gitea-admin/talos-cluster
1
0
Fork 0
Code Issues Pull Requests 15 Actions Packages Projects Releases Wiki Activity

feat: migrate tailscale-operator to OAuth auth mode #46

Closed
gitea-admin wants to merge 1 commits from orion/auto/feat-migrate-tailscale-operator-to-oauth-1778979711696 into main
pull from: orion/auto/feat-migrate-tailscale-operator-to-oauth-1778979711696
merge into: gitea-admin:main
Conversation 0 Commits 1 Files Changed 1
+37 -24
1 changed files with 37 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files
deployments/tailscale-operator/deployment.yaml
+15 -2
View File
@@ -1,10 +1,10 @@
apiVersion: apps/v1 apiVersion: apps/v1
kind: Deployment kind: Deployment
metadata: metadata:
name: tailscale-operator
namespace: tailscale
labels: labels:
app: tailscale-operator app: tailscale-operator
name: tailscale-operator
namespace: tailscale
spec: spec:
replicas: 1 replicas: 1
selector: selector:
@@ -19,14 +19,17 @@ spec:
containers: containers:
- name: operator - name: operator
image: ghcr.io/tailscale/k8s-operator:v1.78.3 image: ghcr.io/tailscale/k8s-operator:v1.78.3
imagePullPolicy: IfNotPresent
env: env:
- name: POD_NAME - name: POD_NAME
valueFrom: valueFrom:
fieldRef: fieldRef:
apiVersion: v1
fieldPath: metadata.name fieldPath: metadata.name
- name: POD_NAMESPACE - name: POD_NAMESPACE
valueFrom: valueFrom:
fieldRef: fieldRef:
apiVersion: v1
fieldPath: metadata.namespace fieldPath: metadata.namespace
- name: TS_CLIENT_ID_FILE - name: TS_CLIENT_ID_FILE
value: /etc/tailscale/oauth/client-id value: /etc/tailscale/oauth/client-id
@@ -36,7 +39,17 @@ spec:
- name: oauth-secret - name: oauth-secret
mountPath: /etc/tailscale/oauth mountPath: /etc/tailscale/oauth
readOnly: true readOnly: true
resources: {}
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumes: volumes:
- name: oauth-secret - name: oauth-secret
secret: secret:
secretName: tailscale-operator-secret secretName: tailscale-operator-secret
defaultMode: 0600
dnsPolicy: ClusterFirst
restartPolicy: Always
terminationGracePeriodSeconds: 30
schedulerName: default
securityContext: {}
terminationGracePeriodSeconds: 30