Skip to content
This repository has been archived by the owner on Nov 1, 2022. It is now read-only.

Allow for deploying Tiller as a sidecar. #79

Merged
merged 1 commit into from
Oct 22, 2019
Merged

Allow for deploying Tiller as a sidecar. #79

merged 1 commit into from
Oct 22, 2019

Conversation

bmcustodio
Copy link
Contributor

In this PR I propose adding support in the Helm chart for deploying Tiller as a sidecar (restricted to localhost). This is inspired by a comment by @justinbarrick, and I believe that, although possibly being an advanced scenario, would be of use for some people ( like me 🙂 ). Tiller is eventually going away, but I believe this may be a useful addition while #8 isn't finished. I've kept this new feature undocumented because it's probably a good idea to "restrict" access to it to whoever finds themselves in need of fiddling with values.yaml ( and also because I am not quite sure this will get accepted as a feature 🙂 ).

@bmcustodio
Copy link
Contributor Author

bmcustodio commented Oct 20, 2019
edited
Loading

As a side note, I think this may also be of use to whoever justs wants to try helm-operator without having to deploying any other piece of infrastructure (so it might be a good idea to document it, after all).

stefanprodan
stefanprodan suggested changes Oct 21, 2019
View reviewed changes
chart/helm-operator/templates/deployment.yaml Outdated Show resolved Hide resolved
chart/helm-operator/values.yaml Outdated Show resolved Hide resolved
@bmcustodio
Copy link
Contributor Author

Thank you @stefanprodan, accepted both changes!

stefanprodan
stefanprodan suggested changes Oct 21, 2019
View reviewed changes
Copy link
Member

@stefanprodan stefanprodan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add the tillerSidecar fields to the chart readme.

@bmcustodio
Copy link
Contributor Author

@stefanprodan done!

stefanprodan
stefanprodan suggested changes Oct 22, 2019
View reviewed changes
chart/helm-operator/Chart.yaml Outdated
@@ -1,6 +1,6 @@
apiVersion: v1
appVersion: "1.0.0-rc3"
version: 0.2.1
version: 0.3.0
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please undo this change, the version will be bumped when we do a Helm-op release

@bmcustodio
Allow for deploying Tiller as a sidecar.
d0a2d7a 
Signed-off-by: Bruno Miguel Custódio <brunomcustodio@gmail.com>
stefanprodan
stefanprodan approved these changes Oct 22, 2019
View reviewed changes
Copy link
Member

@stefanprodan stefanprodan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Thanks @bmcstdio

@stefanprodan stefanprodan merged commit 4db6bf8 into fluxcd:master Oct 22, 2019
@dmccaffery
Copy link

dmccaffery commented Nov 14, 2019
edited
Loading

If you release this, I might give you a kiss when I meet you next.

O.o
o.O
O.O
>.<

dmccaffery added a commit to deavon-and-tiffany/helm-charts that referenced this pull request Apr 20, 2020
@dmccaffery
feat(init): install tiller in cluster
c85cb50 
NOTE:

In order for flux and the helm-operator to work successfully, an instance
of tiller must be deployed into the cluster. This is a security vulnerability
in that the tiller account executes with a highly privileged role.

This should be removed once fluxcd/helm-operator#79
has been released. The current version of the helm-operator (1.0.0-rc3) does
not include this PR.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@stefanprodan stefanprodan stefanprodan approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@bmcustodio @dmccaffery @stefanprodan