onboardmanifests

package
v0.0.33 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 1, 2026 License: Apache-2.0 Imports: 4 Imported by: 0

Documentation

Overview

Package onboardmanifests generates the engineer cell's Kustomize resources for `seictl onboard`.

v1 ships three files: namespace, bare ServiceAccount (the K8s anchor for Pod Identity), and the kustomization that wires them together. No Role / RoleBinding — engineers operate as cluster-admin via SSO today; per-engineer scoped K8s identity is tracked at sei-protocol/seictl#80.

The ServiceAccount carries no eks.amazonaws.com/role-arn annotation — that's IRSA's pattern, not Pod Identity. EKS Pod Identity binds server-side via (cluster, namespace, serviceAccount); annotating the SA is at best a no-op and at worst misleading to readers.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Cell 

type Cell struct {
	Alias     string
	Namespace string
}

type File 

type File struct {
	Path    string
	Content []byte
}

func Generate 

func Generate(cell Cell) ([]File, error)

Generate returns the three engineer-cell files at their target platform-repo paths (`clusters/harbor/engineers/<alias>/...`).

Source Files

View all Source files

Directories

Path Synopsis
Package aggregator updates the cell-aggregator kustomization at `clusters/harbor/engineers/kustomization.yaml` so that each `seictl onboard --apply` PR is fully self-wired into Flux.
 Package aggregator updates the cell-aggregator kustomization at `clusters/harbor/engineers/kustomization.yaml` so that each `seictl onboard --apply` PR is fully self-wired into Flux.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.