You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
|`openshiftOauthProxy.image.repository`| Repository for the OpenShift OAuth Proxy container image |`quay.io/cryostat/openshift-oauth-proxy`|
289
-
|`openshiftOauthProxy.image.pullPolicy`| Image pull policy for the OpenShift OAuth Proxy container image |`Always`|
290
-
|`openshiftOauthProxy.image.tag`| Tag for the OpenShift OAuth Proxy container image |`cryostat-v3.0`|
291
-
|`openshiftOauthProxy.resources.requests.cpu`| CPU resource request for the OpenShift OAuth Proxy container |`25m`|
292
-
|`openshiftOauthProxy.resources.requests.memory`| Memory resource request for the OpenShift OAuth Proxy container |`64Mi`|
293
-
|`openshiftOauthProxy.accessReview.enabled`| Whether the SubjectAccessReview/TokenAccessReview role checks for users and clients are enabled. If this is disabled then the proxy will only check that the user has valid credentials or holds a valid token |`true`|
294
-
|`openshiftOauthProxy.accessReview.group`| The OpenShift resource group that the SubjectAccessReview/TokenAccessReview will be performed for. See https://github.com/openshift/oauth-proxy/?tab=readme-ov-file#delegate-authentication-and-authorization-to-openshift-for-infrastructure|`""`|
295
-
|`openshiftOauthProxy.accessReview.resource`| The OpenShift resource that the SubjectAccessReview/TokenAccessReview will be performed for |`pods`|
296
-
|`openshiftOauthProxy.accessReview.subresource`| The OpenShift resource that the SubjectAccessReview/TokenAccessReview will be performed for |`exec`|
297
-
|`openshiftOauthProxy.accessReview.name`| The OpenShift resource name that the SubjectAccessReview/TokenAccessReview will be performed for |`""`|
298
-
|`openshiftOauthProxy.accessReview.namespace`| The OpenShift namespace that the SubjectAccessReview/TokenAccessReview will be performed for |`{{ .Release.Namespace }}`|
299
-
|`openshiftOauthProxy.accessReview.verb`| The OpenShift resource name that the SubjectAccessReview/TokenAccessReview will be performed for |`create`|
300
-
|`openshiftOauthProxy.accessReview.version`| The OpenShift resource version that the SubjectAccessReview/TokenAccessReview will be performed for |`""`|
301
-
|`openshiftOauthProxy.securityContext`| Security Context for the OpenShift OAuth Proxy container. Defaults to meet "restricted" [Pod Security Standard](https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted). See: [SecurityContext](https://kubernetes.io/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context-1)|`{}`|
302
-
|`openshiftOauthProxy.config.extra`| Extra configurations for the OpenShift OAuth Proxy ||
303
-
|`openshiftOauthProxy.config.extra.envVars`| Extra environment variables for the OpenShift OAuth Proxy. See: [Define Environment Variables](https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/)|`[]`|
304
-
|`openshiftOauthProxy.config.extra.envSources`| Sources for extra variables for the OpenShift OAuth Proxy. See: [Define Environment Variables From ConfigMap](https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#configure-all-key-value-pairs-in-a-configmap-as-container-environment-variables)|`[]`|
305
-
|`openshiftOauthProxy.config.extra.inPod.main.envVars`| Extra environment variables for the OpenShift OAuth Proxy **only in the Cryostat main pod**|`[]`|
306
-
|`openshiftOauthProxy.config.extra.inPod.main.envSources`| Sources for extra variables for the OpenShift OAuth Proxy **only in the Cryostat main pod**|`[]`|
307
-
|`openshiftOauthProxy.config.extra.inPod.reports.envVars`| Extra environment variables for the OpenShift OAuth Proxy **only in the report generator pods**|`[]`|
308
-
|`openshiftOauthProxy.config.extra.inPod.reports.envSources`| Sources for extra variables for the OpenShift OAuth Proxy **only in the report generator pods**|`[]`|
|`openshiftOauthProxy.image.repository`| Repository for the OpenShift OAuth Proxy container image |`quay.io/openshift/origin-oauth-proxy`|
289
+
|`openshiftOauthProxy.image.pullPolicy`| Image pull policy for the OpenShift OAuth Proxy container image |`Always`|
290
+
|`openshiftOauthProxy.image.tag`| Tag for the OpenShift OAuth Proxy container image |`latest`|
291
+
|`openshiftOauthProxy.resources.requests.cpu`| CPU resource request for the OpenShift OAuth Proxy container |`25m`|
292
+
|`openshiftOauthProxy.resources.requests.memory`| Memory resource request for the OpenShift OAuth Proxy container |`64Mi`|
293
+
|`openshiftOauthProxy.accessReview.enabled`| Whether the SubjectAccessReview/TokenAccessReview role checks for users and clients are enabled. If this is disabled then the proxy will only check that the user has valid credentials or holds a valid token |`true`|
294
+
|`openshiftOauthProxy.accessReview.group`| The OpenShift resource group that the SubjectAccessReview/TokenAccessReview will be performed for. See https://github.com/openshift/oauth-proxy/?tab=readme-ov-file#delegate-authentication-and-authorization-to-openshift-for-infrastructure|`""`|
295
+
|`openshiftOauthProxy.accessReview.resource`| The OpenShift resource that the SubjectAccessReview/TokenAccessReview will be performed for |`pods`|
296
+
|`openshiftOauthProxy.accessReview.subresource`| The OpenShift resource that the SubjectAccessReview/TokenAccessReview will be performed for |`exec`|
297
+
|`openshiftOauthProxy.accessReview.name`| The OpenShift resource name that the SubjectAccessReview/TokenAccessReview will be performed for |`""`|
298
+
|`openshiftOauthProxy.accessReview.namespace`| The OpenShift namespace that the SubjectAccessReview/TokenAccessReview will be performed for |`{{ .Release.Namespace }}`|
299
+
|`openshiftOauthProxy.accessReview.verb`| The OpenShift resource name that the SubjectAccessReview/TokenAccessReview will be performed for |`create`|
300
+
|`openshiftOauthProxy.accessReview.version`| The OpenShift resource version that the SubjectAccessReview/TokenAccessReview will be performed for |`""`|
301
+
|`openshiftOauthProxy.securityContext`| Security Context for the OpenShift OAuth Proxy container. Defaults to meet "restricted" [Pod Security Standard](https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted). See: [SecurityContext](https://kubernetes.io/docs/reference/kubernetes-api/workload-resources/pod-v1/#security-context-1)|`{}`|
302
+
|`openshiftOauthProxy.config.extra`| Extra configurations for the OpenShift OAuth Proxy ||
303
+
|`openshiftOauthProxy.config.extra.envVars`| Extra environment variables for the OpenShift OAuth Proxy. See: [Define Environment Variables](https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/)|`[]`|
304
+
|`openshiftOauthProxy.config.extra.envSources`| Sources for extra variables for the OpenShift OAuth Proxy. See: [Define Environment Variables From ConfigMap](https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#configure-all-key-value-pairs-in-a-configmap-as-container-environment-variables)|`[]`|
305
+
|`openshiftOauthProxy.config.extra.inPod.main.envVars`| Extra environment variables for the OpenShift OAuth Proxy **only in the Cryostat main pod**|`[]`|
306
+
|`openshiftOauthProxy.config.extra.inPod.main.envSources`| Sources for extra variables for the OpenShift OAuth Proxy **only in the Cryostat main pod**|`[]`|
307
+
|`openshiftOauthProxy.config.extra.inPod.reports.envVars`| Extra environment variables for the OpenShift OAuth Proxy **only in the report generator pods**|`[]`|
308
+
|`openshiftOauthProxy.config.extra.inPod.reports.envSources`| Sources for extra variables for the OpenShift OAuth Proxy **only in the report generator pods**|`[]`|
0 commit comments