istio.io/istio@v0.0.0-20240520182934-d79c90f27776/operator/cmd/mesh/testdata/manifest-generate/output/pilot_k8s_settings.golden.yaml (about) 1 apiVersion: apps/v1 2 kind: Deployment 3 metadata: 4 labels: 5 app: istiod 6 install.operator.istio.io/owning-resource: unknown 7 istio: pilot 8 istio.io/rev: default 9 operator.istio.io/component: Pilot 10 release: istio 11 name: istiod 12 namespace: istio-control 13 spec: 14 selector: 15 matchLabels: 16 istio: pilot 17 strategy: 18 rollingUpdate: 19 maxSurge: 100% 20 maxUnavailable: 25% 21 template: 22 metadata: 23 annotations: 24 ambient.istio.io/redirection: disabled 25 prometheus.io/port: "15014" 26 prometheus.io/scrape: "true" 27 sidecar.istio.io/inject: "false" 28 labels: 29 app: istiod 30 install.operator.istio.io/owning-resource: unknown 31 istio: pilot 32 istio.io/rev: default 33 operator.istio.io/component: Pilot 34 sidecar.istio.io/inject: "false" 35 spec: 36 containers: 37 - args: 38 - discovery 39 - --monitoringAddr=:15014 40 - --log_output_level=default:info 41 - --domain 42 - cluster.local 43 - --keepaliveMaxServerConnectionAge 44 - 30m 45 env: 46 - name: REVISION 47 value: default 48 - name: JWT_POLICY 49 value: third-party-jwt 50 - name: PILOT_CERT_PROVIDER 51 value: istiod 52 - name: POD_NAME 53 valueFrom: 54 fieldRef: 55 apiVersion: v1 56 fieldPath: new.path 57 - name: GODEBUG 58 value: gctrace=111 59 - name: NEW_VAR 60 value: new_value 61 - name: POD_NAMESPACE 62 valueFrom: 63 fieldRef: 64 apiVersion: v1 65 fieldPath: metadata.namespace 66 - name: SERVICE_ACCOUNT 67 valueFrom: 68 fieldRef: 69 apiVersion: v1 70 fieldPath: spec.serviceAccountName 71 - name: KUBECONFIG 72 value: /var/run/secrets/remote/config 73 - name: PILOT_TRACE_SAMPLING 74 value: "1" 75 - name: PILOT_ENABLE_ANALYSIS 76 value: "false" 77 - name: CLUSTER_ID 78 value: Kubernetes 79 - name: GOMEMLIMIT 80 valueFrom: 81 resourceFieldRef: 82 resource: limits.memory 83 - name: GOMAXPROCS 84 valueFrom: 85 resourceFieldRef: 86 resource: limits.cpu 87 - name: PLATFORM 88 value: "" 89 image: docker.io/istio/pilot:1.1.4 90 name: discovery 91 ports: 92 - containerPort: 8080 93 protocol: TCP 94 - containerPort: 15010 95 protocol: TCP 96 - containerPort: 15017 97 protocol: TCP 98 readinessProbe: 99 httpGet: 100 path: /ready 101 port: 8080 102 initialDelaySeconds: 555 103 periodSeconds: 3 104 timeoutSeconds: 5 105 resources: 106 requests: 107 cpu: 500m 108 memory: 999Mi 109 securityContext: 110 allowPrivilegeEscalation: false 111 capabilities: 112 drop: 113 - ALL 114 readOnlyRootFilesystem: true 115 runAsNonRoot: true 116 volumeMounts: 117 - mountPath: /var/run/secrets/tokens 118 name: istio-token 119 readOnly: true 120 - mountPath: /var/run/secrets/istio-dns 121 name: local-certs 122 - mountPath: /etc/cacerts 123 name: cacerts 124 readOnly: true 125 - mountPath: /var/run/secrets/remote 126 name: istio-kubeconfig 127 readOnly: true 128 - mountPath: /var/run/secrets/istiod/tls 129 name: istio-csr-dns-cert 130 readOnly: true 131 - mountPath: /var/run/secrets/istiod/ca 132 name: istio-csr-ca-configmap 133 readOnly: true 134 nodeSelector: 135 master: "true" 136 serviceAccountName: istiod 137 volumes: 138 - emptyDir: 139 medium: Memory 140 name: local-certs 141 - name: istio-token 142 projected: 143 sources: 144 - serviceAccountToken: 145 audience: istio-ca 146 expirationSeconds: 43200 147 path: istio-token 148 - name: cacerts 149 secret: 150 optional: true 151 secretName: cacerts 152 - name: istio-kubeconfig 153 secret: 154 optional: true 155 secretName: istio-kubeconfig 156 - name: istio-csr-dns-cert 157 secret: 158 optional: true 159 secretName: istiod-tls 160 - configMap: 161 defaultMode: 420 162 name: istio-ca-root-cert 163 optional: true 164 name: istio-csr-ca-configmap 165 166 --- 167 168 169 apiVersion: autoscaling/v2 170 kind: HorizontalPodAutoscaler 171 metadata: 172 labels: 173 app: istiod 174 install.operator.istio.io/owning-resource: unknown 175 istio.io/rev: default 176 operator.istio.io/component: Pilot 177 release: istio 178 name: istiod 179 namespace: istio-control 180 spec: 181 maxReplicas: 333 182 metrics: 183 - resource: 184 name: cpu 185 target: 186 averageUtilization: 444 187 type: Utilization 188 type: Resource 189 - resource: 190 name: memory 191 target: 192 averageUtilization: 444 193 type: Utilization 194 type: Resource 195 minReplicas: 1 196 scaleTargetRef: 197 apiVersion: apps/v1 198 kind: Deployment 199 name: istio-pilot 200 201 ---