1 changed files with 27 additions and 23 deletions
@@ -17,27 +17,31 @@ spec:
    spec:
      serviceAccountName: tailscale-operator
      containers:
-        - name: operator
-          image: ghcr.io/tailscale/k8s-operator:v1.78.3
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: CLIENT_ID_FILE
-              value: /etc/tailscale/operator/client-id
-            - name: CLIENT_SECRET_FILE
-              value: /etc/tailscale/operator/client-secret
-          volumeMounts:
-            - name: operator-secret
-              mountPath: /etc/tailscale/operator
-              readOnly: true
-          resources: {}
+      - name: operator
+        image: ghcr.io/tailscale/k8s-operator:v1.78.3
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: CLIENT_ID_FILE
+          value: "/var/run/secrets/tailscale/client-id"
+        - name: CLIENT_SECRET_FILE
+          value: "/var/run/secrets/tailscale/client-secret"
+        volumeMounts:
+        - name: tailscale-secret
+          mountPath: /var/run/secrets/tailscale
+          readOnly: true
      volumes:
-        - name: operator-secret
-          secret:
-            secretName: tailscale-operator-secret
+      - name: tailscale-secret
+        secret:
+          secretName: tailscale-operator-secret
+          items:
+          - key: CLIENT_ID_FILE
+            path: client-id
+          - key: CLIENT_SECRET_FILE
+            path: client-secret