Erich Blume
7b0f642066
The upstream manifest includes a Secret with empty client_id/client_secret placeholders. We manage this via ExternalSecret, so drop the upstream copy to avoid ownership conflicts in ArgoCD. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
30 lines
814 B
YAML
30 lines
814 B
YAML
---
|
|
apiVersion: kustomize.config.k8s.io/v1beta1
|
|
kind: Kustomization
|
|
|
|
namespace: tailscale
|
|
|
|
# Upstream Tailscale operator manifest from forge mirror.
|
|
# To upgrade: update the ref in the URL AND the newTag below.
|
|
resources:
|
|
- https://forge.eblu.me/mirrors/tailscale/raw/tag/v1.94.2/cmd/k8s-operator/deploy/manifests/operator.yaml
|
|
- proxyclass.yaml
|
|
- dnsconfig.yaml
|
|
|
|
images:
|
|
- name: tailscale/k8s-operator
|
|
newName: docker.io/tailscale/k8s-operator
|
|
newTag: v1.94.2
|
|
|
|
# The upstream manifest includes a placeholder OAuth Secret with empty values.
|
|
# We manage this secret via ExternalSecret, so drop the upstream copy.
|
|
patches:
|
|
- target:
|
|
kind: Secret
|
|
name: operator-oauth
|
|
patch: |
|
|
$patch: delete
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: operator-oauth
|