./hcp create cluster agent \
--name=deskube \
--pull-secret=/home/epheo/pullsecret \
--agent-namespace=default \
--base-domain=desku.be \
--api-server-address=api.ocp1.desku.be \
--etcd-storage-class=default \
--ssh-key ~/.ssh/id_ed.pub \
--namespace default \
--control-plane-availability-policy SingleReplica \
--release-image=quay.io/openshift-release-dev/ocp-release:4.14.0-x86_64 \
--render
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: gitops-cluster
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cluster-admin
subjects:
- kind: ServiceAccount
name: openshift-gitops-argocd-application-controller
namespace: openshift-gitops
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: gitops-policy
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: open-cluster-management:cluster-manager-admin
subjects:
- kind: ServiceAccount
name: openshift-gitops-argocd-application-controller
namespace: openshift-gitops
---
apiVersion: argoproj.io/v1alpha1
kind: AppProject
metadata:
name: policy-app-project
namespace: openshift-gitops
spec:
clusterResourceWhitelist:
- group: ''
kind: Namespace
destinations:
- namespace: 'ztp*'
server: '*'
- namespace: 'policies-sub'
server: '*'
namespaceResourceWhitelist:
- group: ''
kind: ConfigMap
- group: ''
kind: Namespace
- group: 'apps.open-cluster-management.io'
kind: PlacementRule
- group: 'policy.open-cluster-management.io'
kind: Policy
- group: 'policy.open-cluster-management.io'
kind: PlacementBinding
- group: 'ran.openshift.io'
kind: PolicyGenTemplate
- group: cluster.open-cluster-management.io
kind: Placement
- group: policy.open-cluster-management.io
kind: PolicyGenerator
- group: policy.open-cluster-management.io
kind: PolicySet
- group: cluster.open-cluster-management.io
kind: ManagedClusterSetBinding
sourceRepos:
- '*'