forked from weaveworks/wks-quickstart-firekube
-
Notifications
You must be signed in to change notification settings - Fork 0
/
flux.yaml
150 lines (150 loc) · 3.24 KB
/
flux.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
apiVersion: v1
items:
- apiVersion: v1
kind: Namespace
metadata:
name: weavek8sops
- apiVersion: v1
kind: ServiceAccount
metadata:
labels:
name: flux
name: flux
namespace: weavek8sops
- apiVersion: rbac.authorization.k8s.io/v1beta1
kind: ClusterRole
metadata:
labels:
name: flux
name: flux
namespace: weavek8sops
rules:
- apiGroups:
- '*'
resources:
- '*'
verbs:
- '*'
- nonResourceURLs:
- '*'
verbs:
- '*'
- apiVersion: rbac.authorization.k8s.io/v1beta1
kind: ClusterRoleBinding
metadata:
labels:
name: flux
name: flux
namespace: weavek8sops
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: flux
subjects:
- kind: ServiceAccount
name: flux
namespace: weavek8sops
- apiVersion: apps/v1
kind: Deployment
metadata:
name: memcached
namespace: weavek8sops
spec:
replicas: 1
selector:
matchLabels:
name: memcached
template:
metadata:
labels:
name: memcached
spec:
containers:
- args:
- -m 64
- -p 11211
image: memcached:1.4.25
imagePullPolicy: IfNotPresent
name: memcached
ports:
- containerPort: 11211
name: clients
tolerations:
- effect: NoSchedule
key: node-role.kubernetes.io/master
operator: Exists
- key: CriticalAddonsOnly
operator: Exists
- apiVersion: v1
kind: Service
metadata:
name: memcached
namespace: weavek8sops
spec:
clusterIP: None
ports:
- name: memcached
port: 11211
targetPort: 11211
selector:
name: memcached
- apiVersion: apps/v1
kind: Deployment
metadata:
name: flux
namespace: weavek8sops
spec:
replicas: 1
selector:
matchLabels:
name: flux
strategy:
type: Recreate
template:
metadata:
annotations:
prometheus.io.port: "3031"
labels:
name: flux
spec:
containers:
- args:
- --ssh-keygen-dir=/var/fluxd/keygen
- --git-url=
- --git-branch=master
- --git-poll-interval=30s
- --git-path=.
- --git-readonly
- --memcached-hostname=memcached.weavek8sops.svc.cluster.local
- --memcached-service=memcached
- --listen-metrics=:3031
- --sync-garbage-collection
- --manifest-generation=true
image: fluxcd/flux:1.14.2
imagePullPolicy: IfNotPresent
name: flux
ports:
- containerPort: 3030
volumeMounts:
- mountPath: /etc/fluxd/ssh
name: git-key
readOnly: true
- mountPath: /var/fluxd/keygen
name: git-keygen
serviceAccount: flux
tolerations:
- effect: NoSchedule
key: node-role.kubernetes.io/master
operator: Exists
- key: CriticalAddonsOnly
operator: Exists
volumes:
- name: git-key
secret:
defaultMode: 256
secretName: flux-git-deploy
- emptyDir:
medium: Memory
name: git-keygen
kind: List
metadata: {}