terraform-provider-flux icon indicating copy to clipboard operation
terraform-provider-flux copied to clipboard

Published 20 hours ago verified publisher icon fluxcd

There needs to be a way to configure the manifests for things like podsecuritypolicy.

Open sharkymcdongles opened this issue 4 years ago • 2 comments

Currently you cannot deploy this on a cluster with podsecuritypolicy enabled because the source and notification controllers won't boot:

Error creating: pods "source-controller-67c76b67f5-" is forbidden: PodSecurityPolicy: unable to admit pod: []

They support this with static manifests e.g.

https://fluxcd.io/docs/installation/#pod-security-policy

However I don't see this as documented to be configurable with this module.

sharkymcdongles avatar Jun 22 '21 16:06 sharkymcdongles

Also flux_sync datasoure should support things like dependson.

sharkymcdongles avatar Jul 03 '21 10:07 sharkymcdongles

@sharkymcdongles I think the docs in #178 may solve your problems configuring PSP.

So regarding the depends_on question. That is a more complex question that is related to the core of Terraform rather than Flux. It would be nice to do this but there is a long running issue within Terraform about how to have dynamic outputs with depends_on than in turn creates dynamic resources.

phillebaba avatar Jul 12 '21 20:07 phillebaba