sigs.k8s.io/cluster-api@v1.7.1/controlplane/kubeadm/config/manager/manager.yaml (about) 1 apiVersion: apps/v1 2 kind: Deployment 3 metadata: 4 name: controller-manager 5 namespace: system 6 labels: 7 control-plane: controller-manager 8 spec: 9 selector: 10 matchLabels: 11 control-plane: controller-manager 12 replicas: 1 13 template: 14 metadata: 15 labels: 16 control-plane: controller-manager 17 spec: 18 containers: 19 - command: 20 - /manager 21 args: 22 - "--leader-elect" 23 - "--diagnostics-address=${CAPI_DIAGNOSTICS_ADDRESS:=:8443}" 24 - "--insecure-diagnostics=${CAPI_INSECURE_DIAGNOSTICS:=false}" 25 - "--feature-gates=MachinePool=${EXP_MACHINE_POOL:=true},ClusterTopology=${CLUSTER_TOPOLOGY:=false},KubeadmBootstrapFormatIgnition=${EXP_KUBEADM_BOOTSTRAP_FORMAT_IGNITION:=false}" 26 image: controller:latest 27 name: manager 28 env: 29 - name: POD_NAMESPACE 30 valueFrom: 31 fieldRef: 32 fieldPath: metadata.namespace 33 - name: POD_NAME 34 valueFrom: 35 fieldRef: 36 fieldPath: metadata.name 37 - name: POD_UID 38 valueFrom: 39 fieldRef: 40 fieldPath: metadata.uid 41 ports: 42 - containerPort: 9440 43 name: healthz 44 protocol: TCP 45 - containerPort: 8443 46 name: metrics 47 protocol: TCP 48 readinessProbe: 49 httpGet: 50 path: /readyz 51 port: healthz 52 livenessProbe: 53 httpGet: 54 path: /healthz 55 port: healthz 56 securityContext: 57 allowPrivilegeEscalation: false 58 capabilities: 59 drop: 60 - ALL 61 privileged: false 62 runAsUser: 65532 63 runAsGroup: 65532 64 terminationGracePeriodSeconds: 10 65 serviceAccountName: manager 66 tolerations: 67 - effect: NoSchedule 68 key: node-role.kubernetes.io/master 69 - effect: NoSchedule 70 key: node-role.kubernetes.io/control-plane 71 securityContext: 72 runAsNonRoot: true 73 seccompProfile: 74 type: RuntimeDefault