In this release, we have moved the helm charts to this repository, this should ease maintaining both the application and the deployment configuration.
Notable new features:
Webhook:
- make it locally runnable with
make -j webhook-up
- small logging / comment additions
- handle vault-tls double mount gracefully
- add support for dry-run with the webhook controller
- make the webhook failure policy configurable, also set the default to Ignore (chart)
- add support for a default
imagePullSecret
- add
ServiceMonitor
config to the webhook (chart) - expose mutation metrics in Prometheus format
- ignoring
kube-system
by default (chart) - fix indentation for webhook
matchLabels
(chart) - allow setting Pod annotations (chart)
- ConfigMap: mutate BinaryData as well
- vault-env: cache secrets to reduce calls and support dynamic credentials
- Add priorityClass for secrets webhook deployment (chart)
- don't bail out on missing optional env sources
Configurer:
- add support for auth mount config + example
Operator:
- add priority class for vault operator
@dcherman
@sagikazarmark
@baluchicken
@mgruener
@jurgenweber
@bonifaido
@matyix
@chrisob
@rrondeau