Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add helm option to enable kubernetesUseEndpointSlices and add endpointslices to DCA RBAC #1636

Merged
merged 6 commits into from
Dec 20, 2024
Merged

Add helm option to enable kubernetesUseEndpointSlices and add endpointslices to DCA RBAC #1636

merged 6 commits into from
Dec 20, 2024

Conversation

ewoodthomas
Copy link
Contributor

What this PR does / why we need it:

DataDog/datadog-agent#32104 allows the DCA to map pods to services through Kubernetes endpointSlice resources instead of endpoints. This PR exposes the config option datadog.kubernetesUseEndpointSlices to enable this feature.

Also adds endpointslices.discovery.k8s.io to the DCA RBAC with get, list, and watch permissions. Only added when datadog.kubernetesUseEndpointSlices is enabled.

Which issue this PR fixes:

Special notes for your reviewer:

Checklist

[Place an '[x]' (no spaces) in all applicable fields. Please remove unrelated fields.]

  • Chart Version bumped
  • Documentation has been updated with helm-docs (run: .github/helm-docs.sh)
  • CHANGELOG.md has been updated
  • Variables are documented in the README.md
  • For Datadog Operator chart or value changes update the test baselines (run: make update-test-baselines)

@ewoodthomas ewoodthomas requested a review from a team as a code owner December 16, 2024 18:07
@github-actions github-actions bot added the chart/datadog This issue or pull request is related to the datadog chart label Dec 16, 2024
@robertjli robertjli removed their request for review December 16, 2024 21:13
clamoriniere
clamoriniere reviewed Dec 19, 2024
View reviewed changes
charts/datadog/templates/cluster-agent-rbac.yaml Outdated
Comment on lines 32 to 41
{{- if .Values.datadog.kubernetesUseEndpointSlices }}
- apiGroups:
- "discovery.k8s.io"
resources:
- endpointslices
verbs:
- get
- list
- watch
{{- end }}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

IMO it can be part of the default RBAC, because we already have it for service and endpoints

@ewoodthomas
Copy link
Contributor Author

/merge

@dd-devflow
Copy link

dd-devflow bot commented Dec 20, 2024
edited
Loading

Devflow running: /merge

View all feedbacks in Devflow UI.

2024-12-20 15:15:20 UTC ℹ️ MergeQueue: pull request added to the queue

The median merge time in main is 37m.

2024-12-20 15:55:07 UTC ℹ️ MergeQueue: This merge request was merged

@dd-mergequeue dd-mergequeue bot merged commit 4e863bc into main Dec 20, 2024
30 checks passed
@dd-mergequeue dd-mergequeue bot deleted the ewoodthomas/CONTINT-4526_expose_kubernetes_use_endpoint_slices branch December 20, 2024 15:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@clamoriniere clamoriniere clamoriniere approved these changes

Assignees
No one assigned
Labels
chart/datadog This issue or pull request is related to the datadog chart mergequeue-status: done
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ewoodthomas @clamoriniere