b645820061
Since value of imagePullPolicy key is a one word string it can be easily overridden by strategicMerge Change-Id: I3d78765ce3fb277bc7825639746b734f655efcf0
109 lines
2.5 KiB
YAML
109 lines
2.5 KiB
YAML
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: capbm-webhook-server-secret
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
annotations:
|
|
prometheus.io/port: "8443"
|
|
prometheus.io/scheme: https
|
|
prometheus.io/scrape: "true"
|
|
labels:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
name: capbm-controller-manager-metrics-svc
|
|
spec:
|
|
ports:
|
|
- name: https
|
|
port: 8443
|
|
targetPort: https
|
|
selector:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
labels:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
name: capbm-controller-manager-service
|
|
spec:
|
|
ports:
|
|
- port: 443
|
|
selector:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
|
|
---
|
|
apiVersion: apps/v1
|
|
kind: StatefulSet
|
|
metadata:
|
|
labels:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
name: capbm-controller-manager
|
|
spec:
|
|
selector:
|
|
matchLabels:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
serviceName: capbm-controller-manager-service
|
|
template:
|
|
metadata:
|
|
labels:
|
|
control-plane: controller-manager
|
|
controller-tools.k8s.io: "1.0"
|
|
spec:
|
|
containers:
|
|
- args:
|
|
- --secure-listen-address=0.0.0.0:8443
|
|
- --upstream=http://127.0.0.1:8080/
|
|
- --logtostderr=true
|
|
- --v=10
|
|
image: gcr.io/kubebuilder/kube-rbac-proxy:v0.4.0
|
|
name: kube-rbac-proxy
|
|
ports:
|
|
- containerPort: 8443
|
|
name: https
|
|
- args:
|
|
- --metrics-addr=127.0.0.1:8080
|
|
- --enable-leader-election
|
|
command:
|
|
- /manager
|
|
env:
|
|
- name: POD_NAMESPACE
|
|
valueFrom:
|
|
fieldRef:
|
|
fieldPath: metadata.namespace
|
|
- name: SECRET_NAME
|
|
value: capbm-webhook-server-secret
|
|
image: "quay.io/metal3-io/cluster-api-provider-baremetal:v1alpha2"
|
|
imagePullPolicy: Always
|
|
name: manager
|
|
ports:
|
|
- containerPort: 9876
|
|
name: webhook-server
|
|
protocol: TCP
|
|
resources:
|
|
limits:
|
|
cpu: 100m
|
|
memory: 30Mi
|
|
requests:
|
|
cpu: 100m
|
|
memory: 20Mi
|
|
volumeMounts:
|
|
- mountPath: /tmp/cert
|
|
name: cert
|
|
readOnly: true
|
|
terminationGracePeriodSeconds: 10
|
|
volumes:
|
|
- name: cert
|
|
secret:
|
|
defaultMode: 420
|
|
secretName: capbm-webhook-server-secret
|