sso-kustom/resources/hydra/resources/hydra-deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    io.kompose.service: hydra
  name: hydra
spec:
  replicas: 1
  selector:
    matchLabels:
      io.kompose.service: hydra
  strategy:
    type: Recreate
  template:
    metadata:
      labels:
        io.kompose.service: hydra
    spec:
      serviceAccountName: hydra-sa
      initContainers:
        - name: wait-for-migrate
          image: reg.cadoles.com/proxy_cache/groundnuty/k8s-wait-for:v1.3
          args:
          - job
          - $(HYDRA_MIGRATE_JOB_NAME)
      containers:
        - name: hydra
          image: reg.cadoles.com/proxy_cache/oryd/hydra:v2.0.3
          envFrom:
            - configMapRef:
                name: hydra-env
          env:
            - name: LOG_LEVEL
              value: debug
            - name: LOG_LEAK_SENSITIVE_VALUES
              value: "true"
            - name: SECRETS_SYSTEM
              valueFrom:
                secretKeyRef:
                  name: hydra-secret
                  key: SECRETS_SYSTEM
          args: ["serve", "all", "$(HYDRA_SERVE_ALL_ARGS)"]
          livenessProbe:
            exec:
              command:
                - wget
                - --spider
                - -q
                - http://127.0.0.1:4444/.well-known/openid-configuration
            failureThreshold: 6
            periodSeconds: 10
            timeoutSeconds: 10
          ports:
            - containerPort: 4444
              name: hydra-public
            - containerPort: 4445
              name: hydra-admin
          resources: {}
      restartPolicy: Always