diff --git a/cmd/openshift/operator/kodata/openshift-monitoring/01-trigger-monitoring.yaml b/cmd/openshift/operator/kodata/openshift-monitoring/01-trigger-monitoring.yaml new file mode 100644 index 0000000000..7bf0c9c3ce --- /dev/null +++ b/cmd/openshift/operator/kodata/openshift-monitoring/01-trigger-monitoring.yaml @@ -0,0 +1,68 @@ +--- +# Copyright 2022 The Tekton Authors +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# https://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +apiVersion: rbac.authorization.k8s.io/v1 +kind: Role +metadata: + name: openshift-triggers-read + namespace: tekton-pipelines +rules: + - apiGroups: + - "" + resources: + - services + - endpoints + - pods + verbs: + - get + - list + - watch +--- +apiVersion: rbac.authorization.k8s.io/v1 +kind: RoleBinding +metadata: + name: openshift-triggers-prometheus-k8s-read-binding + namespace: tekton-pipelines + annotations: + operator.tekton.dev/preserve-rb-subject-namespace: "true" +roleRef: + apiGroup: rbac.authorization.k8s.io + kind: Role + name: openshift-triggers-read +subjects: + - kind: ServiceAccount + name: prometheus-k8s + namespace: openshift-monitoring +--- +apiVersion: monitoring.coreos.com/v1 +kind: ServiceMonitor +metadata: + labels: + app: controller + annotations: + networkoperator.openshift.io/ignore-errors: "" + name: openshift-triggers-monitor + namespace: tekton-pipelines +spec: + endpoints: + - interval: 10s + port: http-metrics + jobLabel: app + namespaceSelector: + matchNames: + - openshift-pipelines + selector: + matchLabels: + app: tekton-triggers-controller