/
source-controller.yaml
135 lines (135 loc) · 4.42 KB
/
source-controller.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
{{- if .Values.sourcecontroller.create }}
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app.kubernetes.io/instance: {{ .Release.Namespace | quote }}
app.kubernetes.io/managed-by: {{ .Release.Service | quote }}
app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
app.kubernetes.io/part-of: flux
helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
control-plane: controller
name: source-controller
spec:
{{- if kindIs "invalid" .Values.sourcecontroller.replicas }}
replicas: 1
{{- else }}
replicas: {{ .Values.sourcecontroller.replicas }}
{{- end}}
selector:
matchLabels:
app: source-controller
strategy:
type: Recreate
template:
metadata:
{{- with .Values.sourcecontroller.annotations }}
annotations: {{ toYaml . | nindent 8 }}
{{- end }}
labels:
app: source-controller
{{ with .Values.sourcecontroller.labels }}{{ toYaml . | indent 8 }}{{ end }}
spec:
{{- if .Values.sourcecontroller.initContainers}}
initContainers:
{{- toYaml .Values.sourcecontroller.initContainers | nindent 8}}
{{- end}}
containers:
- args:
{{- if .Values.notificationcontroller.create }}
- --events-addr={{ .Values.eventsaddr }}
{{- end}}
- --watch-all-namespaces={{ .Values.watchallnamespaces }}
- --log-level={{ .Values.loglevel | default "info" }}
- --log-encoding=json
- --enable-leader-election
- --storage-path=/data
- --storage-adv-addr=source-controller.$(RUNTIME_NAMESPACE).svc.cluster.local.
{{- range .Values.sourcecontroller.container.additionalargs }}
- {{ . }}
{{- end}}
env:
- name: RUNTIME_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
{{- with .Values.sourcecontroller.extraEnv }}
{{- toYaml . | nindent 8 }}
{{- end }}
image: {{ template "template.image" .Values.sourcecontroller }}
{{- if .Values.sourcecontroller.imagePullPolicy }}
imagePullPolicy: {{ .Values.sourcecontroller.imagePullPolicy }}
{{- else }}
imagePullPolicy: IfNotPresent
{{- end }}
livenessProbe:
httpGet:
path: /healthz
port: healthz
name: manager
ports:
- containerPort: 9090
name: http
protocol: TCP
- containerPort: 8080
name: http-prom
protocol: TCP
- containerPort: 9440
name: healthz
protocol: TCP
readinessProbe:
httpGet:
path: /
port: http
{{- with .Values.sourcecontroller.resources }}
resources: {{ toYaml . | nindent 10 }}
{{- end }}
{{- if .Values.sourcecontroller.securityContext }}
securityContext: {{ toYaml .Values.sourcecontroller.securityContext | nindent 10 }}
{{- else }}
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
readOnlyRootFilesystem: true
runAsNonRoot: true
seccompProfile:
type: RuntimeDefault
{{- end}}
volumeMounts:
- mountPath: /data
name: data
- mountPath: /tmp
name: tmp
{{- if .Values.sourcecontroller.volumeMounts }}
{{- toYaml .Values.sourcecontroller.volumeMounts | nindent 8 }}
{{- end}}
{{- if .Values.sourcecontroller.priorityClassName }}
priorityClassName: {{ .Values.sourcecontroller.priorityClassName | quote }}
{{- end }}
securityContext:
fsGroup: 1337
serviceAccountName: source-controller
{{- if .Values.imagePullSecrets }}
imagePullSecrets: {{ toYaml .Values.imagePullSecrets | nindent 6 }}
{{- end }}
terminationGracePeriodSeconds: 10
volumes:
- emptyDir: {}
name: data
- emptyDir: {}
name: tmp
{{- if .Values.sourcecontroller.volumes }}
{{- toYaml .Values.sourcecontroller.volumes | nindent 6 }}
{{- end}}
{{- with .Values.sourcecontroller.nodeSelector }}
nodeSelector: {{ toYaml . | nindent 8 }}
{{- end }}
{{- with .Values.sourcecontroller.affinity }}
affinity: {{ toYaml . | nindent 8 }}
{{- end }}
{{- with .Values.sourcecontroller.tolerations }}
tolerations: {{ toYaml . | nindent 8 }}
{{- end }}
{{- end }}