73 lines
1.8 KiB
YAML
73 lines
1.8 KiB
YAML
---
|
|
apiVersion: helm.toolkit.fluxcd.io/v2
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: echo-internal
|
|
spec:
|
|
chartRef:
|
|
kind: OCIRepository
|
|
name: echo
|
|
namespace: default
|
|
interval: 1h
|
|
values:
|
|
controllers:
|
|
echo-internal:
|
|
strategy: RollingUpdate
|
|
containers:
|
|
app:
|
|
image:
|
|
repository: ghcr.io/mendhak/http-https-echo
|
|
tag: 39
|
|
env:
|
|
HTTP_PORT: &port 80
|
|
LOG_WITHOUT_NEWLINE: true
|
|
LOG_IGNORE_PATH: /healthz
|
|
PROMETHEUS_ENABLED: true
|
|
probes:
|
|
liveness: &probes
|
|
enabled: true
|
|
custom: true
|
|
spec:
|
|
httpGet:
|
|
path: /healthz
|
|
port: *port
|
|
initialDelaySeconds: 0
|
|
periodSeconds: 10
|
|
timeoutSeconds: 1
|
|
failureThreshold: 3
|
|
readiness: *probes
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
readOnlyRootFilesystem: true
|
|
capabilities: { drop: ["ALL"] }
|
|
resources:
|
|
requests:
|
|
cpu: 10m
|
|
limits:
|
|
memory: 64Mi
|
|
defaultPodOptions:
|
|
securityContext:
|
|
runAsNonRoot: true
|
|
runAsUser: 65534
|
|
runAsGroup: 65534
|
|
service:
|
|
app:
|
|
ports:
|
|
http:
|
|
port: *port
|
|
serviceMonitor:
|
|
app:
|
|
endpoints:
|
|
- port: http
|
|
route:
|
|
app:
|
|
hostnames: ["echo-internal.${SECRET_DOMAIN}"]
|
|
parentRefs:
|
|
- name: envoy-internal
|
|
namespace: network
|
|
sectionName: https
|
|
rules:
|
|
- backendRefs:
|
|
- identifier: app
|
|
port: *port
|