k8s.io/kubernetes@v1.31.0-alpha.0.0.20240520171757-56147500dadc/cluster/addons/metadata-proxy/gce/metadata-proxy.yaml

k8s.io/kubernetes@v1.31.0-alpha.0.0.20240520171757-56147500dadc/cluster/addons/metadata-proxy/gce/metadata-proxy.yaml (about)

     1  apiVersion: v1
     2  kind: ServiceAccount
     3  metadata:
     4    name: metadata-proxy
     5    namespace: kube-system
     6    labels:
     7      k8s-app: metadata-proxy
     8      kubernetes.io/cluster-service: "true"
     9      addonmanager.kubernetes.io/mode: Reconcile
    10  ---
    11  apiVersion: apps/v1
    12  kind: DaemonSet
    13  metadata:
    14    name: metadata-proxy-v0.1
    15    namespace: kube-system
    16    labels:
    17      k8s-app: metadata-proxy
    18      kubernetes.io/cluster-service: "true"
    19      addonmanager.kubernetes.io/mode: Reconcile
    20      version: v0.1
    21  spec:
    22    selector:
    23      matchLabels:
    24        k8s-app: metadata-proxy
    25        version: v0.1
    26    updateStrategy:
    27      type: RollingUpdate
    28    template:
    29      metadata:
    30        labels:
    31          k8s-app: metadata-proxy
    32          kubernetes.io/cluster-service: "true"
    33          version: v0.1
    34      spec:
    35        priorityClassName: system-node-critical
    36        serviceAccountName: metadata-proxy
    37        hostNetwork: true
    38        dnsPolicy: Default
    39        tolerations:
    40        - operator: "Exists"
    41          effect: "NoExecute"
    42        - operator: "Exists"
    43          effect: "NoSchedule"
    44        containers:
    45        - name: metadata-proxy
    46          image: registry.k8s.io/metadata-proxy:v0.1.12
    47          args: ["--addr=0.0.0.0:988"]
    48          securityContext:
    49            privileged: true
    50          # Request and limit resources to get guaranteed QoS.
    51          resources:
    52            requests:
    53              memory: "25Mi"
    54              cpu: "30m"
    55            limits:
    56              memory: "25Mi"
    57              cpu: "30m"
    58        # BEGIN_PROMETHEUS_TO_SD
    59        - name: prometheus-to-sd-exporter
    60          image: gke.gcr.io/prometheus-to-sd:v0.11.1-gke.1
    61          # Request and limit resources to get guaranteed QoS.
    62          resources:
    63            requests:
    64              memory: "20Mi"
    65              cpu: "2m"
    66            limits:
    67              memory: "20Mi"
    68              cpu: "2m"
    69          command:
    70            - /monitor
    71            - --stackdriver-prefix={{ prometheus_to_sd_prefix }}/addons
    72            - --api-override={{ prometheus_to_sd_endpoint }}
    73            - --source=metadata_proxy:http://127.0.0.1:989?whitelisted=request_count
    74            - --pod-id=$(POD_NAME)
    75            - --namespace-id=$(POD_NAMESPACE)
    76          env:
    77            - name: POD_NAME
    78              valueFrom:
    79                fieldRef:
    80                  fieldPath: metadata.name
    81            - name: POD_NAMESPACE
    82              valueFrom:
    83                fieldRef:
    84                  fieldPath: metadata.namespace
    85        # END_PROMETHEUS_TO_SD
    86        nodeSelector:
    87          cloud.google.com/metadata-proxy-ready: "true"
    88          kubernetes.io/os: linux
    89        terminationGracePeriodSeconds: 30