This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#@data/values | |
--- | |
aws: | |
vpc: | |
name: staging | |
clusters: | |
- name: hey |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#@ load("@ytt:struct", "struct") | |
#@ array= [0, 1, 2, 3] | |
#@ arraymap = [4, 5, 6, 7] | |
#@ merge = array + arraymap | |
stuff: | |
#@ for k in merge: | |
- #@ k |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#@ load("@ytt:overlay", "overlay") | |
#@ load("@ytt:data", "data") | |
#@ def clusters(): | |
- name: harbor | |
#@ end | |
#@ for cluster in clusters(): | |
#@ "{}-postcreate".format(cluster.name) | |
#@ end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
kind: KubeadmControlPlane | |
spec: | |
kubeadmConfigSpec: | |
files: | |
- path: /etc/kubernetes/encryption-provider.yaml | |
content: | | |
apiVersion: apiserver.config.k8s.io/v1 | |
kind: EncryptionConfiguration | |
resources: | |
- resources: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#@ load("@ytt:data", "data") | |
--- | |
apiVersion: v1 | |
kind: Secret | |
metadata: | |
name: grafana-config | |
namespace: monitoring | |
type: Opaque | |
stringData: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
kubectl run -i --rm --tty photonos-on-host --overrides=' | |
{ | |
"spec": { | |
"containers": [ | |
{ | |
"name": "photonos-on-host", | |
"image": "photon:3.0", | |
"args": ["bash"], | |
"stdin": true, | |
"stdinOnce": true, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
oscap xccdf generate fix --profile xccdf_org.ssgproject.content_profile_ospp --template urn:xccdf:fix:script:ansible xccdf-file.xml |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[Global] | |
[ServiceOverride "ec2"] | |
URL = "https://ec2.${AWS_ENDPOINT_URL}" | |
SigningRegion = "${AWS_REGION}" | |
Region = "${AWS_REGION}" | |
SigningMethod = v4 | |
Service = ec2 | |
[ServiceOverride "elasticloadbalancing"] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
package main | |
import ( | |
"fmt" | |
"github.com/aws/aws-sdk-go/aws/endpoints" | |
"gopkg.in/gcfg.v1" | |
) | |
type CloudConfig struct { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
set -e | |
set -o pipefail | |
# Add user to k8s using service account or build kubeconfig for existing service account, no RBAC (must create RBAC after this script) | |
if [[ -z "$1" ]] || [[ -z "$2" ]] || [[ -z "$3" ]]; then | |
echo "usage: $0 <service_account_name> <namespace> <target_folder>" | |
exit 1 | |
fi |