⚡ Change the new release warning

⚡ Template REACT_APP_HUB_PORT in the Helm chart
⚡ Update Helm README.md
2026-02-19 12:30:07 +00:00 · 2023-05-25 20:42:57 +03:00 · 2023-05-25 20:24:29 +03:00 · 2023-05-25 05:46:10 +03:00 · 2023-05-25 05:07:42 +03:00 · 2023-05-24 06:32:48 +03:00
12 changed files with 59 additions and 15 deletions
--- a/cmd/helmChart.go
+++ b/cmd/helmChart.go
@@ -144,6 +144,10 @@ var hubPodMappings = map[string]interface{}{
 			"name":  "SCRIPTING_SCRIPTS",
 			"value": "[]",
 		},
+		{
+			"name":  "AUTH_APPROVED_DOMAINS",
+			"value": "{{ gt (len .Values.tap.ingress.auth.approvedDomains) 0 | ternary (join \",\" .Values.tap.ingress.auth.approvedDomains) \"\" }}",
+		},
 	},
 	"spec.containers[0].image":                     "{{ .Values.tap.docker.registry }}/hub:{{ .Values.tap.docker.tag }}",
 	"spec.containers[0].imagePullPolicy":           "{{ .Values.tap.docker.imagepullpolicy }}",
@@ -158,6 +162,20 @@ var frontPodMappings = map[string]interface{}{
 	"metadata.namespace":                 "{{ .Values.tap.selfnamespace }}",
 	"spec.containers[0].image":           "{{ .Values.tap.docker.registry }}/front:{{ .Values.tap.docker.tag }}",
 	"spec.containers[0].imagePullPolicy": "{{ .Values.tap.docker.imagepullpolicy }}",
+	"spec.containers[0].env": []map[string]interface{}{
+		{
+			"name":  "REACT_APP_DEFAULT_FILTER",
+			"value": " ",
+		},
+		{
+			"name":  "REACT_APP_HUB_HOST",
+			"value": " ",
+		},
+		{
+			"name":  "REACT_APP_HUB_PORT",
+			"value": "{{ .Values.tap.ingress.enabled | ternary \"80/api\" \"8898\" }}",
+		},
+	},
 }
 var frontServiceMappings = serviceAccountMappings
 var persistentVolumeMappings = map[string]interface{}{
@@ -180,6 +198,7 @@ var workerDaemonSetMappings = map[string]interface{}{
 var ingressClassMappings = serviceAccountMappings
 var ingressMappings = map[string]interface{}{
 	"metadata.namespace": "{{ .Values.tap.selfnamespace }}",
+	"metadata.annotations[\"certmanager.k8s.io/cluster-issuer\"]": "{{ .Values.tap.ingress.certManager }}",
 	"spec.rules[0].host": "{{ .Values.tap.ingress.host }}",
 	"spec.tls":           "{{ .Values.tap.ingress.tls | toYaml }}",
 }
--- a/helm-chart/Chart.yaml
+++ b/helm-chart/Chart.yaml
@@ -1,5 +1,5 @@
 apiVersion: v2
-appVersion: "40.3"
+appVersion: "40.4"
 description: The API Traffic Analyzer for Kubernetes
 home: https://kubeshark.co
 keywords:
@@ -22,4 +22,4 @@ name: kubeshark
 sources:
  - https://github.com/kubeshark/kubeshark/tree/master/helm-chart
 type: application
-version: "40.3"
+version: "40.4"
--- a/helm-chart/README.md
+++ b/helm-chart/README.md
@@ -51,3 +51,21 @@ kubectl port-forward -n kubeshark service/kubeshark-front 8899:80
 ```

 Visit [localhost:8899](http://localhost:8899)
+
+## Installing with Ingress Enabled
+
+```shell
+helm install kubeshark kubeshark/kubeshark \
+  --set tap.ingress.enabled=true \
+  --set tap.ingress.host=ks.svc.cluster.local \
+  --set "tap.ingress.auth.approvedDomains={gmail.com}" \
+  --set license=LICENSE_GOES_HERE
+```
+
+## Installing with Persistent Storage Enabled
+
+```shell
+helm install kubeshark kubeshark/kubeshark \
+  --set tap.persistentstorage=true \
+  --set license=LICENSE_GOES_HERE
+```
--- a/helm-chart/templates/02-cluster-role.yaml
+++ b/helm-chart/templates/02-cluster-role.yaml
@@ -15,6 +15,7 @@ rules:
      - ""
      - extensions
      - apps
+      - networking.k8s.io
    resources:
      - pods
      - services
--- a/helm-chart/templates/04-hub-pod.yaml
+++ b/helm-chart/templates/04-hub-pod.yaml
@@ -25,6 +25,8 @@ spec:
          value: '{}'
        - name: SCRIPTING_SCRIPTS
          value: '[]'
+        - name: AUTH_APPROVED_DOMAINS
+          value: '{{ gt (len .Values.tap.ingress.auth.approvedDomains) 0 | ternary (join "," .Values.tap.ingress.auth.approvedDomains) "" }}'
      image: '{{ .Values.tap.docker.registry }}/hub:{{ .Values.tap.docker.tag }}'
      imagePullPolicy: '{{ .Values.tap.docker.imagepullpolicy }}'
      name: kubeshark-hub
--- a/helm-chart/templates/06-front-pod.yaml
+++ b/helm-chart/templates/06-front-pod.yaml
@@ -18,7 +18,7 @@ spec:
        - name: REACT_APP_HUB_HOST
          value: ' '
        - name: REACT_APP_HUB_PORT
-          value: "8898"
+          value: '{{ .Values.tap.ingress.enabled | ternary "80/api" "8898" }}'
      image: '{{ .Values.tap.docker.registry }}/front:{{ .Values.tap.docker.tag }}'
      imagePullPolicy: '{{ .Values.tap.docker.imagepullpolicy }}'
      name: kubeshark-front
--- a/helm-chart/templates/11-ingress.yaml
+++ b/helm-chart/templates/11-ingress.yaml
@@ -5,7 +5,7 @@ apiVersion: networking.k8s.io/v1
 kind: Ingress
 metadata:
  annotations:
-    certmanager.k8s.io/cluster-issuer: letsencrypt-prod
+    certmanager.k8s.io/cluster-issuer: '{{ .Values.tap.ingress.certManager }}'
    nginx.ingress.kubernetes.io/rewrite-target: /$2
  creationTimestamp: null
  labels:
--- a/kubernetes/provider.go
+++ b/kubernetes/provider.go
@@ -667,6 +667,7 @@ func (provider *Provider) BuildClusterRole() *rbac.ClusterRole {
 					"",
 					"extensions",
 					"apps",
+					"networking.k8s.io",
 				},
 				Resources: []string{
 					"pods",
--- a/manifests/02-cluster-role.yaml
+++ b/manifests/02-cluster-role.yaml
@@ -15,6 +15,7 @@ rules:
      - ""
      - extensions
      - apps
+      - networking.k8s.io
    resources:
      - pods
      - services
--- a/manifests/tls/certificate.yaml
+++ b/manifests/tls/certificate.yaml
@@ -1,7 +1,7 @@
 apiVersion: cert-manager.io/v1
 kind: Certificate
 metadata:
-  name: staging
+  name: kubeshark-tls
  namespace: default
 spec:
  issuerRef:
--- a/misc/version/versionCheck.go
+++ b/misc/version/versionCheck.go
@@ -44,7 +44,7 @@ func CheckNewerVersion() {
 		} else {
 			downloadCommand = fmt.Sprintf("sh <(curl -Ls %s/install)", misc.Website)
 		}
-		msg := fmt.Sprintf("There is a new release! %v -> %v run:", misc.Ver, latestVersion)
+		msg := fmt.Sprintf("There is a new release! %v -> %v Please upgrade to the latest release, as new releases are not always backward compatible. Run:", misc.Ver, latestVersion)
 		log.Warn().Str("command", downloadCommand).Msg(fmt.Sprintf(utils.Yellow, msg))
 	}
 }
--- a/resources/createResources.go
+++ b/resources/createResources.go
@@ -70,17 +70,19 @@ func CreateHubResources(ctx context.Context, kubernetesProvider *kubernetes.Prov
 	}
 	log.Info().Str("service", kubernetes.FrontServiceName).Msg("Successfully created a service.")

-	_, err = kubernetesProvider.CreateIngressClass(ctx, kubernetesProvider.BuildIngressClass())
-	if err != nil {
-		return selfServiceAccountExists, err
-	}
-	log.Info().Str("ingress-class", kubernetes.IngressClassName).Msg("Successfully created an ingress class.")
+	if config.Config.Tap.Ingress.Enabled {
+		_, err = kubernetesProvider.CreateIngressClass(ctx, kubernetesProvider.BuildIngressClass())
+		if err != nil {
+			return selfServiceAccountExists, err
+		}
+		log.Info().Str("ingress-class", kubernetes.IngressClassName).Msg("Successfully created an ingress class.")

-	_, err = kubernetesProvider.CreateIngress(ctx, selfNamespace, kubernetesProvider.BuildIngress())
-	if err != nil {
-		return selfServiceAccountExists, err
+		_, err = kubernetesProvider.CreateIngress(ctx, selfNamespace, kubernetesProvider.BuildIngress())
+		if err != nil {
+			return selfServiceAccountExists, err
+		}
+		log.Info().Str("ingress", kubernetes.IngressName).Msg("Successfully created an ingress.")
 	}
-	log.Info().Str("ingress", kubernetes.IngressName).Msg("Successfully created an ingress.")

 	return selfServiceAccountExists, nil
 }
Author	SHA1	Message	Date
M. Mert Yildiran	a163f9cc0e	⚡ Change the new release warning	2023-05-25 20:42:57 +03:00
M. Mert Yildiran	2edb987c07	⚡ Template `REACT_APP_HUB_PORT` in the Helm chart	2023-05-25 20:24:29 +03:00
M. Mert Yildiran	c0d7d0fe80	⚡ Update Helm `README.md`	2023-05-25 05:46:10 +03:00
M. Mert Yildiran	be5bd6a372	⚡ Template the `AUTH_APPROVED_DOMAINS` and `certmanager.k8s.io/cluster-issuer` Also add `networking.k8s.io` to `apiGroups` in `ClusterRole`	2023-05-25 05:07:42 +03:00
M. Mert Yildiran	42df7aa42f	⚡ Update the `Certificate` resource name	2023-05-24 06:32:48 +03:00