Accueil Explorer Aide
S'inscrire Connexion
lcy
/
truenas
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: f69b96ac4a
Branches Tags
truenas
/
charts
/
minio
/
1.7.23
/
templates
/
deployment.yaml

deployment.yaml 6.6 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134 
  1. {{ include "common.storage.hostPathValidate" .Values }}
    2. 

  2. {{ $logsearchValues := (. | mustDeepCopy) }}
    3. 

  3. {{ $_ := set $logsearchValues "common" (dict "nameSuffix" (include "logsearchapi.nameSuffix" .)) }}
    4. 

  4. apiVersion: {{ template "common.capabilities.deployment.apiVersion" . }}
    5. 

  5. kind: Deployment
    6. 

  6. metadata:
    7. 

  7.   name: {{ template "common.names.fullname" . }}-minio
    8. 

  8.   labels:
    9. 

  9.     app: {{ template "common.names.name" . }}
    10. 

  10.     release: {{ .Release.Name }}
    11. 

  11.     app.kubernetes.io/name: {{ template "common.names.name" . }}
    12. 

  12.     app.kubernetes.io/instance: {{ .Release.Name }}
    13. 

  13.   annotations:
    14. 

  14.     rollme: {{ randAlphaNum 5 | quote }}
    15. 

  15. spec:
    16. 

  16.   replicas: {{ (default 1 .Values.replicas) }}
    17. 

  17.   strategy:
    18. 

  18.     type: {{ (default "Recreate" .Values.updateStrategy ) }}
    19. 

  19.   selector:
    20. 

  20.     matchLabels:
    21. 

  21.       app: {{ template "common.names.name" . }}
    22. 

  22.       release: {{ .Release.Name }}
    23. 

  23.       app.kubernetes.io/name: {{ template "common.names.name" . }}
    24. 

  24.       app.kubernetes.io/instance: {{ .Release.Name }}
    25. 

  25.   template:
    26. 

  26.     metadata:
    27. 

  27.       name: {{ template "common.names.fullname" . }}
    28. 

  28.       labels:
    29. 

  29.         {{- include "common.labels.selectorLabels" . | nindent 8 }}
    30. 

  30.       annotations: {{ include "common.annotations" . | nindent 8 }}
    31. 

  31.     spec:
    32. 

  32.       securityContext:
    33. 

  33.         runAsUser: {{ .Values.runAsUser }}
    34. 

  34.         runAsGroup: {{ .Values.runAsGroup }}
    35. 

  35.       serviceAccountName: {{ include "common.names.serviceAccountName" . | quote }}
    36. 

  36.       hostNetwork: {{ include "minio.hostNetworking" . }}
    37. 

  37.       {{ if .Values.logsearchapi.enabled }}
    38. 

  38.       initContainers:
    39. 

  39.         - name: {{ .Chart.Name }}-waitapi
    40. 

  40.           image: alpine/curl
    41. 

  41.           imagePullPolicy: {{ .Values.image.pullPolicy }}
    42. 

  42.           env: {{ include "logsearchapiInit.envVariableConfiguration" $logsearchValues | nindent 10 }}
    43. 

  43.           command:
    44. 

  44.             - sh
    45. 

  45.             - -c
    46. 

  46.             - "until curl --silent $apiURL/status; do sleep 2; done"
    47. 

  47.       {{ end }}
    48. 

  48.       containers:
    49. 

  49.         - name: {{ .Chart.Name }}
    50. 

  50.           {{ include "common.resources.limitation" . | nindent 10 }}
    51. 

  51.           {{ include "common.containers.imageConfig" .Values.image | nindent 10 }}
    52. 

  52.           {{ if hasKey .Values "appVolumeMounts" }}
    53. 

  53.           volumeMounts: {{ include "common.storage.configureAppVolumeMountsInContainer" .Values | nindent 12 }}
    54. 

  54.           {{ else }}
    55. 

  55.           volumeMounts:
    56. 

  56.           {{ end }}
    57. 

  57.           {{- include "minio.tlsKeysVolumeMount" . | nindent 12 }}
    58. 

  58.           {{ range $index, $hostPathConfiguration := .Values.extraAppVolumeMounts }}
    59. 

  59.             - name: extrappvolume-{{ $index }}
    60. 

  60.               mountPath: {{ $hostPathConfiguration.mountPath }}
    61. 

  61.           {{ end }}
    62. 

  62.           command:
    63. 

  63.             - "/bin/sh"
    64. 

  64.             - "-ce"
    65. 

  65.             - {{ include "minio.commandArgs" . }}
    66. 

  66.           ports:
    67. 

  67.             - name: api
    68. 

  68.               containerPort: {{ .Values.service.nodePort | int }}
    69. 

  69.             - name: console
    70. 

  70.               containerPort: {{ .Values.service.consolePort | int }}
    71. 

  71.           readinessProbe:
    72. 

  72.             httpGet:
    73. 

  73.               path: /minio/health/live
    74. 

  74.               port: {{ .Values.service.consolePort | int }}
    75. 

  75.               scheme: {{ include "minio.scheme" . | upper }}
    76. 

  76.             initialDelaySeconds: 10
    77. 

  77.             periodSeconds: 10
    78. 

  78.             timeoutSeconds: 5
    79. 

  79.             failureThreshold: 5
    80. 

  80.             successThreshold: 2
    81. 

  81.           livenessProbe:
    82. 

  82.             httpGet:
    83. 

  83.               path: /minio/health/live
    84. 

  84.               port: {{ .Values.service.consolePort | int }}
    85. 

  85.               scheme: {{ include "minio.scheme" . | upper }}
    86. 

  86.             initialDelaySeconds: 10
    87. 

  87.             periodSeconds: 10
    88. 

  88.             timeoutSeconds: 5
    89. 

  89.             failureThreshold: 5
    90. 

  90.             successThreshold: 1
    91. 

  91.           startupProbe:
    92. 

  92.             httpGet:
    93. 

  93.               path: /minio/health/live
    94. 

  94.               port: {{ .Values.service.consolePort | int }}
    95. 

  95.               scheme: {{ include "minio.scheme" . | upper }}
    96. 

  96.             initialDelaySeconds: 10
    97. 

  97.             periodSeconds: 5
    98. 

  98.             timeoutSeconds: 2
    99. 

  99.             failureThreshold: 60
    100. 

  100.             successThreshold: 1
    101. 

  101.           env:
    102. 

  102.             {{ $secretName := (include "minio.secretName" .) }}
    103. 

  103.             {{ $envList := (default list .Values.environmentVariables) }}
    104. 

  104.             {{ if and (eq (include "minio.certAvailable" .) "true") .Values.minioDomain }}
    105. 

  105.             {{ $envList = mustAppend $envList (dict "name" "MINIO_BROWSER_REDIRECT_URL" "value" (printf "%s://%s:%d" (include "minio.scheme" .) .Values.minioDomain (.Values.service.consolePort | int))) }}
    106. 

  106.             {{ $envList = mustAppend $envList (dict "name" "MINIO_SERVER_URL" "value" (printf "%s://%s:%d" (include "minio.scheme" .) .Values.minioDomain (.Values.service.nodePort | int))) }}
    107. 

  107.             {{ end }}
    108. 

  108.             {{ $envList = mustAppend $envList (dict "name" "MINIO_ROOT_USER" "valueFromSecret" true "secretName" $secretName "secretKey" "accesskey") }}
    109. 

  109.             {{ $envList = mustAppend $envList (dict "name" "MINIO_ROOT_PASSWORD" "valueFromSecret" true "secretName" $secretName "secretKey" "secretkey") }}
    110. 

  110.             {{ if .Values.logsearchapi.enabled }}
    111. 

  111.             {{/*
    112. 

  112.             We can put any ID we want here. Just make sure it's unique
    113. 

  113.             It can be rolled on each startup without problems, or se can set a static one.
    114. 

  114.             */}}
    115. 

  115.             {{ $webhookID := (printf "ix-%v" (randAlphaNum 5)) }}
    116. 

  116.             {{ $logsearchSecretName := (include "logsearchapi.secretName" .) }}
    117. 

  117.             {{ $envList = mustAppend $envList (dict "name" "MINIO_LOG_QUERY_AUTH_TOKEN" "valueFromSecret" true "secretName" $logsearchSecretName "secretKey" "queryToken") }}
    118. 

  118.             {{ $envList = mustAppend $envList (dict "name" "MINIO_LOG_QUERY_URL" "valueFromSecret" true "secretName" $logsearchSecretName "secretKey" "logQueryURL") }}
    119. 

  119.             {{ $envList = mustAppend $envList (dict "name" (printf "MINIO_AUDIT_WEBHOOK_ENDPOINT_%v" $webhookID) "valueFromSecret" true "secretName" $logsearchSecretName "secretKey" "webhookURL") }}
    120. 

  120.             {{ $envList = mustAppend $envList (dict "name" (printf "MINIO_AUDIT_WEBHOOK_ENABLE_%v" $webhookID) "value" "on") }}
    121. 

  121.             {{ end }}
    122. 

  122.             {{ include "common.containers.environmentVariables" (dict "environmentVariables" $envList) | nindent 12 }}
    123. 

  123. {{ include "common.networking.dnsConfiguration" .Values | nindent 6 }}
    124. 

  124.       {{ if hasKey .Values "appVolumeMounts" }}
    125. 

  125.       volumes: {{ include "common.storage.configureAppVolumes" .Values | nindent 8 }}
    126. 

  126.       {{ else }}
    127. 

  127.       volumes:
    128. 

  128.       {{ end }}
    129. 

  129.       {{- include "minio.tlsKeysVolume" . | nindent 8 }}
    130. 

  130.       {{ range $index, $hostPathConfiguration := .Values.extraAppVolumeMounts }}
    131. 

  131.         - name: extrappvolume-{{ $index }}
    132. 

  132.           hostPath:
    133. 

  133.             path: {{ $hostPathConfiguration.hostPath }}
    134. 

  134.     {{ end }}
    135.