feat(ingress-controller): add imagePullSecrets support with global fallback (#916)

Author: ArnaudCHT

charts/apisix-ingress-controller/README.md

@@ -134,6 +134,7 @@ The same for container level, you need to set:
 | deployment.image.pullPolicy | string | `"IfNotPresent"` |  |
 | deployment.image.repository | string | `"apache/apisix-ingress-controller"` |  |
 | deployment.image.tag | string | `"2.0.1"` |  |
+| deployment.imagePullSecrets | list | `[]` |  |
 | deployment.nodeSelector | object | `{}` |  |
 | deployment.podAnnotations | object | `{}` |  |
 | deployment.podSecurityContext | object | `{"fsGroup":2000}` | Set security context for the pod fsGroup: 2000 ensures containers can share Unix socket files via a common group. |

charts/apisix-ingress-controller/templates/deployment.yaml

@@ -42,6 +42,13 @@ spec:
       labels:
         {{- include "apisix-ingress-controller-manager.selectorLabels" . | nindent 8 }}
     spec:
+      {{- $imagePullSecrets := .Values.deployment.imagePullSecrets | default ((.Values.global).imagePullSecrets | default list) }}
+      {{- with $imagePullSecrets }}
+      imagePullSecrets:
+        {{- range $imagePullSecrets }}
+        - name: {{ . }}
+        {{- end }}
+      {{- end }}
       containers:
       - env:
         - name: POD_NAMESPACE

charts/apisix-ingress-controller/values.yaml

@@ -52,6 +52,7 @@ deployment:
   nodeSelector: {}
   tolerations: []
   affinity: {}
+  imagePullSecrets: []
 
   # -- Set security context for the pod
   # fsGroup: 2000 ensures containers can share Unix socket files via a common group.