Blame - charts/appmanager/templates/install.yaml - helm-charts

blob: 463ffe45269c592dc7ce808721f433acebb46727 [file] [log] [blame]

Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	1	apiVersion: rbac.authorization.k8s.io/v1
				2	kind: ClusterRole
				3	metadata:
				4	name: {{ .Values.clusterRoleName }}
				5	rules:
				6	- apiGroups:
				7	- ""
				8	resources:
				9	- namespaces
				10	verbs:
				11	- create
				12	- apiGroups:
				13	- "batch"
				14	resources:
				15	- jobs
				16	verbs:
				17	- create
				18	- apiGroups:
Giorgi Lekveishvili	193b7c0	2025-05-22 16:21:37 +0400	[diff] [blame]	19	- "*"
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	20	resources:
Giorgi Lekveishvili	193b7c0	2025-05-22 16:21:37 +0400	[diff] [blame]	21	- "*"
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	22	verbs:
				23	- get
Giorgi Lekveishvili	193b7c0	2025-05-22 16:21:37 +0400	[diff] [blame]	24	- list
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	25	---
				26	apiVersion: rbac.authorization.k8s.io/v1
				27	kind: ClusterRoleBinding
				28	metadata:
				29	name: {{ .Values.clusterRoleName }}
				30	roleRef:
				31	apiGroup: rbac.authorization.k8s.io
				32	kind: ClusterRole
				33	name: {{ .Values.clusterRoleName }}
				34	subjects:
				35	- kind: ServiceAccount
				36	name: default
				37	namespace: {{ .Release.Namespace }}
				38	---
				39	apiVersion: v1
				40	kind: Secret
				41	metadata:
				42	name: ssh-key
				43	type: Opaque
				44	data:
				45	private: {{ .Values.sshPrivateKey }}
				46	---
				47	apiVersion: v1
				48	kind: Service
				49	metadata:
				50	name: appmanager
				51	namespace: {{ .Release.Namespace }}
				52	spec:
				53	type: ClusterIP
				54	selector:
				55	app: appmanager
				56	ports:
Giorgi Lekveishvili	06a6791	2025-04-20 15:56:03 +0400	[diff] [blame]	57	- name: http
Giorgi Lekveishvili	193b7c0	2025-05-22 16:21:37 +0400	[diff] [blame]	58	port: 80
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	59	targetPort: http
				60	protocol: TCP
				61	---
				62	apiVersion: apps/v1
				63	kind: Deployment
				64	metadata:
				65	name: appmanager
				66	namespace: {{ .Release.Namespace }}
				67	spec:
				68	selector:
				69	matchLabels:
				70	app: appmanager
				71	replicas: 1
				72	template:
				73	metadata:
				74	labels:
				75	app: appmanager
				76	spec:
				77	volumes:
				78	- name: ssh-key
				79	secret:
				80	secretName: ssh-key
				81	containers:
				82	- name: appmanager
				83	image: {{ .Values.image.repository }}:{{ .Values.image.tag }}
				84	imagePullPolicy: {{ .Values.image.pullPolicy }}
				85	ports:
				86	- name: http
Giorgi Lekveishvili	06a6791	2025-04-20 15:56:03 +0400	[diff] [blame]	87	containerPort: {{ .Values.port }}
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	88	protocol: TCP
				89	command:
				90	- pcloud-installer
				91	- appmanager
				92	- --repo-addr={{ .Values.repoAddr }}
				93	- --ssh-key=/pcloud/ssh-key/private
Giorgi Lekveishvili	64cb6e3	2024-08-27 08:26:04 +0400	[diff] [blame]	94	- --headscale-api-addr={{ .Values.headscaleAPIAddr }}
Giorgi Lekveishvili	54f781e	2024-09-15 16:04:16 +0400	[diff] [blame]	95	- --dns-api-addr={{ .Values.dnsAPIAddr }}
				96	- --cluster-proxy-config-path={{ .Values.clusterProxyConfigPath }}
Giorgi Lekveishvili	06a6791	2025-04-20 15:56:03 +0400	[diff] [blame]	97	- --port={{ .Values.port }}
Giorgi Lekveishvili	4ec4c02	2024-08-17 15:09:24 +0400	[diff] [blame]	98	{{- if .Values.appRepoAddr }}
				99	- --app-repo-addr={{ .Values.appRepoAddr }}
				100	{{- end}}
				101	volumeMounts:
				102	- name: ssh-key
				103	readOnly: true
				104	mountPath: /pcloud/ssh-key