Based on RedHat UBI-9 Python3-11 image.
Goal of this repository is to create a container which runs as smooth as possible on OpenShift. This container enables pass-through TLS termination to protect also internal traffic.
DASHBOARD_USER
sets the username for the dashboard loginDASHBOARD_PASSWORD
sets the password for the dashboard login
If not set the dashboard will be accessible without any protection.
Persistence for configuration files, should be mounted to /opt/app-root/etc/esphome inside the container.
To protect internal traffic with TLS provide a secret for server.crt and server.key can be provided. The locations should be /opt/app-root/src/.pki/esphome/server.crt and /opt/app-root/src/.pki/esphome/server.key for the container/pod.
spec:
template:
spec:
containers:
- name: esphome
volumeMounts:
- name: esphome-tls
mountPath: /opt/app-root/src/.pki/esphome
volumes:
- name: esphome-tls
secret:
defaultMode: 420
secretName: esphome-tls
items:
- key: tls.crt
path: server.crt
- key: tls.key
path: server.key
Cleanup should be run as a cron job with attached persistent storage for /opt/app-root/etc/esphome with pio system prune --force
.