Files
@ 6f8a6ccb2407
Branch filter:
Location: pomerium/upstream/patch.yaml - annotation
6f8a6ccb2407
2.9 KiB
text/x-yaml
debugging
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 | b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 a8c1e2f028f0 296f4a4698c6 296f4a4698c6 296f4a4698c6 296f4a4698c6 296f4a4698c6 88fc66e2ebf5 88fc66e2ebf5 88fc66e2ebf5 88fc66e2ebf5 88fc66e2ebf5 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 b53ab97e8979 296f4a4698c6 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 6f8a6ccb2407 | ---
apiVersion: apps/v1
kind: Deployment
metadata:
name: pomerium
namespace: pomerium
spec:
template:
spec:
containers:
- name: pomerium
# ran:
# (rev '510' for v0.22.2)
# /my/serv/pomerium/ingress-controller% IMG=bang5:5000/pomerium_ingress_controller:510 make
# /my/serv/pomerium/ingress-controller% IMG=bang5:5000/pomerium_ingress_controller:510 make docker-build
# docker push bang5:5000/pomerium_ingress_controller:510
image: bang5:5000/pomerium_ingress_controller:510
resources:
limits:
cpu: 5000m
# getting OOM at the default 1Gi
memory: 5Gi
# only for debugging
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- { key: "kubernetes.io/hostname", operator: In, values: ["ditto"] }
---
apiVersion: v1
kind: Service
metadata:
name: pomerium-proxy
namespace: pomerium
spec:
externalIPs:
# this would be the fastest if we're running on ditto
- 10.5.0.7
# prime forwards to this
- 10.5.0.1
# local dns picks this
- 10.2.0.1
---
apiVersion: batch/v1
kind: Job
metadata:
name: pomerium-gen-secrets
namespace: pomerium
spec:
template:
spec:
containers:
- name: gen-secrets
image: bang5:5000/pomerium_ingress_controller:510
# only for debugging
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- { key: "kubernetes.io/hostname", operator: In, values: ["ditto"] }
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: cert-manager-cainjector
namespace: cert-manager
spec:
template:
spec:
# only for debugging
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- { key: "kubernetes.io/hostname", operator: In, values: ["ditto"] }
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: cert-manager
namespace: cert-manager
spec:
template:
spec:
# only for debugging
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- { key: "kubernetes.io/hostname", operator: In, values: ["ditto"] }
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: cert-manager-webhook
namespace: cert-manager
spec:
template:
spec:
# only for debugging
affinity:
nodeAffinity:
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- matchExpressions:
- { key: "kubernetes.io/hostname", operator: In, values: ["ditto"] }
|