andata
/
rancher-partner-charts
mirror of https://git.rancher.io/partner-charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
rancher-partner-charts/charts/kongmesh/kuma/0.8.101/templates/ingress-deployment.yaml

125 lines
3.9 KiB
YAML
Raw Blame History

{{- if .Values.ingress.enabled }}
apiVersion: apps/v1
kind: Deployment
metadata:
name: {{ include "kuma.name" . }}-ingress
namespace: {{ .Release.Namespace }}
labels:
{{- include "kuma.labels" . | nindent 4 }}
app: kuma-ingress
spec:
strategy:
rollingUpdate:
maxSurge: 1
maxUnavailable: 0
replicas: {{ .Values.ingress.replicas }}
selector:
matchLabels:
{{- include "kuma.selectorLabels" . | nindent 6 }}
app: kuma-ingress
template:
metadata:
annotations:
kuma.io/ingress: enabled
{{- if .Values.ingress.annotations }}
{{- range $key, $value := .Values.ingress.annotations }}
{{ $key }}: {{ $value | quote }}
{{- end }}
{{- end }}
labels:
{{- include "kuma.selectorLabels" . | nindent 8 }}
app: kuma-ingress
spec:
{{- with .Values.ingress.affinity }}
affinity:
{{ toYaml . | nindent 8 }}
{{- else }}
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- weight: 100
podAffinityTerm:
labelSelector:
matchExpressions:
- key: app
operator: In
values:
- kuma-ingress
topologyKey: kubernetes.io/hostname
{{- end }}
serviceAccountName: {{ include "kuma.name" . }}-ingress
{{- with .Values.ingress.nodeSelector }}
nodeSelector:
{{ toYaml . | nindent 8 }}
{{- end }}
containers:
- name: ingress
image: {{ include "kuma.formatImage" (dict "image" .Values.dataPlane.image "root" $) | quote }}
imagePullPolicy: {{ .Values.dataPlane.image.pullPolicy }}
env:
- name: POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: POD_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- name: KUMA_CONTROL_PLANE_URL
value: "https://{{ include "kuma.controlPlane.serviceName" . }}.{{ .Release.Namespace }}:5678"
- name: KUMA_CONTROL_PLANE_CA_CERT_FILE
value: /var/run/secrets/kuma.io/tls-cert/ca.crt
- name: KUMA_DATAPLANE_NAME
value: $(POD_NAME).$(POD_NAMESPACE)
- name: KUMA_DATAPLANE_ADMIN_PORT
value: "9901"
- name: KUMA_DATAPLANE_DRAIN_TIME
value: {{ .Values.ingress.drainTime }}
- name: KUMA_DATAPLANE_RUNTIME_TOKEN_PATH
value: /var/run/secrets/kubernetes.io/serviceaccount/token
- name: KUMA_DATAPLANE_PROXY_TYPE
value: "ingress"
args:
- run
- --log-level=info
ports:
- containerPort: 10001
livenessProbe:
exec:
command:
- wget
- -qO-
- http://127.0.0.1:9901
failureThreshold: 12
initialDelaySeconds: 60
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 3
readinessProbe:
exec:
command:
- wget
- -qO-
- http://127.0.0.1:9901
failureThreshold: 12
initialDelaySeconds: 1
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 3
resources:
requests:
cpu: 50m
memory: 64Mi
limits:
cpu: 1000m
memory: 512Mi
volumeMounts:
- name: {{ include "kuma.name" . }}-tls-cert
mountPath: /var/run/secrets/kuma.io/tls-cert
readOnly: true
volumes:
- name: {{ include "kuma.name" . }}-tls-cert
secret:
secretName: {{ include "kuma.name" . }}-tls-cert
{{- end }}
Reference in New Issue View Git Blame Copy Permalink