mirror of
https://github.com/cloudnative-pg/plugin-barman-cloud.git
synced 2026-01-11 21:23:12 +01:00
5788c1f727
Closes #177 Signed-off-by: Jonathan Battiato <jonathan.battiato@enterprisedb.com> Signed-off-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com> Co-authored-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
72 lines
1.7 KiB
YAML
72 lines
1.7 KiB
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
labels:
|
|
app: barman-cloud
|
|
name: barman-cloud
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: barman-cloud
|
|
strategy:
|
|
type: Recreate
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: barman-cloud
|
|
spec:
|
|
securityContext:
|
|
runAsNonRoot: true
|
|
seccompProfile:
|
|
type: RuntimeDefault
|
|
serviceAccountName: plugin-barman-cloud
|
|
containers:
|
|
- image: plugin-barman-cloud:latest
|
|
name: barman-cloud
|
|
ports:
|
|
- containerPort: 9090
|
|
protocol: TCP
|
|
env:
|
|
- name: SIDECAR_IMAGE
|
|
valueFrom:
|
|
secretKeyRef:
|
|
key: SIDECAR_IMAGE
|
|
name: plugin-barman-cloud
|
|
args:
|
|
- operator
|
|
- --server-cert=/server/tls.crt
|
|
- --server-key=/server/tls.key
|
|
- --client-cert=/client/tls.crt
|
|
- --server-address=:9090
|
|
- --leader-elect
|
|
- --log-level=debug
|
|
readinessProbe:
|
|
tcpSocket:
|
|
port: 9090
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 10
|
|
volumeMounts:
|
|
- mountPath: /server
|
|
name: server
|
|
- mountPath: /client
|
|
name: client
|
|
resources: {}
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
readOnlyRootFilesystem: true
|
|
runAsGroup: 10001
|
|
runAsUser: 10001
|
|
seccompProfile:
|
|
type: RuntimeDefault
|
|
volumes:
|
|
- name: server
|
|
secret:
|
|
secretName: barman-cloud-server-tls
|
|
- name: client
|
|
secret:
|
|
secretName: barman-cloud-client-tls
|