feat: migrate tailscale-operator to OAuth auth mode
Validate Manifests / validate (pull_request) Has been cancelled
Validate Manifests / validate (pull_request) Has been cancelled
This commit is contained in:
@@ -19,16 +19,15 @@ spec:
|
|||||||
containers:
|
containers:
|
||||||
- name: operator
|
- name: operator
|
||||||
image: ghcr.io/tailscale/k8s-operator:v1.78.3
|
image: ghcr.io/tailscale/k8s-operator:v1.78.3
|
||||||
|
imagePullPolicy: IfNotPresent
|
||||||
env:
|
env:
|
||||||
- name: POD_NAME
|
- name: POD_NAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
fieldRef:
|
fieldRef:
|
||||||
apiVersion: v1
|
|
||||||
fieldPath: metadata.name
|
fieldPath: metadata.name
|
||||||
- name: POD_NAMESPACE
|
- name: POD_NAMESPACE
|
||||||
valueFrom:
|
valueFrom:
|
||||||
fieldRef:
|
fieldRef:
|
||||||
apiVersion: v1
|
|
||||||
fieldPath: metadata.namespace
|
fieldPath: metadata.namespace
|
||||||
- name: TS_CLIENT_ID_FILE
|
- name: TS_CLIENT_ID_FILE
|
||||||
value: /etc/tailscale/oauth/client-id
|
value: /etc/tailscale/oauth/client-id
|
||||||
@@ -38,6 +37,13 @@ spec:
|
|||||||
- name: oauth-secret
|
- name: oauth-secret
|
||||||
mountPath: /etc/tailscale/oauth
|
mountPath: /etc/tailscale/oauth
|
||||||
readOnly: true
|
readOnly: true
|
||||||
|
resources:
|
||||||
|
requests:
|
||||||
|
cpu: 100m
|
||||||
|
memory: 128Mi
|
||||||
|
limits:
|
||||||
|
cpu: 500m
|
||||||
|
memory: 512Mi
|
||||||
volumes:
|
volumes:
|
||||||
- name: oauth-secret
|
- name: oauth-secret
|
||||||
secret:
|
secret:
|
||||||
|
|||||||
Reference in New Issue
Block a user