Created
September 6, 2022 20:18
-
-
Save nithril/416a36b90bc056c7ebf5bc560938dc93 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro-controller | |
| namespace: opportal-pro-ingress | |
| spec: | |
| progressDeadlineSeconds: 600 | |
| replicas: 2 | |
| revisionHistoryLimit: 10 | |
| selector: | |
| matchLabels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| strategy: | |
| rollingUpdate: | |
| maxSurge: 25% | |
| maxUnavailable: 25% | |
| type: RollingUpdate | |
| template: | |
| metadata: | |
| annotations: | |
| app: nginx-ingress | |
| environment: production | |
| nginx_logs: "true" | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| spec: | |
| containers: | |
| - args: | |
| - /nginx-ingress-controller | |
| - --default-backend-service=$(POD_NAMESPACE)/ingress-nginx-portal-pro-defaultbackend | |
| - --publish-service=$(POD_NAMESPACE)/ingress-nginx-portal-pro-controller | |
| - --election-id=ingress-controller-leader-nginx-opportal-pro | |
| - --controller-class=k8s.io/ingress-nginx | |
| - --ingress-class=ingress-class-pro | |
| - --configmap=$(POD_NAMESPACE)/ingress-nginx-portal-pro-controller | |
| env: | |
| - name: POD_NAME | |
| valueFrom: | |
| fieldRef: | |
| apiVersion: v1 | |
| fieldPath: metadata.name | |
| - name: POD_NAMESPACE | |
| valueFrom: | |
| fieldRef: | |
| apiVersion: v1 | |
| fieldPath: metadata.namespace | |
| - name: LD_PRELOAD | |
| value: /usr/local/lib/libmimalloc.so | |
| image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5 | |
| imagePullPolicy: IfNotPresent | |
| lifecycle: | |
| preStop: | |
| exec: | |
| command: | |
| - /wait-shutdown | |
| livenessProbe: | |
| failureThreshold: 5 | |
| httpGet: | |
| path: /healthz | |
| port: 10254 | |
| scheme: HTTP | |
| initialDelaySeconds: 10 | |
| periodSeconds: 10 | |
| successThreshold: 1 | |
| timeoutSeconds: 1 | |
| name: controller | |
| ports: | |
| - containerPort: 80 | |
| name: http | |
| protocol: TCP | |
| - containerPort: 443 | |
| name: https | |
| protocol: TCP | |
| readinessProbe: | |
| failureThreshold: 3 | |
| httpGet: | |
| path: /healthz | |
| port: 10254 | |
| scheme: HTTP | |
| initialDelaySeconds: 10 | |
| periodSeconds: 10 | |
| successThreshold: 1 | |
| timeoutSeconds: 1 | |
| resources: | |
| limits: | |
| cpu: 500m | |
| memory: 1Gi | |
| requests: | |
| cpu: 500m | |
| memory: 1Gi | |
| securityContext: | |
| allowPrivilegeEscalation: true | |
| capabilities: | |
| add: | |
| - NET_BIND_SERVICE | |
| drop: | |
| - ALL | |
| runAsUser: 101 | |
| terminationMessagePath: /dev/termination-log | |
| terminationMessagePolicy: File | |
| dnsPolicy: ClusterFirst | |
| restartPolicy: Always | |
| schedulerName: default-scheduler | |
| securityContext: { } | |
| serviceAccount: ingress-nginx-portal-pro | |
| serviceAccountName: ingress-nginx-portal-pro | |
| terminationGracePeriodSeconds: 300 | |
| --- | |
| apiVersion: rbac.authorization.k8s.io/v1 | |
| kind: ClusterRoleBinding | |
| metadata: | |
| labels: | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro | |
| roleRef: | |
| apiGroup: rbac.authorization.k8s.io | |
| kind: ClusterRole | |
| name: ingress-nginx-portal-pro | |
| subjects: | |
| - kind: ServiceAccount | |
| name: ingress-nginx-portal-pro | |
| namespace: opportal-pro-ingress | |
| --- | |
| apiVersion: rbac.authorization.k8s.io/v1 | |
| kind: ClusterRole | |
| metadata: | |
| labels: | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro | |
| rules: | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - configmaps | |
| - endpoints | |
| - nodes | |
| - pods | |
| - secrets | |
| - namespaces | |
| verbs: | |
| - list | |
| - watch | |
| - apiGroups: | |
| - coordination.k8s.io | |
| resources: | |
| - leases | |
| verbs: | |
| - list | |
| - watch | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - nodes | |
| verbs: | |
| - get | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - services | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingresses | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - events | |
| verbs: | |
| - create | |
| - patch | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingresses/status | |
| verbs: | |
| - update | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingressclasses | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| --- | |
| apiVersion: rbac.authorization.k8s.io/v1 | |
| kind: RoleBinding | |
| metadata: | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro | |
| namespace: opportal-pro-ingress | |
| roleRef: | |
| apiGroup: rbac.authorization.k8s.io | |
| kind: Role | |
| name: ingress-nginx-portal-pro | |
| subjects: | |
| - kind: ServiceAccount | |
| name: ingress-nginx-portal-pro | |
| namespace: opportal-pro-ingress | |
| --- | |
| apiVersion: rbac.authorization.k8s.io/v1 | |
| kind: Role | |
| metadata: | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro | |
| namespace: opportal-pro-ingress | |
| rules: | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - namespaces | |
| verbs: | |
| - get | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - configmaps | |
| - pods | |
| - secrets | |
| - endpoints | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - services | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingresses | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingresses/status | |
| verbs: | |
| - update | |
| - apiGroups: | |
| - networking.k8s.io | |
| resources: | |
| - ingressclasses | |
| verbs: | |
| - get | |
| - list | |
| - watch | |
| - apiGroups: | |
| - "" | |
| resourceNames: | |
| - ingress-controller-leader-nginx-opportal-pro | |
| resources: | |
| - configmaps | |
| verbs: | |
| - get | |
| - update | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - configmaps | |
| verbs: | |
| - create | |
| - apiGroups: | |
| - coordination.k8s.io | |
| resourceNames: | |
| - ingress-controller-leader-nginx-opportal-pro | |
| resources: | |
| - leases | |
| verbs: | |
| - get | |
| - update | |
| - apiGroups: | |
| - coordination.k8s.io | |
| resources: | |
| - leases | |
| verbs: | |
| - create | |
| - apiGroups: | |
| - "" | |
| resources: | |
| - events | |
| verbs: | |
| - create | |
| - patch | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro | |
| namespace: opportal-pro-ingress | |
| --- | |
| apiVersion: v1 | |
| data: | |
| nginx-status-ipv4-whitelist: 127.0.0.1,10.0.0.0/8 | |
| use-http2: "true" | |
| kind: ConfigMap | |
| metadata: | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro-controller | |
| namespace: opportal-pro-ingress | |
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| annotations: | |
| service.beta.kubernetes.io/azure-load-balancer-resource-group: rg-opportal-http2 | |
| finalizers: | |
| - service.kubernetes.io/load-balancer-cleanup | |
| labels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| name: ingress-nginx-portal-pro-controller | |
| namespace: opportal-pro-ingress | |
| spec: | |
| externalTrafficPolicy: Local | |
| loadBalancerIP: 20.238.253.57 | |
| ports: | |
| - name: http | |
| port: 80 | |
| protocol: TCP | |
| targetPort: http | |
| - name: https | |
| port: 443 | |
| protocol: TCP | |
| targetPort: https | |
| selector: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| sessionAffinity: None | |
| type: LoadBalancer | |
| --- | |
| apiVersion: policy/v1 | |
| kind: PodDisruptionBudget | |
| metadata: | |
| name: ingress-pdb | |
| namespace: opportal-pro-ingress | |
| spec: | |
| minAvailable: 1 | |
| selector: | |
| matchLabels: | |
| app.kubernetes.io/component: controller | |
| app.kubernetes.io/instance: ingress-nginx-portal-pro | |
| app.kubernetes.io/name: ingress-nginx | |
| --- | |
| apiVersion: networking.k8s.io/v1 | |
| kind: IngressClass | |
| metadata: | |
| name: ingress-class-pro | |
| namespace: opportal-pro-ingress | |
| spec: | |
| controller: k8s.io/ingress-nginx |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment