zuul/zuul-helm
Code Issues Proposed changes
zuul-helm/charts/nodepool/templates/launcher/deployment.yaml
James E. Blair 9afaed4d37 Add option to manage secrets outside of helm 
So that a user can manage the nodepool config file (which is a secret)
outside of helm, add an option where the user can specify the name
of that secret as a value, and if it's set, helm will not write the
secret and will tell k8s to mount that secret as the nodepool config
instead.

Change-Id: Ifa1b5e81b6c7700faef82f3b18aab157d042e735
2020-01-10 14:50:01 -08:00

43 lines
1.2 KiB
YAML
Raw Permalink Blame History

---
{{ if .Values.launcher.enabled }}
apiVersion: apps/v1
kind: Deployment
metadata:
namespace: {{ .Release.Namespace }}
name: {{ include "nodepool.fullname" . }}-launcher
labels:
{{- include "nodepool.launcher.labels" . | indent 4 }}
spec:
replicas: {{ .Values.launcher.replicas }}
selector:
matchLabels:
{{- include "nodepool.launcher.labels" . | indent 6 }}
template:
metadata:
labels:
{{- include "nodepool.launcher.labels" . | indent 8 }}
annotations:
checksum/config: {{ include (print $.Template.BasePath "/secret.yaml") . | sha256sum }}
spec:
containers:
- name: launcher
image: zuul/nodepool-launcher:latest
env:
- name: OS_CLIENT_CONFIG_FILE
value: /etc/nodepool/clouds.yaml
volumeMounts:
- name: nodepool-config
mountPath: /etc/nodepool
volumes:
- name: nodepool-config
secret:
secretName: {{ (empty .Values.config.secret) | ternary (include "nodepool.fullname" .) .Values.config.secret }}
{{- with .Values.tolerations }}
tolerations:
{{ toYaml . | indent 8 }}
{{- end }}
{{- with .Values.nodeSelector }}
nodeSelector:
{{ toYaml . | indent 8 }}
{{- end }}
{{ end }}
View Git Blame Copy Permalink