kubernetes-sigs
diff --git a/‎PROJECT
Lines changed: 21 additions & 20 deletions b/‎PROJECT
Lines changed: 21 additions & 20 deletions
diff --git a/‎config/crd/bases/infrastructure.cluster.x-k8s.io_rosaroleconfigs.yaml
Lines changed: 440 additions & 0 deletions b/‎config/crd/bases/infrastructure.cluster.x-k8s.io_rosaroleconfigs.yaml
Lines changed: 440 additions & 0 deletions
diff --git a/‎config/crd/kustomization.yaml
Lines changed: 3 additions & 0 deletions b/‎config/crd/kustomization.yaml
Lines changed: 3 additions & 0 deletions
diff --git a/‎config/crd/patches/cainjection_in_rosaroleconfigs.yaml
Lines changed: 8 additions & 0 deletions b/‎config/crd/patches/cainjection_in_rosaroleconfigs.yaml
Lines changed: 8 additions & 0 deletions
diff --git a/‎config/crd/patches/webhook_in_rosaroleconfigs.yaml
Lines changed: 14 additions & 0 deletions b/‎config/crd/patches/webhook_in_rosaroleconfigs.yaml
Lines changed: 14 additions & 0 deletions
diff --git a/‎config/rbac/role.yaml
Lines changed: 2 additions & 0 deletions b/‎config/rbac/role.yaml
Lines changed: 2 additions & 0 deletions
diff --git a/‎controllers/suite_test.go
Lines changed: 1 addition & 1 deletion b/‎controllers/suite_test.go
Lines changed: 1 addition & 1 deletion
@@ -2,59 +2,60 @@ version: "2"
 domain: cluster.x-k8s.io
 repo: sigs.k8s.io/cluster-api-provider-aws
 resources:
-# v1beta1 types
 - group: infrastructure
-  version: v1beta1
   kind: AWSMachine
-- group: infrastructure
   version: v1beta1
-  kind: AWSCluster
 - group: infrastructure
+  kind: AWSCluster
   version: v1beta1
-  kind: AWSMachineTemplate
 - group: infrastructure
+  kind: AWSMachineTemplate
   version: v1beta1
-  kind: AWSClusterStaticIdentity
 - group: infrastructure
+  kind: AWSClusterStaticIdentity
   version: v1beta1
-  kind: AWSClusterRoleIdentity
 - group: infrastructure
+  kind: AWSClusterRoleIdentity
   version: v1beta1
-  kind: AWSClusterControllerIdentity
 - group: infrastructure
+  kind: AWSClusterControllerIdentity
   version: v1beta1
-  kind: AWSClusterTemplate
 - group: infrastructure
+  kind: AWSClusterTemplate
   version: v1beta1
-  kind: AWSManagedControlPlanes
 - group: infrastructure
+  kind: AWSManagedControlPlanes
   version: v1beta1
+- group: infrastructure
   kind: AWSManagedCluster
-# v1beta2 types
+  version: v1beta1
 - group: infrastructure
-  version: v1beta2
   kind: AWSMachine
-- group: infrastructure
   version: v1beta2
-  kind: AWSCluster
 - group: infrastructure
+  kind: AWSCluster
   version: v1beta2
-  kind: AWSMachineTemplate
 - group: infrastructure
+  kind: AWSMachineTemplate
   version: v1beta2
-  kind: AWSClusterStaticIdentity
 - group: infrastructure
+  kind: AWSClusterStaticIdentity
   version: v1beta2
-  kind: AWSClusterRoleIdentity
 - group: infrastructure
+  kind: AWSClusterRoleIdentity
   version: v1beta2
-  kind: AWSClusterControllerIdentity
 - group: infrastructure
+  kind: AWSClusterControllerIdentity
   version: v1beta2
-  kind: AWSClusterTemplate
 - group: infrastructure
+  kind: AWSClusterTemplate
   version: v1beta2
-  kind: AWSManagedControlPlanes
 - group: infrastructure
+  kind: AWSManagedControlPlanes
   version: v1beta2
+- group: infrastructure
   kind: AWSManagedCluster
+  version: v1beta2
+- group: infrastructure
+  kind: ROSARoleConfig
+  version: v1beta2
@@ -24,6 +24,7 @@ resources:
 - bases/controlplane.cluster.x-k8s.io_rosacontrolplanes.yaml
 - bases/infrastructure.cluster.x-k8s.io_rosaclusters.yaml
 - bases/infrastructure.cluster.x-k8s.io_rosamachinepools.yaml
+- bases/infrastructure.cluster.x-k8s.io_rosaroleconfigs.yaml
 # +kubebuilder:scaffold:crdkustomizeresource
 
 patchesStrategicMerge:
@@ -38,6 +39,7 @@ patchesStrategicMerge:
 - patches/webhook_in_awsmanagedcontrolplanes.yaml
 - patches/webhook_in_eksconfigs.yaml
 - patches/webhook_in_eksconfigtemplates.yaml
+#- patches/webhook_in_rosaroleconfigs.yaml
   # +kubebuilder:scaffold:crdkustomizewebhookpatch
 
 # [CERTMANAGER] To enable webhook, uncomment all the sections with [CERTMANAGER] prefix.
@@ -52,6 +54,7 @@ patchesStrategicMerge:
 - patches/cainjection_in_awsmanagedclusters.yaml
 - patches/cainjection_in_eksconfigs.yaml
 - patches/cainjection_in_eksconfigtemplates.yaml
+#- patches/cainjection_in_rosaroleconfigs.yaml
 # +kubebuilder:scaffold:crdkustomizecainjectionpatch
 
 # [LABEL] To enable label, uncomment all the sections with [LABEL] prefix.
 
@@ -0,0 +1,8 @@
+# The following patch adds a directive for certmanager to inject CA into the CRD
+# CRD conversion requires k8s 1.13 or later.
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    cert-manager.io/inject-ca-from: $(CERTIFICATE_NAMESPACE)/$(CERTIFICATE_NAME)
+  name: rosaroleconfigs.infrastructure.cluster.x-k8s.io
@@ -0,0 +1,14 @@
+# The following patch enables conversion webhook for CRD
+# CRD conversion requires k8s 1.13 or later.
+apiVersion: apiextensions.k8s.io/v1beta1
+kind: CustomResourceDefinition
+metadata:
+  name: rosaroleconfigs.infrastructure.cluster.x-k8s.io
+spec:
+  conversion:
+    strategy: Webhook
+    webhookClientConfig:
+      service:
+        namespace: system
+        name: webhook-service
+        path: /convert
@@ -176,6 +176,7 @@ rules:
   - awsfargateprofiles/status
   - rosaclusters/status
   - rosamachinepools/status
+  - rosaroleconfigs/status
   verbs:
   - get
   - patch
@@ -197,6 +198,7 @@ rules:
   - infrastructure.cluster.x-k8s.io
   resources:
   - awsmachines
+  - rosaroleconfigs
   verbs:
   - create
   - delete
 
@@ -25,9 +25,9 @@ import (
 	"k8s.io/client-go/kubernetes/scheme"
 	ctrl "sigs.k8s.io/controller-runtime"
 
-	// +kubebuilder:scaffold:imports
 	infrav1 "sigs.k8s.io/cluster-api-provider-aws/v2/api/v1beta2"
 	"sigs.k8s.io/cluster-api-provider-aws/v2/test/helpers"
+	// +kubebuilder:scaffold:imports
 	clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"
 	kubeadmv1beta1 "sigs.k8s.io/cluster-api/controlplane/kubeadm/api/v1beta1"
 )