From 8f4a67f6ccd2fc643e2623c6834fc46580120e8f Mon Sep 17 00:00:00 2001 From: svcAPLBot <174728082+svcAPLBot@users.noreply.github.com> Date: Sat, 27 Jun 2026 01:22:10 +0000 Subject: [PATCH] chore(chart-deps): update argocd to version 9.7.1 --- apps.yaml | 2 +- chart/chart-index/Chart.yaml | 2 +- charts/argocd/Chart.yaml | 8 +- charts/argocd/README.md | 128 ++++++++++- .../statefulset.yaml | 13 +- .../argocd-applicationset/deployment.yaml | 10 + .../argocd-applicationset/listenerset.yaml | 24 ++ .../argocd-commit-server/deployment.yaml | 14 +- .../argocd-notifications/deployment.yaml | 10 + .../argocd-repo-server/deployment.yaml | 15 +- .../templates/argocd-server/deployment.yaml | 15 +- .../templates/argocd-server/listenerset.yaml | 24 ++ charts/argocd/templates/dex/deployment.yaml | 12 + .../argocd/templates/redis/networkpolicy.yaml | 2 + charts/argocd/values.yaml | 212 ++++++++++++++++++ 15 files changed, 477 insertions(+), 14 deletions(-) create mode 100644 charts/argocd/templates/argocd-applicationset/listenerset.yaml create mode 100644 charts/argocd/templates/argocd-server/listenerset.yaml diff --git a/apps.yaml b/apps.yaml index 4a46e31787..8ba02e5267 100644 --- a/apps.yaml +++ b/apps.yaml @@ -12,7 +12,7 @@ appsInfo: integration: Alertmanager can be activated to send alerts to configured receivers. It is configured by App Platform to use the global values found under settings/alerts. A team can override global settings to send alerts to their own endpoints. argocd: title: Argo CD - appVersion: 3.4.3 + appVersion: 3.4.4 repo: https://github.com/argoproj/argo-helm maintainers: Argo Project relatedLinks: diff --git a/chart/chart-index/Chart.yaml b/chart/chart-index/Chart.yaml index 070acce3e9..1502339e78 100644 --- a/chart/chart-index/Chart.yaml +++ b/chart/chart-index/Chart.yaml @@ -6,7 +6,7 @@ version: 0.1.0 dependencies: - name: argo-cd alias: argocd - version: 9.5.21 + version: 9.7.1 repository: https://argoproj.github.io/argo-helm - name: argocd-image-updater version: 1.1.5 diff --git a/charts/argocd/Chart.yaml b/charts/argocd/Chart.yaml index cd037cd97e..201950cf37 100644 --- a/charts/argocd/Chart.yaml +++ b/charts/argocd/Chart.yaml @@ -1,12 +1,12 @@ annotations: artifacthub.io/changes: | - - kind: changed - description: Bump argocd-extension-installer to v1.0.1 + - kind: fixed + description: Only render the Redis metrics NetworkPolicy ingress rule when redis.exporter.enabled is true artifacthub.io/signKey: | fingerprint: 2B8F22F57260EFA67BE1C5824B11F800CD9D2252 url: https://argoproj.github.io/argo-helm/pgp_keys.asc apiVersion: v2 -appVersion: v3.4.3 +appVersion: v3.4.4 dependencies: - condition: redis-ha.enabled name: redis-ha @@ -28,4 +28,4 @@ name: argo-cd sources: - https://github.com/argoproj/argo-cd - https://github.com/argoproj/argo-helm/tree/main/charts/argo-cd -version: 9.5.21 +version: 9.7.1 diff --git a/charts/argocd/README.md b/charts/argocd/README.md index 47689f7c6e..67a81f4c82 100644 --- a/charts/argocd/README.md +++ b/charts/argocd/README.md @@ -307,7 +307,7 @@ server: #### Gateway API with TLS backend -For HTTPS backends with Gateway API, you may need to configure BackendTLSPolicy (experimental, v1alpha3): +For HTTPS backends with Gateway API, you may need to configure BackendTLSPolicy: > **Warning:** > BackendTLSPolicy is in **EXPERIMENTAL** status. Not all Gateway controllers support this resource (e.g., Cilium does not yet support it). @@ -330,6 +330,67 @@ server: wellKnownCACertificates: System ``` +#### Gateway API ListenerSet + +Use ListenerSet to attach listeners to an existing shared Gateway. This is useful when you want to contribute listeners to a Gateway managed by another team or namespace. + +> **Note:** +> ListenerSet support is **EXPERIMENTAL**. Requires Gateway API v1.5+ and a controller that supports ListenerSet. Refer to [Gateway API implementations](https://gateway-api.sigs.k8s.io/implementations/) for controller-specific details. + +```yaml +server: + listenerset: + enabled: true + parentRef: + group: gateway.networking.k8s.io + kind: Gateway + name: example-gateway + namespace: gateway-system + listeners: + - name: https + port: 443 + protocol: HTTPS + hostname: argocd.example.com + tls: + mode: Terminate + certificateRefs: + - group: "" + kind: Secret + name: argocd-server-tls + allowedRoutes: + namespaces: + from: Same +``` + +Combined with an HTTPRoute to route traffic from the listener to the Argo CD server: + +```yaml +server: + listenerset: + enabled: true + parentRef: + name: example-gateway + namespace: gateway-system + listeners: + - name: https + port: 443 + protocol: HTTPS + hostname: argocd.example.com + tls: + mode: Terminate + certificateRefs: + - group: "" + kind: Secret + name: argocd-server-tls + + httproute: + enabled: true + parentRefs: + - name: example-gateway + namespace: gateway-system + sectionName: https +``` + ## Setting the initial admin password via Argo CD Application CR > **Note:** When deploying the `argo-cd` chart via an Argo CD `Application` CR, define your bcrypt-hashed admin password under `helm.values`—not `helm.parameters`—because Argo CD performs variable substitution on `parameters`, which will mangle any `$…` in your hash. @@ -1037,6 +1098,7 @@ NAME: my-release | controller.podLabels | object | `{}` | Labels to be added to application controller pods | | controller.priorityClassName | string | `""` (defaults to global.priorityClassName) | Priority class for the application controller pods | | controller.readinessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| controller.readinessProbe.httpPath | string | `"/healthz"` | Http path to use for the readiness probe | | controller.readinessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | | controller.readinessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | controller.readinessProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | @@ -1051,6 +1113,13 @@ NAME: my-release | controller.serviceAccount.create | bool | `true` | Create a service account for the application controller | | controller.serviceAccount.labels | object | `{}` | Labels applied to created service account | | controller.serviceAccount.name | string | `"argocd-application-controller"` | Service account name | +| controller.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for application controller | +| controller.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| controller.startupProbe.httpPath | string | `"/healthz"` | Http path to use for the startup probe | +| controller.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| controller.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| controller.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| controller.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | controller.statefulsetAnnotations | object | `{}` | Annotations for the application controller StatefulSet | | controller.statefulsetLabels | object | `{}` | Labels for the application controller StatefulSet | | controller.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | @@ -1110,6 +1179,7 @@ NAME: my-release | repoServer.lifecycle | object | `{}` | Specify postStart and preStop lifecycle hooks for your argo-repo-server container | | repoServer.livenessProbe.enabled | bool | `true` | Enable Kubernetes liveness probe for Repo Server | | repoServer.livenessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| repoServer.livenessProbe.httpPath | string | `"/healthz?full=true"` | Http path to use for the liveness probe | | repoServer.livenessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | | repoServer.livenessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | repoServer.livenessProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | @@ -1147,6 +1217,7 @@ NAME: my-release | repoServer.rbac | list | `[]` | Repo server rbac rules | | repoServer.readinessProbe.enabled | bool | `true` | Enable Kubernetes readiness probe for Repo Server | | repoServer.readinessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| repoServer.readinessProbe.httpPath | string | `"/healthz"` | Http path to use for the readiness probe | | repoServer.readinessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | | repoServer.readinessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | repoServer.readinessProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | @@ -1164,6 +1235,13 @@ NAME: my-release | repoServer.serviceAccount.create | bool | `true` | Create repo server service account | | repoServer.serviceAccount.labels | object | `{}` | Labels applied to created service account | | repoServer.serviceAccount.name | string | `""` | Repo server service account name | +| repoServer.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for Repo Server | +| repoServer.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| repoServer.startupProbe.httpPath | string | `"/healthz"` | Http path to use for the startup probe | +| repoServer.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| repoServer.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| repoServer.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| repoServer.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | repoServer.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | | repoServer.tolerations | list | `[]` (defaults to global.tolerations) | [Tolerations] for use with node taints | | repoServer.topologySpreadConstraints | list | `[]` (defaults to global.topologySpreadConstraints) | Assign custom [TopologySpreadConstraints] rules to the repo server | @@ -1287,8 +1365,14 @@ NAME: my-release | server.ingressGrpc.tls | bool | `false` | Enable TLS configuration for the hostname defined at `server.ingressGrpc.hostname` | | server.initContainers | list | `[]` | Init containers to add to the server pod | | server.lifecycle | object | `{}` | Specify postStart and preStop lifecycle hooks for your argo-cd-server container | +| server.listenerset.annotations | object | `{}` | Additional ListenerSet annotations | +| server.listenerset.enabled | bool | `false` | Enable ListenerSet resource for Argo CD server (Gateway API) | +| server.listenerset.labels | object | `{}` | Additional ListenerSet labels | +| server.listenerset.listeners | list | `[]` (See [values.yaml]) | Listeners to attach to the parent Gateway | +| server.listenerset.parentRef | object | `{}` (See [values.yaml]) | Gateway API parentRef for the ListenerSet | | server.livenessProbe.enabled | bool | `true` | Enable Kubernetes liveness probe for default backend | | server.livenessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| server.livenessProbe.httpPath | string | `"/healthz?full=true"` | Http path to use for the liveness probe | | server.livenessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | | server.livenessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | server.livenessProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | @@ -1325,6 +1409,7 @@ NAME: my-release | server.priorityClassName | string | `""` (defaults to global.priorityClassName) | Priority class for the Argo CD server pods | | server.readinessProbe.enabled | bool | `true` | Enable Kubernetes readiness probe for default backend | | server.readinessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| server.readinessProbe.httpPath | string | `"/healthz"` | Http path to use for the readiness probe | | server.readinessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | | server.readinessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | server.readinessProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | @@ -1358,6 +1443,13 @@ NAME: my-release | server.serviceAccount.create | bool | `true` | Create server service account | | server.serviceAccount.labels | object | `{}` | Labels applied to created service account | | server.serviceAccount.name | string | `"argocd-server"` | Server service account name | +| server.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for Argo CD server | +| server.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| server.startupProbe.httpPath | string | `"/healthz"` | Http path to use for the startup probe | +| server.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| server.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| server.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| server.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | server.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | | server.tolerations | list | `[]` (defaults to global.tolerations) | [Tolerations] for use with node taints | | server.topologySpreadConstraints | list | `[]` (defaults to global.topologySpreadConstraints) | Assign custom [TopologySpreadConstraints] rules to the Argo CD server | @@ -1460,6 +1552,15 @@ NAME: my-release | dex.servicePortHttp | int | `5556` | Service port for HTTP access | | dex.servicePortHttpName | string | `"http"` | Service port name for HTTP access | | dex.servicePortMetrics | int | `5558` | Service port for metrics access | +| dex.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for Dex >= 2.28.0 | +| dex.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| dex.startupProbe.httpPath | string | `"/healthz/ready"` | Http path to use for the startup probe | +| dex.startupProbe.httpPort | string | `"metrics"` | Http port to use for the startup probe | +| dex.startupProbe.httpScheme | string | `"HTTP"` | Scheme to use for the startup probe (can be HTTP or HTTPS) | +| dex.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| dex.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| dex.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| dex.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | dex.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | | dex.tolerations | list | `[]` (defaults to global.tolerations) | [Tolerations] for use with node taints | | dex.topologySpreadConstraints | list | `[]` (defaults to global.topologySpreadConstraints) | Assign custom [TopologySpreadConstraints] rules to dex | @@ -1724,6 +1825,11 @@ If you use an External Redis (See Option 3 above), this Job is not deployed. | applicationSet.ingress.pathType | string | `"Prefix"` | Ingress path type. One of `Exact`, `Prefix` or `ImplementationSpecific` | | applicationSet.ingress.tls | bool | `false` | Enable TLS configuration for the hostname defined at `applicationSet.webhook.ingress.hostname` | | applicationSet.initContainers | list | `[]` | Init containers to add to the ApplicationSet controller pod | +| applicationSet.listenerset.annotations | object | `{}` | Additional ListenerSet annotations | +| applicationSet.listenerset.enabled | bool | `false` | Enable ListenerSet resource for Argo CD ApplicationSet webhook (Gateway API) | +| applicationSet.listenerset.labels | object | `{}` | Additional ListenerSet labels | +| applicationSet.listenerset.listeners | list | `[]` (See [values.yaml]) | Listeners to attach to the parent Gateway | +| applicationSet.listenerset.parentRef | object | `{}` (See [values.yaml]) | Gateway API parentRef for the ListenerSet | | applicationSet.livenessProbe.enabled | bool | `false` | Enable Kubernetes liveness probe for ApplicationSet controller | | applicationSet.livenessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | | applicationSet.livenessProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | @@ -1779,6 +1885,12 @@ If you use an External Redis (See Option 3 above), this Job is not deployed. | applicationSet.serviceAccount.create | bool | `true` | Create ApplicationSet controller service account | | applicationSet.serviceAccount.labels | object | `{}` | Labels applied to created service account | | applicationSet.serviceAccount.name | string | `"argocd-applicationset-controller"` | ApplicationSet controller service account name | +| applicationSet.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for ApplicationSet controller | +| applicationSet.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| applicationSet.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| applicationSet.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| applicationSet.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| applicationSet.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | applicationSet.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | | applicationSet.tolerations | list | `[]` (defaults to global.tolerations) | [Tolerations] for use with node taints | | applicationSet.topologySpreadConstraints | list | `[]` (defaults to global.topologySpreadConstraints) | Assign custom [TopologySpreadConstraints] rules to the ApplicationSet controller | @@ -1869,6 +1981,12 @@ If you use an External Redis (See Option 3 above), this Job is not deployed. | notifications.serviceAccount.create | bool | `true` | Create notifications controller service account | | notifications.serviceAccount.labels | object | `{}` | Labels applied to created service account | | notifications.serviceAccount.name | string | `"argocd-notifications-controller"` | Notification controller service account name | +| notifications.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for notifications controller Pods | +| notifications.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| notifications.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| notifications.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| notifications.startupProbe.successThreshold | int | `1` | Minimum consecutive successes for the [probe] to be considered successful after having failed | +| notifications.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | notifications.subscriptions | list | `[]` | Contains centrally managed global application subscriptions | | notifications.templates | object | `{}` | The notification template is used to generate the notification content | | notifications.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | @@ -1908,6 +2026,7 @@ To read more about this component, please read [Argo CD Manifest Hydrator] and [ | commitServer.image.tag | string | `""` (defaults to global.image.tag) | Tag to use for the commit server | | commitServer.livenessProbe.enabled | bool | `true` | Enable Kubernetes liveness probe for commit server | | commitServer.livenessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| commitServer.livenessProbe.httpPath | string | `"/healthz?full=true"` | Http path to use for the liveness probe | | commitServer.livenessProbe.initialDelaySeconds | int | `30` | Number of seconds after the container has started before [probe] is initiated | | commitServer.livenessProbe.periodSeconds | int | `30` | How often (in seconds) to perform the [probe] | | commitServer.livenessProbe.timeoutSeconds | int | `5` | Number of seconds after which the [probe] times out | @@ -1926,6 +2045,7 @@ To read more about this component, please read [Argo CD Manifest Hydrator] and [ | commitServer.priorityClassName | string | `""` (defaults to global.priorityClassName) | Priority class for the commit server pods | | commitServer.readinessProbe.enabled | bool | `true` | Enable Kubernetes liveness probe for commit server | | commitServer.readinessProbe.failureThreshold | int | `3` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| commitServer.readinessProbe.httpPath | string | `"/healthz"` | Http path to use for the readiness probe | | commitServer.readinessProbe.initialDelaySeconds | int | `5` | Number of seconds after the container has started before [probe] is initiated | | commitServer.readinessProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | | commitServer.readinessProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | @@ -1940,6 +2060,12 @@ To read more about this component, please read [Argo CD Manifest Hydrator] and [ | commitServer.serviceAccount.create | bool | `true` | Create commit server service account | | commitServer.serviceAccount.labels | object | `{}` | Labels applied to created service account | | commitServer.serviceAccount.name | string | `"argocd-commit-server"` | commit server service account name | +| commitServer.startupProbe.enabled | bool | `false` | Enable Kubernetes startup probe for commit server | +| commitServer.startupProbe.failureThreshold | int | `20` | Minimum consecutive failures for the [probe] to be considered failed after having succeeded | +| commitServer.startupProbe.httpPath | string | `"/healthz"` | Http path to use for the startup probe | +| commitServer.startupProbe.initialDelaySeconds | int | `10` | Number of seconds after the container has started before [probe] is initiated | +| commitServer.startupProbe.periodSeconds | int | `10` | How often (in seconds) to perform the [probe] | +| commitServer.startupProbe.timeoutSeconds | int | `1` | Number of seconds after which the [probe] times out | | commitServer.terminationGracePeriodSeconds | int | `30` | terminationGracePeriodSeconds for container lifecycle hook | | commitServer.tolerations | list | `[]` (defaults to global.tolerations) | [Tolerations] for use with node taints | | commitServer.topologySpreadConstraints | list | `[]` (defaults to global.topologySpreadConstraints) | Assign custom [TopologySpreadConstraints] rules to the commit server | diff --git a/charts/argocd/templates/argocd-application-controller/statefulset.yaml b/charts/argocd/templates/argocd-application-controller/statefulset.yaml index 026f3bdb2d..5bc855a975 100644 --- a/charts/argocd/templates/argocd-application-controller/statefulset.yaml +++ b/charts/argocd/templates/argocd-application-controller/statefulset.yaml @@ -371,13 +371,24 @@ spec: protocol: TCP readinessProbe: httpGet: - path: /healthz + path: {{ .Values.controller.readinessProbe.httpPath }} port: metrics initialDelaySeconds: {{ .Values.controller.readinessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.controller.readinessProbe.periodSeconds }} timeoutSeconds: {{ .Values.controller.readinessProbe.timeoutSeconds }} successThreshold: {{ .Values.controller.readinessProbe.successThreshold }} failureThreshold: {{ .Values.controller.readinessProbe.failureThreshold }} + {{- if .Values.controller.startupProbe.enabled }} + startupProbe: + httpGet: + path: {{ .Values.controller.startupProbe.httpPath }} + port: metrics + initialDelaySeconds: {{ .Values.controller.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.controller.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.controller.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.controller.startupProbe.successThreshold }} + failureThreshold: {{ .Values.controller.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.controller.resources | nindent 10 }} {{- with .Values.controller.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-applicationset/deployment.yaml b/charts/argocd/templates/argocd-applicationset/deployment.yaml index f61d4cea76..12220ed45d 100644 --- a/charts/argocd/templates/argocd-applicationset/deployment.yaml +++ b/charts/argocd/templates/argocd-applicationset/deployment.yaml @@ -278,6 +278,16 @@ spec: successThreshold: {{ .Values.applicationSet.readinessProbe.successThreshold }} failureThreshold: {{ .Values.applicationSet.readinessProbe.failureThreshold }} {{- end }} + {{- if .Values.applicationSet.startupProbe.enabled }} + startupProbe: + tcpSocket: + port: probe + initialDelaySeconds: {{ .Values.applicationSet.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.applicationSet.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.applicationSet.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.applicationSet.startupProbe.successThreshold }} + failureThreshold: {{ .Values.applicationSet.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.applicationSet.resources | nindent 12 }} {{- with .Values.applicationSet.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-applicationset/listenerset.yaml b/charts/argocd/templates/argocd-applicationset/listenerset.yaml new file mode 100644 index 0000000000..77e02725d5 --- /dev/null +++ b/charts/argocd/templates/argocd-applicationset/listenerset.yaml @@ -0,0 +1,24 @@ +{{- if .Values.applicationSet.listenerset.enabled -}} +{{- $fullName := include "argo-cd.applicationSet.fullname" . -}} +apiVersion: gateway.networking.k8s.io/v1 +kind: ListenerSet +metadata: + name: {{ $fullName }} + namespace: {{ include "argo-cd.namespace" . }} + labels: + {{- include "argo-cd.labels" (dict "context" . "component" .Values.applicationSet.name "name" .Values.applicationSet.name) | nindent 4 }} + {{- with .Values.applicationSet.listenerset.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} + {{- with .Values.applicationSet.listenerset.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + parentRef: + {{- toYaml .Values.applicationSet.listenerset.parentRef | nindent 4 }} + {{- with .Values.applicationSet.listenerset.listeners }} + listeners: + {{- toYaml . | nindent 4 }} + {{- end }} +{{- end }} diff --git a/charts/argocd/templates/argocd-commit-server/deployment.yaml b/charts/argocd/templates/argocd-commit-server/deployment.yaml index 7635d4683a..15449e055e 100644 --- a/charts/argocd/templates/argocd-commit-server/deployment.yaml +++ b/charts/argocd/templates/argocd-commit-server/deployment.yaml @@ -118,7 +118,7 @@ spec: {{- if .Values.commitServer.livenessProbe.enabled }} livenessProbe: httpGet: - path: /healthz?full=true + path: {{ .Values.commitServer.livenessProbe.httpPath }} port: 8087 initialDelaySeconds: {{ .Values.commitServer.livenessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.commitServer.livenessProbe.periodSeconds }} @@ -128,13 +128,23 @@ spec: {{- if .Values.commitServer.readinessProbe.enabled }} readinessProbe: httpGet: - path: /healthz + path: {{ .Values.commitServer.readinessProbe.httpPath }} port: 8087 initialDelaySeconds: {{ .Values.commitServer.readinessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.commitServer.readinessProbe.periodSeconds }} failureThreshold: {{ .Values.commitServer.readinessProbe.failureThreshold }} timeoutSeconds: {{ .Values.commitServer.readinessProbe.timeoutSeconds }} {{- end }} + {{- if .Values.commitServer.startupProbe.enabled }} + startupProbe: + httpGet: + path: {{ .Values.commitServer.startupProbe.httpPath }} + port: 8087 + initialDelaySeconds: {{ .Values.commitServer.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.commitServer.startupProbe.periodSeconds }} + failureThreshold: {{ .Values.commitServer.startupProbe.failureThreshold }} + timeoutSeconds: {{ .Values.commitServer.startupProbe.timeoutSeconds }} + {{- end }} resources: {{- toYaml .Values.commitServer.resources | nindent 10 }} {{- with .Values.commitServer.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-notifications/deployment.yaml b/charts/argocd/templates/argocd-notifications/deployment.yaml index 2e2e865c85..4eee63cb36 100644 --- a/charts/argocd/templates/argocd-notifications/deployment.yaml +++ b/charts/argocd/templates/argocd-notifications/deployment.yaml @@ -150,6 +150,16 @@ spec: successThreshold: {{ .Values.notifications.readinessProbe.successThreshold }} failureThreshold: {{ .Values.notifications.readinessProbe.failureThreshold }} {{- end }} + {{- if .Values.notifications.startupProbe.enabled }} + startupProbe: + tcpSocket: + port: metrics + initialDelaySeconds: {{ .Values.notifications.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.notifications.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.notifications.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.notifications.startupProbe.successThreshold }} + failureThreshold: {{ .Values.notifications.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.notifications.resources | nindent 12 }} {{- with .Values.notifications.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-repo-server/deployment.yaml b/charts/argocd/templates/argocd-repo-server/deployment.yaml index 9656317a75..f18a268b91 100644 --- a/charts/argocd/templates/argocd-repo-server/deployment.yaml +++ b/charts/argocd/templates/argocd-repo-server/deployment.yaml @@ -386,7 +386,7 @@ spec: {{- if .Values.repoServer.livenessProbe.enabled }} livenessProbe: httpGet: - path: /healthz?full=true + path: {{ .Values.repoServer.livenessProbe.httpPath }} port: metrics initialDelaySeconds: {{ .Values.repoServer.livenessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.repoServer.livenessProbe.periodSeconds }} @@ -397,7 +397,7 @@ spec: {{- if .Values.repoServer.readinessProbe.enabled }} readinessProbe: httpGet: - path: /healthz + path: {{ .Values.repoServer.readinessProbe.httpPath }} port: metrics initialDelaySeconds: {{ .Values.repoServer.readinessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.repoServer.readinessProbe.periodSeconds }} @@ -405,6 +405,17 @@ spec: successThreshold: {{ .Values.repoServer.readinessProbe.successThreshold }} failureThreshold: {{ .Values.repoServer.readinessProbe.failureThreshold }} {{- end }} + {{- if .Values.repoServer.startupProbe.enabled }} + startupProbe: + httpGet: + path: {{ .Values.repoServer.startupProbe.httpPath }} + port: metrics + initialDelaySeconds: {{ .Values.repoServer.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.repoServer.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.repoServer.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.repoServer.startupProbe.successThreshold }} + failureThreshold: {{ .Values.repoServer.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.repoServer.resources | nindent 10 }} {{- with .Values.repoServer.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-server/deployment.yaml b/charts/argocd/templates/argocd-server/deployment.yaml index 7c6cb29ffa..e48098e44f 100644 --- a/charts/argocd/templates/argocd-server/deployment.yaml +++ b/charts/argocd/templates/argocd-server/deployment.yaml @@ -424,7 +424,7 @@ spec: {{- if .Values.server.livenessProbe.enabled }} livenessProbe: httpGet: - path: /healthz?full=true + path: {{ .Values.server.livenessProbe.httpPath }} port: server initialDelaySeconds: {{ .Values.server.livenessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.server.livenessProbe.periodSeconds }} @@ -435,7 +435,7 @@ spec: {{- if .Values.server.readinessProbe.enabled }} readinessProbe: httpGet: - path: /healthz + path: {{ .Values.server.readinessProbe.httpPath }} port: server initialDelaySeconds: {{ .Values.server.readinessProbe.initialDelaySeconds }} periodSeconds: {{ .Values.server.readinessProbe.periodSeconds }} @@ -443,6 +443,17 @@ spec: successThreshold: {{ .Values.server.readinessProbe.successThreshold }} failureThreshold: {{ .Values.server.readinessProbe.failureThreshold }} {{- end }} + {{- if .Values.server.startupProbe.enabled }} + startupProbe: + httpGet: + path: {{ .Values.server.startupProbe.httpPath }} + port: server + initialDelaySeconds: {{ .Values.server.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.server.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.server.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.server.startupProbe.successThreshold }} + failureThreshold: {{ .Values.server.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.server.resources | nindent 10 }} {{- with .Values.server.containerSecurityContext }} diff --git a/charts/argocd/templates/argocd-server/listenerset.yaml b/charts/argocd/templates/argocd-server/listenerset.yaml new file mode 100644 index 0000000000..b7519f4f79 --- /dev/null +++ b/charts/argocd/templates/argocd-server/listenerset.yaml @@ -0,0 +1,24 @@ +{{- if .Values.server.listenerset.enabled -}} +{{- $fullName := include "argo-cd.server.fullname" . -}} +apiVersion: gateway.networking.k8s.io/v1 +kind: ListenerSet +metadata: + name: {{ $fullName }} + namespace: {{ include "argo-cd.namespace" . }} + labels: + {{- include "argo-cd.labels" (dict "context" . "component" .Values.server.name "name" .Values.server.name) | nindent 4 }} + {{- with .Values.server.listenerset.labels }} + {{- toYaml . | nindent 4 }} + {{- end }} + {{- with .Values.server.listenerset.annotations }} + annotations: + {{- toYaml . | nindent 4 }} + {{- end }} +spec: + parentRef: + {{- toYaml .Values.server.listenerset.parentRef | nindent 4 }} + {{- with .Values.server.listenerset.listeners }} + listeners: + {{- toYaml . | nindent 4 }} + {{- end }} +{{- end }} diff --git a/charts/argocd/templates/dex/deployment.yaml b/charts/argocd/templates/dex/deployment.yaml index e11663e084..bb999f1c40 100644 --- a/charts/argocd/templates/dex/deployment.yaml +++ b/charts/argocd/templates/dex/deployment.yaml @@ -152,6 +152,18 @@ spec: successThreshold: {{ .Values.dex.readinessProbe.successThreshold }} failureThreshold: {{ .Values.dex.readinessProbe.failureThreshold }} {{- end }} + {{- if .Values.dex.startupProbe.enabled }} + startupProbe: + httpGet: + path: {{ .Values.dex.startupProbe.httpPath }} + port: {{ .Values.dex.startupProbe.httpPort }} + scheme: {{ .Values.dex.startupProbe.httpScheme }} + initialDelaySeconds: {{ .Values.dex.startupProbe.initialDelaySeconds }} + periodSeconds: {{ .Values.dex.startupProbe.periodSeconds }} + timeoutSeconds: {{ .Values.dex.startupProbe.timeoutSeconds }} + successThreshold: {{ .Values.dex.startupProbe.successThreshold }} + failureThreshold: {{ .Values.dex.startupProbe.failureThreshold }} + {{- end }} resources: {{- toYaml .Values.dex.resources | nindent 10 }} {{- with .Values.dex.containerSecurityContext }} diff --git a/charts/argocd/templates/redis/networkpolicy.yaml b/charts/argocd/templates/redis/networkpolicy.yaml index ccf0699a2e..26f18f03ef 100644 --- a/charts/argocd/templates/redis/networkpolicy.yaml +++ b/charts/argocd/templates/redis/networkpolicy.yaml @@ -22,11 +22,13 @@ spec: ports: - port: redis protocol: TCP + {{- if .Values.redis.exporter.enabled }} - from: - namespaceSelector: {} ports: - port: metrics protocol: TCP + {{- end }} podSelector: matchLabels: {{- include "argo-cd.selectorLabels" (dict "context" . "name" .Values.redis.name) | nindent 6 }} diff --git a/charts/argocd/values.yaml b/charts/argocd/values.yaml index 221b3112c6..f11adfb008 100644 --- a/charts/argocd/values.yaml +++ b/charts/argocd/values.yaml @@ -951,6 +951,8 @@ controller: # Readiness probe for application controller ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ readinessProbe: + # -- Http path to use for the readiness probe + httpPath: /healthz # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 # -- Number of seconds after the container has started before [probe] is initiated @@ -962,6 +964,24 @@ controller: # -- Number of seconds after which the [probe] times out timeoutSeconds: 1 + ## Startup probe for application controller (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for application controller + enabled: false + # -- Http path to use for the startup probe + httpPath: /healthz + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -1379,6 +1399,28 @@ dex: # -- Number of seconds after which the [probe] times out timeoutSeconds: 1 + ## Startup probe for Dex server (optional) + ## Supported from Dex >= 2.28.0 + startupProbe: + # -- Enable Kubernetes startup probe for Dex >= 2.28.0 + enabled: false + # -- Http path to use for the startup probe + httpPath: /healthz/ready + # -- Http port to use for the startup probe + httpPort: metrics + # -- Scheme to use for the startup probe (can be HTTP or HTTPS) + httpScheme: HTTP + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -2271,6 +2313,8 @@ server: readinessProbe: # -- Enable Kubernetes readiness probe for default backend enabled: true + # -- Http path to use for the readiness probe + httpPath: /healthz # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 # -- Number of seconds after the container has started before [probe] is initiated @@ -2285,6 +2329,8 @@ server: livenessProbe: # -- Enable Kubernetes liveness probe for default backend enabled: true + # -- Http path to use for the liveness probe + httpPath: /healthz?full=true # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 # -- Number of seconds after the container has started before [probe] is initiated @@ -2296,6 +2342,24 @@ server: # -- Number of seconds after which the [probe] times out timeoutSeconds: 1 + ## Startup probe for Argo CD server (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for Argo CD server + enabled: false + # -- Http path to use for the startup probe + httpPath: /healthz + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -2793,6 +2857,43 @@ server: # kind: ConfigMap # wellKnownCACertificates: System + # Gateway API ListenerSet configuration + # NOTE: Gateway API support is in EXPERIMENTAL status + # ListenerSet allows attaching additional listeners to an existing Gateway + # Requires Gateway API v1alpha2 and a controller that supports ListenerSet + # Refer to https://gateway-api.sigs.k8s.io/reference/spec/#gateway.networking.k8s.io/v1alpha2.ListenerSet + listenerset: + # -- Enable ListenerSet resource for Argo CD server (Gateway API) + enabled: false + # -- Additional ListenerSet labels + labels: {} + # -- Additional ListenerSet annotations + annotations: {} + # -- Gateway API parentRef for the ListenerSet + ## Must reference an existing Gateway. Unlike HTTPRoute, ListenerSet accepts exactly one parentRef. + # @default -- `{}` (See [values.yaml]) + parentRef: {} + # group: gateway.networking.k8s.io + # kind: Gateway + # name: example-gateway + # namespace: example-gateway-namespace + # -- Listeners to attach to the parent Gateway + # @default -- `[]` (See [values.yaml]) + listeners: [] + # - name: https + # port: 443 + # protocol: HTTPS + # hostname: argocd.example.com + # tls: + # mode: Terminate + # certificateRefs: + # - group: "" + # kind: Secret + # name: argocd-server-tls + # allowedRoutes: + # namespaces: + # from: Same + ## Enable this and set the rules: to whatever custom rules you want for the Cluster Role resource. ## Defaults to off clusterRoleRules: @@ -3075,6 +3176,8 @@ repoServer: readinessProbe: # -- Enable Kubernetes readiness probe for Repo Server enabled: true + # -- Http path to use for the readiness probe + httpPath: /healthz # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 # -- Number of seconds after the container has started before [probe] is initiated @@ -3089,6 +3192,8 @@ repoServer: livenessProbe: # -- Enable Kubernetes liveness probe for Repo Server enabled: true + # -- Http path to use for the liveness probe + httpPath: /healthz?full=true # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 # -- Number of seconds after the container has started before [probe] is initiated @@ -3100,6 +3205,24 @@ repoServer: # -- Number of seconds after which the [probe] times out timeoutSeconds: 1 + ## Startup probe for Repo Server (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for Repo Server + enabled: false + # -- Http path to use for the startup probe + httpPath: /healthz + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -3508,6 +3631,22 @@ applicationSet: # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 + ## Startup probe for ApplicationSet controller (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for ApplicationSet controller + enabled: false + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -3686,6 +3825,43 @@ applicationSet: # - name: X-Custom-Header # value: custom-value + # Gateway API ListenerSet configuration for the Git Generator webhook + ## Ref: https://argocd-applicationset.readthedocs.io/en/master/Generators-Git/#webhook-configuration + # NOTE: Gateway API support is in EXPERIMENTAL status + # ListenerSet allows attaching additional listeners to an existing Gateway + # Requires Gateway API v1alpha2 and a controller that supports ListenerSet + # Refer to https://gateway-api.sigs.k8s.io/reference/spec/#gateway.networking.k8s.io/v1alpha2.ListenerSet + listenerset: + # -- Enable ListenerSet resource for Argo CD ApplicationSet webhook (Gateway API) + enabled: false + # -- Additional ListenerSet labels + labels: {} + # -- Additional ListenerSet annotations + annotations: {} + # -- Gateway API parentRef for the ListenerSet + ## Must reference an existing Gateway. Unlike HTTPRoute, ListenerSet accepts exactly one parentRef. + # @default -- `{}` (See [values.yaml]) + parentRef: {} + # group: gateway.networking.k8s.io + # kind: Gateway + # name: example-gateway + # namespace: example-gateway-namespace + # -- Listeners to attach to the parent Gateway + # @default -- `[]` (See [values.yaml]) + listeners: [] + # - name: https + # port: 443 + # protocol: HTTPS + # hostname: argocd.example.com + # tls: + # mode: Terminate + # certificateRefs: + # - group: "" + # kind: Secret + # name: argocd-applicationset-controller-tls + # allowedRoutes: + # namespaces: + # from: Same # -- Enable ApplicationSet in any namespace feature allowAnyNamespace: false @@ -3960,6 +4136,22 @@ notifications: # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 + ## Startup probe for notifications controller Pods (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for notifications controller Pods + enabled: false + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- Minimum consecutive successes for the [probe] to be considered successful after having failed + successThreshold: 1 + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30 @@ -4426,6 +4618,8 @@ commitServer: readinessProbe: # -- Enable Kubernetes liveness probe for commit server enabled: true + # -- Http path to use for the readiness probe + httpPath: /healthz # -- Number of seconds after the container has started before [probe] is initiated initialDelaySeconds: 5 # -- How often (in seconds) to perform the [probe] @@ -4438,6 +4632,8 @@ commitServer: livenessProbe: # -- Enable Kubernetes liveness probe for commit server enabled: true + # -- Http path to use for the liveness probe + httpPath: /healthz?full=true # -- Number of seconds after the container has started before [probe] is initiated initialDelaySeconds: 30 # -- How often (in seconds) to perform the [probe] @@ -4447,6 +4643,22 @@ commitServer: # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded failureThreshold: 3 + ## Startup probe for commit server (optional) + ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/ + startupProbe: + # -- Enable Kubernetes startup probe for commit server + enabled: false + # -- Http path to use for the startup probe + httpPath: /healthz + # -- Number of seconds after the container has started before [probe] is initiated + initialDelaySeconds: 10 + # -- How often (in seconds) to perform the [probe] + periodSeconds: 10 + # -- Number of seconds after which the [probe] times out + timeoutSeconds: 1 + # -- Minimum consecutive failures for the [probe] to be considered failed after having succeeded + failureThreshold: 20 + # -- terminationGracePeriodSeconds for container lifecycle hook terminationGracePeriodSeconds: 30