github.com/percona/percona-xtradb-cluster-operator@v1.14.0/e2e-tests/security-context/compare/statefulset_sec-context-proxysql-changes-k127.yml (about) 1 apiVersion: apps/v1 2 kind: StatefulSet 3 metadata: 4 generation: 2 5 name: sec-context-proxysql 6 ownerReferences: 7 - controller: true 8 kind: PerconaXtraDBCluster 9 name: sec-context 10 spec: 11 persistentVolumeClaimRetentionPolicy: 12 whenDeleted: Retain 13 whenScaled: Retain 14 podManagementPolicy: OrderedReady 15 replicas: 2 16 revisionHistoryLimit: 10 17 selector: 18 matchLabels: 19 app.kubernetes.io/component: proxysql 20 app.kubernetes.io/instance: sec-context 21 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 22 app.kubernetes.io/name: percona-xtradb-cluster 23 app.kubernetes.io/part-of: percona-xtradb-cluster 24 serviceName: sec-context-proxysql-unready 25 template: 26 metadata: 27 labels: 28 app.kubernetes.io/component: proxysql 29 app.kubernetes.io/instance: sec-context 30 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 31 app.kubernetes.io/name: percona-xtradb-cluster 32 app.kubernetes.io/part-of: percona-xtradb-cluster 33 spec: 34 containers: 35 - env: 36 - name: PXC_SERVICE 37 value: sec-context-pxc 38 - name: OPERATOR_PASSWORD 39 valueFrom: 40 secretKeyRef: 41 key: operator 42 name: internal-sec-context 43 - name: PROXY_ADMIN_USER 44 value: proxyadmin 45 - name: PROXY_ADMIN_PASSWORD 46 valueFrom: 47 secretKeyRef: 48 key: proxyadmin 49 name: internal-sec-context 50 - name: MONITOR_PASSWORD 51 valueFrom: 52 secretKeyRef: 53 key: monitor 54 name: internal-sec-context 55 envFrom: 56 - secretRef: 57 name: sec-context-env-vars-proxysql 58 optional: true 59 imagePullPolicy: Always 60 name: proxysql 61 ports: 62 - containerPort: 3306 63 name: mysql 64 protocol: TCP 65 - containerPort: 6032 66 name: proxyadm 67 protocol: TCP 68 resources: 69 requests: 70 cpu: 100m 71 memory: 100M 72 securityContext: 73 privileged: true 74 terminationMessagePath: /dev/termination-log 75 terminationMessagePolicy: File 76 volumeMounts: 77 - mountPath: /var/lib/proxysql 78 name: proxydata 79 - mountPath: /etc/proxysql/ssl 80 name: ssl 81 - mountPath: /etc/proxysql/ssl-internal 82 name: ssl-internal 83 - args: 84 - /usr/bin/peer-list 85 - -on-change=/usr/bin/add_pxc_nodes.sh 86 - -service=$(PXC_SERVICE) 87 env: 88 - name: PXC_SERVICE 89 value: sec-context-pxc 90 - name: OPERATOR_PASSWORD 91 valueFrom: 92 secretKeyRef: 93 key: operator 94 name: internal-sec-context 95 - name: PROXY_ADMIN_USER 96 value: proxyadmin 97 - name: PROXY_ADMIN_PASSWORD 98 valueFrom: 99 secretKeyRef: 100 key: proxyadmin 101 name: internal-sec-context 102 - name: MONITOR_PASSWORD 103 valueFrom: 104 secretKeyRef: 105 key: monitor 106 name: internal-sec-context 107 envFrom: 108 - secretRef: 109 name: sec-context-env-vars-proxysql 110 optional: true 111 imagePullPolicy: Always 112 name: pxc-monit 113 resources: {} 114 terminationMessagePath: /dev/termination-log 115 terminationMessagePolicy: File 116 - args: 117 - /usr/bin/peer-list 118 - -on-change=/usr/bin/add_proxysql_nodes.sh 119 - -service=$(PROXYSQL_SERVICE) 120 env: 121 - name: PROXYSQL_SERVICE 122 value: sec-context-proxysql-unready 123 - name: OPERATOR_PASSWORD 124 valueFrom: 125 secretKeyRef: 126 key: operator 127 name: internal-sec-context 128 - name: PROXY_ADMIN_USER 129 value: proxyadmin 130 - name: PROXY_ADMIN_PASSWORD 131 valueFrom: 132 secretKeyRef: 133 key: proxyadmin 134 name: internal-sec-context 135 - name: MONITOR_PASSWORD 136 valueFrom: 137 secretKeyRef: 138 key: monitor 139 name: internal-sec-context 140 envFrom: 141 - secretRef: 142 name: sec-context-env-vars-proxysql 143 optional: true 144 imagePullPolicy: Always 145 name: proxysql-monit 146 resources: {} 147 terminationMessagePath: /dev/termination-log 148 terminationMessagePolicy: File 149 dnsPolicy: ClusterFirst 150 initContainers: 151 - command: 152 - /pxc-init-entrypoint.sh 153 imagePullPolicy: Always 154 name: pxc-init 155 resources: 156 limits: 157 cpu: 50m 158 memory: 50M 159 securityContext: 160 privileged: true 161 terminationMessagePath: /dev/termination-log 162 terminationMessagePolicy: File 163 volumeMounts: 164 - mountPath: /var/lib/mysql 165 name: bin 166 restartPolicy: Always 167 schedulerName: default-scheduler 168 securityContext: 169 runAsGroup: 1001 170 runAsUser: 1001 171 supplementalGroups: 172 - 1001 173 serviceAccount: percona-xtradb-cluster-operator-workload 174 serviceAccountName: percona-xtradb-cluster-operator-workload 175 terminationGracePeriodSeconds: 30 176 topologySpreadConstraints: 177 - labelSelector: 178 matchLabels: 179 app.kubernetes.io/component: proxysql 180 app.kubernetes.io/instance: sec-context 181 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 182 app.kubernetes.io/name: percona-xtradb-cluster 183 app.kubernetes.io/part-of: percona-xtradb-cluster 184 maxSkew: 1 185 topologyKey: kubernetes.io/hostname 186 whenUnsatisfiable: ScheduleAnyway 187 volumes: 188 - name: ssl-internal 189 secret: 190 defaultMode: 420 191 optional: true 192 secretName: some-name-ssl-internal 193 - name: ssl 194 secret: 195 defaultMode: 420 196 optional: false 197 secretName: some-name-ssl 198 - emptyDir: {} 199 name: bin 200 updateStrategy: 201 rollingUpdate: 202 partition: 0 203 type: RollingUpdate 204 volumeClaimTemplates: 205 - metadata: 206 name: proxydata 207 spec: 208 accessModes: 209 - ReadWriteOnce 210 resources: 211 requests: 212 storage: 6Gi 213 status: 214 phase: Pending