The operator is configured through command-line flags, which map directly to Helm values when deploying via Helm. All features are opt-in except the core reconciliation controllers.Documentation Index
Fetch the complete documentation index at: https://dorguai.mintlify.app/llms.txt
Use this file to discover all available pages before exploring further.
Feature matrix
| Feature | Default | Flag | Description |
|---|---|---|---|
| ApplicationPersona controller | Enabled | Always on | Validates deployments against persona constraints |
| ClusterPersona controller | Enabled | Always on | Discovers cluster state and resource capacity |
| ArgoCD watcher | Enabled | --enable-argocd | Watches ArgoCD Applications for sync status |
| Validating webhook | Disabled | --enable-webhook | Intercepts Deployment create/update |
| Prometheus integration | Disabled | --prometheus-url | Queries Prometheus for resource baselines |
| WebSocket server | Disabled | --enable-websocket | Real-time CLI communication |
| Leader election | Disabled (flag default; enabled in Helm chart) | --leader-elect | HA mode for multi-replica deployments |
| Secure metrics | Enabled | --metrics-secure | HTTPS metrics endpoint with RBAC |
Command-line flags
Core
| Flag | Type | Default | Description |
|---|---|---|---|
--metrics-bind-address | string | 0 | Metrics endpoint bind address. Use :8443 for HTTPS or :8080 for HTTP. Set to 0 to disable. |
--health-probe-bind-address | string | :8081 | Health and readiness probe bind address |
--leader-elect | bool | false | Enable leader election for HA deployments |
--enable-http2 | bool | false | Enable HTTP/2 for metrics and webhook servers |
Webhook
| Flag | Type | Default | Description |
|---|---|---|---|
--enable-webhook | bool | false | Enable the validating admission webhook |
--webhook-mode | string | advisory | advisory (warn only) or enforcing (reject on errors) |
--webhook-cert-path | string | "" | Directory containing webhook TLS certificate |
--webhook-cert-name | string | tls.crt | Webhook certificate filename |
--webhook-cert-key | string | tls.key | Webhook private key filename |
Metrics
| Flag | Type | Default | Description |
|---|---|---|---|
--metrics-secure | bool | true | Serve metrics over HTTPS with RBAC |
--metrics-cert-path | string | "" | Directory containing metrics TLS certificate |
--metrics-cert-name | string | tls.crt | Metrics certificate filename |
--metrics-cert-key | string | tls.key | Metrics private key filename |
Integrations
| Flag | Type | Default | Description |
|---|---|---|---|
--enable-argocd | bool | true | Enable ArgoCD Application watching |
--prometheus-url | string | "" | Prometheus server URL for baseline learning |
--enable-websocket | bool | false | Enable WebSocket server for CLI |
--websocket-addr | string | :9090 | WebSocket server listen address |
The ArgoCD watcher only activates if both
--enable-argocd=true and the ArgoCD Application CRD (argoproj.io/v1alpha1) is detected in the cluster. If the CRD is missing, the watcher silently skips registration.Example: Full-featured deployment
Helm values
Complete Helm values.yaml reference
Installation
Install methods and verification