golang.org/x/build@v0.0.0-20240506185731-218518f32b70/cmd/coordinator/deployment-prod.yaml (about)

     1  # Copyright 2022 The Go Authors. All rights reserved.
     2  # Use of this source code is governed by a BSD-style
     3  # license that can be found in the LICENSE file.
     4  
     5  apiVersion: apps/v1
     6  kind: Deployment
     7  metadata:
     8    namespace: prod
     9    name: coordinator-deployment
    10  spec:
    11    selector:
    12      matchLabels:
    13        app: coordinator
    14    template:
    15      metadata:
    16        labels:
    17          app: coordinator
    18        annotations:
    19          container.seccomp.security.alpha.kubernetes.io/coordinator: docker/default
    20          container.apparmor.security.beta.kubernetes.io/coordinator: runtime/default
    21      spec:
    22        serviceAccountName: coordinator
    23        containers:
    24        - name: coordinator
    25          image: gcr.io/symbolic-datum-552/coordinator:latest
    26          imagePullPolicy: Always
    27          command: ["/coordinator", "-listen-http=:80", "-listen-https-autocert=:443", "-autocert-bucket=farmer-golang-org-autocert-cache", "-listen-https-selfsigned=:444"]
    28          ports:
    29          - containerPort: 80
    30          - containerPort: 443
    31          - containerPort: 444
    32          - containerPort: 2222 # ssh proxy port
    33          - containerPort: 8123 # module proxy port (internal, not accessible directly from public)
    34          resources:
    35            requests:
    36              cpu: "4"
    37              memory: "32Gi"
    38            limits:
    39              cpu: "6"
    40              memory: "36Gi"
    41  ---
    42  apiVersion: v1
    43  kind: Service
    44  metadata:
    45    namespace: prod
    46    name: coordinator
    47  spec:
    48    ports:
    49      - port: 80
    50        targetPort: 80
    51        name: http
    52      - port: 443
    53        targetPort: 443
    54        name: https
    55      - port: 2222
    56        targetPort: 2222
    57        name: ssh
    58    selector:
    59      app: coordinator
    60    type: LoadBalancer
    61    loadBalancerIP: 107.178.219.46
    62    externalTrafficPolicy: Local
    63  ---
    64  apiVersion: v1
    65  kind: Service
    66  metadata:
    67    namespace: prod
    68    name: coordinator-internal-iap
    69    annotations:
    70      cloud.google.com/backend-config: '{"default": "coordinator-iap-backend"}'
    71      cloud.google.com/neg: '{"ingress": false}'
    72      cloud.google.com/app-protocols: '{"https":"HTTP2"}'
    73  spec:
    74    ports:
    75      - port: 444
    76        targetPort: 444
    77        name: https
    78    selector:
    79      app: coordinator
    80    type: NodePort
    81  ---
    82  apiVersion: v1
    83  kind: Service
    84  metadata:
    85    namespace: prod
    86    name: coordinator-internal
    87    annotations:
    88      cloud.google.com/neg: '{"ingress": false}'
    89      cloud.google.com/app-protocols: '{"https":"HTTP2"}'
    90  spec:
    91    ports:
    92      - port: 444
    93        targetPort: 444
    94        name: https
    95    selector:
    96      app: coordinator
    97    type: NodePort
    98  ---
    99  apiVersion: cloud.google.com/v1
   100  kind: BackendConfig
   101  metadata:
   102    namespace: prod
   103    name: coordinator-iap-backend
   104  spec:
   105    iap:
   106      enabled: true
   107      oauthclientCredentials:
   108        secretName: iap-oauth
   109    timeoutSec: 86400  # For long-running gomote RPCs. See https://go.dev/issue/56423.