viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

[ci skip] Add tier labels to all namespace resources for Kyverno resource governance

Browse source 
Added `tier = var.tier` to kubernetes_namespace labels in ~73 service
modules. This enables Kyverno to generate LimitRange defaults,
ResourceQuotas, and PriorityClass injection for all namespaces.

Previously only 11 namespaces had tier labels; now all 80 active
namespaces are labeled. All pods restarted in rolling waves to pick
up the new policies.
This commit is contained in:
Viktor Barzin 2026-02-21 23:38:05 +00:00
parent 517f5d6a6c
commit d345841ef2
66 changed files with 135 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

11
modules/kubernetes/openclaw/main.tf
View file

@ -10,6 +10,9 @@ variable "skill_secrets" { type = map(string) }
resource "kubernetes_namespace" "openclaw" {
metadata {
name = "openclaw"
labels = {
tier = var.tier
}
}
}
@ -86,10 +89,10 @@ resource "kubernetes_config_map" "openclaw_config" {
fallbacks = ["gemini/gemini-2.5-flash", "llama-as-openai/Llama-3.3-70B-Instruct"]
}
models = {
"modal/zai-org/GLM-5-FP8" = { streaming = false }
"gemini/gemini-2.5-flash" = {}
"llama-as-openai/Llama-3.3-70B-Instruct" = {}
"llama-as-openai/Llama-4-Scout-17B-16E-Instruct-FP8" = {}
"modal/zai-org/GLM-5-FP8" = { streaming = false }
"gemini/gemini-2.5-flash" = {}
"llama-as-openai/Llama-3.3-70B-Instruct" = {}
"llama-as-openai/Llama-4-Scout-17B-16E-Instruct-FP8" = {}
}
}
}