You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
57 lines
1.3 KiB
57 lines
1.3 KiB
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
labels:
|
|
app: dex
|
|
name: dex
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: dex
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: dex
|
|
spec:
|
|
serviceAccountName: dex
|
|
containers:
|
|
- image: ghcr.io/dexidp/dex:v2.41.1
|
|
name: dex
|
|
command: ["dex", "serve", "/etc/dex/cfg/config.yaml"]
|
|
ports:
|
|
- name: http
|
|
containerPort: 5556
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
seccompProfile:
|
|
type: RuntimeDefault
|
|
runAsNonRoot: true
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
volumeMounts:
|
|
- name: config
|
|
mountPath: /etc/dex/cfg
|
|
envFrom:
|
|
- secretRef:
|
|
name: dex-oidc-client
|
|
- secretRef:
|
|
name: dex-passwords
|
|
env:
|
|
- name: KUBERNETES_POD_NAMESPACE
|
|
valueFrom:
|
|
fieldRef:
|
|
fieldPath: metadata.namespace
|
|
#readinessProbe:
|
|
# httpGet:
|
|
# path: /healthz
|
|
# port: 5556
|
|
# scheme: HTTPS
|
|
volumes:
|
|
- name: config
|
|
configMap:
|
|
name: dex
|
|
items:
|
|
- key: config.yaml
|
|
path: config.yaml
|
|
|