linkerd
/
linkerd2
mirror of https://github.com/linkerd/linkerd2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linkerd2/charts/linkerd2-cni
History
Nil 69ca673682
Introduce support for authenticated docker registries using imagePullSecrets, Fixes #4413 (#4898) 
* Introduce support for authenticated docker registries using imagePullSecrets

Problem: Private Docker Registries are not supported for the moment as detailed in issue #4413

Solution: Every Service Account of linkerd subcomponents are Attached with imagePullSecrets,
which in turn can then pulls the docker images from authenticated private registries using them.
The imagePullSecret is configured in global.imagePullSecret parameter of values.yaml like

imagePullSecret:
  - name: <name-of-private-registry-secret-resource>

Fixes #4413

Signed-off-by: Nilakhya <nilakhya@hotmail.com>
 		2020-09-23 08:49:35 -05:00
..
templates Introduce support for authenticated docker registries using imagePullSecrets, Fixes #4413 (#4898) 2020-09-23 08:49:35 -05:00
.helmignore Move CNI template to helm (#3581) 2019-12-10 13:21:28 +02:00
Chart.yaml Increase minimum k8s version to 1.13 (#3845) 2019-12-19 09:26:08 -08:00
OWNERS Move CNI template to helm (#3581) 2019-12-10 13:21:28 +02:00
README.md Push docker images to ghcr.io instead of gcr.io (#4953) 2020-09-10 15:16:24 -05:00
requirements.lock Upgrade to Helm v3 (#4373) 2020-05-14 12:11:47 -05:00
requirements.yaml Fix CNI config parsing (#3953) 2020-01-23 09:55:04 -08:00
values.yaml Introduce support for authenticated docker registries using imagePullSecrets, Fixes #4413 (#4898) 2020-09-23 08:49:35 -05:00

README.md

Linkerd2-cni Helm Chart

Linkerd is a service mesh, designed to give platform-wide observability, reliability, and security without requiring configuration or code changes. The Linkerd CNI plugin takes care of setting up your pod's network so incoming and outgoing traffic is proxied through the data plane.

Configuration

The following table lists the configurable parameters of the Linkerd2-cni chart and their default values.

Parameter Description Default
cniPluginImage Docker image for the CNI plugin ghcr.io/linkerd/cni-plugin
cniPluginVersion Tag for the CNI container Docker image latest version
cniResourceAnnotation CNI resource annotation. Do not edit linkerd.io/cni-resource
controllerNamespaceLabel Control plane label. Do not edit linkerd.io/control-plane-ns
createdByAnnotation Annotation label for the proxy create. Do not edit. linkerd.io/created-by
destCNIBinDir Directory on the host where the CNI plugin binaries reside /opt/cni/bin
destCNINetDir Directory on the host where the CNI configuration will be placed /etc/cni/net.d
ignoreInboundPorts Inbound ports the proxy should ignore
ignoreOutboundPorts Outbound ports the proxy should ignore
inboundProxyPort Inbound port for the proxy container 4143
logLevel Log level for the CNI plugin info
namespace CNI plugin plane namespace linkerd-cni
outboundProxyPort Outbound port for the proxy container 4140
portsToRedirect Ports to redirect to proxy
proxyUID User id under which the proxy shall be ran 2102
useWaitFlag Configures the CNI plugin to use the -w flag for the iptables command false
installNamespace Whether to create the CNI plugin plane namespace or not true
priorityClassName Kubernetes priorityClassName for the CNI plugin's Pods