File tree Expand file tree Collapse file tree 1 file changed +65
-0
lines changed Expand file tree Collapse file tree 1 file changed +65
-0
lines changed Original file line number Diff line number Diff line change 1+ ---
2+ apiVersion : apps/v1
3+ kind : DaemonSet
4+ metadata :
5+ name : barbican-kms
6+ namespace : kube-system
7+ labels :
8+ k8s-app : barbican-kms
9+ spec :
10+ selector :
11+ matchLabels :
12+ k8s-app : barbican-kms
13+ updateStrategy :
14+ type : RollingUpdate
15+ template :
16+ metadata :
17+ labels :
18+ k8s-app : barbican-kms
19+ spec :
20+ nodeSelector :
21+ node-role.kubernetes.io/control-plane : " "
22+ tolerations :
23+ - key : node.cloudprovider.kubernetes.io/uninitialized
24+ value : " true"
25+ effect : NoSchedule
26+ - key : node-role.kubernetes.io/master
27+ effect : NoSchedule
28+ - key : node-role.kubernetes.io/control-plane
29+ effect : NoSchedule
30+ serviceAccountName : cloud-controller-manager
31+ containers :
32+ - name : barbican-kms
33+ image : registry.k8s.io/provider-os/barbican-kms-plugin:v1.27.0-alpha.0
34+ args :
35+ - /bin/barbican-kms-plugin
36+ - --socketpath=$(KMS_ENDPOINT)
37+ - --cloud-config=$(CLOUD_CONFIG)
38+ volumeMounts :
39+ - name : cloud-config-volume
40+ mountPath : /etc/config
41+ - name : socket-dir
42+ mountPath : /kms/
43+ env :
44+ - name : CLOUD_CONFIG
45+ value : /etc/config/cloud.conf
46+ - name : KMS_ENDPOINT
47+ value : /kms/kms.sock
48+ livenessProbe :
49+ failureThreshold : 5
50+ exec :
51+ command :
52+ - ls
53+ - $(KMS_ENDPOINT)
54+ initialDelaySeconds : 10
55+ timeoutSeconds : 10
56+ periodSeconds : 60
57+ volumes :
58+ - name : cloud-config-volume
59+ secret :
60+ secretName : cloud-config
61+ - name : socket-dir
62+ hostPath :
63+ path : /var/lib/kms/
64+ type : DirectoryOrCreate
65+ hostNetwork : true
You can’t perform that action at this time.
0 commit comments