jamcole/example-dc.yaml

## example-dc.yaml
initContainers:
- args:
  - -c
  - cp
      /var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt
      /usr/share/pki/ca-trust-source/anchors/k8s && mkdir -p
      /etc/pki/ca-trust/extracted/pem
      /etc/pki/ca-trust/extracted/openssl
      /etc/pki/ca-trust/extracted/java && update-ca-trust
  command:
  - /bin/bash
  image: rhel7/support-tools:7.6
  imagePullPolicy: IfNotPresent
  name: update-certs
  volumeMounts:
  - mountPath: /usr/share/pki/ca-trust-source/anchors/ca
    name: ca-anchors
  - mountPath: /usr/share/pki/ca-trust-source/anchors/k8s
    name: k8s-ca-anchors
  - mountPath: /etc/pki/ca-trust/extracted
    name: ca-extracted
# skipped...
volumes:
- configMap:
    name: ca-anchors
  name: ca-anchors
- emptyDir: {}
  name: k8s-ca-anchors
- emptyDir: {}
  name: ca-extracted
	initContainers:
	- args:
	- -c
	- cp
	/var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt
	/usr/share/pki/ca-trust-source/anchors/k8s && mkdir -p
	/etc/pki/ca-trust/extracted/pem
	/etc/pki/ca-trust/extracted/openssl
	/etc/pki/ca-trust/extracted/java && update-ca-trust
	command:
	- /bin/bash
	image: rhel7/support-tools:7.6
	imagePullPolicy: IfNotPresent
	name: update-certs
	volumeMounts:
	- mountPath: /usr/share/pki/ca-trust-source/anchors/ca
	name: ca-anchors
	- mountPath: /usr/share/pki/ca-trust-source/anchors/k8s
	name: k8s-ca-anchors
	- mountPath: /etc/pki/ca-trust/extracted
	name: ca-extracted
	# skipped...
	volumes:
	- configMap:
	name: ca-anchors
	name: ca-anchors
	- emptyDir: {}
	name: k8s-ca-anchors
	- emptyDir: {}
	name: ca-extracted