JupiterOne
diff --git a/‎.github/workflows/release.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/release.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.gitignore
Lines changed: 1 addition & 2 deletions b/‎.gitignore
Lines changed: 1 addition & 2 deletions
diff --git a/‎charts/kubernetes-operator/.helmignore
Lines changed: 25 additions & 0 deletions b/‎charts/kubernetes-operator/.helmignore
Lines changed: 25 additions & 0 deletions
diff --git a/‎charts/kubernetes-operator/Chart.yaml
Lines changed: 6 additions & 0 deletions b/‎charts/kubernetes-operator/Chart.yaml
Lines changed: 6 additions & 0 deletions
diff --git a/‎charts/kubernetes-operator/templates/_helpers.tpl
Lines changed: 50 additions & 0 deletions b/‎charts/kubernetes-operator/templates/_helpers.tpl
Lines changed: 50 additions & 0 deletions
diff --git a/‎charts/kubernetes-operator/templates/certmanager/certificate.yaml
Lines changed: 36 additions & 0 deletions b/‎charts/kubernetes-operator/templates/certmanager/certificate.yaml
Lines changed: 36 additions & 0 deletions
diff --git a/‎charts/kubernetes-operator/templates/crd/integrations.jupiterone.io_integrationinstancejobs.yaml
Lines changed: 94 additions & 0 deletions b/‎charts/kubernetes-operator/templates/crd/integrations.jupiterone.io_integrationinstancejobs.yaml
Lines changed: 94 additions & 0 deletions
diff --git a/‎charts/kubernetes-operator/templates/crd/integrations.jupiterone.io_integrationrunners.yaml
Lines changed: 87 additions & 0 deletions b/‎charts/kubernetes-operator/templates/crd/integrations.jupiterone.io_integrationrunners.yaml
Lines changed: 87 additions & 0 deletions
@@ -1,6 +1,6 @@
 name: Release Chart
 
-on:
+on:  
   push:
     branches:
       - main
 
@@ -1,3 +1,2 @@
 # Chart dependencies
-/charts/*/charts
-values.yaml
+/charts/*/charts
@@ -0,0 +1,25 @@
+# Patterns to ignore when building Helm packages.
+# Operating system files
+.DS_Store
+
+# Version control directories
+.git/
+.gitignore
+.bzr/
+.hg/
+.hgignore
+.svn/
+
+# Backup and temporary files
+*.swp
+*.tmp
+*.bak
+*.orig
+*~
+
+# IDE and editor-related files
+.idea/
+.vscode/
+
+# Helm chart artifacts
+dist/chart/*.tgz
@@ -0,0 +1,6 @@
+apiVersion: v2
+name: kubernetes-operator
+description: A Helm chart to distribute the project kubernetes-operator
+type: application
+version: 1.0.0
+appVersion: "v0.0.10"
@@ -0,0 +1,50 @@
+{{- define "chart.name" -}}
+{{- if .Chart }}
+  {{- if .Chart.Name }}
+    {{- .Chart.Name | trunc 63 | trimSuffix "-" }}
+  {{- else if .Values.nameOverride }}
+    {{ .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+  {{- else }}
+    kubernetes-operator
+  {{- end }}
+{{- else }}
+  kubernetes-operator
+{{- end }}
+{{- end }}
+
+
+{{- define "chart.labels" -}}
+{{- if .Chart.AppVersion -}}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+{{- if .Chart.Version }}
+helm.sh/chart: {{ .Chart.Version | quote }}
+{{- end }}
+app.kubernetes.io/name: {{ include "chart.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+
+{{- define "chart.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "chart.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+
+{{- define "chart.hasMutatingWebhooks" -}}
+{{- $hasMutating := false }}
+{{- range . }}
+  {{- if eq .type "mutating" }}
+    $hasMutating = true }}{{- end }}
+{{- end }}
+{{ $hasMutating }}}}{{- end }}
+
+
+{{- define "chart.hasValidatingWebhooks" -}}
+{{- $hasValidating := false }}
+{{- range . }}
+  {{- if eq .type "validating" }}
+    $hasValidating = true }}{{- end }}
+{{- end }}
+{{ $hasValidating }}}}{{- end }}
@@ -0,0 +1,36 @@
+{{- if .Values.certmanager.enable }}
+# Self-signed Issuer
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+  name: selfsigned-issuer
+  namespace: {{ .Release.Namespace }}
+spec:
+  selfSigned: {}
+{{- if .Values.metrics.enable }}
+---
+# Certificate for the metrics
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  annotations:
+    {{- if .Values.crd.keep }}
+    "helm.sh/resource-policy": keep
+    {{- end }}
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+  name: metrics-certs
+  namespace: {{ .Release.Namespace }}
+spec:
+  dnsNames:
+    - kubernetes-operator.{{ .Release.Namespace }}.svc
+    - kubernetes-operator.{{ .Release.Namespace }}.svc.cluster.local
+    - kubernetes-operator-metrics-service.{{ .Release.Namespace }}.svc
+  issuerRef:
+    kind: Issuer
+    name: selfsigned-issuer
+  secretName: metrics-server-cert
+{{- end }}
+{{- end }}
@@ -0,0 +1,94 @@
+{{- if .Values.crd.enable }}
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+  annotations:
+    {{- if .Values.crd.keep }}
+    "helm.sh/resource-policy": keep
+    {{- end }}
+    controller-gen.kubebuilder.io/version: v0.18.0
+  name: integrationinstancejobs.integrations.jupiterone.io
+spec:
+  group: integrations.jupiterone.io
+  names:
+    kind: IntegrationInstanceJob
+    listKind: IntegrationInstanceJobList
+    plural: integrationinstancejobs
+    singular: integrationinstancejob
+  scope: Namespaced
+  versions:
+  - additionalPrinterColumns:
+    - description: Indicates if the image has been cosign verified
+      jsonPath: .status.imageVerified
+      name: Verified
+      type: string
+    name: v1
+    schema:
+      openAPIV3Schema:
+        description: IntegrationInstanceJob is the Schema for the integrationinstancejobs
+          API.
+        properties:
+          apiVersion:
+            description: |-
+              APIVersion defines the versioned schema of this representation of an object.
+              Servers should convert recognized schemas to the latest internal value, and
+              may reject unrecognized values.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+            type: string
+          kind:
+            description: |-
+              Kind is a string value representing the REST resource this object represents.
+              Servers may infer this from the endpoint the client submits requests to.
+              Cannot be updated.
+              In CamelCase.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: IntegrationInstanceJobSpec defines the desired state of IntegrationInstanceJob.
+            properties:
+              certificateIdentity:
+                type: string
+              image:
+                type: string
+              integrationDefinitionName:
+                description: IntegrationDefinitionName is the name of the integration
+                  that will be run
+                type: string
+              integrationInstanceId:
+                description: IntegrationInstanceID is the ID of the integration instance
+                  that this job is associated with.
+                type: string
+              integrationInstanceJobId:
+                description: IntegrationInstanceJobID is the unique identifier for
+                  the integration instance job.
+                type: string
+              integrationRunnerName:
+                description: IntegrationRunnerName is the name of the IntegrationRunner
+                  that created this instance.
+                type: string
+              secretName:
+                description: SecretName is the name of the secret that contains the
+                  credentials for the integration instance job.
+                type: string
+            type: object
+          status:
+            description: IntegrationInstanceJobStatus defines the observed state of
+              IntegrationInstanceJob.
+            properties:
+              imageVerified:
+                description: |-
+                  ImageVerified indicates the status of the cosign image verification step.
+                  It can be one of the following values: PENDING, SUCCESS, FAILED.
+                type: string
+            type: object
+        type: object
+    served: true
+    storage: true
+    subresources:
+      status: {}
+{{- end -}}
@@ -0,0 +1,87 @@
+{{- if .Values.crd.enable }}
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  labels:
+    {{- include "chart.labels" . | nindent 4 }}
+  annotations:
+    {{- if .Values.crd.keep }}
+    "helm.sh/resource-policy": keep
+    {{- end }}
+    controller-gen.kubebuilder.io/version: v0.18.0
+  name: integrationrunners.integrations.jupiterone.io
+spec:
+  group: integrations.jupiterone.io
+  names:
+    kind: IntegrationRunner
+    listKind: IntegrationRunnerList
+    plural: integrationrunners
+    singular: integrationrunner
+  scope: Namespaced
+  versions:
+  - name: v1
+    schema:
+      openAPIV3Schema:
+        description: IntegrationRunner is the Schema for the integrationrunners API.
+        properties:
+          apiVersion:
+            description: |-
+              APIVersion defines the versioned schema of this representation of an object.
+              Servers should convert recognized schemas to the latest internal value, and
+              may reject unrecognized values.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+            type: string
+          kind:
+            description: |-
+              Kind is a string value representing the REST resource this object represents.
+              Servers may infer this from the endpoint the client submits requests to.
+              Cannot be updated.
+              In CamelCase.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: IntegrationRunnerSpec defines the desired state of IntegrationRunner.
+            properties:
+              accountId:
+                description: AccountID is the JupiterOne account ID that this integration
+                  runner belongs to.
+                type: string
+              collectorId:
+                description: CollectorID is the ID of the collector that this integration
+                  runner is associated with.
+                type: string
+              jupiterOneApiUrl:
+                description: |-
+                  JupiterOneApiURL is the URL of the JupiterOne API that the integration runner will connect to.
+                  This defaults to https://api.us.jupiterone.io if not specified.
+                type: string
+              secretName:
+                description: SecretName is the name of the Kubernetes secret that
+                  contains the credentials for the integration runner.
+                type: string
+              syncIntervalSeconds:
+                description: SyncIntervalSeconds is the interval in seconds at which
+                  the integration runner should sync data.
+                type: integer
+            type: object
+          status:
+            description: IntegrationRunnerStatus defines the observed state of IntegrationRunner.
+            properties:
+              lastHeartbeatTime:
+                format: date-time
+                type: string
+              lastSyncTime:
+                format: date-time
+                type: string
+              registrationStatus:
+                type: string
+            type: object
+        type: object
+    served: true
+    storage: true
+    subresources:
+      status: {}
+{{- end -}}
-Original file line number
+Diff line change
@@ @@ -1,6 +1,6 @@ @@
 name: Release Chart
 -on:
 +on:
   push:
     branches:
       - main