Text file src/github.com/datawire/ambassador/v2/scripts/devloop-helpers/yaml/ambassador.yaml

Documentation: github.com/datawire/ambassador/v2/scripts/devloop-helpers/yaml

     1---
     2apiVersion: rbac.authorization.k8s.io/v1beta1
     3kind: ClusterRole
     4metadata:
     5  name: ambassador
     6rules:
     7- apiGroups: [""]
     8  resources:
     9  - configmaps
    10  - endpoints
    11  - namespaces
    12  - secrets
    13  - services
    14  verbs: ["get", "list", "watch"]
    15---
    16apiVersion: v1
    17kind: ServiceAccount
    18metadata:
    19  name: ambassador
    20---
    21apiVersion: rbac.authorization.k8s.io/v1beta1
    22kind: ClusterRoleBinding
    23metadata:
    24  name: ambassador
    25roleRef:
    26  apiGroup: rbac.authorization.k8s.io
    27  kind: ClusterRole
    28  name: ambassador
    29subjects:
    30- kind: ServiceAccount
    31  name: ambassador
    32  namespace: default
    33---
    34apiVersion: v1
    35kind: Service
    36metadata:
    37  name: ambassador
    38spec:
    39  type: NodePort
    40  ports:
    41  - name: http
    42    protocol: TCP
    43    port: 80
    44    targetPort: 80
    45  - name: https
    46    protocol: TCP
    47    port: 443
    48    targetPort: 443
    49  selector:
    50    service: ambassador
    51---
    52apiVersion: v1
    53kind: Service
    54metadata:
    55  labels:
    56    service: ambassador-admin
    57  name: ambassador-admin
    58  annotations:
    59    getambassador.io/config: |
    60      ---
    61      apiVersion: getambassador.io/v2
    62      kind:  TLSContext
    63      name:  server-context
    64      secret: client-cert-server-secret
    65      ---
    66      apiVersion: getambassador.io/v2
    67      kind:  TLSContext
    68      name:  client-context
    69      secret: client-cert-secret
    70spec:
    71  type: NodePort
    72  ports:
    73  - name: ambassador-admin
    74    port: 8877
    75    targetPort: 8877
    76  selector:
    77    service: ambassador
    78---
    79apiVersion: v1
    80kind: Pod
    81metadata:
    82  name: ambassador
    83  annotations:
    84    sidecar.istio.io/inject: "false"
    85  labels:
    86    service: ambassador
    87spec:
    88  serviceAccountName: ambassador
    89  containers:
    90  - name: ambassador
    91    image: ambassador:flynn-dev-watt-3f84549f-dirty
    92    env:
    93    - name: AMBASSADOR_NAMESPACE
    94      valueFrom:
    95        fieldRef:
    96          fieldPath: metadata.namespace
    97    - name: AMBASSADOR_DEBUG
    98      value: "diagd"
    99    livenessProbe:
   100      httpGet:
   101        path: /ambassador/v0/check_alive
   102        port: 8877
   103      initialDelaySeconds: 120
   104      periodSeconds: 3
   105    readinessProbe:
   106      httpGet:
   107        path: /ambassador/v0/check_ready
   108        port: 8877
   109      initialDelaySeconds: 120
   110      periodSeconds: 3
   111  restartPolicy: Always

View as plain text