github.com/pachyderm/pachyderm@v1.13.4/etc/testing/deploy-manifests/golden/custom-deploy-manifest.yaml (about) 1 apiVersion: v1 2 kind: ServiceAccount 3 metadata: 4 creationTimestamp: null 5 labels: 6 app: "" 7 suite: pachyderm 8 name: pachyderm 9 namespace: pachyderm 10 --- 11 apiVersion: v1 12 kind: ServiceAccount 13 metadata: 14 creationTimestamp: null 15 labels: 16 app: "" 17 suite: pachyderm 18 name: pachyderm-worker 19 namespace: pachyderm 20 --- 21 apiVersion: rbac.authorization.k8s.io/v1 22 kind: ClusterRole 23 metadata: 24 creationTimestamp: null 25 labels: 26 app: "" 27 suite: pachyderm 28 name: pachyderm 29 namespace: pachyderm 30 rules: 31 - apiGroups: 32 - "" 33 resources: 34 - nodes 35 - pods 36 - pods/log 37 - endpoints 38 verbs: 39 - get 40 - list 41 - watch 42 - apiGroups: 43 - "" 44 resources: 45 - replicationcontrollers 46 - services 47 - replicationcontrollers/scale 48 verbs: 49 - get 50 - list 51 - watch 52 - create 53 - update 54 - delete 55 - apiGroups: 56 - "" 57 resources: 58 - secrets 59 verbs: 60 - get 61 - list 62 - watch 63 - create 64 - update 65 - delete 66 - deletecollection 67 --- 68 apiVersion: rbac.authorization.k8s.io/v1 69 kind: ClusterRoleBinding 70 metadata: 71 creationTimestamp: null 72 labels: 73 app: "" 74 suite: pachyderm 75 name: pachyderm-pachyderm 76 namespace: pachyderm 77 roleRef: 78 apiGroup: "" 79 kind: ClusterRole 80 name: pachyderm 81 subjects: 82 - kind: ServiceAccount 83 name: pachyderm 84 namespace: pachyderm 85 --- 86 apiVersion: rbac.authorization.k8s.io/v1 87 kind: Role 88 metadata: 89 creationTimestamp: null 90 labels: 91 app: "" 92 suite: pachyderm 93 name: pachyderm-worker 94 namespace: pachyderm 95 rules: 96 - apiGroups: 97 - "" 98 resources: 99 - services 100 verbs: 101 - get 102 - list 103 - update 104 - create 105 - delete 106 --- 107 apiVersion: rbac.authorization.k8s.io/v1 108 kind: RoleBinding 109 metadata: 110 creationTimestamp: null 111 labels: 112 app: "" 113 suite: pachyderm 114 name: pachyderm-worker 115 namespace: pachyderm 116 roleRef: 117 apiGroup: "" 118 kind: Role 119 name: pachyderm-worker 120 subjects: 121 - kind: ServiceAccount 122 name: pachyderm-worker 123 namespace: pachyderm 124 --- 125 apiVersion: v1 126 kind: Service 127 metadata: 128 creationTimestamp: null 129 labels: 130 app: etcd 131 suite: pachyderm 132 name: etcd-headless 133 namespace: pachyderm 134 spec: 135 clusterIP: None 136 ports: 137 - name: peer-port 138 port: 2380 139 targetPort: 0 140 selector: 141 app: etcd 142 status: 143 loadBalancer: {} 144 --- 145 apiVersion: apps/v1 146 kind: StatefulSet 147 metadata: 148 labels: 149 app: etcd 150 suite: pachyderm 151 name: etcd 152 namespace: pachyderm 153 spec: 154 replicas: 3 155 selector: 156 matchLabels: 157 app: etcd 158 suite: pachyderm 159 serviceName: etcd-headless 160 template: 161 metadata: 162 labels: 163 app: etcd 164 suite: pachyderm 165 name: etcd 166 namespace: pachyderm 167 spec: 168 containers: 169 - args: 170 - '"/usr/local/bin/etcd" "--listen-client-urls=http://0.0.0.0:2379" "--advertise-client-urls=http://0.0.0.0:2379" 171 "--data-dir=/var/data/etcd" "--auto-compaction-retention=1" "--max-txn-ops=10000" 172 "--max-request-bytes=52428800" "--quota-backend-bytes=8589934592" "--listen-peer-urls=http://0.0.0.0:2380" 173 "--initial-cluster-token=pach-cluster" "--initial-advertise-peer-urls=http://${ETCD_NAME}.etcd-headless.${NAMESPACE}.svc.cluster.local:2380" 174 "--initial-cluster=etcd-0=http://etcd-0.etcd-headless.${NAMESPACE}.svc.cluster.local:2380,etcd-1=http://etcd-1.etcd-headless.${NAMESPACE}.svc.cluster.local:2380,etcd-2=http://etcd-2.etcd-headless.${NAMESPACE}.svc.cluster.local:2380"' 175 command: 176 - /bin/sh 177 - -c 178 env: 179 - name: ETCD_NAME 180 valueFrom: 181 fieldRef: 182 apiVersion: v1 183 fieldPath: metadata.name 184 - name: NAMESPACE 185 valueFrom: 186 fieldRef: 187 apiVersion: v1 188 fieldPath: metadata.namespace 189 image: pachyderm/etcd:v3.3.5 190 imagePullPolicy: IfNotPresent 191 name: etcd 192 ports: 193 - containerPort: 2379 194 name: client-port 195 - containerPort: 2380 196 name: peer-port 197 resources: 198 requests: 199 cpu: "1" 200 memory: 2G 201 volumeMounts: 202 - mountPath: /var/data/etcd 203 name: etcd-storage 204 imagePullSecrets: null 205 volumeClaimTemplates: 206 - metadata: 207 annotations: 208 volume.beta.kubernetes.io/storage-class: storage-class 209 labels: 210 app: etcd 211 suite: pachyderm 212 name: etcd-storage 213 namespace: pachyderm 214 spec: 215 accessModes: 216 - ReadWriteOnce 217 resources: 218 requests: 219 storage: 50Gi 220 --- 221 apiVersion: v1 222 kind: Service 223 metadata: 224 creationTimestamp: null 225 labels: 226 app: etcd 227 suite: pachyderm 228 name: etcd 229 namespace: pachyderm 230 spec: 231 ports: 232 - name: client-port 233 port: 2379 234 targetPort: 0 235 selector: 236 app: etcd 237 type: NodePort 238 status: 239 loadBalancer: {} 240 --- 241 apiVersion: v1 242 kind: Service 243 metadata: 244 annotations: 245 prometheus.io/port: "656" 246 prometheus.io/scrape: "true" 247 creationTimestamp: null 248 labels: 249 app: pachd 250 suite: pachyderm 251 name: pachd 252 namespace: pachyderm 253 spec: 254 ports: 255 - name: api-grpc-port 256 nodePort: 30650 257 port: 650 258 targetPort: 0 259 - name: trace-port 260 nodePort: 30651 261 port: 651 262 targetPort: 0 263 - name: api-http-port 264 nodePort: 30652 265 port: 652 266 targetPort: 0 267 - name: saml-port 268 nodePort: 30654 269 port: 654 270 targetPort: 0 271 - name: oidc-port 272 nodePort: 30657 273 port: 657 274 targetPort: 0 275 - name: api-git-port 276 nodePort: 30655 277 port: 655 278 targetPort: 0 279 - name: s3gateway-port 280 nodePort: 30600 281 port: 600 282 targetPort: 0 283 - name: prom-metrics 284 nodePort: 30656 285 port: 656 286 protocol: TCP 287 targetPort: 656 288 selector: 289 app: pachd 290 type: NodePort 291 status: 292 loadBalancer: {} 293 --- 294 apiVersion: v1 295 kind: Service 296 metadata: 297 creationTimestamp: null 298 labels: 299 app: pachd 300 suite: pachyderm 301 name: pachd-peer 302 namespace: pachyderm 303 spec: 304 ports: 305 - name: api-grpc-peer-port 306 port: 30653 307 targetPort: 653 308 selector: 309 app: pachd 310 type: ClusterIP 311 status: 312 loadBalancer: {} 313 --- 314 apiVersion: apps/v1 315 kind: Deployment 316 metadata: 317 creationTimestamp: null 318 labels: 319 app: pachd 320 suite: pachyderm 321 name: pachd 322 namespace: pachyderm 323 spec: 324 replicas: 1 325 selector: 326 matchLabels: 327 app: pachd 328 suite: pachyderm 329 strategy: {} 330 template: 331 metadata: 332 annotations: 333 iam.amazonaws.com/role: "" 334 creationTimestamp: null 335 labels: 336 app: pachd 337 suite: pachyderm 338 name: pachd 339 namespace: pachyderm 340 spec: 341 containers: 342 - command: 343 - /pachd 344 env: 345 - name: PACH_ROOT 346 value: /pach 347 - name: ETCD_PREFIX 348 - name: NUM_SHARDS 349 value: "16" 350 - name: STORAGE_BACKEND 351 value: AMAZON 352 - name: STORAGE_HOST_PATH 353 - name: WORKER_IMAGE 354 value: pachyderm/worker:1.13.4 355 - name: IMAGE_PULL_SECRET 356 - name: WORKER_SIDECAR_IMAGE 357 value: pachyderm/pachd:1.13.4 358 - name: WORKER_IMAGE_PULL_POLICY 359 value: IfNotPresent 360 - name: WORKER_SERVICE_ACCOUNT 361 value: pachyderm-worker 362 - name: PACHD_VERSION 363 value: 1.13.4 364 - name: METRICS 365 value: "true" 366 - name: LOG_LEVEL 367 value: info 368 - name: BLOCK_CACHE_BYTES 369 value: 1G 370 - name: IAM_ROLE 371 - name: NO_EXPOSE_DOCKER_SOCKET 372 value: "true" 373 - name: PACHYDERM_AUTHENTICATION_DISABLED_FOR_TESTING 374 value: "false" 375 - name: PACH_NAMESPACE 376 valueFrom: 377 fieldRef: 378 apiVersion: v1 379 fieldPath: metadata.namespace 380 - name: PACHD_MEMORY_REQUEST 381 valueFrom: 382 resourceFieldRef: 383 containerName: pachd 384 divisor: "0" 385 resource: requests.memory 386 - name: EXPOSE_OBJECT_API 387 value: "false" 388 - name: CLUSTER_DEPLOYMENT_ID 389 value: test 390 - name: REQUIRE_CRITICAL_SERVERS_ONLY 391 value: "false" 392 - name: PACHD_POD_NAME 393 valueFrom: 394 fieldRef: 395 apiVersion: v1 396 fieldPath: metadata.name 397 - name: PPS_WORKER_GRPC_PORT 398 value: "80" 399 - name: GOOGLE_BUCKET 400 valueFrom: 401 secretKeyRef: 402 key: google-bucket 403 name: pachyderm-storage-secret 404 optional: true 405 - name: GOOGLE_CRED 406 valueFrom: 407 secretKeyRef: 408 key: google-cred 409 name: pachyderm-storage-secret 410 optional: true 411 - name: MICROSOFT_CONTAINER 412 valueFrom: 413 secretKeyRef: 414 key: microsoft-container 415 name: pachyderm-storage-secret 416 optional: true 417 - name: MICROSOFT_ID 418 valueFrom: 419 secretKeyRef: 420 key: microsoft-id 421 name: pachyderm-storage-secret 422 optional: true 423 - name: MICROSOFT_SECRET 424 valueFrom: 425 secretKeyRef: 426 key: microsoft-secret 427 name: pachyderm-storage-secret 428 optional: true 429 - name: MINIO_BUCKET 430 valueFrom: 431 secretKeyRef: 432 key: minio-bucket 433 name: pachyderm-storage-secret 434 optional: true 435 - name: MINIO_ENDPOINT 436 valueFrom: 437 secretKeyRef: 438 key: minio-endpoint 439 name: pachyderm-storage-secret 440 optional: true 441 - name: MINIO_ID 442 valueFrom: 443 secretKeyRef: 444 key: minio-id 445 name: pachyderm-storage-secret 446 optional: true 447 - name: MINIO_SECRET 448 valueFrom: 449 secretKeyRef: 450 key: minio-secret 451 name: pachyderm-storage-secret 452 optional: true 453 - name: MINIO_SECURE 454 valueFrom: 455 secretKeyRef: 456 key: minio-secure 457 name: pachyderm-storage-secret 458 optional: true 459 - name: MINIO_SIGNATURE 460 valueFrom: 461 secretKeyRef: 462 key: minio-signature 463 name: pachyderm-storage-secret 464 optional: true 465 - name: AMAZON_REGION 466 valueFrom: 467 secretKeyRef: 468 key: amazon-region 469 name: pachyderm-storage-secret 470 optional: true 471 - name: AMAZON_BUCKET 472 valueFrom: 473 secretKeyRef: 474 key: amazon-bucket 475 name: pachyderm-storage-secret 476 optional: true 477 - name: AMAZON_ID 478 valueFrom: 479 secretKeyRef: 480 key: amazon-id 481 name: pachyderm-storage-secret 482 optional: true 483 - name: AMAZON_SECRET 484 valueFrom: 485 secretKeyRef: 486 key: amazon-secret 487 name: pachyderm-storage-secret 488 optional: true 489 - name: AMAZON_TOKEN 490 valueFrom: 491 secretKeyRef: 492 key: amazon-token 493 name: pachyderm-storage-secret 494 optional: true 495 - name: AMAZON_VAULT_ADDR 496 valueFrom: 497 secretKeyRef: 498 key: amazon-vault-addr 499 name: pachyderm-storage-secret 500 optional: true 501 - name: AMAZON_VAULT_ROLE 502 valueFrom: 503 secretKeyRef: 504 key: amazon-vault-role 505 name: pachyderm-storage-secret 506 optional: true 507 - name: AMAZON_VAULT_TOKEN 508 valueFrom: 509 secretKeyRef: 510 key: amazon-vault-token 511 name: pachyderm-storage-secret 512 optional: true 513 - name: AMAZON_DISTRIBUTION 514 valueFrom: 515 secretKeyRef: 516 key: amazon-distribution 517 name: pachyderm-storage-secret 518 optional: true 519 - name: CUSTOM_ENDPOINT 520 valueFrom: 521 secretKeyRef: 522 key: custom-endpoint 523 name: pachyderm-storage-secret 524 optional: true 525 - name: RETRIES 526 valueFrom: 527 secretKeyRef: 528 key: retries 529 name: pachyderm-storage-secret 530 optional: true 531 - name: TIMEOUT 532 valueFrom: 533 secretKeyRef: 534 key: timeout 535 name: pachyderm-storage-secret 536 optional: true 537 - name: UPLOAD_ACL 538 valueFrom: 539 secretKeyRef: 540 key: upload-acl 541 name: pachyderm-storage-secret 542 optional: true 543 - name: REVERSE 544 valueFrom: 545 secretKeyRef: 546 key: reverse 547 name: pachyderm-storage-secret 548 optional: true 549 - name: PART_SIZE 550 valueFrom: 551 secretKeyRef: 552 key: part-size 553 name: pachyderm-storage-secret 554 optional: true 555 - name: MAX_UPLOAD_PARTS 556 valueFrom: 557 secretKeyRef: 558 key: max-upload-parts 559 name: pachyderm-storage-secret 560 optional: true 561 - name: DISABLE_SSL 562 valueFrom: 563 secretKeyRef: 564 key: disable-ssl 565 name: pachyderm-storage-secret 566 optional: true 567 - name: NO_VERIFY_SSL 568 valueFrom: 569 secretKeyRef: 570 key: no-verify-ssl 571 name: pachyderm-storage-secret 572 optional: true 573 - name: OBJ_LOG_OPTS 574 valueFrom: 575 secretKeyRef: 576 key: log-options 577 name: pachyderm-storage-secret 578 optional: true 579 - name: STORAGE_UPLOAD_CONCURRENCY_LIMIT 580 value: "100" 581 - name: STORAGE_PUT_FILE_CONCURRENCY_LIMIT 582 value: "100" 583 - name: STORAGE_V2 584 value: "false" 585 image: pachyderm/pachd:1.13.4 586 imagePullPolicy: IfNotPresent 587 name: pachd 588 ports: 589 - containerPort: 650 590 name: api-grpc-port 591 protocol: TCP 592 - containerPort: 651 593 name: trace-port 594 - containerPort: 652 595 name: api-http-port 596 protocol: TCP 597 - containerPort: 653 598 name: peer-port 599 protocol: TCP 600 - containerPort: 655 601 name: api-git-port 602 protocol: TCP 603 - containerPort: 654 604 name: saml-port 605 protocol: TCP 606 - containerPort: 657 607 name: oidc-port 608 protocol: TCP 609 - containerPort: 656 610 name: prom-metrics 611 protocol: TCP 612 readinessProbe: 613 exec: 614 command: 615 - /pachd 616 - --readiness 617 resources: 618 limits: 619 cpu: "1" 620 memory: 3G 621 requests: 622 cpu: "1" 623 memory: 3G 624 volumeMounts: 625 - mountPath: /pach 626 name: pach-disk 627 - mountPath: /pachyderm-storage-secret 628 name: pachyderm-storage-secret 629 serviceAccountName: pachyderm 630 volumes: 631 - name: pach-disk 632 - name: pachyderm-storage-secret 633 secret: 634 secretName: pachyderm-storage-secret 635 status: {} 636 --- 637 apiVersion: v1 638 kind: Service 639 metadata: 640 creationTimestamp: null 641 labels: 642 app: dash 643 suite: pachyderm 644 name: dash 645 namespace: pachyderm 646 spec: 647 ports: 648 - name: dash-http 649 nodePort: 30080 650 port: 8080 651 targetPort: 0 652 - name: grpc-proxy-http 653 nodePort: 30081 654 port: 8081 655 targetPort: 0 656 selector: 657 app: dash 658 suite: pachyderm 659 type: NodePort 660 status: 661 loadBalancer: {} 662 --- 663 apiVersion: apps/v1 664 kind: Deployment 665 metadata: 666 creationTimestamp: null 667 labels: 668 app: dash 669 suite: pachyderm 670 name: dash 671 namespace: pachyderm 672 spec: 673 selector: 674 matchLabels: 675 app: dash 676 suite: pachyderm 677 strategy: {} 678 template: 679 metadata: 680 creationTimestamp: null 681 labels: 682 app: dash 683 suite: pachyderm 684 name: dash 685 namespace: pachyderm 686 spec: 687 containers: 688 - image: pachyderm/dash:0.5.57 689 imagePullPolicy: IfNotPresent 690 name: dash 691 ports: 692 - containerPort: 8080 693 name: dash-http 694 resources: {} 695 - image: pachyderm/grpc-proxy:0.4.10 696 imagePullPolicy: IfNotPresent 697 name: grpc-proxy 698 ports: 699 - containerPort: 8081 700 name: grpc-proxy-http 701 resources: {} 702 status: {} 703 --- 704 apiVersion: v1 705 data: 706 amazon-bucket: cGFjaC1idWNrZXQ= 707 amazon-distribution: "" 708 amazon-id: c3RvcmFnZS1pZA== 709 amazon-region: dXMtZWFzdC0x 710 amazon-secret: c3RvcmFnZS1zZWNyZXQ= 711 amazon-token: "" 712 custom-endpoint: c3RvcmFnZS5lbmRwb2ludA== 713 disable-ssl: ZmFsc2U= 714 log-options: "" 715 max-upload-parts: MTAwMDA= 716 no-verify-ssl: ZmFsc2U= 717 part-size: NTI0Mjg4MA== 718 retries: MTA= 719 reverse: dHJ1ZQ== 720 timeout: NW0= 721 upload-acl: YnVja2V0LW93bmVyLWZ1bGwtY29udHJvbA== 722 kind: Secret 723 metadata: 724 creationTimestamp: null 725 labels: 726 app: pachyderm-storage-secret 727 suite: pachyderm 728 name: pachyderm-storage-secret 729 namespace: pachyderm