authentik/helm/templates/web-deployment.yaml

125 lines
4.2 KiB
YAML
Raw Normal View History

apiVersion: apps/v1
2019-02-08 13:57:16 +00:00
kind: Deployment
metadata:
name: {{ include "passbook.fullname" . }}-web
labels:
app.kubernetes.io/name: {{ include "passbook.name" . }}
helm.sh/chart: {{ include "passbook.chart" . }}
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/managed-by: {{ .Release.Service }}
2020-08-25 16:45:03 +01:00
k8s.passbook.beryju.org/component: web
2019-02-08 13:57:16 +00:00
spec:
replicas: {{ .Values.serverReplicas }}
2019-02-08 13:57:16 +00:00
selector:
matchLabels:
app.kubernetes.io/name: {{ include "passbook.name" . }}
app.kubernetes.io/instance: {{ .Release.Name }}
2020-08-25 16:45:03 +01:00
k8s.passbook.beryju.org/component: web
2019-02-08 13:57:16 +00:00
template:
metadata:
labels:
app.kubernetes.io/name: {{ include "passbook.name" . }}
app.kubernetes.io/instance: {{ .Release.Name }}
2020-08-25 16:45:03 +01:00
k8s.passbook.beryju.org/component: web
2019-02-08 13:57:16 +00:00
spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
2020-09-15 10:41:11 +01:00
- weight: 1
podAffinityTerm:
labelSelector:
matchExpressions:
- key: app.kubernetes.io/name
operator: In
values:
- {{ include "passbook.name" . }}
- key: app.kubernetes.io/instance
operator: In
values:
- {{ .Release.Name }}
- key: k8s.passbook.beryju.org/component
operator: In
values:
- web
topologyKey: "kubernetes.io/hostname"
initContainers:
- name: passbook-database-migrations
image: "{{ .Values.image.name }}:{{ .Values.image.tag }}"
2020-09-06 14:52:22 +01:00
args: [migrate]
2019-10-01 14:42:14 +01:00
envFrom:
- configMapRef:
2019-10-02 21:16:32 +01:00
name: {{ include "passbook.fullname" . }}-config
2019-10-01 14:42:14 +01:00
prefix: PASSBOOK_
env:
- name: PASSBOOK_SECRET_KEY
valueFrom:
secretKeyRef:
name: {{ include "passbook.fullname" . }}-secret-key
key: secret_key
2019-10-02 21:16:32 +01:00
- name: PASSBOOK_REDIS__PASSWORD
2019-10-01 14:42:14 +01:00
valueFrom:
secretKeyRef:
name: "{{ .Release.Name }}-redis"
key: redis-password
2019-10-02 21:16:32 +01:00
- name: PASSBOOK_POSTGRESQL__PASSWORD
2019-10-01 14:42:14 +01:00
valueFrom:
secretKeyRef:
name: "{{ .Release.Name }}-postgresql"
key: postgresql-password
2019-02-08 13:57:16 +00:00
containers:
- name: {{ .Chart.Name }}
image: "{{ .Values.image.name }}:{{ .Values.image.tag }}"
2020-09-06 14:52:22 +01:00
args: [server]
2019-10-01 14:42:14 +01:00
envFrom:
- configMapRef:
2019-10-02 21:16:32 +01:00
name: {{ include "passbook.fullname" . }}-config
2019-10-01 14:42:14 +01:00
prefix: PASSBOOK_
env:
- name: PASSBOOK_SECRET_KEY
valueFrom:
secretKeyRef:
name: "{{ include "passbook.fullname" . }}-secret-key"
key: "secret_key"
2019-10-02 21:16:32 +01:00
- name: PASSBOOK_REDIS__PASSWORD
2019-10-01 14:42:14 +01:00
valueFrom:
secretKeyRef:
name: "{{ .Release.Name }}-redis"
key: "redis-password"
2019-10-02 21:16:32 +01:00
- name: PASSBOOK_POSTGRESQL__PASSWORD
2019-10-01 14:42:14 +01:00
valueFrom:
secretKeyRef:
name: "{{ .Release.Name }}-postgresql"
key: "postgresql-password"
volumeMounts:
- name: passbook-uploads
mountPath: /media
2019-02-08 13:57:16 +00:00
ports:
- name: http
containerPort: 8000
protocol: TCP
livenessProbe:
httpGet:
path: /
port: http
httpHeaders:
- name: Host
2020-10-18 17:46:13 +01:00
value: passbook-healthcheck-host
2019-02-08 13:57:16 +00:00
readinessProbe:
httpGet:
path: /
port: http
httpHeaders:
- name: Host
2020-10-18 17:46:13 +01:00
value: passbook-healthcheck-host
2019-02-08 13:57:16 +00:00
resources:
requests:
cpu: 100m
2020-09-15 10:41:11 +01:00
memory: 300M
limits:
cpu: 300m
2020-09-15 10:41:11 +01:00
memory: 500M
volumes:
- name: passbook-uploads
persistentVolumeClaim:
claimName: {{ include "passbook.fullname" . }}-uploads