| Latest revision |
Your text |
| Line 3: |
Line 3: |
| | | | |
| | | | |
| − | <pre>
| + | |
| − | .../...
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_OTLP_HEADERS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.headers
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_MAX_COMBINED_DIRECTORY_MANIFESTS_SIZE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: reposerver.max.combined.directory.manifests.size
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_PLUGIN_TAR_EXCLUSIONS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: reposerver.plugin.tar.exclusions
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_ALLOW_OUT_OF_BOUNDS_SYMLINKS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.allow.oob.symlinks
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_STREAMED_MANIFEST_MAX_TAR_SIZE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.streamed.manifest.max.tar.size
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_STREAMED_MANIFEST_MAX_EXTRACTED_SIZE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.streamed.manifest.max.extracted.size
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_HELM_MANIFEST_MAX_EXTRACTED_SIZE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.helm.manifest.max.extracted.size
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_SERVER_DISABLE_HELM_MANIFEST_MAX_EXTRACTED_SIZE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: reposerver.disable.helm.manifest.max.extracted.size
| |
| − | optional: true
| |
| − | - name: ARGOCD_GIT_MODULES_ENABLED
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.enable.git.submodule
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_GIT_LS_REMOTE_PARALLELISM_LIMIT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.git.lsremote.parallelism.limit
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_GIT_REQUEST_TIMEOUT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: reposerver.git.request.timeout
| |
| − | name: argocd-cmd-params-cm
| |
| − | optional: true
| |
| − | - name: HELM_CACHE_HOME
| |
| − | value: /helm-working-dir
| |
| − | - name: HELM_CONFIG_HOME
| |
| − | value: /helm-working-dir
| |
| − | - name: HELM_DATA_HOME
| |
| − | value: /helm-working-dir
| |
| − | volumeMounts:
| |
| − | - mountPath: /app/config/ssh
| |
| − | name: ssh-known-hosts
| |
| − | - mountPath: /app/config/tls
| |
| − | name: tls-certs
| |
| − | - mountPath: /app/config/gpg/source
| |
| − | name: gpg-keys
| |
| − | - mountPath: /app/config/gpg/keys
| |
| − | name: gpg-keyring
| |
| − | - mountPath: /app/config/reposerver/tls
| |
| − | name: argocd-repo-server-tls
| |
| − | - mountPath: /helm-working-dir
| |
| − | name: helm-working-dir
| |
| − | - mountPath: /home/argocd/cmp-server/plugins
| |
| − | name: plugins
| |
| − | - mountPath: /tmp
| |
| − | name: tmp
| |
| − | ports:
| |
| − | - name: repo-server
| |
| − | containerPort: 8081
| |
| − | protocol: TCP
| |
| − | - name: metrics
| |
| − | containerPort: 8084
| |
| − | protocol: TCP
| |
| − | livenessProbe:
| |
| − | httpGet:
| |
| − | path: /healthz?full=true
| |
| − | port: metrics
| |
| − | initialDelaySeconds: 10
| |
| − | periodSeconds: 10
| |
| − | timeoutSeconds: 1
| |
| − | successThreshold: 1
| |
| − | failureThreshold: 3
| |
| − | readinessProbe:
| |
| − | httpGet:
| |
| − | path: /healthz
| |
| − | port: metrics
| |
| − | initialDelaySeconds: 10
| |
| − | periodSeconds: 10
| |
| − | timeoutSeconds: 1
| |
| − | successThreshold: 1
| |
| − | failureThreshold: 3
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | initContainers:
| |
| − | - command:
| |
| − | - /bin/cp
| |
| − | - -n
| |
| − | - /usr/local/bin/argocd
| |
| − | - /var/run/argocd/argocd-cmp-server
| |
| − | image: quay.io/argoproj/argocd:v2.10.6
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | name: copyutil
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | volumeMounts:
| |
| − | - mountPath: /var/run/argocd
| |
| − | name: var-files
| |
| − | affinity:
| |
| − | podAntiAffinity:
| |
| − | preferredDuringSchedulingIgnoredDuringExecution:
| |
| − | - weight: 100
| |
| − | podAffinityTerm:
| |
| − | labelSelector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-repo-server
| |
| − | topologyKey: kubernetes.io/hostname
| |
| − | volumes:
| |
| − | - name: helm-working-dir
| |
| − | emptyDir: {}
| |
| − | - name: plugins
| |
| − | emptyDir: {}
| |
| − | - name: var-files
| |
| − | emptyDir: {}
| |
| − | - name: tmp
| |
| − | emptyDir: {}
| |
| − | - name: ssh-known-hosts
| |
| − | configMap:
| |
| − | name: argocd-ssh-known-hosts-cm
| |
| − | - name: tls-certs
| |
| − | configMap:
| |
| − | name: argocd-tls-certs-cm
| |
| − | - name: gpg-keys
| |
| − | configMap:
| |
| − | name: argocd-gpg-keys-cm
| |
| − | - name: gpg-keyring
| |
| − | emptyDir: {}
| |
| − | - name: argocd-repo-server-tls
| |
| − | secret:
| |
| − | secretName: argocd-repo-server-tls
| |
| − | optional: true
| |
| − | items:
| |
| − | - key: tls.crt
| |
| − | path: tls.crt
| |
| − | - key: tls.key
| |
| − | path: tls.key
| |
| − | - key: ca.crt
| |
| − | path: ca.crt
| |
| − | dnsPolicy: ClusterFirst
| |
| − | ---
| |
| − | # Source: argo-cd/templates/argocd-server/deployment.yaml
| |
| − | apiVersion: apps/v1
| |
| − | kind: Deployment
| |
| − | metadata:
| |
| − | name: my-argo-argocd-server
| |
| − | namespace: "default"
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: server
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | replicas: 1
| |
| − | revisionHistoryLimit: 3
| |
| − | selector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | template:
| |
| − | metadata:
| |
| − | annotations:
| |
| − | checksum/cmd-params: 27f12312cd4404c676f7e01a9815249638eb7537f8beb3e9ab5af014fd866dc1
| |
| − | checksum/cm: c2660d6db184826e893973e514178b5353cec1bec1be9c46c46fb89977de16b4
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: server
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | terminationGracePeriodSeconds: 30
| |
| − | serviceAccountName: argocd-server
| |
| − | containers:
| |
| − | - name: server
| |
| − | image: quay.io/argoproj/argocd:v2.10.6
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | args:
| |
| − | - /usr/local/bin/argocd-server
| |
| − | - --port=8080
| |
| − | - --metrics-port=8083
| |
| − | env:
| |
| − | - name: ARGOCD_SERVER_NAME
| |
| − | value: my-argo-argocd-server
| |
| − | - name: ARGOCD_SERVER_INSECURE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.insecure
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_BASEHREF
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.basehref
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_ROOTPATH
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.rootpath
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_LOGFORMAT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.log.format
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_LOG_LEVEL
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.log.level
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_REPO_SERVER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: repo.server
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_DEX_SERVER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.dex.server
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_DISABLE_AUTH
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.disable.auth
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_ENABLE_GZIP
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.enable.gzip
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_REPO_SERVER_TIMEOUT_SECONDS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.repo.server.timeout.seconds
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_X_FRAME_OPTIONS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.x.frame.options
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_CONTENT_SECURITY_POLICY
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.content.security.policy
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_REPO_SERVER_PLAINTEXT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.repo.server.plaintext
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_REPO_SERVER_STRICT_TLS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.repo.server.strict.tls
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_DEX_SERVER_PLAINTEXT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.dex.server.plaintext
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_DEX_SERVER_STRICT_TLS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.dex.server.strict.tls
| |
| − | optional: true
| |
| − | - name: ARGOCD_TLS_MIN_VERSION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.tls.minversion
| |
| − | optional: true
| |
| − | - name: ARGOCD_TLS_MAX_VERSION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.tls.maxversion
| |
| − | optional: true
| |
| − | - name: ARGOCD_TLS_CIPHERS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.tls.ciphers
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_CONNECTION_STATUS_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.connection.status.cache.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_OIDC_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.oidc.cache.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_LOGIN_ATTEMPTS_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.login.attempts.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_STATIC_ASSETS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.staticassets
| |
| − | optional: true
| |
| − | - name: ARGOCD_APP_STATE_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.app.state.cache.expiration
| |
| − | optional: true
| |
| − | - name: REDIS_SERVER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.server
| |
| − | optional: true
| |
| − | - name: REDIS_COMPRESSION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.compression
| |
| − | optional: true
| |
| − | - name: REDISDB
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.db
| |
| − | optional: true
| |
| − | - name: REDIS_USERNAME
| |
| − | valueFrom:
| |
| − | secretKeyRef:
| |
| − | name: my-argo-argocd-redis
| |
| − | key: redis-username
| |
| − | optional: true
| |
| − | - name: REDIS_PASSWORD
| |
| − | valueFrom:
| |
| − | secretKeyRef:
| |
| − | name: my-argo-argocd-redis
| |
| − | key: redis-password
| |
| − | optional: true
| |
| − | - name: ARGOCD_DEFAULT_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.default.cache.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_MAX_COOKIE_NUMBER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.http.cookie.maxnumber
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_LISTEN_ADDRESS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.listen.address
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_METRICS_LISTEN_ADDRESS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.metrics.listen.address
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_OTLP_ADDRESS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.address
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_OTLP_INSECURE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.insecure
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_OTLP_HEADERS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.headers
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_NAMESPACES
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: application.namespaces
| |
| − | optional: true
| |
| − | - name: ARGOCD_SERVER_ENABLE_PROXY_EXTENSION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.enable.proxy.extension
| |
| − | optional: true
| |
| − | - name: ARGOCD_K8SCLIENT_RETRY_MAX
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.k8sclient.retry.max
| |
| − | optional: true
| |
| − | - name: ARGOCD_K8SCLIENT_RETRY_BASE_BACKOFF
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.k8sclient.retry.base.backoff
| |
| − | optional: true
| |
| − | - name: ARGOCD_API_CONTENT_TYPES
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: server.api.content.types
| |
| − | optional: true
| |
| − | volumeMounts:
| |
| − | - mountPath: /app/config/ssh
| |
| − | name: ssh-known-hosts
| |
| − | - mountPath: /app/config/tls
| |
| − | name: tls-certs
| |
| − | - mountPath: /app/config/server/tls
| |
| − | name: argocd-repo-server-tls
| |
| − | - mountPath: /app/config/dex/tls
| |
| − | name: argocd-dex-server-tls
| |
| − | - mountPath: /home/argocd
| |
| − | name: plugins-home
| |
| − | - mountPath: /shared/app/custom
| |
| − | name: styles
| |
| − | - mountPath: /tmp
| |
| − | name: tmp
| |
| − | ports:
| |
| − | - name: server
| |
| − | containerPort: 8080
| |
| − | protocol: TCP
| |
| − | - name: metrics
| |
| − | containerPort: 8083
| |
| − | protocol: TCP
| |
| − | livenessProbe:
| |
| − | httpGet:
| |
| − | path: /healthz?full=true
| |
| − | port: server
| |
| − | initialDelaySeconds: 10
| |
| − | periodSeconds: 10
| |
| − | timeoutSeconds: 1
| |
| − | successThreshold: 1
| |
| − | failureThreshold: 3
| |
| − | readinessProbe:
| |
| − | httpGet:
| |
| − | path: /healthz
| |
| − | port: server
| |
| − | initialDelaySeconds: 10
| |
| − | periodSeconds: 10
| |
| − | timeoutSeconds: 1
| |
| − | successThreshold: 1
| |
| − | failureThreshold: 3
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | affinity:
| |
| − | podAntiAffinity:
| |
| − | preferredDuringSchedulingIgnoredDuringExecution:
| |
| − | - weight: 100
| |
| − | podAffinityTerm:
| |
| − | labelSelector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-server
| |
| − | topologyKey: kubernetes.io/hostname
| |
| − | volumes:
| |
| − | - name: plugins-home
| |
| − | emptyDir: {}
| |
| − | - name: tmp
| |
| − | emptyDir: {}
| |
| − | - name: ssh-known-hosts
| |
| − | configMap:
| |
| − | name: argocd-ssh-known-hosts-cm
| |
| − | - name: tls-certs
| |
| − | configMap:
| |
| − | name: argocd-tls-certs-cm
| |
| − | - name: styles
| |
| − | configMap:
| |
| − | name: argocd-styles-cm
| |
| − | optional: true
| |
| − | - name: argocd-repo-server-tls
| |
| − | secret:
| |
| − | secretName: argocd-repo-server-tls
| |
| − | optional: true
| |
| − | items:
| |
| − | - key: tls.crt
| |
| − | path: tls.crt
| |
| − | - key: tls.key
| |
| − | path: tls.key
| |
| − | - key: ca.crt
| |
| − | path: ca.crt
| |
| − | - name: argocd-dex-server-tls
| |
| − | secret:
| |
| − | secretName: argocd-dex-server-tls
| |
| − | optional: true
| |
| − | items:
| |
| − | - key: tls.crt
| |
| − | path: tls.crt
| |
| − | - key: ca.crt
| |
| − | path: ca.crt
| |
| − | dnsPolicy: ClusterFirst
| |
| − | ---
| |
| − | # Source: argo-cd/templates/dex/deployment.yaml
| |
| − | apiVersion: apps/v1
| |
| − | kind: Deployment
| |
| − | metadata:
| |
| − | name: my-argo-argocd-dex-server
| |
| − | namespace: "default"
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-dex-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: dex-server
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | replicas: 1
| |
| − | revisionHistoryLimit: 3
| |
| − | selector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-dex-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | template:
| |
| − | metadata:
| |
| − | annotations:
| |
| − | checksum/cmd-params: 27f12312cd4404c676f7e01a9815249638eb7537f8beb3e9ab5af014fd866dc1
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-dex-server
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: dex-server
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | terminationGracePeriodSeconds: 30
| |
| − | serviceAccountName: argocd-dex-server
| |
| − | containers:
| |
| − | - name: dex-server
| |
| − | image: ghcr.io/dexidp/dex:v2.38.0
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | command:
| |
| − | - /shared/argocd-dex
| |
| − | - --logformat=text
| |
| − | - --loglevel=info
| |
| − | args:
| |
| − | - rundex
| |
| − | env:
| |
| − | - name: ARGOCD_DEX_SERVER_DISABLE_TLS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: dexserver.disable.tls
| |
| − | optional: true
| |
| − | ports:
| |
| − | - name: http
| |
| − | containerPort: 5556
| |
| − | protocol: TCP
| |
| − | - name: grpc
| |
| − | containerPort: 5557
| |
| − | protocol: TCP
| |
| − | - name: metrics
| |
| − | containerPort: 5558
| |
| − | protocol: TCP
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | volumeMounts:
| |
| − | - name: static-files
| |
| − | mountPath: /shared
| |
| − | - name: dexconfig
| |
| − | mountPath: /tmp
| |
| − | - name: argocd-dex-server-tls
| |
| − | mountPath: /tls
| |
| − | initContainers:
| |
| − | - name: copyutil
| |
| − | image: quay.io/argoproj/argocd:v2.10.6
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | command:
| |
| − | - /bin/cp
| |
| − | - -n
| |
| − | - /usr/local/bin/argocd
| |
| − | - /shared/argocd-dex
| |
| − | volumeMounts:
| |
| − | - mountPath: /shared
| |
| − | name: static-files
| |
| − | - mountPath: /tmp
| |
| − | name: dexconfig
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | affinity:
| |
| − | podAntiAffinity:
| |
| − | preferredDuringSchedulingIgnoredDuringExecution:
| |
| − | - weight: 100
| |
| − | podAffinityTerm:
| |
| − | labelSelector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-dex-server
| |
| − | topologyKey: kubernetes.io/hostname
| |
| − | volumes:
| |
| − | - name: static-files
| |
| − | emptyDir: {}
| |
| − | - name: dexconfig
| |
| − | emptyDir: {}
| |
| − | - name: argocd-dex-server-tls
| |
| − | secret:
| |
| − | secretName: argocd-dex-server-tls
| |
| − | optional: true
| |
| − | items:
| |
| − | - key: tls.crt
| |
| − | path: tls.crt
| |
| − | - key: tls.key
| |
| − | path: tls.key
| |
| − | - key: ca.crt
| |
| − | path: ca.crt
| |
| − | dnsPolicy: ClusterFirst
| |
| − | ---
| |
| − | # Source: argo-cd/templates/redis/deployment.yaml
| |
| − | apiVersion: apps/v1
| |
| − | kind: Deployment
| |
| − | metadata:
| |
| − | name: my-argo-argocd-redis
| |
| − | namespace: "default"
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-redis
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: redis
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | replicas: 1
| |
| − | revisionHistoryLimit: 3
| |
| − | selector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-redis
| |
| − | template:
| |
| − | metadata:
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-redis
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: redis
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | securityContext:
| |
| − | runAsNonRoot: true
| |
| − | runAsUser: 999
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | terminationGracePeriodSeconds: 30
| |
| − | serviceAccountName: default
| |
| − | containers:
| |
| − | - name: redis
| |
| − | image: public.ecr.aws/docker/library/redis:7.2.4-alpine
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | args:
| |
| − | - --save
| |
| − | - ""
| |
| − | - --appendonly
| |
| − | - "no"
| |
| − | ports:
| |
| − | - name: redis
| |
| − | containerPort: 6379
| |
| − | protocol: TCP
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | volumeMounts:
| |
| − | - mountPath: /health
| |
| − | name: health
| |
| − | affinity:
| |
| − | podAntiAffinity:
| |
| − | preferredDuringSchedulingIgnoredDuringExecution:
| |
| − | - weight: 100
| |
| − | podAffinityTerm:
| |
| − | labelSelector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-redis
| |
| − | topologyKey: kubernetes.io/hostname
| |
| − | volumes:
| |
| − | - name: health
| |
| − | configMap:
| |
| − | name: my-argo-argocd-redis-health-configmap
| |
| − | defaultMode: 493
| |
| − | dnsPolicy: ClusterFirst
| |
| − | ---
| |
| − | # Source: argo-cd/templates/argocd-application-controller/statefulset.yaml
| |
| − | apiVersion: apps/v1
| |
| − | kind: StatefulSet
| |
| − | metadata:
| |
| − | name: my-argo-argocd-application-controller
| |
| − | namespace: "default"
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-application-controller
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: application-controller
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | replicas: 1
| |
| − | revisionHistoryLimit: 5
| |
| − | serviceName: my-argo-argocd-application-controller
| |
| − | selector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-application-controller
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | template:
| |
| − | metadata:
| |
| − | annotations:
| |
| − | checksum/cmd-params: 27f12312cd4404c676f7e01a9815249638eb7537f8beb3e9ab5af014fd866dc1
| |
| − | checksum/cm: c2660d6db184826e893973e514178b5353cec1bec1be9c46c46fb89977de16b4
| |
| − | labels:
| |
| − | helm.sh/chart: argo-cd-6.7.10
| |
| − | app.kubernetes.io/name: argocd-application-controller
| |
| − | app.kubernetes.io/instance: my-argo
| |
| − | app.kubernetes.io/component: application-controller
| |
| − | app.kubernetes.io/managed-by: Helm
| |
| − | app.kubernetes.io/part-of: argocd
| |
| − | app.kubernetes.io/version: "v2.10.6"
| |
| − | spec:
| |
| − | terminationGracePeriodSeconds: 30
| |
| − | serviceAccountName: argocd-application-controller
| |
| − | containers:
| |
| − | - args:
| |
| − | - /usr/local/bin/argocd-application-controller
| |
| − | - --metrics-port=8082
| |
| − | image: quay.io/argoproj/argocd:v2.10.6
| |
| − | imagePullPolicy: IfNotPresent
| |
| − | name: application-controller
| |
| − | env:
| |
| − | - name: ARGOCD_CONTROLLER_REPLICAS
| |
| − | value: "1"
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_NAME
| |
| − | value: my-argo-argocd-application-controller
| |
| − | - name: ARGOCD_RECONCILIATION_TIMEOUT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cm
| |
| − | key: timeout.reconciliation
| |
| − | optional: true
| |
| − | - name: ARGOCD_HARD_RECONCILIATION_TIMEOUT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cm
| |
| − | key: timeout.hard.reconciliation
| |
| − | optional: true
| |
| − | - name: ARGOCD_RECONCILIATION_JITTER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | key: timeout.reconciliation.jitter
| |
| − | name: argocd-cm
| |
| − | optional: true
| |
| − | - name: ARGOCD_REPO_ERROR_GRACE_PERIOD_SECONDS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.repo.error.grace.period.seconds
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_REPO_SERVER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: repo.server
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_REPO_SERVER_TIMEOUT_SECONDS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.repo.server.timeout.seconds
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_STATUS_PROCESSORS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.status.processors
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_OPERATION_PROCESSORS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.operation.processors
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_LOGFORMAT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.log.format
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_LOGLEVEL
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.log.level
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_METRICS_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.metrics.cache.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_SELF_HEAL_TIMEOUT_SECONDS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.self.heal.timeout.seconds
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_REPO_SERVER_PLAINTEXT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.repo.server.plaintext
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_REPO_SERVER_STRICT_TLS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.repo.server.strict.tls
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_PERSIST_RESOURCE_HEALTH
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.resource.health.persist
| |
| − | optional: true
| |
| − | - name: ARGOCD_APP_STATE_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.app.state.cache.expiration
| |
| − | optional: true
| |
| − | - name: REDIS_SERVER
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.server
| |
| − | optional: true
| |
| − | - name: REDIS_COMPRESSION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.compression
| |
| − | optional: true
| |
| − | - name: REDISDB
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: redis.db
| |
| − | optional: true
| |
| − | - name: REDIS_USERNAME
| |
| − | valueFrom:
| |
| − | secretKeyRef:
| |
| − | name: my-argo-argocd-redis
| |
| − | key: redis-username
| |
| − | optional: true
| |
| − | - name: REDIS_PASSWORD
| |
| − | valueFrom:
| |
| − | secretKeyRef:
| |
| − | name: my-argo-argocd-redis
| |
| − | key: redis-password
| |
| − | optional: true
| |
| − | - name: ARGOCD_DEFAULT_CACHE_EXPIRATION
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.default.cache.expiration
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_OTLP_ADDRESS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.address
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_OTLP_INSECURE
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.insecure
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_OTLP_HEADERS
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: otlp.headers
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_NAMESPACES
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: application.namespaces
| |
| − | optional: true
| |
| − | - name: ARGOCD_CONTROLLER_SHARDING_ALGORITHM
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.sharding.algorithm
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_KUBECTL_PARALLELISM_LIMIT
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.kubectl.parallelism.limit
| |
| − | optional: true
| |
| − | - name: ARGOCD_K8SCLIENT_RETRY_MAX
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.k8sclient.retry.max
| |
| − | optional: true
| |
| − | - name: ARGOCD_K8SCLIENT_RETRY_BASE_BACKOFF
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.k8sclient.retry.base.backoff
| |
| − | optional: true
| |
| − | - name: ARGOCD_APPLICATION_CONTROLLER_SERVER_SIDE_DIFF
| |
| − | valueFrom:
| |
| − | configMapKeyRef:
| |
| − | name: argocd-cmd-params-cm
| |
| − | key: controller.diff.server.side
| |
| − | optional: true
| |
| − | ports:
| |
| − | - name: metrics
| |
| − | containerPort: 8082
| |
| − | protocol: TCP
| |
| − | readinessProbe:
| |
| − | httpGet:
| |
| − | path: /healthz
| |
| − | port: metrics
| |
| − | initialDelaySeconds: 10
| |
| − | periodSeconds: 10
| |
| − | timeoutSeconds: 1
| |
| − | successThreshold: 1
| |
| − | failureThreshold: 3
| |
| − | resources:
| |
| − | {}
| |
| − | securityContext:
| |
| − | allowPrivilegeEscalation: false
| |
| − | capabilities:
| |
| − | drop:
| |
| − | - ALL
| |
| − | readOnlyRootFilesystem: true
| |
| − | runAsNonRoot: true
| |
| − | seccompProfile:
| |
| − | type: RuntimeDefault
| |
| − | workingDir: /home/argocd
| |
| − | volumeMounts:
| |
| − | - mountPath: /app/config/controller/tls
| |
| − | name: argocd-repo-server-tls
| |
| − | - mountPath: /home/argocd
| |
| − | name: argocd-home
| |
| − | affinity:
| |
| − | podAntiAffinity:
| |
| − | preferredDuringSchedulingIgnoredDuringExecution:
| |
| − | - weight: 100
| |
| − | podAffinityTerm:
| |
| − | labelSelector:
| |
| − | matchLabels:
| |
| − | app.kubernetes.io/name: argocd-application-controller
| |
| − | topologyKey: kubernetes.io/hostname
| |
| − | volumes:
| |
| − | - name: argocd-home
| |
| − | emptyDir: {}
| |
| − | - name: argocd-repo-server-tls
| |
| − | secret:
| |
| − | secretName: argocd-repo-server-tls
| |
| − | optional: true
| |
| − | items:
| |
| − | - key: tls.crt
| |
| − | path: tls.crt
| |
| − | - key: tls.key
| |
| − | path: tls.key
| |
| − | - key: ca.crt
| |
| − | path: ca.crt
| |
| − | dnsPolicy: ClusterFirst
| |
| − | </pre>
| |
| | | | |
| | | | |
