Created
October 13, 2019 16:58
-
-
Save cpretzer/67ba0bd59d8a2fb980cad1802c55fd53 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Pod | |
| metadata: | |
| annotations: | |
| kubectl.kubernetes.io/restartedAt: "2019-10-12T09:46:53-07:00" | |
| kubernetes.io/psp: eks.privileged | |
| linkerd.io/created-by: linkerd/proxy-injector stable-2.6.0 | |
| linkerd.io/identity-mode: default | |
| linkerd.io/proxy-version: stable-2.6.0 | |
| creationTimestamp: "2019-10-12T17:02:08Z" | |
| generateName: web-95b4b8564- | |
| labels: | |
| app: web-svc | |
| linkerd.io/control-plane-ns: linkerd | |
| linkerd.io/proxy-deployment: web | |
| pod-template-hash: 95b4b8564 | |
| name: web-95b4b8564-mkfmg | |
| namespace: emojivoto | |
| ownerReferences: | |
| - apiVersion: apps/v1 | |
| blockOwnerDeletion: true | |
| controller: true | |
| kind: ReplicaSet | |
| name: web-95b4b8564 | |
| uid: e580442d-ed0f-11e9-ad50-025b97dbbd20 | |
| resourceVersion: "484060" | |
| selfLink: /api/v1/namespaces/emojivoto/pods/web-95b4b8564-mkfmg | |
| uid: 062da0a2-ed12-11e9-ad50-025b97dbbd20 | |
| spec: | |
| containers: | |
| - env: | |
| - name: WEB_PORT | |
| value: "8080" | |
| - name: EMOJISVC_HOST | |
| value: emoji-svc.emojivoto:8080 | |
| - name: VOTINGSVC_HOST | |
| value: voting-svc.emojivoto:8080 | |
| - name: INDEX_BUNDLE | |
| value: dist/index_bundle.js | |
| - name: OC_AGENT_HOST | |
| value: oc-collector.tracing:55678 | |
| image: buoyantio/emojivoto-web:v8-tracing | |
| imagePullPolicy: IfNotPresent | |
| name: web-svc | |
| ports: | |
| - containerPort: 8080 | |
| name: http | |
| protocol: TCP | |
| resources: | |
| requests: | |
| cpu: 100m | |
| terminationMessagePath: /dev/termination-log | |
| terminationMessagePolicy: File | |
| volumeMounts: | |
| - mountPath: /var/run/secrets/kubernetes.io/serviceaccount | |
| name: web-token-56cfz | |
| readOnly: true | |
| - env: | |
| - name: LINKERD2_PROXY_LOG | |
| value: warn,linkerd2_proxy=info | |
| - name: LINKERD2_PROXY_DESTINATION_SVC_ADDR | |
| value: linkerd-dst.linkerd.svc.cluster.local:8086 | |
| - name: LINKERD2_PROXY_CONTROL_LISTEN_ADDR | |
| value: 0.0.0.0:4190 | |
| - name: LINKERD2_PROXY_ADMIN_LISTEN_ADDR | |
| value: 0.0.0.0:4191 | |
| - name: LINKERD2_PROXY_OUTBOUND_LISTEN_ADDR | |
| value: 127.0.0.1:4140 | |
| - name: LINKERD2_PROXY_INBOUND_LISTEN_ADDR | |
| value: 0.0.0.0:4143 | |
| - name: LINKERD2_PROXY_DESTINATION_GET_SUFFIXES | |
| value: svc.cluster.local. | |
| - name: LINKERD2_PROXY_DESTINATION_PROFILE_SUFFIXES | |
| value: svc.cluster.local. | |
| - name: LINKERD2_PROXY_INBOUND_ACCEPT_KEEPALIVE | |
| value: 10000ms | |
| - name: LINKERD2_PROXY_OUTBOUND_CONNECT_KEEPALIVE | |
| value: 10000ms | |
| - name: _pod_ns | |
| valueFrom: | |
| fieldRef: | |
| apiVersion: v1 | |
| fieldPath: metadata.namespace | |
| - name: LINKERD2_PROXY_DESTINATION_CONTEXT | |
| value: ns:$(_pod_ns) | |
| - name: LINKERD2_PROXY_IDENTITY_DIR | |
| value: /var/run/linkerd/identity/end-entity | |
| - name: LINKERD2_PROXY_IDENTITY_TRUST_ANCHORS | |
| value: | | |
| -----BEGIN CERTIFICATE----- | |
| <redacted> | |
| -----END CERTIFICATE----- | |
| - name: LINKERD2_PROXY_IDENTITY_TOKEN_FILE | |
| value: /var/run/secrets/kubernetes.io/serviceaccount/token | |
| - name: LINKERD2_PROXY_IDENTITY_SVC_ADDR | |
| value: linkerd-identity.linkerd.svc.cluster.local:8080 | |
| - name: _pod_sa | |
| valueFrom: | |
| fieldRef: | |
| apiVersion: v1 | |
| fieldPath: spec.serviceAccountName | |
| - name: _l5d_ns | |
| value: linkerd | |
| - name: _l5d_trustdomain | |
| value: cluster.local | |
| - name: LINKERD2_PROXY_IDENTITY_LOCAL_NAME | |
| value: $(_pod_sa).$(_pod_ns).serviceaccount.identity.$(_l5d_ns).$(_l5d_trustdomain) | |
| - name: LINKERD2_PROXY_IDENTITY_SVC_NAME | |
| value: linkerd-identity.$(_l5d_ns).serviceaccount.identity.$(_l5d_ns).$(_l5d_trustdomain) | |
| - name: LINKERD2_PROXY_DESTINATION_SVC_NAME | |
| value: linkerd-destination.$(_l5d_ns).serviceaccount.identity.$(_l5d_ns).$(_l5d_trustdomain) | |
| - name: LINKERD2_PROXY_TAP_SVC_NAME | |
| value: linkerd-tap.$(_l5d_ns).serviceaccount.identity.$(_l5d_ns).$(_l5d_trustdomain) | |
| - name: LINKERD2_PROXY_TRACE_COLLECTOR_SVC_ADDR | |
| value: oc-collector.tracing:55678 | |
| - name: LINKERD2_PROXY_TRACE_COLLECTOR_SVC_NAME | |
| value: default.tracing.serviceaccount.identity.$(_l5d_ns).$(_l5d_trustdomain) | |
| image: gcr.io/linkerd-io/proxy:stable-2.6.0 | |
| imagePullPolicy: IfNotPresent | |
| livenessProbe: | |
| failureThreshold: 3 | |
| httpGet: | |
| path: /metrics | |
| port: 4191 | |
| scheme: HTTP | |
| initialDelaySeconds: 10 | |
| periodSeconds: 10 | |
| successThreshold: 1 | |
| timeoutSeconds: 1 | |
| name: linkerd-proxy | |
| ports: | |
| - containerPort: 4143 | |
| name: linkerd-proxy | |
| protocol: TCP | |
| - containerPort: 4191 | |
| name: linkerd-admin | |
| protocol: TCP | |
| readinessProbe: | |
| failureThreshold: 3 | |
| httpGet: | |
| path: /ready | |
| port: 4191 | |
| scheme: HTTP | |
| initialDelaySeconds: 2 | |
| periodSeconds: 10 | |
| successThreshold: 1 | |
| timeoutSeconds: 1 | |
| resources: | |
| limits: | |
| cpu: "1" | |
| memory: 250Mi | |
| requests: | |
| cpu: 100m | |
| memory: 20Mi | |
| securityContext: | |
| allowPrivilegeEscalation: false | |
| readOnlyRootFilesystem: true | |
| runAsUser: 2102 | |
| terminationMessagePath: /dev/termination-log | |
| terminationMessagePolicy: FallbackToLogsOnError | |
| volumeMounts: | |
| - mountPath: /var/run/linkerd/identity/end-entity | |
| name: linkerd-identity-end-entity | |
| - mountPath: /var/run/secrets/kubernetes.io/serviceaccount | |
| name: web-token-56cfz | |
| readOnly: true | |
| dnsPolicy: ClusterFirst | |
| enableServiceLinks: true | |
| initContainers: | |
| - args: | |
| - --incoming-proxy-port | |
| - "4143" | |
| - --outgoing-proxy-port | |
| - "4140" | |
| - --proxy-uid | |
| - "2102" | |
| - --inbound-ports-to-ignore | |
| - 4190,4191 | |
| image: gcr.io/linkerd-io/proxy-init:v1.2.0 | |
| imagePullPolicy: IfNotPresent | |
| name: linkerd-init | |
| resources: | |
| limits: | |
| cpu: 100m | |
| memory: 50Mi | |
| requests: | |
| cpu: 10m | |
| memory: 10Mi | |
| securityContext: | |
| allowPrivilegeEscalation: false | |
| capabilities: | |
| add: | |
| - NET_ADMIN | |
| - NET_RAW | |
| privileged: false | |
| readOnlyRootFilesystem: true | |
| runAsNonRoot: false | |
| runAsUser: 0 | |
| terminationMessagePath: /dev/termination-log | |
| terminationMessagePolicy: FallbackToLogsOnError | |
| volumeMounts: | |
| - mountPath: /var/run/secrets/kubernetes.io/serviceaccount | |
| name: web-token-56cfz | |
| readOnly: true | |
| nodeName: <redacted> | |
| priority: 0 | |
| restartPolicy: Always | |
| schedulerName: default-scheduler | |
| securityContext: {} | |
| serviceAccount: web | |
| serviceAccountName: web | |
| terminationGracePeriodSeconds: 30 | |
| tolerations: | |
| - effect: NoExecute | |
| key: node.kubernetes.io/not-ready | |
| operator: Exists | |
| tolerationSeconds: 300 | |
| - effect: NoExecute | |
| key: node.kubernetes.io/unreachable | |
| operator: Exists | |
| tolerationSeconds: 300 | |
| volumes: | |
| - name: web-token-56cfz | |
| secret: | |
| defaultMode: 420 | |
| secretName: web-token-56cfz | |
| - emptyDir: | |
| medium: Memory | |
| name: linkerd-identity-end-entity | |
| status: | |
| conditions: | |
| - lastProbeTime: null | |
| lastTransitionTime: "2019-10-12T17:02:09Z" | |
| status: "True" | |
| type: Initialized | |
| - lastProbeTime: null | |
| lastTransitionTime: "2019-10-12T17:02:19Z" | |
| status: "True" | |
| type: Ready | |
| - lastProbeTime: null | |
| lastTransitionTime: "2019-10-12T17:02:19Z" | |
| status: "True" | |
| type: ContainersReady | |
| - lastProbeTime: null | |
| lastTransitionTime: "2019-10-12T17:02:08Z" | |
| status: "True" | |
| type: PodScheduled | |
| containerStatuses: | |
| - containerID: <redacted> | |
| image: gcr.io/linkerd-io/proxy:stable-2.6.0 | |
| imageID: <redacted> | |
| lastState: {} | |
| name: linkerd-proxy | |
| ready: true | |
| restartCount: 0 | |
| state: | |
| running: | |
| startedAt: "2019-10-12T17:02:12Z" | |
| - containerID: <redacted> | |
| image: buoyantio/emojivoto-web:v8-tracing | |
| imageID: <redacted> | |
| lastState: {} | |
| name: web-svc | |
| ready: true | |
| restartCount: 0 | |
| state: | |
| running: | |
| startedAt: "2019-10-12T17:02:12Z" | |
| hostIP: 192.168.27.142 | |
| initContainerStatuses: | |
| - containerID: <redacted> | |
| image: gcr.io/linkerd-io/proxy-init:v1.2.0 | |
| imageID: <redacted> | |
| lastState: {} | |
| name: linkerd-init | |
| ready: true | |
| restartCount: 0 | |
| state: | |
| terminated: | |
| containerID: <redacted> | |
| exitCode: 0 | |
| finishedAt: "2019-10-12T17:02:09Z" | |
| reason: Completed | |
| startedAt: "2019-10-12T17:02:09Z" | |
| phase: Running | |
| podIP: 192.168.22.86 | |
| qosClass: Burstable | |
| startTime: "2019-10-12T17:02:08Z" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment