mirror of
https://github.com/edgelesssys/constellation.git
synced 2025-02-11 12:38:42 -05:00
e9694d40b9
Bumping Cilium to also enable node-to-node encryption and node-to-node strict mode. Since the second is not upstream we use our fork.
33 lines
1.0 KiB
YAML
33 lines
1.0 KiB
YAML
{{- if and .Values.envoy.enabled (not .Values.preflight.enabled) .Values.proxy.prometheus.enabled .Values.envoy.prometheus.enabled }}
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
name: cilium-envoy
|
|
namespace: {{ .Release.Namespace }}
|
|
{{- if or (not .Values.envoy.prometheus.serviceMonitor.enabled) .Values.envoy.annotations }}
|
|
annotations:
|
|
{{- if not .Values.envoy.prometheus.serviceMonitor.enabled }}
|
|
prometheus.io/scrape: "true"
|
|
prometheus.io/port: {{ .Values.proxy.prometheus.port | default .Values.envoy.prometheus.port | quote }}
|
|
{{- end }}
|
|
{{- with .Values.envoy.annotations }}
|
|
{{- toYaml . | nindent 4 }}
|
|
{{- end }}
|
|
{{- end }}
|
|
labels:
|
|
k8s-app: cilium-envoy
|
|
app.kubernetes.io/name: cilium-envoy
|
|
app.kubernetes.io/part-of: cilium
|
|
io.cilium/app: proxy
|
|
spec:
|
|
clusterIP: None
|
|
type: ClusterIP
|
|
selector:
|
|
k8s-app: cilium-envoy
|
|
ports:
|
|
- name: envoy-metrics
|
|
port: {{ .Values.proxy.prometheus.port | default .Values.envoy.prometheus.port }}
|
|
protocol: TCP
|
|
targetPort: envoy-metrics
|
|
{{- end }}
|