forked from codefresh-io/venona
-
Notifications
You must be signed in to change notification settings - Fork 0
/
deployment.dind-volume-provisioner.vp.yaml
119 lines (117 loc) · 4.31 KB
/
deployment.dind-volume-provisioner.vp.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
apiVersion: apps/v1
kind: Deployment
metadata:
name: dind-volume-provisioner-{{ .AppName }}
namespace: {{ .Namespace }}
labels:
app: dind-volume-provisioner
spec:
selector:
matchLabels:
app: dind-volume-provisioner
replicas: 1
strategy:
type: Recreate
template:
metadata:
labels:
app: dind-volume-provisioner
spec:
{{ if .Storage.VolumeProvisioner.NodeSelector }}
nodeSelector:
{{ .Storage.VolumeProvisioner.NodeSelector | nodeSelectorParamToYaml | indent 8 | unescape}}
{{ end }}
serviceAccount: volume-provisioner-{{ .AppName }}
tolerations:
- effect: NoSchedule
key: node-role.kubernetes.io/master
operator: "Exists"
{{ toYaml .Tolerations | indent 8}}
containers:
- name: dind-volume-provisioner
resources:
{{ toYaml .Storage.VolumeProvisioner.Resources | indent 10 }}
image: {{ if ne .DockerRegistry ""}} {{- .DockerRegistry }}/{{ .Storage.VolumeProvisioner.Image }} {{- else }} {{- .Storage.VolumeProvisioner.Image }} {{- end}}
imagePullPolicy: Always
command:
- /usr/local/bin/dind-volume-provisioner
- -v=4
- --resync-period=50s
env:
{{- if $.EnvVars }}
{{- range $key, $value := $.EnvVars }}
- name: {{ $key }}
value: "{{ $value}}"
{{- end}}
{{- end}}
- name: PROVISIONER_NAME
value: codefresh.io/dind-volume-provisioner-{{ .AppName }}-{{ .Namespace }}
{{- if ne .DockerRegistry "" }}
- name: DOCKER_REGISTRY
value: {{ .DockerRegistry }}
{{- end }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Limits }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Limits.CPU }}
- name: CREATE_DIND_LIMIT_CPU
value: {{ .Storage.VolumeProvisioner.CreateDindVolDirResouces.Limits.CPU }}
{{- end }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Limits.Memory }}
- name: CREATE_DIND_LIMIT_MEMORY
value: {{ .Storage.VolumeProvisioner.CreateDindVolDirResouces.Limits.Memory }}
{{- end }}
{{- end }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Requests }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Requests.CPU }}
- name: CREATE_DIND_REQUESTS_CPU
value: {{ .Storage.VolumeProvisioner.CreateDindVolDirResouces.Requests.CPU }}
{{- end }}
{{- if .Storage.VolumeProvisioner.CreateDindVolDirResouces.Requests.Memory }}
- name: CREATE_DIND_REQUESTS_MEMORY
value: {{ .Storage.VolumeProvisioner.CreateDindVolDirResouces.Requests.Memory }}
{{- end }}
{{- end }}
{{- if .Storage.AwsAccessKeyId }}
- name: AWS_ACCESS_KEY_ID
valueFrom:
secretKeyRef:
name: dind-volume-provisioner-{{ .AppName }}
key: aws_access_key_id
{{- end }}
{{- if .Storage.AwsSecretAccessKey }}
- name: AWS_SECRET_ACCESS_KEY
valueFrom:
secretKeyRef:
name: dind-volume-provisioner-{{ .AppName }}
key: aws_secret_access_key
{{- end }}
{{- if .Storage.GoogleServiceAccount }}
- name: GOOGLE_APPLICATION_CREDENTIALS
value: /etc/dind-volume-provisioner/credentials/google-service-account.json
{{- end }}
{{- if .Storage.VolumeProvisioner.MountAzureJson }}
- name: AZURE_CREDENTIAL_FILE
value: "/etc/kubernetes/azure.json"
{{- end }}
volumeMounts:
{{- if .Storage.VolumeProvisioner.MountAzureJson }}
- name: azure-json
readOnly: true
mountPath: "/etc/kubernetes/azure.json"
{{- end }}
{{- if .Storage.GoogleServiceAccount }}
- name: credentials
readOnly: true
mountPath: "/etc/dind-volume-provisioner/credentials"
{{- end }}
volumes:
{{- if .Storage.VolumeProvisioner.MountAzureJson }}
- name: azure-json
hostPath:
path: /etc/kubernetes/azure.json
type: File
{{- end }}
{{- if .Storage.GoogleServiceAccount }}
- name: credentials
secret:
secretName: dind-volume-provisioner-{{ .AppName }}
{{- end }}