imfreedom/k8s-cluster

move 05-dashboard-admin and 05-kube-state-metrics in the new kustomize folder of 05-admin

2021-06-17, Gary Kramlich
cb3b4fbc9980
Parents cfc67b784e47
Children 7e064bbac852
move 05-dashboard-admin and 05-kube-state-metrics in the new kustomize folder of 05-admin
5 files changed, 246 insertions(+), 241 deletions(-)
  • +26 -0
    05-admin/dashboard.yaml
  • +215 -0
    05-admin/kube-state-metrics.yaml
  • +5 -0
    05-admin/kustomization.yaml
  • +0 -26
    05-dashboard-admin.yaml
  • +0 -215
    05-kube-state-metrics.yaml
    • --- /dev/null Thu Jan 01 00:00:00 1970 +0000
    +++ b/05-admin/dashboard.yaml Thu Jun 17 03:00:17 2021 -0500
    @@ -0,0 +1,26 @@
    +# This file contains a service account for accessing the kubernetes dashboard.
    +#
    +# The dashboard can be reached by running `kubectl proxy` and then opening
    +# http://localhost:8001/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/
    +# and use token auth with the contents of `token` item in the
    +# `dashboard-admin-token-XXXXX` secret in the `kube-system` namespace.
    +---
    +apiVersion: v1
    +kind: ServiceAccount
    +metadata:
    + name: dashboard-admin
    + namespace: kube-system
    +---
    +apiVersion: rbac.authorization.k8s.io/v1beta1
    +kind: ClusterRoleBinding
    +metadata:
    + name: dashboard-admin
    +roleRef:
    + apiGroup: rbac.authorization.k8s.io
    + kind: ClusterRole
    + name: cluster-admin
    +subjects:
    + - kind: ServiceAccount
    + name: dashboard-admin
    + namespace: kube-system
    +---
    --- /dev/null Thu Jan 01 00:00:00 1970 +0000
    +++ b/05-admin/kube-state-metrics.yaml Thu Jun 17 03:00:17 2021 -0500
    @@ -0,0 +1,215 @@
    +# The resulting manifests is the result of condensing everying from
    +# https://github.com/kubernetes/kube-state-metrics/blob/master/examples/standard/
    +# into a single file. This was created from revision
    +# 112d72ef54fa3ac2c900d4c6771f08833d9733dd.
    +# yamllint disable
    +
    +---
    +apiVersion: rbac.authorization.k8s.io/v1
    +kind: ClusterRole
    +metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + name: kube-state-metrics
    +rules:
    +- apiGroups:
    + - ""
    + resources:
    + - configmaps
    + - secrets
    + - nodes
    + - pods
    + - services
    + - resourcequotas
    + - replicationcontrollers
    + - limitranges
    + - persistentvolumeclaims
    + - persistentvolumes
    + - namespaces
    + - endpoints
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - extensions
    + resources:
    + - daemonsets
    + - deployments
    + - replicasets
    + - ingresses
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - apps
    + resources:
    + - statefulsets
    + - daemonsets
    + - deployments
    + - replicasets
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - batch
    + resources:
    + - cronjobs
    + - jobs
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - autoscaling
    + resources:
    + - horizontalpodautoscalers
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - authentication.k8s.io
    + resources:
    + - tokenreviews
    + verbs:
    + - create
    +- apiGroups:
    + - authorization.k8s.io
    + resources:
    + - subjectaccessreviews
    + verbs:
    + - create
    +- apiGroups:
    + - policy
    + resources:
    + - poddisruptionbudgets
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - certificates.k8s.io
    + resources:
    + - certificatesigningrequests
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - storage.k8s.io
    + resources:
    + - storageclasses
    + - volumeattachments
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - admissionregistration.k8s.io
    + resources:
    + - mutatingwebhookconfigurations
    + - validatingwebhookconfigurations
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - networking.k8s.io
    + resources:
    + - networkpolicies
    + verbs:
    + - list
    + - watch
    +- apiGroups:
    + - coordination.k8s.io
    + resources:
    + - leases
    + verbs:
    + - list
    + - watch
    +---
    +apiVersion: v1
    +kind: ServiceAccount
    +metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + name: kube-state-metrics
    + namespace: kube-system
    +---
    +apiVersion: rbac.authorization.k8s.io/v1
    +kind: ClusterRoleBinding
    +metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + name: kube-state-metrics
    +roleRef:
    + apiGroup: rbac.authorization.k8s.io
    + kind: ClusterRole
    + name: kube-state-metrics
    +subjects:
    +- kind: ServiceAccount
    + name: kube-state-metrics
    + namespace: kube-system
    +---
    +apiVersion: apps/v1
    +kind: Deployment
    +metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + name: kube-state-metrics
    + namespace: kube-system
    +spec:
    + replicas: 1
    + selector:
    + matchLabels:
    + app.kubernetes.io/name: kube-state-metrics
    + template:
    + metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + spec:
    + containers:
    + - image: quay.io/coreos/kube-state-metrics:v1.9.7
    + livenessProbe:
    + httpGet:
    + path: /healthz
    + port: 8080
    + initialDelaySeconds: 5
    + timeoutSeconds: 5
    + name: kube-state-metrics
    + ports:
    + - containerPort: 8080
    + name: http-metrics
    + - containerPort: 8081
    + name: telemetry
    + readinessProbe:
    + httpGet:
    + path: /
    + port: 8081
    + initialDelaySeconds: 5
    + timeoutSeconds: 5
    + securityContext:
    + runAsUser: 65534
    + nodeSelector:
    + kubernetes.io/os: linux
    + serviceAccountName: kube-state-metrics
    +---
    +apiVersion: v1
    +kind: Service
    +metadata:
    + labels:
    + app.kubernetes.io/name: kube-state-metrics
    + app.kubernetes.io/version: 1.9.7
    + name: kube-state-metrics
    + namespace: kube-system
    +spec:
    + clusterIP: None
    + ports:
    + - name: http-metrics
    + port: 8080
    + targetPort: http-metrics
    + - name: telemetry
    + port: 8081
    + targetPort: telemetry
    + selector:
    + app.kubernetes.io/name: kube-state-metrics
    +
    --- /dev/null Thu Jan 01 00:00:00 1970 +0000
    +++ b/05-admin/kustomization.yaml Thu Jun 17 03:00:17 2021 -0500
    @@ -0,0 +1,5 @@
    +---
    +resources:
    + - dashboard.yaml
    + - kube-state-metrics.yaml
    +---
    --- a/05-dashboard-admin.yaml Thu Jun 17 02:40:36 2021 -0500
    +++ /dev/null Thu Jan 01 00:00:00 1970 +0000
    @@ -1,26 +0,0 @@
    -# This file contains a service account for accessing the kubernetes dashboard.
    -#
    -# The dashboard can be reached by running `kubectl proxy` and then opening
    -# http://localhost:8001/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/
    -# and use token auth with the contents of `token` item in the
    -# `dashboard-admin-token-XXXXX` secret in the `kube-system` namespace.
    ----
    -apiVersion: v1
    -kind: ServiceAccount
    -metadata:
    - name: dashboard-admin
    - namespace: kube-system
    ----
    -apiVersion: rbac.authorization.k8s.io/v1beta1
    -kind: ClusterRoleBinding
    -metadata:
    - name: dashboard-admin
    -roleRef:
    - apiGroup: rbac.authorization.k8s.io
    - kind: ClusterRole
    - name: cluster-admin
    -subjects:
    - - kind: ServiceAccount
    - name: dashboard-admin
    - namespace: kube-system
    ----
    --- a/05-kube-state-metrics.yaml Thu Jun 17 02:40:36 2021 -0500
    +++ /dev/null Thu Jan 01 00:00:00 1970 +0000
    @@ -1,215 +0,0 @@
    -# The resulting manifests is the result of condensing everying from
    -# https://github.com/kubernetes/kube-state-metrics/blob/master/examples/standard/
    -# into a single file. This was created from revision
    -# 112d72ef54fa3ac2c900d4c6771f08833d9733dd.
    -# yamllint disable
    -
    ----
    -apiVersion: rbac.authorization.k8s.io/v1
    -kind: ClusterRole
    -metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - name: kube-state-metrics
    -rules:
    -- apiGroups:
    - - ""
    - resources:
    - - configmaps
    - - secrets
    - - nodes
    - - pods
    - - services
    - - resourcequotas
    - - replicationcontrollers
    - - limitranges
    - - persistentvolumeclaims
    - - persistentvolumes
    - - namespaces
    - - endpoints
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - extensions
    - resources:
    - - daemonsets
    - - deployments
    - - replicasets
    - - ingresses
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - apps
    - resources:
    - - statefulsets
    - - daemonsets
    - - deployments
    - - replicasets
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - batch
    - resources:
    - - cronjobs
    - - jobs
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - autoscaling
    - resources:
    - - horizontalpodautoscalers
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - authentication.k8s.io
    - resources:
    - - tokenreviews
    - verbs:
    - - create
    -- apiGroups:
    - - authorization.k8s.io
    - resources:
    - - subjectaccessreviews
    - verbs:
    - - create
    -- apiGroups:
    - - policy
    - resources:
    - - poddisruptionbudgets
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - certificates.k8s.io
    - resources:
    - - certificatesigningrequests
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - storage.k8s.io
    - resources:
    - - storageclasses
    - - volumeattachments
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - admissionregistration.k8s.io
    - resources:
    - - mutatingwebhookconfigurations
    - - validatingwebhookconfigurations
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - networking.k8s.io
    - resources:
    - - networkpolicies
    - verbs:
    - - list
    - - watch
    -- apiGroups:
    - - coordination.k8s.io
    - resources:
    - - leases
    - verbs:
    - - list
    - - watch
    ----
    -apiVersion: v1
    -kind: ServiceAccount
    -metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - name: kube-state-metrics
    - namespace: kube-system
    ----
    -apiVersion: rbac.authorization.k8s.io/v1
    -kind: ClusterRoleBinding
    -metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - name: kube-state-metrics
    -roleRef:
    - apiGroup: rbac.authorization.k8s.io
    - kind: ClusterRole
    - name: kube-state-metrics
    -subjects:
    -- kind: ServiceAccount
    - name: kube-state-metrics
    - namespace: kube-system
    ----
    -apiVersion: apps/v1
    -kind: Deployment
    -metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - name: kube-state-metrics
    - namespace: kube-system
    -spec:
    - replicas: 1
    - selector:
    - matchLabels:
    - app.kubernetes.io/name: kube-state-metrics
    - template:
    - metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - spec:
    - containers:
    - - image: quay.io/coreos/kube-state-metrics:v1.9.7
    - livenessProbe:
    - httpGet:
    - path: /healthz
    - port: 8080
    - initialDelaySeconds: 5
    - timeoutSeconds: 5
    - name: kube-state-metrics
    - ports:
    - - containerPort: 8080
    - name: http-metrics
    - - containerPort: 8081
    - name: telemetry
    - readinessProbe:
    - httpGet:
    - path: /
    - port: 8081
    - initialDelaySeconds: 5
    - timeoutSeconds: 5
    - securityContext:
    - runAsUser: 65534
    - nodeSelector:
    - kubernetes.io/os: linux
    - serviceAccountName: kube-state-metrics
    ----
    -apiVersion: v1
    -kind: Service
    -metadata:
    - labels:
    - app.kubernetes.io/name: kube-state-metrics
    - app.kubernetes.io/version: 1.9.7
    - name: kube-state-metrics
    - namespace: kube-system
    -spec:
    - clusterIP: None
    - ports:
    - - name: http-metrics
    - port: 8080
    - targetPort: http-metrics
    - - name: telemetry
    - port: 8081
    - targetPort: telemetry
    - selector:
    - app.kubernetes.io/name: kube-state-metrics
    -