kubernetes/manifests/west/opal-server-deployment.yaml from hongbo-miao/hongbomiao.com

kubernetes/manifests/west/opal-server-deployment.yaml
Summary

Maintainability

Test Coverage

Issues
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: opal-server-deployment
  namespace: hm-opa
  labels:
    app.kubernetes.io/name: opal-server
spec:
  replicas: 1
  selector:
    matchLabels:
      app: opal-server
  template:
    metadata:
      labels:
        app: opal-server
    spec:
      containers:
        - name: opal-server
          image: docker.io/permitio/opal-server:0.3.1
          env:
            - name: OPAL_BROADCAST_URI
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_broadcast_uri
            - name: OPAL_DATA_CONFIG_SOURCES
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_data_config_sources
            - name: OPAL_POLICY_REPO_POLLING_INTERVAL
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_policy_repo_polling_interval
            - name: OPAL_POLICY_REPO_URL
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_policy_repo_url
            - name: UVICORN_NUM_WORKERS
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: uvicorn_num_workers
            - name: OPAL_STATISTICS_ENABLED
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_statistics_enabled
            - name: OPAL_LOG_MODULE_EXCLUDE_LIST
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_log_module_exclude_list
            - name: OPAL_LOG_COLORIZE
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_log_colorize
            - name: OPAL_AUTH_PRIVATE_KEY_FORMAT
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_auth_private_key_format
            - name: OPAL_AUTH_PUBLIC_KEY_FORMAT
              valueFrom:
                configMapKeyRef:
                  name: opal-server-configmap
                  key: opal_auth_public_key_format
            - name: OPAL_AUTH_PRIVATE_KEY_PASSPHRASE
              valueFrom:
                secretKeyRef:
                  name: hm-opal-server-secret
                  key: opal_auth_private_key_passphrase
            - name: OPAL_AUTH_PRIVATE_KEY
              valueFrom:
                secretKeyRef:
                  name: hm-opal-server-secret
                  key: opal_auth_private_key
            - name: OPAL_AUTH_PUBLIC_KEY
              valueFrom:
                secretKeyRef:
                  name: hm-opal-server-secret
                  key: opal_auth_public_key
            - name: OPAL_AUTH_MASTER_TOKEN
              valueFrom:
                secretKeyRef:
                  name: hm-opal-server-secret
                  key: opal_auth_master_token
          ports:
            - name: opal-server
              protocol: TCP
              containerPort: 7002