| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 |
- apiVersion: extensions/v1beta1
- kind: DaemonSet
- metadata:
- labels:
- app: controller-manager
- name: controller-manager
- spec:
- selector:
- matchLabels:
- app: controller-manager
- updateStrategy:
- rollingUpdate:
- maxUnavailable: 1
- type: RollingUpdate
- template:
- metadata:
- labels:
- app: controller-manager
- spec:
- serviceAccountName: service-catalog-controller
- nodeSelector:
- {% for key, value in node_selector.items() %}
- {{key}}: "{{value}}"
- {% endfor %}
- containers:
- - env:
- - name: K8S_NAMESPACE
- valueFrom:
- fieldRef:
- fieldPath: metadata.namespace
- args:
- - controller-manager
- - -v
- - "5"
- - --leader-election-namespace
- - kube-service-catalog
- - --broker-relist-interval
- - "5m"
- - --feature-gates
- - OriginatingIdentity=true
- {% if openshift_service_catalog_async_bindings_enabled | bool %}
- - --feature-gates
- - AsyncBindingOperations=true
- {% endif %}
- image: {{ openshift_service_catalog_image_prefix }}service-catalog:{{ openshift_service_catalog_image_version }}
- command: ["/usr/bin/service-catalog"]
- imagePullPolicy: IfNotPresent
- name: controller-manager
- ports:
- - containerPort: 8080
- protocol: TCP
- resources: {}
- terminationMessagePath: /dev/termination-log
- volumeMounts:
- - mountPath: /var/run/kubernetes-service-catalog
- name: service-catalog-ssl
- readOnly: true
- dnsPolicy: ClusterFirst
- restartPolicy: Always
- securityContext: {}
- terminationGracePeriodSeconds: 30
- volumes:
- - name: service-catalog-ssl
- secret:
- defaultMode: 420
- items:
- - key: tls.crt
- path: apiserver.crt
- secretName: apiserver-ssl
|
