From 8311ce18da32883d6911065b7a4db13fa172d721 Mon Sep 17 00:00:00 2001
From: Peter Rifel <pgrifel@gmail.com>
Date: Mon, 18 Dec 2023 21:41:14 -0600
Subject: [PATCH] Ignore cert-manager in LBC's webhooks

LBC depends on cert-manager but kops can get in a circular dependency loop when applying these manifests on a new cluster.
The cert-manager pods wont be created because the LBC webhook on "CREATE pods" isn't working yet, but LBC pod cant be created because it depends on a secret volume mount created by cert-manager
---
 .../k8s-1.19.yaml.template                                      | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/upup/models/cloudup/resources/addons/aws-load-balancer-controller.addons.k8s.io/k8s-1.19.yaml.template b/upup/models/cloudup/resources/addons/aws-load-balancer-controller.addons.k8s.io/k8s-1.19.yaml.template
index 60f1232d48..d287dfb24e 100644
--- a/upup/models/cloudup/resources/addons/aws-load-balancer-controller.addons.k8s.io/k8s-1.19.yaml.template
+++ b/upup/models/cloudup/resources/addons/aws-load-balancer-controller.addons.k8s.io/k8s-1.19.yaml.template
@@ -1008,6 +1008,7 @@ webhooks:
       operator: NotIn
       values:
       - aws-load-balancer-controller
+      - cert-manager
   rules:
   - apiGroups:
     - ""
@@ -1039,6 +1040,7 @@ webhooks:
       operator: NotIn
       values:
       - aws-load-balancer-controller
+      - cert-manager
   rules:
   - apiGroups:
     - ""