github.com/percona/percona-xtradb-cluster-operator@v1.14.0/e2e-tests/security-context/compare/statefulset_sec-context-proxysql-changes.yml (about) 1 apiVersion: apps/v1 2 kind: StatefulSet 3 metadata: 4 generation: 2 5 name: sec-context-proxysql 6 ownerReferences: 7 - controller: true 8 kind: PerconaXtraDBCluster 9 name: sec-context 10 spec: 11 podManagementPolicy: OrderedReady 12 replicas: 2 13 revisionHistoryLimit: 10 14 selector: 15 matchLabels: 16 app.kubernetes.io/component: proxysql 17 app.kubernetes.io/instance: sec-context 18 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 19 app.kubernetes.io/name: percona-xtradb-cluster 20 app.kubernetes.io/part-of: percona-xtradb-cluster 21 serviceName: sec-context-proxysql-unready 22 template: 23 metadata: 24 labels: 25 app.kubernetes.io/component: proxysql 26 app.kubernetes.io/instance: sec-context 27 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 28 app.kubernetes.io/name: percona-xtradb-cluster 29 app.kubernetes.io/part-of: percona-xtradb-cluster 30 spec: 31 containers: 32 - env: 33 - name: PXC_SERVICE 34 value: sec-context-pxc 35 - name: OPERATOR_PASSWORD 36 valueFrom: 37 secretKeyRef: 38 key: operator 39 name: internal-sec-context 40 - name: PROXY_ADMIN_USER 41 value: proxyadmin 42 - name: PROXY_ADMIN_PASSWORD 43 valueFrom: 44 secretKeyRef: 45 key: proxyadmin 46 name: internal-sec-context 47 - name: MONITOR_PASSWORD 48 valueFrom: 49 secretKeyRef: 50 key: monitor 51 name: internal-sec-context 52 envFrom: 53 - secretRef: 54 name: sec-context-env-vars-proxysql 55 optional: true 56 imagePullPolicy: Always 57 name: proxysql 58 ports: 59 - containerPort: 3306 60 name: mysql 61 protocol: TCP 62 - containerPort: 6032 63 name: proxyadm 64 protocol: TCP 65 resources: 66 requests: 67 cpu: 100m 68 memory: 100M 69 securityContext: 70 privileged: true 71 terminationMessagePath: /dev/termination-log 72 terminationMessagePolicy: File 73 volumeMounts: 74 - mountPath: /var/lib/proxysql 75 name: proxydata 76 - mountPath: /etc/proxysql/ssl 77 name: ssl 78 - mountPath: /etc/proxysql/ssl-internal 79 name: ssl-internal 80 - args: 81 - /usr/bin/peer-list 82 - -on-change=/usr/bin/add_pxc_nodes.sh 83 - -service=$(PXC_SERVICE) 84 env: 85 - name: PXC_SERVICE 86 value: sec-context-pxc 87 - name: OPERATOR_PASSWORD 88 valueFrom: 89 secretKeyRef: 90 key: operator 91 name: internal-sec-context 92 - name: PROXY_ADMIN_USER 93 value: proxyadmin 94 - name: PROXY_ADMIN_PASSWORD 95 valueFrom: 96 secretKeyRef: 97 key: proxyadmin 98 name: internal-sec-context 99 - name: MONITOR_PASSWORD 100 valueFrom: 101 secretKeyRef: 102 key: monitor 103 name: internal-sec-context 104 envFrom: 105 - secretRef: 106 name: sec-context-env-vars-proxysql 107 optional: true 108 imagePullPolicy: Always 109 name: pxc-monit 110 resources: {} 111 terminationMessagePath: /dev/termination-log 112 terminationMessagePolicy: File 113 - args: 114 - /usr/bin/peer-list 115 - -on-change=/usr/bin/add_proxysql_nodes.sh 116 - -service=$(PROXYSQL_SERVICE) 117 env: 118 - name: PROXYSQL_SERVICE 119 value: sec-context-proxysql-unready 120 - name: OPERATOR_PASSWORD 121 valueFrom: 122 secretKeyRef: 123 key: operator 124 name: internal-sec-context 125 - name: PROXY_ADMIN_USER 126 value: proxyadmin 127 - name: PROXY_ADMIN_PASSWORD 128 valueFrom: 129 secretKeyRef: 130 key: proxyadmin 131 name: internal-sec-context 132 - name: MONITOR_PASSWORD 133 valueFrom: 134 secretKeyRef: 135 key: monitor 136 name: internal-sec-context 137 envFrom: 138 - secretRef: 139 name: sec-context-env-vars-proxysql 140 optional: true 141 imagePullPolicy: Always 142 name: proxysql-monit 143 resources: {} 144 terminationMessagePath: /dev/termination-log 145 terminationMessagePolicy: File 146 dnsPolicy: ClusterFirst 147 initContainers: 148 - command: 149 - /pxc-init-entrypoint.sh 150 imagePullPolicy: Always 151 name: pxc-init 152 resources: 153 limits: 154 cpu: 50m 155 memory: 50M 156 securityContext: 157 privileged: true 158 terminationMessagePath: /dev/termination-log 159 terminationMessagePolicy: File 160 volumeMounts: 161 - mountPath: /var/lib/mysql 162 name: bin 163 restartPolicy: Always 164 schedulerName: default-scheduler 165 securityContext: 166 runAsGroup: 1001 167 runAsUser: 1001 168 supplementalGroups: 169 - 1001 170 serviceAccount: percona-xtradb-cluster-operator-workload 171 serviceAccountName: percona-xtradb-cluster-operator-workload 172 terminationGracePeriodSeconds: 30 173 topologySpreadConstraints: 174 - labelSelector: 175 matchLabels: 176 app.kubernetes.io/component: proxysql 177 app.kubernetes.io/instance: sec-context 178 app.kubernetes.io/managed-by: percona-xtradb-cluster-operator 179 app.kubernetes.io/name: percona-xtradb-cluster 180 app.kubernetes.io/part-of: percona-xtradb-cluster 181 maxSkew: 1 182 topologyKey: kubernetes.io/hostname 183 whenUnsatisfiable: ScheduleAnyway 184 volumes: 185 - name: ssl-internal 186 secret: 187 defaultMode: 420 188 optional: true 189 secretName: some-name-ssl-internal 190 - name: ssl 191 secret: 192 defaultMode: 420 193 optional: false 194 secretName: some-name-ssl 195 - emptyDir: {} 196 name: bin 197 updateStrategy: 198 rollingUpdate: 199 partition: 0 200 type: RollingUpdate 201 volumeClaimTemplates: 202 - metadata: 203 name: proxydata 204 spec: 205 accessModes: 206 - ReadWriteOnce 207 resources: 208 requests: 209 storage: 6Gi 210 status: 211 phase: Pending