ayan.poddar
/
eShopOnContainers
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 19 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4330 Commits
36 Branches
655 MiB
Branch: dev
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'dev'
${ noResults }
eShopOnContainers/deploy/k8s/nginx-ingress/mandatory.yaml

238 lines
5.2 KiB
Raw Permalink Normal View History

local k8s docker support
6 years ago
Updates ingress object version to use v1 api (#1725) * Removed archived directory * Updated ingress api version to v1 * Updates ingress yaml manifests * Fixed the identity ingress manifest * Fixed remaining ingress manifest
3 years ago
local k8s docker support
6 years ago
Updates ingress object version to use v1 api (#1725) * Removed archived directory * Updated ingress api version to v1 * Updates ingress yaml manifests * Fixed the identity ingress manifest * Fixed remaining ingress manifest
3 years ago
local k8s docker support
6 years ago
Updates ingress object version to use v1 api (#1725) * Removed archived directory * Updated ingress api version to v1 * Updates ingress yaml manifests * Fixed the identity ingress manifest * Fixed remaining ingress manifest
3 years ago
local k8s docker support
6 years ago
Updates ingress object version to use v1 api (#1725) * Removed archived directory * Updated ingress api version to v1 * Updates ingress yaml manifests * Fixed the identity ingress manifest * Fixed remaining ingress manifest
3 years ago
local k8s docker support
6 years ago
Fix/1370 - Updated script related changes for helm 3.x and k8s 1.16.x (#1378) * Fix for helm 3 and k8s 1.16 * Inclusion of archived directory under k8s * separate deploy-all powershell script for local Mac OS deployment.
4 years ago
local k8s docker support
6 years ago
 
  1. apiVersion: v1

  2. kind: Namespace

  3. metadata:

  4.   name: ingress-nginx

  5. 

  6. ---

  7. 

  8. kind: ConfigMap

  9. apiVersion: v1

  10. metadata:

  11.   name: nginx-configuration

  12.   namespace: ingress-nginx

  13.   labels:

  14.     app.kubernetes.io/name: ingress-nginx

  15.     app.kubernetes.io/part-of: ingress-nginx

  16. 

  17. ---

  18. 

  19. apiVersion: v1

  20. kind: ServiceAccount

  21. metadata:

  22.   name: nginx-ingress-serviceaccount

  23.   namespace: ingress-nginx

  24.   labels:

  25.     app.kubernetes.io/name: ingress-nginx

  26.     app.kubernetes.io/part-of: ingress-nginx

  27. 

  28. ---

  29. apiVersion: rbac.authorization.k8s.io/v1

  30. kind: ClusterRole

  31. metadata:

  32.   name: nginx-ingress-clusterrole

  33.   labels:

  34.     app.kubernetes.io/name: ingress-nginx

  35.     app.kubernetes.io/part-of: ingress-nginx

  36. rules:

  37.   - apiGroups:

  38.       - ""

  39.     resources:

  40.       - configmaps

  41.       - endpoints

  42.       - nodes

  43.       - pods

  44.       - secrets

  45.     verbs:

  46.       - list

  47.       - watch

  48.   - apiGroups:

  49.       - ""

  50.     resources:

  51.       - nodes

  52.     verbs:

  53.       - get

  54.   - apiGroups:

  55.       - ""

  56.     resources:

  57.       - services

  58.     verbs:

  59.       - get

  60.       - list

  61.       - watch

  62.   - apiGroups:

  63.       - "extensions"

  64.     resources:

  65.       - ingresses

  66.     verbs:

  67.       - get

  68.       - list

  69.       - watch

  70.   - apiGroups:

  71.       - ""

  72.     resources:

  73.       - events

  74.     verbs:

  75.       - create

  76.       - patch

  77.   - apiGroups:

  78.       - "extensions"

  79.     resources:

  80.       - ingresses/status

  81.     verbs:

  82.       - update

  83. 

  84. ---

  85. apiVersion: rbac.authorization.k8s.io/v1

  86. kind: Role

  87. metadata:

  88.   name: nginx-ingress-role

  89.   namespace: ingress-nginx

  90.   labels:

  91.     app.kubernetes.io/name: ingress-nginx

  92.     app.kubernetes.io/part-of: ingress-nginx

  93. rules:

  94.   - apiGroups:

  95.       - ""

  96.     resources:

  97.       - configmaps

  98.       - pods

  99.       - secrets

  100.       - namespaces

  101.     verbs:

  102.       - get

  103.   - apiGroups:

  104.       - ""

  105.     resources:

  106.       - configmaps

  107.     resourceNames:

  108.       # Defaults to "<election-id>-<ingress-class>"

  109.       # Here: "<ingress-controller-leader>-<nginx>"

  110.       # This has to be adapted if you change either parameter

  111.       # when launching the nginx-ingress-controller.

  112.       - "ingress-controller-leader-nginx"

  113.     verbs:

  114.       - get

  115.       - update

  116.   - apiGroups:

  117.       - ""

  118.     resources:

  119.       - configmaps

  120.     verbs:

  121.       - create

  122.   - apiGroups:

  123.       - ""

  124.     resources:

  125.       - endpoints

  126.     verbs:

  127.       - get

  128. 

  129. ---

  130. apiVersion: rbac.authorization.k8s.io/v1

  131. kind: RoleBinding

  132. metadata:

  133.   name: nginx-ingress-role-nisa-binding

  134.   namespace: ingress-nginx

  135.   labels:

  136.     app.kubernetes.io/name: ingress-nginx

  137.     app.kubernetes.io/part-of: ingress-nginx

  138. roleRef:

  139.   apiGroup: rbac.authorization.k8s.io

  140.   kind: Role

  141.   name: nginx-ingress-role

  142. subjects:

  143.   - kind: ServiceAccount

  144.     name: nginx-ingress-serviceaccount

  145.     namespace: ingress-nginx

  146. 

  147. ---

  148. apiVersion: rbac.authorization.k8s.io/v1

  149. kind: ClusterRoleBinding

  150. metadata:

  151.   name: nginx-ingress-clusterrole-nisa-binding

  152.   labels:

  153.     app.kubernetes.io/name: ingress-nginx

  154.     app.kubernetes.io/part-of: ingress-nginx

  155. roleRef:

  156.   apiGroup: rbac.authorization.k8s.io

  157.   kind: ClusterRole

  158.   name: nginx-ingress-clusterrole

  159. subjects:

  160.   - kind: ServiceAccount

  161.     name: nginx-ingress-serviceaccount

  162.     namespace: ingress-nginx

  163. 

  164. ---

  165. 

  166. apiVersion: apps/v1

  167. kind: Deployment

  168. metadata:

  169.   name: nginx-ingress-controller

  170.   namespace: ingress-nginx

  171.   labels:

  172.     app.kubernetes.io/name: ingress-nginx

  173.     app.kubernetes.io/part-of: ingress-nginx

  174. spec:

  175.   replicas: 1

  176.   selector:

  177.     matchLabels:

  178.       app.kubernetes.io/name: ingress-nginx

  179.       app.kubernetes.io/part-of: ingress-nginx

  180.   template:

  181.     metadata:

  182.       labels:

  183.         app.kubernetes.io/name: ingress-nginx

  184.         app.kubernetes.io/part-of: ingress-nginx

  185.       annotations:

  186.         prometheus.io/port: "10254"

  187.         prometheus.io/scrape: "true"

  188.     spec:

  189.       serviceAccountName: nginx-ingress-serviceaccount

  190.       containers:

  191.         - name: nginx-ingress-controller

  192.           image: quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.20.0

  193.           args:

  194.             - /nginx-ingress-controller

  195.             - --configmap=$(POD_NAMESPACE)/nginx-configuration

  196.             - --publish-service=$(POD_NAMESPACE)/ingress-nginx

  197.             - --annotations-prefix=nginx.ingress.kubernetes.io

  198.           securityContext:

  199.             capabilities:

  200.               drop:

  201.                 - ALL

  202.               add:

  203.                 - NET_BIND_SERVICE

  204.             # www-data -> 33

  205.             runAsUser: 33

  206.           env:

  207.             - name: POD_NAME

  208.               valueFrom:

  209.                 fieldRef:

  210.                   fieldPath: metadata.name

  211.             - name: POD_NAMESPACE

  212.               valueFrom:

  213.                 fieldRef:

  214.                   fieldPath: metadata.namespace

  215.           ports:

  216.             - name: http

  217.               containerPort: 80

  218.             - name: https

  219.               containerPort: 443

  220.           livenessProbe:

  221.             failureThreshold: 3

  222.             httpGet:

  223.               path: /healthz

  224.               port: 10254

  225.               scheme: HTTP

  226.             initialDelaySeconds: 10

  227.             periodSeconds: 10

  228.             successThreshold: 1

  229.             timeoutSeconds: 1

  230.           readinessProbe:

  231.             failureThreshold: 3

  232.             httpGet:

  233.               path: /healthz

  234.               port: 10254

  235.               scheme: HTTP

  236.             periodSeconds: 10

  237.             successThreshold: 1

  238.             timeoutSeconds: 1