utilitywarehouse · fillyD · Aug 8, 2024 · Aug 8, 2024 · Aug 8, 2024 · Aug 9, 2024
@@ -0,0 +1,23 @@
+.DEFAULT_GOAL := get-upstream
+
+CHART_VERSION=3.8.0
+APP_VERSION=0.0.16
+
+
+.PHONY: get-upstream
+get-upstream:
+	helm repo add grafana https://grafana.github.io/helm-charts
+	helm repo update
+	helm template k6-operator --namespace dev-enablement -f values.yaml grafana/k6-operator --version $(CHART_VERSION) > /tmp/k6-operator.yaml
+
+	yq 'select(.kind=="CustomResourceDefinition" and .metadata.name=="k6s.k6.io")' /tmp/k6-operator.yaml > cluster/upstream/k6.yaml
+	yq 'select(.kind=="CustomResourceDefinition" and .metadata.name=="privateloadzones.k6.io")' /tmp/k6-operator.yaml > cluster/upstream/plz.yaml
+	yq 'select(.kind=="CustomResourceDefinition" and .metadata.name=="testruns.k6.io")' /tmp/k6-operator.yaml > cluster/upstream/testrun.yaml
+	yq 'select(.kind=="ClusterRole")' /tmp/k6-operator.yaml > cluster/upstream/clusterRole.yaml
+	yq 'select(.kind=="ClusterRoleBinding")' /tmp/k6-operator.yaml > cluster/upstream/clusterRoleBinding.yaml
+
+	yq 'select(.kind=="ServiceAccount")' /tmp/k6-operator.yaml > upstream/controller/serviceaccount.yaml
+	yq 'select(.kind=="Role")' /tmp/k6-operator.yaml > upstream/controller/role.yaml
+	yq 'select(.kind=="RoleBinding")' /tmp/k6-operator.yaml > upstream/controller/roleBinding.yaml
+	yq 'select(.kind=="Service")' /tmp/k6-operator.yaml > upstream/controller/service.yaml
+	yq 'select(.kind=="Deployment")' /tmp/k6-operator.yaml > upstream/controller/deployment.yaml
@@ -0,0 +1,8 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - upstream/k6.yaml
+  - upstream/plz.yaml
+  - upstream/testrun.yaml
+  - upstream/clusterRole.yaml
+  - upstream/clusterRoleBinding.yaml
diff --git a/k6-operator/cluster/upstream/clusterRole.yaml b/k6-operator/cluster/upstream/clusterRole.yaml
@@ -0,0 +1,241 @@
+# Source: k6-operator/templates/clusterRole.yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: k6-operator-manager-role
+  labels:
+    app.kubernetes.io/component: controller
+    helm.sh/chart: k6-operator-3.8.0
+    app.kubernetes.io/name: k6-operator
+    app.kubernetes.io/instance: k6-operator
+    app.kubernetes.io/version: "0.0.16"
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/part-of: k6-operator
+  annotations:
+rules:
+  - apiGroups:
+      - ""
+    resources:
+      - secrets
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - ""
+    resources:
+      - services
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - apps
+    resources:
+      - deployments
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - batch
+    resources:
+      - jobs
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    verbs:
+      - create
+      - get
+      - list
+      - update
+  - apiGroups:
+      - ""
+    resources:
+      - pods
+      - pods/log
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - k6s
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - k6s/finalizers
+      - k6s/status
+    verbs:
+      - get
+      - patch
+      - update
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones/finalizers
+    verbs:
+      - get
+      - patch
+      - update
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones/status
+    verbs:
+      - get
+      - patch
+      - update
+  - apiGroups:
+      - k6.io
+    resources:
+      - testruns
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - testruns/finalizers
+      - testruns/status
+    verbs:
+      - get
+      - patch
+      - update
+---
+# Source: k6-operator/templates/clusterRole.yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: k6-operator-metrics-reader
+  labels:
+    helm.sh/chart: k6-operator-3.8.0
+    app.kubernetes.io/name: k6-operator
+    app.kubernetes.io/instance: k6-operator
+    app.kubernetes.io/version: "0.0.16"
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/part-of: k6-operator
+  annotations:
+rules:
+  - nonResourceURLs:
+      - /metrics
+    verbs:
+      - get
+---
+# Source: k6-operator/templates/clusterRole.yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: k6-operator-proxy-role
+  labels:
+    helm.sh/chart: k6-operator-3.8.0
+    app.kubernetes.io/name: k6-operator
+    app.kubernetes.io/instance: k6-operator
+    app.kubernetes.io/version: "0.0.16"
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/part-of: k6-operator
+  annotations:
+rules:
+  - apiGroups:
+      - authentication.k8s.io
+    resources:
+      - tokenreviews
+    verbs:
+      - create
+  - apiGroups:
+      - authorization.k8s.io
+    resources:
+      - subjectaccessreviews
+    verbs:
+      - create
+---
+# Source: k6-operator/templates/clusterRole.yaml
+# permissions for end users to edit privateloadzones.
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: privateloadzone-editor-role
+rules:
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones/status
+    verbs:
+      - get
+---
+# Source: k6-operator/templates/clusterRole.yaml
+# permissions for end users to view privateloadzones.
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: privateloadzone-viewer-role
+rules:
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - k6.io
+    resources:
+      - privateloadzones/status
+    verbs:
+      - get
diff --git a/k6-operator/cluster/upstream/clusterRoleBinding.yaml b/k6-operator/cluster/upstream/clusterRoleBinding.yaml
@@ -0,0 +1,38 @@
+# Source: k6-operator/templates/clusterRoleBinding.yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: k6-operator-manager-rolebinding
+  labels:
+    app.kubernetes.io/component: controller
+    helm.sh/chart: k6-operator-3.8.0
+    app.kubernetes.io/name: k6-operator
+    app.kubernetes.io/instance: k6-operator
+    app.kubernetes.io/version: "0.0.16"
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/part-of: k6-operator
+  annotations:
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: k6-operator-manager-role
+subjects:
+  - kind: ServiceAccount
+    name: k6-operator-controller
+    namespace: dev-enablement
+---
+# Source: k6-operator/templates/clusterRoleBinding.yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: k6-operator-proxy-rolebinding
+  labels:
+  annotations:
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: k6-operator-proxy-role
+subjects:
+  - kind: ServiceAccount
+    name: k6-operator-controller
+    namespace: dev-enablement