EasyMile
diff --git a/‎.mise.toml‎
Lines changed: 1 addition & 0 deletions b/‎.mise.toml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎config/crd/kustomization.yaml‎
Lines changed: 1 addition & 1 deletion b/‎config/crd/kustomization.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎config/default/kustomization.yaml‎
Lines changed: 17 additions & 18 deletions b/‎config/default/kustomization.yaml‎
Lines changed: 17 additions & 18 deletions
diff --git a/‎config/default/manager_metrics_patch.yaml‎
Lines changed: 6 additions & 0 deletions b/‎config/default/manager_metrics_patch.yaml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎config/default/metrics_service.yaml‎
Lines changed: 5 additions & 5 deletions b/‎config/default/metrics_service.yaml‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎config/manager/kustomization.yaml‎
Lines changed: 6 additions & 0 deletions b/‎config/manager/kustomization.yaml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎config/manager/manager.yaml‎
Lines changed: 45 additions & 49 deletions b/‎config/manager/manager.yaml‎
Lines changed: 45 additions & 49 deletions
diff --git a/‎config/rbac/auth_proxy_client_clusterrole.yaml‎
Lines changed: 0 additions & 16 deletions b/‎config/rbac/auth_proxy_client_clusterrole.yaml‎
Lines changed: 0 additions & 16 deletions
diff --git a/‎config/rbac/auth_proxy_role.yaml‎
Lines changed: 0 additions & 24 deletions b/‎config/rbac/auth_proxy_role.yaml‎
Lines changed: 0 additions & 24 deletions
diff --git a/‎config/rbac/auth_proxy_role_binding.yaml‎
Lines changed: 0 additions & 19 deletions b/‎config/rbac/auth_proxy_role_binding.yaml‎
Lines changed: 0 additions & 19 deletions
@@ -4,3 +4,4 @@
 go = '1.25.5'
 golangci-lint = "2.7.2"
 "aqua:operator-framework/operator-sdk" = "1.42.0"
+"aqua:kubernetes-sigs/kind" = "0.31.0"
@@ -5,7 +5,7 @@ resources:
   - bases/postgresql.easymile.com_postgresqlengineconfigurations.yaml
   - bases/postgresql.easymile.com_postgresqldatabases.yaml
   - bases/postgresql.easymile.com_postgresqluserroles.yaml
-- bases/postgresql.easymile.com_postgresqlpublications.yaml
+  - bases/postgresql.easymile.com_postgresqlpublications.yaml
 #+kubebuilder:scaffold:crdkustomizeresource
 
 patchesStrategicMerge:
 
@@ -15,18 +15,18 @@ namePrefix: postgresql-operator-
 #    someName: someValue
 
 resources:
-- ../crd
-- ../rbac
-- ../manager
-# [WEBHOOK] To enable webhook, uncomment all the sections with [WEBHOOK] prefix including the one in
-# crd/kustomization.yaml
-#- ../webhook
-# [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER'. 'WEBHOOK' components are required.
-#- ../certmanager
-# [PROMETHEUS] To enable prometheus monitor, uncomment all sections with 'PROMETHEUS'.
-#- ../prometheus
-# [METRICS] Expose the controller manager metrics service.
-- metrics_service.yaml
+  # [METRICS] Expose the controller manager metrics service.
+  - metrics_service.yaml
+  - ../crd
+  - ../rbac
+  - ../manager
+  # [WEBHOOK] To enable webhook, uncomment all the sections with [WEBHOOK] prefix including the one in
+  # crd/kustomization.yaml
+  #- ../webhook
+  # [CERTMANAGER] To enable cert-manager, uncomment all sections with 'CERTMANAGER'. 'WEBHOOK' components are required.
+  #- ../certmanager
+  # [PROMETHEUS] To enable prometheus monitor, uncomment all sections with 'PROMETHEUS'.
+  #- ../prometheus
 # [NETWORK POLICY] Protect the /metrics endpoint and Webhook Server with NetworkPolicy.
 # Only Pod(s) running a namespace labeled with 'metrics: enabled' will be able to gather the metrics.
 # Only CR(s) which requires webhooks and are applied on namespaces labeled with 'webhooks: enabled' will
@@ -35,12 +35,11 @@ resources:
 
 # Uncomment the patches line if you enable Metrics
 patches:
-# [METRICS] The following patch will enable the metrics endpoint using HTTPS and the port :8443.
-# More info: https://book.kubebuilder.io/reference/metrics
-- path: manager_metrics_patch.yaml
-  target:
-    kind: Deployment
-
+  # [METRICS] The following patch will enable the metrics endpoint using HTTPS and the port :8443.
+  # More info: https://book.kubebuilder.io/reference/metrics
+  - path: manager_metrics_patch.yaml
+    target:
+      kind: Deployment
 # Uncomment the patches line if you enable Metrics and CertManager
 # [METRICS-WITH-CERTS] To enable metrics protected with certManager, uncomment the following line.
 # This patch will protect the metrics with certManager self-signed certs.
 
@@ -2,3 +2,9 @@
 - op: add
   path: /spec/template/spec/containers/0/args/0
   value: --metrics-bind-address=:8443
+- op: add
+  path: /spec/template/spec/containers/0/ports/0
+  value:
+    name: https-metrics
+    containerPort: 8443
+    protocol: TCP
@@ -9,10 +9,10 @@ metadata:
   namespace: system
 spec:
   ports:
-  - name: https
-    port: 8443
-    protocol: TCP
-    targetPort: 8443
+    - name: https
+      port: 8443
+      protocol: TCP
+      targetPort: 8443
   selector:
     control-plane: controller-manager
-    app.kubernetes.io/name: postgresql-operator
+    app.kubernetes.io/name: test
@@ -1,2 +1,8 @@
 resources:
 - manager.yaml
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+images:
+- name: controller
+  newName: example.com/postgresql-operator
+  newTag: v0.0.1
@@ -3,11 +3,7 @@ kind: Namespace
 metadata:
   labels:
     control-plane: controller-manager
-    app.kubernetes.io/name: namespace
-    app.kubernetes.io/instance: system
-    app.kubernetes.io/component: manager
-    app.kubernetes.io/created-by: postgresql-operator
-    app.kubernetes.io/part-of: postgresql-operator
+    app.kubernetes.io/name: test
     app.kubernetes.io/managed-by: kustomize
   name: system
 ---
@@ -18,23 +14,21 @@ metadata:
   namespace: system
   labels:
     control-plane: controller-manager
-    app.kubernetes.io/name: deployment
-    app.kubernetes.io/instance: controller-manager
-    app.kubernetes.io/component: manager
-    app.kubernetes.io/created-by: postgresql-operator
-    app.kubernetes.io/part-of: postgresql-operator
+    app.kubernetes.io/name: test
     app.kubernetes.io/managed-by: kustomize
 spec:
   selector:
     matchLabels:
       control-plane: controller-manager
+      app.kubernetes.io/name: test
   replicas: 1
   template:
     metadata:
       annotations:
         kubectl.kubernetes.io/default-container: manager
       labels:
         control-plane: controller-manager
+        app.kubernetes.io/name: test
     spec:
       # TODO(user): Uncomment the following code to configure the nodeAffinity expression
       # according to the platforms which are supported by your solution.
@@ -57,46 +51,48 @@ spec:
       #             values:
       #               - linux
       securityContext:
+        # Projects are configured by default to adhere to the "restricted" Pod Security Standards.
+        # This ensures that deployments meet the highest security requirements for Kubernetes.
+        # For more details, see: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
         runAsNonRoot: true
-        # TODO(user): For common cases that do not require escalating privileges
-        # it is recommended to ensure that all your Pods/Containers are restrictive.
-        # More info: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
-        # Please uncomment the following code if your project does NOT have to work on old Kubernetes
-        # versions < 1.19 or on vendors versions which do NOT support this field by default (i.e. Openshift < 4.11 ).
-        # seccompProfile:
-        #   type: RuntimeDefault
+        seccompProfile:
+          type: RuntimeDefault
       containers:
-      - command:
-        - /manager
-        args:
-        - --leader-elect
-        image: controller:latest
-        name: manager
-        securityContext:
-          allowPrivilegeEscalation: false
-          capabilities:
-            drop:
-              - "ALL"
-        livenessProbe:
-          httpGet:
-            path: /healthz
-            port: 8081
-          initialDelaySeconds: 15
-          periodSeconds: 20
-        readinessProbe:
-          httpGet:
-            path: /readyz
-            port: 8081
-          initialDelaySeconds: 5
-          periodSeconds: 10
-        # TODO(user): Configure the resources accordingly based on the project requirements.
-        # More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-        resources:
-          limits:
-            cpu: 500m
-            memory: 128Mi
-          requests:
-            cpu: 10m
-            memory: 64Mi
+        - command:
+            - /manager
+          args:
+            - --leader-elect
+            - --health-probe-bind-address=:8081
+          image: controller:latest
+          name: manager
+          ports: []
+          securityContext:
+            allowPrivilegeEscalation: false
+            capabilities:
+              drop:
+                - "ALL"
+          livenessProbe:
+            httpGet:
+              path: /healthz
+              port: 8081
+            initialDelaySeconds: 15
+            periodSeconds: 20
+          readinessProbe:
+            httpGet:
+              path: /readyz
+              port: 8081
+            initialDelaySeconds: 5
+            periodSeconds: 10
+          # TODO(user): Configure the resources accordingly based on the project requirements.
+          # More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+          resources:
+            limits:
+              cpu: 500m
+              memory: 128Mi
+            requests:
+              cpu: 10m
+              memory: 64Mi
+          volumeMounts: []
+      volumes: []
       serviceAccountName: controller-manager
       terminationGracePeriodSeconds: 10