sigs.k8s.io/cluster-api-provider-azure@v1.14.3/templates/addons/metrics-server/metrics-server.yaml (about) 1 apiVersion: v1 2 kind: ServiceAccount 3 metadata: 4 labels: 5 k8s-app: metrics-server 6 name: metrics-server 7 namespace: kube-system 8 --- 9 apiVersion: rbac.authorization.k8s.io/v1 10 kind: ClusterRole 11 metadata: 12 labels: 13 k8s-app: metrics-server 14 rbac.authorization.k8s.io/aggregate-to-admin: "true" 15 rbac.authorization.k8s.io/aggregate-to-edit: "true" 16 rbac.authorization.k8s.io/aggregate-to-view: "true" 17 name: system:aggregated-metrics-reader 18 rules: 19 - apiGroups: 20 - metrics.k8s.io 21 resources: 22 - pods 23 - nodes 24 verbs: 25 - get 26 - list 27 - watch 28 --- 29 apiVersion: rbac.authorization.k8s.io/v1 30 kind: ClusterRole 31 metadata: 32 labels: 33 k8s-app: metrics-server 34 name: system:metrics-server 35 rules: 36 - apiGroups: 37 - "" 38 resources: 39 - nodes/metrics 40 verbs: 41 - get 42 - apiGroups: 43 - "" 44 resources: 45 - pods 46 - nodes 47 verbs: 48 - get 49 - list 50 - watch 51 --- 52 apiVersion: rbac.authorization.k8s.io/v1 53 kind: RoleBinding 54 metadata: 55 labels: 56 k8s-app: metrics-server 57 name: metrics-server-auth-reader 58 namespace: kube-system 59 roleRef: 60 apiGroup: rbac.authorization.k8s.io 61 kind: Role 62 name: extension-apiserver-authentication-reader 63 subjects: 64 - kind: ServiceAccount 65 name: metrics-server 66 namespace: kube-system 67 --- 68 apiVersion: rbac.authorization.k8s.io/v1 69 kind: ClusterRoleBinding 70 metadata: 71 labels: 72 k8s-app: metrics-server 73 name: metrics-server:system:auth-delegator 74 roleRef: 75 apiGroup: rbac.authorization.k8s.io 76 kind: ClusterRole 77 name: system:auth-delegator 78 subjects: 79 - kind: ServiceAccount 80 name: metrics-server 81 namespace: kube-system 82 --- 83 apiVersion: rbac.authorization.k8s.io/v1 84 kind: ClusterRoleBinding 85 metadata: 86 labels: 87 k8s-app: metrics-server 88 name: system:metrics-server 89 roleRef: 90 apiGroup: rbac.authorization.k8s.io 91 kind: ClusterRole 92 name: system:metrics-server 93 subjects: 94 - kind: ServiceAccount 95 name: metrics-server 96 namespace: kube-system 97 --- 98 apiVersion: v1 99 kind: Service 100 metadata: 101 labels: 102 k8s-app: metrics-server 103 name: metrics-server 104 namespace: kube-system 105 spec: 106 ports: 107 - name: https 108 port: 443 109 protocol: TCP 110 targetPort: https 111 selector: 112 k8s-app: metrics-server 113 --- 114 apiVersion: apps/v1 115 kind: Deployment 116 metadata: 117 labels: 118 k8s-app: metrics-server 119 name: metrics-server 120 namespace: kube-system 121 spec: 122 selector: 123 matchLabels: 124 k8s-app: metrics-server 125 strategy: 126 rollingUpdate: 127 maxUnavailable: 0 128 template: 129 metadata: 130 labels: 131 k8s-app: metrics-server 132 spec: 133 containers: 134 - args: 135 - --cert-dir=/tmp 136 - --secure-port=4443 137 - --kubelet-preferred-address-types=InternalIP,ExternalIP,Hostname 138 - --kubelet-use-node-status-port 139 - --metric-resolution=15s 140 - --kubelet-insecure-tls 141 image: registry.k8s.io/metrics-server/metrics-server:v0.6.3 142 imagePullPolicy: IfNotPresent 143 livenessProbe: 144 failureThreshold: 3 145 httpGet: 146 path: /livez 147 port: https 148 scheme: HTTPS 149 periodSeconds: 10 150 name: metrics-server 151 ports: 152 - containerPort: 4443 153 name: https 154 protocol: TCP 155 readinessProbe: 156 failureThreshold: 3 157 httpGet: 158 path: /readyz 159 port: https 160 scheme: HTTPS 161 initialDelaySeconds: 20 162 periodSeconds: 10 163 resources: 164 requests: 165 cpu: 100m 166 memory: 200Mi 167 securityContext: 168 allowPrivilegeEscalation: false 169 readOnlyRootFilesystem: true 170 runAsNonRoot: true 171 runAsUser: 1000 172 volumeMounts: 173 - mountPath: /tmp 174 name: tmp-dir 175 nodeSelector: 176 kubernetes.io/os: linux 177 priorityClassName: system-cluster-critical 178 serviceAccountName: metrics-server 179 tolerations: 180 - effect: NoSchedule 181 key: node-role.kubernetes.io/master 182 operator: Exists 183 - effect: NoSchedule 184 key: node-role.kubernetes.io/control-plane 185 operator: Exists 186 volumes: 187 - emptyDir: {} 188 name: tmp-dir 189 --- 190 apiVersion: apiregistration.k8s.io/v1 191 kind: APIService 192 metadata: 193 labels: 194 k8s-app: metrics-server 195 name: v1beta1.metrics.k8s.io 196 spec: 197 group: metrics.k8s.io 198 groupPriorityMinimum: 100 199 insecureSkipTLSVerify: true 200 service: 201 name: metrics-server 202 namespace: kube-system 203 version: v1beta1 204 versionPriority: 100