Chart: Add volumes for webhook patch job.

[ababu13]

What this PR does / why we need it:

This PR adds support for specifying custom volumes and volumeMounts in the AdmissionWebhook createSecretJob and patchWebhookJob. The template provides the attribute automountServiceAccountToken. However, if automountServiceAccountToken is set to false, the jobs fail. Therefore, to fix that issue, volumeMount and volume needs to be set.

This provides flexibility for users who need to mount additional data (e.g., certificates, configuration files, or shared volumes) into the admission webhook jobs.
Previously, these jobs did not support custom volumes or mounts, which limited use cases where external data is required during webhook secret creation or patching.

Types of changes

• New feature (non-breaking change which adds functionality)

Which issue/s this PR fixes

fixes #13810

How Has This Been Tested?

• Deployed Helm chart with custom volumes and volumeMounts defined in values.yaml.
• Verified that both createSecretJob and patchWebhookJob rendered correctly with the custom mounts in the Job manifests.
• Confirmed Jobs executed successfully with the mounted volumes present in the containers.
• Verified that no changes occur when values are left as defaults ([]).
• Tested the scenario in a dev cluster manually

Checklist:

• My change requires a change to the documentation.
• I have updated the documentation accordingly.
• I've read the CONTRIBUTION guide
• I have added unit and/or e2e tests to cover my changes.
• All new and existing tests passed.

[netlify]

✅ Deploy Preview for kubernetes-ingress-nginx canceled.

Name	Link
🔨 Latest commit	88f70fe
🔍 Latest deploy log	https://app.netlify.com/projects/kubernetes-ingress-nginx/deploys/68a8980f4be57b0008dae3b8

[linux-foundation-easycla]

• ✅login: ababu13 / name: ababu13 / (db4406e)
• ✅login: ababu13 / name: ababu13 / (db4406e, b085349)
• ✅login: ababu13 / name: ababu13 / (db4406e, b085349, 2e3bff3)
• ✅login: ababu13 / name: ababu13 / (db4406e, b085349, 2e3bff3, 320b402)
• ✅login: ababu13 / name: ababu13 / (db4406e, b085349, 2e3bff3, 320b402, 2eff4b8)
• ✅login: ababu13 / name: ababu13 / (db4406e, b085349, 2e3bff3, 320b402, 2eff4b8, 88f70fe)

The committers listed above are authorized under a signed CLA.

[k8s-ci-robot]

This issue is currently awaiting triage.

If Ingress contributors determines this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: ababu13
Once this PR has been reviewed and has the lgtm label, please assign gacko for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

Welcome @ababu13!

It looks like this is your first PR to kubernetes/ingress-nginx 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes/ingress-nginx has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[k8s-ci-robot]

Hi @ababu13. Thanks for your PR.

I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[Gacko]

Please also implement unit tests in the tests directory of the chart.

[Gacko]

Suggested change

	# -- VolumeMounts to set for the AdmissionWebhook createSecret Job.
	# -- Volume mounts to add to the admission webhook secret creation job.

[Gacko]

Suggested change

	# -- Volumes to set for the AdmissionWebhook createSecret Job.
	# -- Volumes to add to the admission webhook secret creation job.

[Gacko]

Suggested change

	# -- VolumeMounts to set for the AdmissionWebhook patchWebhook Job.
	# -- Volume mounts to add to the admission webhook patch job.

[Gacko]

Suggested change

	# -- Volumes to set for the AdmissionWebhook patchWebhook Job.
	# -- Volumes to add to the admission webhook patch job.

[Gacko]

Please update the documentation after applying the other suggestions.