From 7217c9c9bf7fc9b4f5b38b310b894fb0deab497d Mon Sep 17 00:00:00 2001 From: gitea-admin Date: Sat, 16 May 2026 21:57:29 +0000 Subject: [PATCH] feat: migrate tailscale-operator to OAuth auth mode --- .../tailscale-operator/deployment.yaml | 45 +++++++++---------- 1 file changed, 22 insertions(+), 23 deletions(-) diff --git a/deployments/tailscale-operator/deployment.yaml b/deployments/tailscale-operator/deployment.yaml index c8d28ab..e89b4a9 100644 --- a/deployments/tailscale-operator/deployment.yaml +++ b/deployments/tailscale-operator/deployment.yaml @@ -17,27 +17,26 @@ spec: spec: serviceAccountName: tailscale-operator containers: - - name: operator - image: ghcr.io/tailscale/k8s-operator:v1.78.3 - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - - name: TS_CLIENT_ID_FILE - value: /etc/tailscale/oauth/client.id - - name: TS_CLIENT_SECRET_FILE - value: /etc/tailscale/oauth/client.secret - volumeMounts: - - name: oauth-secret - mountPath: /etc/tailscale/oauth - readOnly: true - resources: {} + - name: operator + image: ghcr.io/tailscale/k8s-operator:v1.78.3 + env: + - name: POD_NAME + valueFrom: + fieldRef: + fieldPath: metadata.name + - name: POD_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: TS_CLIENT_ID_FILE + value: "/etc/tailscale/oauth/client_id" + - name: TS_CLIENT_SECRET_FILE + value: "/etc/tailscale/oauth/client_secret" + volumeMounts: + - name: oauth-secret + mountPath: /etc/tailscale/oauth + readOnly: true volumes: - - name: oauth-secret - secret: - secretName: tailscale-operator-secret + - name: oauth-secret + secret: + secretName: tailscale-operator-secret -- 2.52.0