Gitiles
Code Review Sign In
code.v1.dodo.cloud / helm-charts / refs/heads/main / . / charts / tailscale-proxy / templates / install.yaml
blob: d1f5a7c326a8f0be5291d86db41b87f803507c80 [file] [log] [blame]
Giorgi Lekveishvili4ec4c022024-08-17 15:09:24 +0400[diff] [blame]1apiVersion: headscale.dodo.cloud/v1
2kind: HeadscaleUser
3metadata:
4 name: {{ .Values.username }}
5 namespace: {{ .Release.Namespace }}
6spec:
7 headscaleAddress: {{ .Values.apiServer }}
8 name: {{ .Values.username }}
9 preAuthKey:
10 enabled: true
11 secretName: {{ .Values.preAuthKeySecret }}
12---
13apiVersion: apps/v1
14kind: Deployment
15metadata:
16 name: tailscale
17 namespace: {{ .Release.Namespace }}
18spec:
19 selector:
20 matchLabels:
21 app: tailscale
22 replicas: 1
23 template:
24 metadata:
25 labels:
26 app: tailscale
27 spec:
Giorgi Lekveishvili4ec4c022024-08-17 15:09:24 +0400[diff] [blame]28 containers:
29 - name: tailscale
30 image: {{ .Values.image.repository }}:{{ .Values.image.tag }}
31 imagePullPolicy: {{ .Values.image.pullPolicy }}
32 securityContext:
33 privileged: true
34 capabilities:
35 add:
36 - NET_ADMIN
37 env:
38 - name: TS_KUBE_SECRET
39 value: {{ .Values.preAuthKeySecret }}
Giorgi Lekveishvili4ec4c022024-08-17 15:09:24 +0400[diff] [blame]40 - name: TS_HOSTNAME
41 value: {{ .Values.hostname }}
Giorgi Lekveishviliefc43ea2024-09-09 19:11:41 +0400[diff] [blame]42 {{- if .Values.ipSubnet }}
Giorgi Lekveishvili4ec4c022024-08-17 15:09:24 +0400[diff] [blame]43 - name: TS_ROUTES
44 value: {{ .Values.ipSubnet }}
Giorgi Lekveishviliefc43ea2024-09-09 19:11:41 +0400[diff] [blame]45 {{- end }}
Giorgi Lekveishvili4ec4c022024-08-17 15:09:24 +0400[diff] [blame]46 - name: TS_EXTRA_ARGS
47 value: --login-server={{ .Values.loginServer }}