CadolesKube/sso-kustom
15
0
Fork 0
Code Issues 17 Pull Requests 5 Projects Releases Wiki Activity
f04fae0da5
sso-kustom/components/hydra-maester/resources/hydra-maester-deployment.yaml
Philippe Caseiro 76b90e6c82 feat(components): moving hydra-maester as componenent 
This will prevent oauth2-client removal from hydra instances removal.
At the time if you deploy an hydra in your namespace for your app and
delete it, the hydra-maester CRD will be removed, but we don't want that.
More than one project will use this CRD.
2023-12-22 10:02:25 +01:00

57 lines
1.6 KiB
YAML
Raw Blame History

---
# Source: hydra/charts/hydra-maester/templates/deployment.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
name: hydra-maester
labels:
app.kubernetes.io/name: hydra-maester
app.kubernetes.io/instance: hydra-master
app.kubernetes.io/version: "v0.0.23"
spec:
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
control-plane: controller-manager
app.kubernetes.io/name: hydra-maester
app.kubernetes.io/instance: hydra
template:
metadata:
labels:
control-plane: controller-manager
app.kubernetes.io/name: hydra-maester
app.kubernetes.io/instance: hydra
annotations:
spec:
containers:
- name: hydra-maester
image: reg.cadoles.com/proxy_cache/oryd/hydra-maester:v0.0.25
imagePullPolicy: IfNotPresent
envFrom:
- configMapRef:
name: hydra-maester-env
command:
- /manager
args:
- --metrics-addr=127.0.0.1:8080
- --hydra-url=$(HYDRA_ADMIN_BASE_URL)
- --hydra-port=$(HYDRA_ADMIN_PORT)
- --endpoint=/admin/clients
resources:
{}
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
privileged: false
readOnlyRootFilesystem: true
runAsNonRoot: true
runAsUser: 1000
serviceAccountName: hydra-maester-account
automountServiceAccountToken: true
nodeSelector:
Reference in New Issue View Git Blame Copy Permalink