From a2028003a7dbad59f3ea5dacd659818e3a03ff7c Mon Sep 17 00:00:00 2001
From: sungil <si.im@sk.com>
Date: Wed, 4 Oct 2023 04:53:04 +0000
Subject: [PATCH 1/2] policy: add a decapod app for policies

---
 policy/base/kustomization.yaml |  5 +++++
 policy/base/resources.yaml     | 37 ++++++++++++++++++++++++++++++++++
 policy/base/site-values.yaml   | 20 ++++++++++++++++++
 3 files changed, 62 insertions(+)
 create mode 100644 policy/base/kustomization.yaml
 create mode 100644 policy/base/resources.yaml
 create mode 100644 policy/base/site-values.yaml

diff --git a/policy/base/kustomization.yaml b/policy/base/kustomization.yaml
new file mode 100644
index 0000000..fdb088d
--- /dev/null
+++ b/policy/base/kustomization.yaml
@@ -0,0 +1,5 @@
+resources:
+  - resources.yaml
+
+transformers:
+  - site-values.yaml
diff --git a/policy/base/resources.yaml b/policy/base/resources.yaml
new file mode 100644
index 0000000..1221fc4
--- /dev/null
+++ b/policy/base/resources.yaml
@@ -0,0 +1,37 @@
+---
+apiVersion: helm.fluxcd.io/v1
+kind: HelmRelease
+metadata:
+  labels:
+    name: opa-gatekeeper
+  name: opa-gatekeeper
+spec:
+  chart:
+    type: helmrepo
+    repository: https://harbor.taco-cat.xyz/chartrepo/tks
+    name: gatekeeper
+    version: 3.13.0
+    origin: https://open-policy-agent.github.io/gatekeeper/charts
+  helmVersion: v3
+  releaseName: opa-gatekeeper
+  targetNamespace: taco-system
+  values: 
+    enableDeleteOperations: true
+---
+apiVersion: helm.fluxcd.io/v1
+kind: HelmRelease
+metadata:
+  labels:
+    name: policy-resources
+  name: policy-resources
+spec:
+  chart:
+    type: helmrepo
+    repository: https://harbor.taco-cat.xyz/chartrepo/tks
+    name: policy-resources
+    version: 1.0.0
+    origin: https://openinfradev.github.io/helm-charts/policy-resources
+  helmVersion: v3
+  releaseName: policy-resources
+  targetNamespace: taco-system
+  values: {}
\ No newline at end of file
diff --git a/policy/base/site-values.yaml b/policy/base/site-values.yaml
new file mode 100644
index 0000000..5b87ed9
--- /dev/null
+++ b/policy/base/site-values.yaml
@@ -0,0 +1,20 @@
+apiVersion: openinfradev.github.com/v1
+kind: HelmValuesTransformer
+metadata:
+  name: site
+
+global:
+  # Specify nodes to install workload
+  nodeSelector:
+    taco-lma: enabled
+  # Specify cluster name. It is useful in multi-cluster env.
+  clusterName: cluster.local
+  # Storageclass to install persistant
+  storageClassName: taco-storage
+
+charts:
+- name: opa-gatekeeper
+  override:
+    prometheusOperator.nodeSelector: $(nodeSelector)
+
+- name: policy-resources

From 5f29d8f55f206a07183a97890d6c9cdc680b1a46 Mon Sep 17 00:00:00 2001
From: Jugwan Eom <zugwan@gmail.com>
Date: Mon, 16 Oct 2023 08:11:52 +0000
Subject: [PATCH 2/2] tks-cluster: byoh: upgrade byoh helm chart to v0.3.0

---
 tks-cluster/infra/byoh/resources.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tks-cluster/infra/byoh/resources.yaml b/tks-cluster/infra/byoh/resources.yaml
index 6d9d2e3..5d6ba0f 100644
--- a/tks-cluster/infra/byoh/resources.yaml
+++ b/tks-cluster/infra/byoh/resources.yaml
@@ -11,7 +11,7 @@ spec:
     type: helmrepo
     repository: https://harbor.taco-cat.xyz/chartrepo/tks
     name: cluster-api-byoh
-    version: 0.1.0
+    version: 0.3.0
   releaseName: cluster-api-byoh
   targetNamespace: argo
   values: