Kelsey Hightower kelseyhightower
kelseyhightower
/ gist:2d7bf31040f7401b1e2474538f78b2b5
Created
June 10, 2020 16:21
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| INFO: 2020/06/10 09:16:26 [xds-bootstrap] Got bootstrap file location from GRPC_XDS_BOOTSTRAP environment variable: xds-bootstrap.json | |
| INFO: 2020/06/10 09:16:26 [xds-bootstrap] Bootstrap content: { | |
| "xds_servers": [ | |
| { | |
| "server_uri": "trafficdirector.googleapis.com:443", | |
| "channel_creds": [ | |
| { | |
| "type": "google_default" | |
| } | |
| ] |
kelseyhightower
/ service.yaml
Created
January 24, 2019 02:48
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| labels: | |
| app: helloworld-uwsgi | |
| name: helloworld-uwsgi | |
| spec: | |
| ports: | |
| - port: 80 | |
| protocol: TCP |
kelseyhightower
/ config.yaml
Created
July 23, 2018 16:13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| static_resources: | |
| listeners: | |
| - name: health_check_listener | |
| address: | |
| socket_address: | |
| address: 0.0.0.0 | |
| port_value: 80 | |
| filter_chains: | |
| - filters: | |
| - name: envoy.http_connection_manager |
kelseyhightower
/ generic ingress
Created
May 31, 2018 02:06
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| labels: | |
| app: helloworld-uwsgi | |
| name: helloworld-uwsgi | |
| spec: | |
| ports: | |
| - port: 80 | |
| protocol: TCP |
kelseyhightower
/ gist:151f28bebfce9a59b7a563d93f4c50ce
Created
April 23, 2018 03:24
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| spec: | |
| affinity: | |
| podAntiAffinity: | |
| requiredDuringSchedulingIgnoredDuringExecution: | |
| - labelSelector: | |
| matchExpressions: | |
| - key: app | |
| operator: In | |
| values: | |
| - vault |
kelseyhightower
/ vault-tokenreview-binding.yaml
Created
March 22, 2018 06:37
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: rbac.authorization.k8s.io/v1beta1 | |
| kind: ClusterRoleBinding | |
| metadata: | |
| name: vault-tokenreview-binding | |
| namespace: default | |
| roleRef: | |
| apiGroup: rbac.authorization.k8s.io | |
| kind: ClusterRole | |
| name: system:auth-delegator | |
| subjects: |
kelseyhightower
/ index.js
Created
February 9, 2018 03:28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function denyenv (req, res) { | |
| // Extract the Kubernetes Pod resource and reject it if any of the containers | |
| // are using environment variables. | |
| } |
kelseyhightower
/ index.js
Created
February 9, 2018 03:18
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 'use strict'; | |
| exports.denyenv = function denyenv (req, res) { | |
| var admissionRequest = req.body; | |
| // Get a reference to the pod spec | |
| var object = admissionRequest.request.object; | |
| console.log(`validating the ${object.metadata.name} pod`); |
kelseyhightower
/ pod.yaml
Created
February 8, 2018 20:05
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Name: nginx-8586cf59-4mjmd | |
| Namespace: default | |
| Start Time: Thu, 08 Feb 2018 11:10:18 -0800 | |
| Status: Running | |
| IP: 10.28.0.12 | |
| Controlled By: ReplicaSet/nginx-8586cf59 | |
| Containers: | |
| nginx: | |
| Image: nginx | |
| State: Running |
kelseyhightower
/ gist:597bbfe5df8d945c2ced58783c0fd6bc
Created
December 12, 2017 15:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: apps/v1beta1 | |
| kind: Deployment | |
| metadata: | |
| labels: | |
| app: app | |
| customer: customer2 | |
| name: app-customer-2 | |
| spec: | |
| template: | |
| metadata: |
NewerOlder