
- name: templates
emptyDir: {}
serviceAccountTemplate:
metadata:
name: function-go-templating # required by rolebinding
---
kind: Role
apiVersion: rbac.authorization.k8s.io/v1
metadata:
namespace: crossplane-system
name: template-replication
rules:
- apiGroups: [""]
resources: ["configmaps"]
verbs: ["get", "watch", "list"]
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: template-replication
namespace: crossplane-system
subjects:
- kind: ServiceAccount
name: function-go-templating
namespace: crossplane-system
roleRef:
kind: Role
name: template-replication
apiGroup: rbac.authorization.k8s.io
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of your changes
Similarly as Helm template does through the
.Filesobject, we might need to literally inject vanilla files into a template. For example, rather than including the terraform code intoworkspaces.tf.upbound.iospec.forProvider.module, we might do:and keep files separatedly, easier to maintain.
I have: