From a92ff53a9add9a7f72b997c72da256ebb69e49e0 Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Sat, 16 May 2026 20:07:06 +0000 Subject: [PATCH] fix: move deployment to correct path and enable OAuth auth mode --- deployments/tailscale/deployment.yaml | 51 +++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 deployments/tailscale/deployment.yaml diff --git a/deployments/tailscale/deployment.yaml b/deployments/tailscale/deployment.yaml new file mode 100644 index 0000000..4814c32 --- /dev/null +++ b/deployments/tailscale/deployment.yaml @@ -0,0 +1,51 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: tailscale-operator + namespace: tailscale + labels: + app.kubernetes.io/name: tailscale-operator +spec: + replicas: 1 + selector: + matchLabels: + app.kubernetes.io/name: tailscale-operator + template: + metadata: + labels: + app.kubernetes.io/name: tailscale-operator + spec: + serviceAccountName: tailscale-operator + containers: + - name: operator + image: ghcr.io/tailscale/kubernetes-operator:latest + ports: + - containerPort: 8080 + name: http + env: + - name: TS_USERSPACE + value: "true" + - name: TS_K8S_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: TS_TOKEN_SECRET_NAME + value: tailscale-operator-secret + envFrom: + - secretRef: + name: tailscale-operator-secret + volumeMounts: + - name: oauth-secret + mountPath: /etc/tailscale/oauth + readOnly: true + resources: + requests: + cpu: 100m + memory: 128Mi + limits: + cpu: 500m + memory: 512Mi + volumes: + - name: oauth-secret + secret: + secretName: tailscale-operator-secret