CSI driver Helm values¶

cert-manager CSI driver is a storage plugin that is deployed into your Kubernetes cluster that can honor volume requests specified on Pods.

The following cert-manager CSI Driver Helm values are supported by the Venafi Kubernetes Manifest tool.

image.repository¶

quay.io/jetstack/cert-manager-csi-driver

Target image repository.

image.tag¶

v0.0.0

Target image version tag.

image.pullPolicy¶

IfNotPresent

Kubernetes imagePullPolicy on the csi-driver.

imagePullSecrets¶

[]

Optional secrets used for pulling the csi-driver container image.

For example:

imagePullSecrets:
- name: secret-name

commonLabels¶

{}

Labels to apply to all resources.

nodeDriverRegistrarImage.repository¶

registry.k8s.io/sig-storage/csi-node-driver-registrar

Target image repository.

nodeDriverRegistrarImage.tag¶

v2.10.0

Target image version tag.

nodeDriverRegistrarImage.pullPolicy¶

IfNotPresent

Kubernetes imagePullPolicy on the node-driver.

livenessProbeImage.repository¶

registry.k8s.io/sig-storage/livenessprobe

Target image repository.

livenessProbeImage.tag¶

v2.12.0

Target image version tag.

livenessProbeImage.pullPolicy¶

IfNotPresent

Kubernetes imagePullPolicy on the liveness probe.

app.logLevel¶

1

Verbosity of cert-manager-csi-driver logging.

app.driver.name¶

csi.cert-manager.io

Name of the driver to be registered with Kubernetes.

app.driver.useTokenRequest¶

false

If enabled, this uses a CSI token request for creating. CertificateRequests. CertificateRequests are created by mounting the pod's service accounts.

app.driver.csiDataDir¶

/tmp/cert-manager-csi-driver

Configures the hostPath directory that the driver writes and mounts volumes from.

app.livenessProbe.port¶

9809

The port that will expose the liveness of the csi-driver.

app.kubeletRootDir¶

/var/lib/kubelet

Overrides the path to root kubelet directory in case of a non-standard Kubernetes install.

daemonSetAnnotations¶

{}

Optional additional annotations to add to the csi-driver DaemonSet.

podAnnotations¶

{}

Optional additional annotations to add to the csi-driver pods.

podLabels¶

{}

Optional additional labels to add to the csi-driver pods.

resources¶

{}

Kubernetes pod resources requests/limits for cert-manager-csi-driver.

For example:

resources:
  limits:
    cpu: 100m
    memory: 128Mi
  requests:
    cpu: 100m
    memory: 128Mi

nodeSelector¶

{}

Kubernetes node selector: node labels for pod assignment. For example, use this to allow scheduling of DaemonSet on Linux nodes only:

nodeSelector:
  kubernetes.io/os: linux

affinity¶

{}

Kubernetes affinity: constraints for pod assignment.

For example:

affinity:
  nodeAffinity:
   requiredDuringSchedulingIgnoredDuringExecution:
     nodeSelectorTerms:
     - matchExpressions:
       - key: foo.bar.com/role
         operator: In
         values:
         - master

tolerations¶

[]

Kubernetes pod tolerations for cert-manager-csi-driver.

For example:

tolerations:
- operator: "Exists"

priorityClassName¶

""

Optional priority class to be used for the csi-driver pods.