-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathapp.yml
129 lines (129 loc) · 2.76 KB
/
app.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: devsecopspipeline
name: devsecopspipeline
spec:
replicas: 7
selector:
matchLabels:
app: devsecopspipeline
template:
metadata:
labels:
app: devsecopspipeline
spec:
containers:
- name: devsecopspipeline
image: CONTAINERIMAGE
ports:
- containerPort: 8080
env:
- name: VERSION
value: CONTAINERIMAGE
- name: MY_NODE_NAME
valueFrom:
fieldRef:
fieldPath: spec.nodeName
- name: MY_POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: MY_POD_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- name: MY_POD_IP
valueFrom:
fieldRef:
fieldPath: status.podIP
- name: MY_POD_SERVICE_ACCOUNT
valueFrom:
fieldRef:
fieldPath: spec.serviceAccountName
- name: DB_HOST
value: "postgres"
- name: DB_USER
value: "postgres"
- name: DB_PASSWORD
value: "mysecretpassword"
- name: DB_PORT
value: "5432"
---
apiVersion: v1
kind: Service
metadata:
name: clusterip-service
labels:
app: devsecopspipeline
spec:
type: LoadBalancer
selector:
app: devsecopspipeline
ports:
- protocol: TCP
port: 80
targetPort: 8080
---
apiVersion: v1
kind: Service
metadata:
name: postgres
labels:
app: postgres
spec:
ports:
- port: 5432
name: postgres
selector:
app: postgres
---
apiVersion: v1
kind: ConfigMap
metadata:
name: postgres-config
labels:
app: postgres
data:
POSTGRES_DB: testpostgresdb
POSTGRES_USER: postgres
POSTGRES_PASSWORD: mysecretpassword
---
apiVersion: apps/v1
kind: StatefulSet
metadata:
name: postgres
spec:
serviceName: "postgres"
replicas: 1
selector:
matchLabels:
app: postgres
template:
metadata:
labels:
app: postgres
spec:
containers:
- name: postgres
image: postgres:12.2
envFrom:
- configMapRef:
name: postgres-config
ports:
- containerPort: 5432
name: postgredb
volumeMounts:
- name: postgredb
mountPath: /var/lib/postgresql/data
subPath: postgres
volumeClaimTemplates:
- metadata:
name: postgredb
spec:
accessModes: [ "ReadWriteOnce" ]
storageClassName: gp2
resources:
requests:
storage: 1Gi