@drunk-pulumi/azure-components 1.1.2 → 1.1.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/aks/helpers.d.ts +3 -2
- package/aks/helpers.js +8 -5
- package/package.json +1 -1
package/aks/helpers.d.ts
CHANGED
|
@@ -14,11 +14,12 @@ export declare const getAksClusterOutput: ({ resourceName, resourceGroupName, }:
|
|
|
14
14
|
resourceGroupName: pulumi.Input<string>;
|
|
15
15
|
}) => pulumi.Output<AksOutputType>;
|
|
16
16
|
export type ArgoCDExtensionArgs = Required<types.WithGroupRolesArgs> & types.WithResourceGroupInputs & {
|
|
17
|
-
|
|
17
|
+
allowInsecureAccess?: boolean;
|
|
18
18
|
argoCdDomain: pulumi.Input<string>;
|
|
19
19
|
workloadIdentityClientId: pulumi.Input<string>;
|
|
20
20
|
aks: azure.containerservice.ManagedCluster;
|
|
21
21
|
identity: AppRegistration;
|
|
22
22
|
releaseTrain?: 'preview' | pulumi.Input<string>;
|
|
23
|
+
allowedNameSpaces?: pulumi.Input<string>[];
|
|
23
24
|
};
|
|
24
|
-
export declare const createArgoCDExtension: (name: string, {
|
|
25
|
+
export declare const createArgoCDExtension: (name: string, { allowInsecureAccess, argoCdDomain, workloadIdentityClientId, aks, identity, groupRoles, rsGroup, releaseTrain, allowedNameSpaces, }: ArgoCDExtensionArgs, opts?: pulumi.ComponentResourceOptions) => import("@pulumi/azure-native/kubernetesconfiguration/extension").Extension;
|
package/aks/helpers.js
CHANGED
|
@@ -70,7 +70,7 @@ const getAksClusterOutput = ({ resourceName, resourceGroupName, }) => {
|
|
|
70
70
|
});
|
|
71
71
|
};
|
|
72
72
|
exports.getAksClusterOutput = getAksClusterOutput;
|
|
73
|
-
const createArgoCDExtension = (name, {
|
|
73
|
+
const createArgoCDExtension = (name, { allowInsecureAccess, argoCdDomain, workloadIdentityClientId, aks, identity, groupRoles, rsGroup, releaseTrain, allowedNameSpaces, }, opts) => {
|
|
74
74
|
const oidcConfig = pulumi.interpolate `
|
|
75
75
|
name: Azure
|
|
76
76
|
issuer: https://login.microsoftonline.com/${helpers_1.azureEnv.tenantId}/v2.0
|
|
@@ -86,7 +86,7 @@ requestedScopes:
|
|
|
86
86
|
- email
|
|
87
87
|
`;
|
|
88
88
|
const defaultPolicy = 'role:readonly';
|
|
89
|
-
const policy = `
|
|
89
|
+
const policy = pulumi.interpolate `
|
|
90
90
|
p, role:org-admin, applications, *, */*, allow
|
|
91
91
|
p, role:org-admin, clusters, get, *, allow
|
|
92
92
|
p, role:org-admin, repositories, get, *, allow
|
|
@@ -110,13 +110,16 @@ g, ${groupRoles.readOnly.objectId}, role:readonly
|
|
|
110
110
|
'workloadIdentity.enable': 'true',
|
|
111
111
|
'workloadIdentity.clientId': workloadIdentityClientId,
|
|
112
112
|
'workloadIdentity.entraSSOClientId': identity.clientId,
|
|
113
|
+
'config-maps.argocd-params.server.insecure': allowInsecureAccess ? 'true' : 'false',
|
|
113
114
|
'config-maps.argocd-cm.data.oidc\\.config': oidcConfig,
|
|
114
115
|
'config-maps.argocd-cm.data.url': pulumi.interpolate `https://${argoCdDomain}/`,
|
|
115
116
|
'config-maps.argocd-rbac-cm.data.policy\\.default': defaultPolicy,
|
|
116
117
|
'config-maps.argocd-rbac-cm.data.policy\\.csv': policy,
|
|
117
|
-
'config-maps.argocd-cmd-params-cm.data.application\\.namespaces':
|
|
118
|
+
'config-maps.argocd-cmd-params-cm.data.application\\.namespaces': allowedNameSpaces
|
|
119
|
+
? pulumi.output(allowedNameSpaces).apply((ns) => ns.join(','))
|
|
120
|
+
: 'argocd',
|
|
118
121
|
},
|
|
119
|
-
}, { ...opts, dependsOn: [aks, identity] });
|
|
122
|
+
}, { ...opts, dependsOn: [aks, identity], });
|
|
120
123
|
};
|
|
121
124
|
exports.createArgoCDExtension = createArgoCDExtension;
|
|
122
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
125
|
+
//# sourceMappingURL=data:application/json;base64,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
|