126 lines
4.4 KiB
YAML
126 lines
4.4 KiB
YAML
{{- if eq .Values.mode "standalone" }}
|
|
{{ $scheme := "http" }}
|
|
{{- if .Values.tls.enabled }}
|
|
{{ $scheme = "https" }}
|
|
{{ end }}
|
|
{{ $bucketRoot := or ($.Values.bucketRoot) ($.Values.mountPath) }}
|
|
apiVersion: {{ template "minio.deployment.apiVersion" . }}
|
|
kind: Deployment
|
|
metadata:
|
|
name: {{ template "minio.fullname" . }}
|
|
labels:
|
|
app: {{ template "minio.name" . }}
|
|
chart: {{ template "minio.chart" . }}
|
|
release: {{ .Release.Name }}
|
|
heritage: {{ .Release.Service }}
|
|
{{- if .Values.additionalLabels }}
|
|
{{ toYaml .Values.additionalLabels | trimSuffix "\n" | indent 4 }}
|
|
{{- end }}
|
|
{{- if .Values.additionalAnnotations }}
|
|
annotations:
|
|
{{ toYaml .Values.additionalAnnotations | trimSuffix "\n" | indent 4 }}
|
|
{{- end }}
|
|
spec:
|
|
strategy:
|
|
type: {{ .Values.DeploymentUpdate.type }}
|
|
{{- if eq .Values.DeploymentUpdate.type "RollingUpdate" }}
|
|
rollingUpdate:
|
|
maxSurge: {{ .Values.DeploymentUpdate.maxSurge }}
|
|
maxUnavailable: {{ .Values.DeploymentUpdate.maxUnavailable }}
|
|
{{- end}}
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: {{ template "minio.name" . }}
|
|
release: {{ .Release.Name }}
|
|
template:
|
|
metadata:
|
|
name: {{ template "minio.fullname" . }}
|
|
labels:
|
|
app: {{ template "minio.name" . }}
|
|
release: {{ .Release.Name }}
|
|
{{- if .Values.podLabels }}
|
|
{{ toYaml .Values.podLabels | indent 8 }}
|
|
{{- end }}
|
|
annotations:
|
|
checksum/secrets: {{ include (print $.Template.BasePath "/secrets.yaml") . | sha256sum }}
|
|
checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
|
|
{{- if .Values.podAnnotations }}
|
|
{{ toYaml .Values.podAnnotations | trimSuffix "\n" | indent 8 }}
|
|
{{- end }}
|
|
spec:
|
|
{{- if .Values.priorityClassName }}
|
|
priorityClassName: "{{ .Values.priorityClassName }}"
|
|
{{- end }}
|
|
{{- if and .Values.securityContext.enabled .Values.persistence.enabled }}
|
|
securityContext:
|
|
runAsUser: {{ .Values.securityContext.runAsUser }}
|
|
runAsGroup: {{ .Values.securityContext.runAsGroup }}
|
|
fsGroup: {{ .Values.securityContext.fsGroup }}
|
|
{{- end }}
|
|
containers:
|
|
- name: {{ .Chart.Name }}
|
|
image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
|
|
imagePullPolicy: {{ .Values.image.pullPolicy }}
|
|
command:
|
|
- "/bin/sh"
|
|
- "-ce"
|
|
- "/usr/bin/docker-entrypoint.sh minio -S {{ .Values.certsPath }} server --address :{{ .Values.minioAPIPort }} --console-address :{{ .Values.minioConsolePort }} {{ $bucketRoot }} {{- template "minio.extraArgs" . }}"
|
|
volumeMounts:
|
|
{{- if .Values.persistence.enabled }}
|
|
- name: export
|
|
mountPath: {{ .Values.mountPath }}
|
|
{{- if .Values.persistence.subPath }}
|
|
subPath: "{{ .Values.persistence.subPath }}"
|
|
{{- end }}
|
|
{{- end }}
|
|
{{- include "minio.tlsKeysVolumeMount" . | indent 12 }}
|
|
ports:
|
|
- name: {{ $scheme }}
|
|
containerPort: {{ .Values.minioAPIPort }}
|
|
- name: {{ $scheme }}-console
|
|
containerPort: {{ .Values.minioConsolePort }}
|
|
env:
|
|
- name: MINIO_ROOT_USER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ template "minio.secretName" . }}
|
|
key: rootUser
|
|
- name: MINIO_ROOT_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: {{ template "minio.secretName" . }}
|
|
key: rootPassword
|
|
{{- range $key, $val := .Values.environment }}
|
|
- name: {{ $key }}
|
|
value: {{ $val | quote }}
|
|
{{- end}}
|
|
resources:
|
|
{{ toYaml .Values.resources | indent 12 }}
|
|
{{- with .Values.nodeSelector }}
|
|
nodeSelector:
|
|
{{ toYaml . | indent 8 }}
|
|
{{- end }}
|
|
{{- include "minio.imagePullSecrets" . | indent 6 }}
|
|
{{- with .Values.affinity }}
|
|
affinity:
|
|
{{ toYaml . | indent 8 }}
|
|
{{- end }}
|
|
{{- with .Values.tolerations }}
|
|
tolerations:
|
|
{{ toYaml . | indent 8 }}
|
|
{{- end }}
|
|
volumes:
|
|
- name: export
|
|
{{- if .Values.persistence.enabled }}
|
|
persistentVolumeClaim:
|
|
claimName: {{ .Values.persistence.existingClaim | default (include "minio.fullname" .) }}
|
|
{{- else }}
|
|
emptyDir: {}
|
|
{{- end }}
|
|
- name: minio-user
|
|
secret:
|
|
secretName: {{ template "minio.secretName" . }}
|
|
{{- include "minio.tlsKeysVolume" . | indent 8 }}
|
|
{{- end }}
|