Merge with InterDigital 'deveop' branch to fix issues on swagger Editor

# See the License for the specific language governing permissions and

# limitations under the License.

version: 1.8.2

version: 1.8.3

repo:

  name: AdvantEDGE

      chart: charts/kube-state-metrics

      # user supplied value file located @ .meep/user/values (use below file name)

      chart-user-values: meep-kube-state-metrics.yaml

    meep-minio:

      # enable meepctl build -> deps are never built

      build: false

      # enable meepctl dockerize -> deps are never dockerized

      # enable meepctl deploy/delete

      deploy: false

      # location of deployment chart

      chart: charts/minio

      # user supplied value file located @ .meep/user/values (use below file name)

      chart-user-values: meep-minio.yaml

    meep-open-map-tiles:

      # enable meepctl build -> deps are never built

      build: false

annotations:

  artifacthub.io/prerelease: "false"

  artifacthub.io/signKey: |

    fingerprint: 1020CF3C033D4F35BAE1C19E1226061C665DF13E

    url: https://cert-manager.io/public-keys/cert-manager-keyring-2021-09-20-1020CF3C033D4F35BAE1C19E1226061C665DF13E.gpg

apiVersion: v1

appVersion: v1.0.3

appVersion: v1.8.0

description: A Helm chart for cert-manager

home: https://github.com/jetstack/cert-manager

home: https://github.com/cert-manager/cert-manager

icon: https://raw.githubusercontent.com/jetstack/cert-manager/master/logo/logo.png

keywords:

- cert-manager

- letsencrypt

- tls

maintainers:

- email: james@jetstack.io

  name: munnerz

- email: cert-manager-maintainers@googlegroups.com

  name: cert-manager-maintainers

name: cert-manager

sources:

- https://github.com/jetstack/cert-manager

version: v1.0.3

- https://github.com/cert-manager/cert-manager

version: v1.8.0

## Prerequisites

- Kubernetes 1.11+

- Kubernetes 1.18+

## Installing the Chart

This is performed in a separate step to allow you to easily uninstall and reinstall cert-manager without deleting your installed custom resources.

```bash

# Kubernetes 1.15+

$ kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v1.0.3/cert-manager.crds.yaml

# Kubernetes <1.15

$ kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v1.0.3/cert-manager-legacy.crds.yaml

$ kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.8.0/cert-manager.crds.yaml

```

> **Note**: If you're using a Kubernetes version below `v1.15` you will need to install the legacy version of the custom resource definitions.

> This version does not have API version conversion enabled and only supports `cert-manager.io/v1` API resources.

To install the chart with the release name `my-release`:

```console

$ helm repo add jetstack https://charts.jetstack.io

## Install the cert-manager helm chart

$ helm install --name my-release --namespace cert-manager jetstack/cert-manager

$ helm install my-release --namespace cert-manager --version v1.8.0 jetstack/cert-manager

```

In order to begin issuing certificates, you will need to set up a ClusterIssuer

delete the previously installed CustomResourceDefinition resources:

```console

# Kubernetes 1.15+

$ kubectl delete -f https://github.com/jetstack/cert-manager/releases/download/v1.0.3/cert-manager.crds.yaml

# Kubernetes <1.15

$ kubectl delete -f https://github.com/jetstack/cert-manager/releases/download/v1.0.3/cert-manager-legacy.crds.yaml

$ kubectl delete -f https://github.com/cert-manager/cert-manager/releases/download/v1.8.0/cert-manager.crds.yaml

```

## Configuration

| `global.podSecurityPolicy.enabled` | If `true`, create and use PodSecurityPolicy (includes sub-charts) | `false` |

| `global.podSecurityPolicy.useAppArmor` | If `true`, use Apparmor seccomp profile in PSP | `true` |

| `global.leaderElection.namespace` | Override the namespace used to store the ConfigMap for leader election | `kube-system` |

| `global.leaderElection.leaseDuration` | The duration that non-leader candidates will wait after observing a leadership renewal until attempting to acquire leadership of a led but unrenewed leader slot. This is effectively the maximum duration that a leader can be stopped before it is replaced by another candidate |  |

| `global.leaderElection.renewDeadline` | The interval between attempts by the acting master to renew a leadership slot before it stops leading. This must be less than or equal to the lease duration |  |

| `global.leaderElection.retryPeriod` | The duration the clients should wait between attempting acquisition and renewal of a leadership |  |

| `installCRDs` | If true, CRD resources will be installed as part of the Helm chart. If enabled, when uninstalling CRD resources will be deleted causing all installed custom resources to be DELETED | `false` |

| `image.repository` | Image repository | `quay.io/jetstack/cert-manager-controller` |

| `image.tag` | Image tag | `v1.0.3` |

| `image.tag` | Image tag | `v1.8.0` |

| `image.pullPolicy` | Image pull policy | `IfNotPresent` |

| `replicaCount`  | Number of cert-manager replicas  | `1` |

| `clusterResourceNamespace` | Override the namespace used to store DNS provider credentials etc. for ClusterIssuer resources | Same namespace as cert-manager pod |

| `featureGates` | Comma-separated list of feature gates to enable on the controller pod | `` |

| `featureGates` | Set of comma-separated key=value pairs that describe feature gates on the controller. Some feature gates may also have to be enabled on other components, and can be set supplying the `feature-gate` flag to `<component>.extraArgs` | `` |

| `extraArgs` | Optional flags for cert-manager | `[]` |

| `extraEnv` | Optional environment variables for cert-manager | `[]` |

| `serviceAccount.create` | If `true`, create a new service account | `true` |

| `serviceAccount.name` | Service account to be used. If not set and `serviceAccount.create` is `true`, a name is generated using the fullname template |  |

| `serviceAccount.annotations` | Annotations to add to the service account |  |

| `serviceAccount.automountServiceAccountToken` | Automount API credentials for the Service Account | `true` |

| `volumes` | Optional volumes for cert-manager | `[]` |

| `volumeMounts` | Optional volume mounts for cert-manager | `[]` |

| `resources` | CPU/memory resource requests/limits | `{}` |

| `securityContext` | Optional security context. The yaml block should adhere to the [SecurityContext spec](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.16/#securitycontext-v1-core) | `{}` |

| `securityContext` | Optional security context. The yaml block should adhere to the [SecurityContext spec](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.22/#securitycontext-v1-core) | `{}` |

| `securityContext.enabled` | Deprecated (use `securityContext`) - Enable security context | `false` |

| `containerSecurityContext` | Security context to be set on the controller component container | `{}` |

| `nodeSelector` | Node labels for pod assignment | `{}` |

| `prometheus.servicemonitor.interval` | Prometheus scrape interval | `60s` |

| `prometheus.servicemonitor.labels` | Add custom labels to ServiceMonitor | |

| `prometheus.servicemonitor.scrapeTimeout` | Prometheus scrape timeout | `30s` |

| `prometheus.servicemonitor.honorLabels` | Enable label honoring for metrics scraped by Prometheus (see [Prometheus scrape config docs](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#scrape_config) for details). By setting `honorLabels` to `true`, Prometheus will prefer label contents given by cert-manager on conflicts. Can be used to remove the "exported_namespace" label for example.  | `false` |

| `podAnnotations` | Annotations to add to the cert-manager pod | `{}` |

| `deploymentAnnotations` | Annotations to add to the cert-manager deployment | `{}` |

| `podDnsPolicy` | Optional cert-manager pod [DNS policy](https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pods-dns-policy) |  |

| `podDnsConfig` | Optional cert-manager pod [DNS configurations](https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pods-dns-config) |  |

| `podLabels` | Labels to add to the cert-manager pod | `{}` |

| `serviceLabels` | Labels to add to the cert-manager controller service | `{}` |

| `serviceAnnotations` | Annotations to add to the cert-manager service | `{}` |

| `http_proxy` | Value of the `HTTP_PROXY` environment variable in the cert-manager pod | |

| `https_proxy` | Value of the `HTTPS_PROXY` environment variable in the cert-manager pod | |

| `no_proxy` | Value of the `NO_PROXY` environment variable in the cert-manager pod | |

| `webhook.replicaCount` | Number of cert-manager webhook replicas | `1` |

| `webhook.timeoutSeconds` | Seconds the API server should wait the webhook to respond before treating the call as a failure. | `10` |

| `webhook.podAnnotations` | Annotations to add to the webhook pods | `{}` |

| `webhook.podLabels` | Labels to add to the cert-manager webhook pod | `{}` |

| `webhook.serviceLabels` | Labels to add to the cert-manager webhook service | `{}` |

| `webhook.deploymentAnnotations` | Annotations to add to the webhook deployment | `{}` |

| `webhook.mutatingWebhookConfigurationAnnotations` | Annotations to add to the mutating webhook configuration | `{}` |

| `webhook.validatingWebhookConfigurationAnnotations` | Annotations to add to the validating webhook configuration | `{}` |

| `webhook.serviceAnnotations` | Annotations to add to the webhook service | `{}` |

| `webhook.config` | WebhookConfiguration YAML used to configure flags for the webhook. Generates a ConfigMap containing contents of the field. See `values.yaml` for example. | `{}` |

| `webhook.extraArgs` | Optional flags for cert-manager webhook component | `[]` |

| `webhook.serviceAccount.create` | If `true`, create a new service account for the webhook component | `true` |

| `webhook.serviceAccount.name` | Service account for the webhook component to be used. If not set and `webhook.serviceAccount.create` is `true`, a name is generated using the fullname template |  |

| `webhook.serviceAccount.annotations` | Annotations to add to the service account for the webhook component |  |

| `webhook.serviceAccount.automountServiceAccountToken` | Automount API credentials for the webhook Service Account |  |

| `webhook.resources` | CPU/memory resource requests/limits for the webhook pods | `{}` |

| `webhook.nodeSelector` | Node labels for webhook pod assignment | `{}` |

| `webhook.affinity` | Node affinity for webhook pod assignment | `{}` |

| `webhook.tolerations` | Node tolerations for webhook pod assignment | `[]` |

| `webhook.image.repository` | Webhook image repository | `quay.io/jetstack/cert-manager-webhook` |

| `webhook.image.tag` | Webhook image tag | `v1.0.3` |

| `webhook.image.tag` | Webhook image tag | `v1.8.0` |

| `webhook.image.pullPolicy` | Webhook image pull policy | `IfNotPresent` |

| `webhook.securePort` | The port that the webhook should listen on for requests. | `10250` |

| `webhook.securityContext` | Security context for webhook pod assignment | `{}` |

| `webhook.containerSecurityContext` | Security context to be set on the webhook component container | `{}` |

| `webhook.hostNetwork` | If `true`, run the Webhook on the host network. | `false` |

| `webhook.livenessProbe.failureThreshold` | The livneness probe failure threshold | `3` |

| `webhook.livenessProbe.initialDelaySeconds` | The livneness probe initial delay (in seconds) | `60` |

| `webhook.livenessProbe.periodSeconds` | The livneness probe period (in seconds) | `10` |

| `webhook.livenessProbe.successThreshold` | The livneness probe success threshold | `1` |

| `webhook.livenessProbe.timeoutSeconds` | The livneness probe timeout (in seconds) | `1` |

| `webhook.serviceType` | The type of the `Service`. | `ClusterIP` |

| `webhook.loadBalancerIP` | The specific load balancer IP to use (when `serviceType` is `LoadBalancer`). |  |

| `webhook.url.host` | The host to use to reach the webhook, instead of using internal cluster DNS for the service. |  |

| `webhook.livenessProbe.failureThreshold` | The liveness probe failure threshold | `3` |

| `webhook.livenessProbe.initialDelaySeconds` | The liveness probe initial delay (in seconds) | `60` |

| `webhook.livenessProbe.periodSeconds` | The liveness probe period (in seconds) | `10` |

| `webhook.livenessProbe.successThreshold` | The liveness probe success threshold | `1` |

| `webhook.livenessProbe.timeoutSeconds` | The liveness probe timeout (in seconds) | `1` |

| `webhook.readinessProbe.failureThreshold` | The readiness probe failure threshold | `3` |

| `webhook.readinessProbe.initialDelaySeconds` | The readiness probe initial delay (in seconds) | `5` |

| `webhook.readinessProbe.periodSeconds` | The readiness probe period (in seconds) | `5` |

| `cainjector.enabled` | Toggles whether the cainjector component should be installed (required for the webhook component to work) | `true` |

| `cainjector.replicaCount` | Number of cert-manager cainjector replicas | `1` |

| `cainjector.podAnnotations` | Annotations to add to the cainjector pods | `{}` |

| `cainjector.podLabels` | Labels to add to the cert-manager cainjector pod | `{}` |

| `cainjector.deploymentAnnotations` | Annotations to add to the cainjector deployment | `{}` |

| `cainjector.extraArgs` | Optional flags for cert-manager cainjector component | `[]` |

| `cainjector.serviceAccount.create` | If `true`, create a new service account for the cainjector component | `true` |

| `cainjector.serviceAccount.name` | Service account for the cainjector component to be used. If not set and `cainjector.serviceAccount.create` is `true`, a name is generated using the fullname template |  |

| `cainjector.serviceAccount.annotations` | Annotations to add to the service account for the cainjector component |  |

| `cainjector.serviceAccount.automountServiceAccountToken` | Automount API credentials for the cainjector Service Account | `true` |

| `cainjector.resources` | CPU/memory resource requests/limits for the cainjector pods | `{}` |

| `cainjector.nodeSelector` | Node labels for cainjector pod assignment | `{}` |

| `cainjector.affinity` | Node affinity for cainjector pod assignment | `{}` |

| `cainjector.tolerations` | Node tolerations for cainjector pod assignment | `[]` |

| `cainjector.image.repository` | cainjector image repository | `quay.io/jetstack/cert-manager-cainjector` |

| `cainjector.image.tag` | cainjector image tag | `v1.0.3` |

| `cainjector.image.tag` | cainjector image tag | `v1.8.0` |

| `cainjector.image.pullPolicy` | cainjector image pull policy | `IfNotPresent` |

| `cainjector.securityContext` | Security context for cainjector pod assignment | `{}` |

| `cainjector.containerSecurityContext` | Security context to be set on cainjector component container | `{}` |

| `startupapicheck.enabled` | Toggles whether the startupapicheck Job should be installed | `true` |

| `startupapicheck.securityContext` | Pod Security Context to be set on the startupapicheck component Pod | `{}` |

| `startupapicheck.timeout` | Timeout for 'kubectl check api' command | `1m` |

| `startupapicheck.backoffLimit` | Job backoffLimit | `4` |

| `startupapicheck.jobAnnotations` | Optional additional annotations to add to the startupapicheck Job | `{}` |

| `startupapicheck.podAnnotations` | Optional additional annotations to add to the startupapicheck Pods | `{}` |

| `startupapicheck.extraArgs` | Optional additional arguments for startupapicheck | `[]` |

| `startupapicheck.resources` | CPU/memory resource requests/limits for the startupapicheck pod | `{}` |

| `startupapicheck.nodeSelector` | Node labels for startupapicheck pod assignment | `{}` |

| `startupapicheck.affinity` | Node affinity for startupapicheck pod assignment | `{}` |

| `startupapicheck.tolerations` | Node tolerations for startupapicheck pod assignment | `[]` |

| `startupapicheck.podLabels` | Optional additional labels to add to the startupapicheck Pods | `{}` |

| `startupapicheck.image.repository` | startupapicheck image repository | `quay.io/jetstack/cert-manager-ctl` |

| `startupapicheck.image.tag` | startupapicheck image tag | `v1.8.0` |

| `startupapicheck.image.pullPolicy` | startupapicheck image pull policy | `IfNotPresent` |

| `startupapicheck.serviceAccount.create` | If `true`, create a new service account for the startupapicheck component | `true` |

| `startupapicheck.serviceAccount.name` | Service account for the startupapicheck component to be used. If not set and `startupapicheck.serviceAccount.create` is `true`, a name is generated using the fullname template |  |

| `startupapicheck.serviceAccount.annotations` | Annotations to add to the service account for the startupapicheck component |  |

| `startupapicheck.serviceAccount.automountServiceAccountToken` | Automount API credentials for the startupapicheck Service Account | `true` |

Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`.

Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,

```console

$ helm install --name my-release -f values.yaml .

$ helm install my-release -f values.yaml .

```

> **Tip**: You can use the default [values.yaml](https://github.com/jetstack/cert-manager/blob/master/deploy/charts/cert-manager/values.yaml)

> **Tip**: You can use the default [values.yaml](https://github.com/cert-manager/cert-manager/blob/master/deploy/charts/cert-manager/values.yaml)

## Contributing

This chart is maintained at [github.com/jetstack/cert-manager](https://github.com/jetstack/cert-manager/tree/master/deploy/charts/cert-manager).

This chart is maintained at [github.com/cert-manager/cert-manager](https://github.com/cert-manager/cert-manager/tree/master/deploy/charts/cert-manager).

cert-manager has been deployed successfully!

cert-manager {{ .Chart.AppVersion }} has been deployed successfully!

In order to begin issuing certificates, you will need to set up a ClusterIssuer

or Issuer resource (for example, by creating a 'letsencrypt-staging' issuer).

{{- end -}}

{{- end -}}

{{/*

Create chart name and version as used by the chart label.

*/}}

{{- define "cert-manager.chart" -}}

{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Create the name of the service account to use

*/}}

{{ .Release.Namespace }}/{{ template "webhook.fullname" . }}-ca

{{- end -}}

{{/*

Create chart name and version as used by the chart label.

*/}}

{{- define "webhook.chart" -}}

{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Create the name of the service account to use

*/}}

{{- printf "%s-cainjector" $trimmedName | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Create chart name and version as used by the chart label.

*/}}

{{- define "cainjector.chart" -}}

{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Create the name of the service account to use

*/}}

    {{ default "default" .Values.cainjector.serviceAccount.name }}

{{- end -}}

{{- end -}}

{{/*

startupapicheck templates

*/}}

{{/*

Expand the name of the chart.

Manually fix the 'app' and 'name' labels to 'startupapicheck' to maintain

compatibility with the v0.9 deployment selector.

*/}}

{{- define "startupapicheck.name" -}}

{{- printf "startupapicheck" -}}

{{- end -}}

{{/*

Create a default fully qualified app name.

We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).

If release name contains chart name it will be used as a full name.

*/}}

{{- define "startupapicheck.fullname" -}}

{{- $trimmedName := printf "%s" (include "cert-manager.fullname" .) | trunc 52 | trimSuffix "-" -}}

{{- printf "%s-startupapicheck" $trimmedName | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Create the name of the service account to use

*/}}

{{- define "startupapicheck.serviceAccountName" -}}

{{- if .Values.startupapicheck.serviceAccount.create -}}

    {{ default (include "startupapicheck.fullname" .) .Values.startupapicheck.serviceAccount.name }}

{{- else -}}

    {{ default "default" .Values.startupapicheck.serviceAccount.name }}

{{- end -}}

{{- end -}}

{{/*

Create chart name and version as used by the chart label.

*/}}

{{- define "chartName" -}}

{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}

{{- end -}}

{{/*

Labels that should be added on each resource

*/}}

{{- define "labels" -}}

app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}

{{- if eq (default "helm" .Values.creator) "helm" }}

app.kubernetes.io/managed-by: {{ .Release.Service }}

helm.sh/chart: {{ include "chartName" . }}

{{- end -}}

{{- end -}}