helm-charts
helm-charts copied to clipboard
spiffe
Helm charts for SPIRE and other SPIFFE components.
cert-manager should be an option to get certificates for the spire-controller-manager webhook so they can be standardized over all the webhooks on the cluster.
Once we refactor the chart to multiple root level charts we can request the official status for the charts that deploy the official spire components. https://artifacthub.io/docs/topics/repositories/#official-status As we might have...
See: https://helm.sh/docs/topics/charts/#tags-and-condition-fields-in-dependencies Using tags we can conditionally toggle certain features. This might be a good feature to use when toggling features that require a combination of dependencies. E.g. `spire-agent` requires...
Prometheus is one of the most common monitoring stacks for Kubernetes. The chart should be deployable with support for Prometheus to be able to fetch metrics.
- [AWS Secrets manager](https://aws.amazon.com/secrets-manager/) - [AWS secret plugin](https://github.com/spiffe/spire/blob/main/doc/plugin_server_upstreamauthority_awssecret.md) - https://spiffe.io/docs/latest/deploying/configuring/#configure-aws-certificate-manager See following where to add: - https://github.com/spiffe/helm-charts/blob/main/charts/spire/charts/spire-server/values.yaml#L94-L106 - https://github.com/spiffe/helm-charts/blob/main/charts/spire/charts/spire-server/templates/configmap.yaml#L61-L73