# This file is generated by Ansible. Changes will be lost. # Update templates under ansible/templates/ --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: creationTimestamp: null name: awx-operator rules: - apiGroups: - route.openshift.io resources: - routes verbs: - '*' - apiGroups: - "" resources: - pods - services - services/finalizers - endpoints - persistentvolumeclaims - events - configmaps - secrets verbs: - '*' - apiGroups: - apps - extensions resources: - deployments - daemonsets - replicasets - statefulsets - ingresses verbs: - '*' - apiGroups: - monitoring.coreos.com resources: - servicemonitors verbs: - get - create - apiGroups: - apps resourceNames: - awx-operator resources: - deployments/finalizers verbs: - update - apiGroups: - "" resources: - pods/exec verbs: - create - get - apiGroups: - apps resources: - replicasets verbs: - get - apiGroups: - awx.ansible.com resources: - '*' verbs: - '*' --- kind: ClusterRoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: awx-operator subjects: - kind: ServiceAccount name: awx-operator namespace: default roleRef: kind: ClusterRole name: awx-operator apiGroup: rbac.authorization.k8s.io --- apiVersion: v1 kind: ServiceAccount metadata: name: awx-operator namespace: default --- apiVersion: apps/v1 kind: Deployment metadata: name: awx-operator spec: replicas: 1 selector: matchLabels: name: awx-operator template: metadata: labels: name: awx-operator spec: serviceAccountName: awx-operator containers: - name: awx-operator image: "quay.io/ansible/awx-operator:0.6.0" imagePullPolicy: "Always" volumeMounts: - mountPath: /tmp/ansible-operator/runner name: runner env: # Watch all namespaces (cluster-scoped). - name: WATCH_NAMESPACE value: "" - name: POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: OPERATOR_NAME value: awx-operator - name: ANSIBLE_GATHERING value: explicit livenessProbe: httpGet: path: /healthz port: 6789 initialDelaySeconds: 5 periodSeconds: 3 volumes: - name: runner emptyDir: {} --- apiVersion: apiextensions.k8s.io/v1beta1 kind: CustomResourceDefinition metadata: name: awxs.awx.ansible.com spec: group: awx.ansible.com names: kind: AWX listKind: AWXList plural: awxs singular: awx scope: Namespaced subresources: status: {} version: v1beta1 versions: - name: v1beta1 served: true storage: true validation: openAPIV3Schema: description: Schema validation for the AWX CRD type: object properties: spec: type: object properties: external_database: type: boolean description: | If true you must supply a secret containing the location and credentials for connecting to the external database by a user who has permission to create and apply a schema. The secret should have the name: -postgres-configuration and should look like: apiVersion: v1 kind: Secret metadata: name: -postgres-configuration namespace: stringData: host: port: database: username: password: type: Opaque