forked from kubernetes-sigs/blob-csi-driver
-
Notifications
You must be signed in to change notification settings - Fork 0
/
pv-blobfuse-auth.yaml
36 lines (36 loc) · 1.13 KB
/
pv-blobfuse-auth.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
---
apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
pv.kubernetes.io/provisioned-by: blob.csi.azure.com
name: pv-blob
spec:
capacity:
storage: 10Gi
accessModes:
- ReadWriteMany
persistentVolumeReclaimPolicy: Retain
storageClassName: blob-fuse
mountOptions:
- -o allow_other
- --file-cache-timeout-in-seconds=120
csi:
driver: blob.csi.azure.com
# make sure volumeid is unique for every storage blob container in the cluster
volumeHandle: account-name_container-name
volumeAttributes:
resourceGroup: EXISTING_RESOURCE_GROUP_NAME
storageAccount: EXISTING_STORAGE_ACCOUNT_NAME
containerName: EXISTING_CONTAINER_NAME
# refer to https://github.com/Azure/azure-storage-fuse#environment-variables
AzureStorageAuthType: key # key, sas, msi, spn
AzureStorageIdentityClientID:
AzureStorageIdentityResourceID:
MSIEndpoint:
AzureStorageSPNClientID:
AzureStorageSPNTenantID:
AzureStorageAADEndpoint:
nodeStageSecretRef: # secret should be stored here, not needed for msi auth type
name: azure-secret
namespace: default