fix(helm): add boolean for processClusterGenerator (#5144)

* fix(helm): add boolean to remove clusterGenerator

Signed-off-by: DrummyFloyd <jonathan.monnet28@gmail.com>

* style(helm): typo missing space

Signed-off-by: DrummyFloyd <jonathan.monnet28@gmail.com>

---------

Signed-off-by: DrummyFloyd <jonathan.monnet28@gmail.com>

deploy/charts/external-secrets/README.md

@@ -151,6 +151,7 @@ The command removes all the Kubernetes components associated with the chart and
 | podSpecExtra | object | `{}` | Any extra pod spec on the deployment |
 | priorityClassName | string | `""` | Pod priority class name. |
 | processClusterExternalSecret | bool | `true` | if true, the operator will process cluster external secret. Else, it will ignore them. |
+| processClusterGenerator | bool | `true` | if true, the operator will process cluster generator. Else, it will ignore them. |
 | processClusterPushSecret | bool | `true` | if true, the operator will process cluster push secret. Else, it will ignore them. |
 | processClusterStore | bool | `true` | if true, the operator will process cluster store. Else, it will ignore them. |
 | processPushSecret | bool | `true` | if true, the operator will process push secret. Else, it will ignore them. |

deploy/charts/external-secrets/templates/rbac.yaml

@@ -96,7 +96,9 @@ rules:
     - "generators.external-secrets.io"
     resources:
     - "acraccesstokens"
+    {{- if .Values.processClusterGenerator }}
     - "clustergenerators"
+    {{- end }}
     - "ecrauthorizationtokens"
     - "fakes"
     - "gcraccesstokens"
@@ -218,7 +220,9 @@ rules:
     - "generators.external-secrets.io"
     resources:
     - "acraccesstokens"
+    {{- if .Values.processClusterGenerator }}
     - "clustergenerators"
+    {{- end }}
     - "ecrauthorizationtokens"
     - "fakes"
     - "gcraccesstokens"
@@ -279,7 +283,9 @@ rules:
     - "generators.external-secrets.io"
     resources:
     - "acraccesstokens"
+    {{- if .Values.processClusterGenerator }}
     - "clustergenerators"
+    {{- end }}
     - "ecrauthorizationtokens"
     - "fakes"
     - "gcraccesstokens"

deploy/charts/external-secrets/values.schema.json

@@ -530,6 +530,9 @@
         "processClusterExternalSecret": {
             "type": "boolean"
         },
+        "processClusterGenerator": {
+            "type": "boolean"
+        },
         "processClusterPushSecret": {
             "type": "boolean"
         },

deploy/charts/external-secrets/values.yaml

@@ -91,6 +91,9 @@ processClusterPushSecret: true
 # -- if true, the operator will process cluster store. Else, it will ignore them.
 processClusterStore: true
 
+# -- if true, the operator will process cluster generator. Else, it will ignore them.
+processClusterGenerator: true
+
 # -- if true, the operator will process push secret. Else, it will ignore them.
 processPushSecret: true