diff --git a/examples/chart/teleport-cluster/templates/serviceaccount.yaml b/examples/chart/teleport-cluster/templates/serviceaccount.yaml index 81c0d7ed4d2ed..fada7cd97d7f8 100644 --- a/examples/chart/teleport-cluster/templates/serviceaccount.yaml +++ b/examples/chart/teleport-cluster/templates/serviceaccount.yaml @@ -3,3 +3,7 @@ kind: ServiceAccount metadata: name: {{ .Release.Name }} namespace: {{ .Release.Namespace }} +{{- if .Values.serviceAccountAnnotations }} + annotations: +{{ toYaml .Values.serviceAccountAnnotations | indent 4 }} +{{- end -}} diff --git a/examples/chart/teleport-cluster/values.yaml b/examples/chart/teleport-cluster/values.yaml index 2e70ba957c4d6..5fa23da58b5ba 100644 --- a/examples/chart/teleport-cluster/values.yaml +++ b/examples/chart/teleport-cluster/values.yaml @@ -51,3 +51,5 @@ replicaCount: 1 # The default is INFO, which is recommended in production. # DEBUG is useful during first-time setup or to see more detailed logs for debugging. logLevel: INFO +# Annotations to put on the serviceaccount +serviceAccountAnnotations: {} diff --git a/examples/chart/teleport-kube-agent/templates/serviceaccount.yaml b/examples/chart/teleport-kube-agent/templates/serviceaccount.yaml index 0316b7ea9c211..f35e19845a1f7 100644 --- a/examples/chart/teleport-kube-agent/templates/serviceaccount.yaml +++ b/examples/chart/teleport-kube-agent/templates/serviceaccount.yaml @@ -3,3 +3,7 @@ kind: ServiceAccount metadata: name: {{ .Values.serviceAccountName }} namespace: {{ .Release.Namespace }} +{{- if .Values.serviceAccountAnnotations }} + annotations: +{{ toYaml .Values.serviceAccountAnnotations | indent 4 }} +{{- end -}} diff --git a/examples/chart/teleport-kube-agent/values.yaml b/examples/chart/teleport-kube-agent/values.yaml index 888f8f7cad2e5..8575559240c6a 100644 --- a/examples/chart/teleport-kube-agent/values.yaml +++ b/examples/chart/teleport-kube-agent/values.yaml @@ -72,6 +72,8 @@ clusterRoleName: teleport-kube-agent clusterRoleBindingName: teleport-kube-agent # Name of the service account used by the agent. serviceAccountName: teleport-kube-agent +# Annotations to put on the serviceaccount +serviceAccountAnnotations: {} # Name of the Secret to store the teleport join token. secretName: teleport-kube-agent-join-token # Log level for the Teleport process.