Text file src/edge-infra.dev/third_party/k8s/prometheus-operator/manifests.yaml

Documentation: edge-infra.dev/third_party/k8s/prometheus-operator

     1apiVersion: rbac.authorization.k8s.io/v1
     2kind: ClusterRoleBinding
     3metadata:
     4  labels:
     5    app.kubernetes.io/component: controller
     6    app.kubernetes.io/name: prometheus-operator
     7    app.kubernetes.io/version: 0.75.2
     8  name: prometheus-operator
     9roleRef:
    10  apiGroup: rbac.authorization.k8s.io
    11  kind: ClusterRole
    12  name: prometheus-operator
    13subjects:
    14- kind: ServiceAccount
    15  name: prometheus-operator
    16  namespace: default
    17---
    18apiVersion: rbac.authorization.k8s.io/v1
    19kind: ClusterRole
    20metadata:
    21  labels:
    22    app.kubernetes.io/component: controller
    23    app.kubernetes.io/name: prometheus-operator
    24    app.kubernetes.io/version: 0.75.2
    25  name: prometheus-operator
    26rules:
    27- apiGroups:
    28  - monitoring.coreos.com
    29  resources:
    30  - alertmanagers
    31  - alertmanagers/finalizers
    32  - alertmanagers/status
    33  - alertmanagerconfigs
    34  - prometheuses
    35  - prometheuses/finalizers
    36  - prometheuses/status
    37  - prometheusagents
    38  - prometheusagents/finalizers
    39  - prometheusagents/status
    40  - thanosrulers
    41  - thanosrulers/finalizers
    42  - thanosrulers/status
    43  - scrapeconfigs
    44  - servicemonitors
    45  - podmonitors
    46  - probes
    47  - prometheusrules
    48  verbs:
    49  - '*'
    50- apiGroups:
    51  - apps
    52  resources:
    53  - statefulsets
    54  verbs:
    55  - '*'
    56- apiGroups:
    57  - ""
    58  resources:
    59  - configmaps
    60  - secrets
    61  verbs:
    62  - '*'
    63- apiGroups:
    64  - ""
    65  resources:
    66  - pods
    67  verbs:
    68  - list
    69  - delete
    70- apiGroups:
    71  - ""
    72  resources:
    73  - services
    74  - services/finalizers
    75  - endpoints
    76  verbs:
    77  - get
    78  - create
    79  - update
    80  - delete
    81- apiGroups:
    82  - ""
    83  resources:
    84  - nodes
    85  verbs:
    86  - list
    87  - watch
    88- apiGroups:
    89  - ""
    90  resources:
    91  - namespaces
    92  verbs:
    93  - get
    94  - list
    95  - watch
    96- apiGroups:
    97  - ""
    98  resources:
    99  - events
   100  verbs:
   101  - patch
   102  - create
   103- apiGroups:
   104  - networking.k8s.io
   105  resources:
   106  - ingresses
   107  verbs:
   108  - get
   109  - list
   110  - watch
   111- apiGroups:
   112  - storage.k8s.io
   113  resources:
   114  - storageclasses
   115  verbs:
   116  - get
   117---
   118apiVersion: apps/v1
   119kind: Deployment
   120metadata:
   121  labels:
   122    app.kubernetes.io/component: controller
   123    app.kubernetes.io/name: prometheus-operator
   124    app.kubernetes.io/version: 0.75.2
   125  name: prometheus-operator
   126  namespace: default
   127spec:
   128  replicas: 1
   129  selector:
   130    matchLabels:
   131      app.kubernetes.io/component: controller
   132      app.kubernetes.io/name: prometheus-operator
   133  template:
   134    metadata:
   135      annotations:
   136        kubectl.kubernetes.io/default-container: prometheus-operator
   137      labels:
   138        app.kubernetes.io/component: controller
   139        app.kubernetes.io/name: prometheus-operator
   140        app.kubernetes.io/version: 0.75.2
   141    spec:
   142      automountServiceAccountToken: true
   143      containers:
   144      - args:
   145        - --kubelet-service=kube-system/kubelet
   146        - --prometheus-config-reloader=quay.io/prometheus-operator/prometheus-config-reloader:v0.75.2
   147        env:
   148        - name: GOGC
   149          value: "30"
   150        image: quay.io/prometheus-operator/prometheus-operator:v0.75.2
   151        name: prometheus-operator
   152        ports:
   153        - containerPort: 8080
   154          name: http
   155        resources:
   156          limits:
   157            cpu: 200m
   158            memory: 200Mi
   159          requests:
   160            cpu: 50m
   161            memory: 100Mi
   162        securityContext:
   163          allowPrivilegeEscalation: false
   164          capabilities:
   165            drop:
   166            - ALL
   167          readOnlyRootFilesystem: true
   168      nodeSelector:
   169        kubernetes.io/os: linux
   170      securityContext:
   171        runAsNonRoot: true
   172        runAsUser: 65534
   173        seccompProfile:
   174          type: RuntimeDefault
   175      serviceAccountName: prometheus-operator
   176---
   177apiVersion: v1
   178automountServiceAccountToken: false
   179kind: ServiceAccount
   180metadata:
   181  labels:
   182    app.kubernetes.io/component: controller
   183    app.kubernetes.io/name: prometheus-operator
   184    app.kubernetes.io/version: 0.75.2
   185  name: prometheus-operator
   186  namespace: default
   187---
   188apiVersion: v1
   189kind: Service
   190metadata:
   191  labels:
   192    app.kubernetes.io/component: controller
   193    app.kubernetes.io/name: prometheus-operator
   194    app.kubernetes.io/version: 0.75.2
   195  name: prometheus-operator
   196  namespace: default
   197spec:
   198  clusterIP: None
   199  ports:
   200  - name: http
   201    port: 8080
   202    targetPort: http
   203  selector:
   204    app.kubernetes.io/component: controller
   205    app.kubernetes.io/name: prometheus-operator

View as plain text