Google Git
Sign in
skia / buildbot / 6c9589e15d4da74a6a3a5153fd44a404f2852b02 / . / autoroll / go / autoroll-fe / autoroll-fe.yaml.template
blob: 90cd7075ebb28199b5b64ed7358a8974ef203e93 [file] [log] [blame]
apiVersion: v1
kind: Service
metadata:
name: {{.appName}}
annotations:
beta.cloud.google.com/backend-config: '{"ports": {"8000":"skia-default-backendconfig"}}'
skia.org.domain: {{.hostName}}
spec:
ports:
- name: metrics
port: 20000
- name: http
port: 8000
selector:
app: {{.appName}}
type: NodePort
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: {{.appName}}
spec:
selector:
matchLabels:
app: {{.appName}}
replicas: 1
strategy:
type: RollingUpdate
template:
metadata:
labels:
app: {{.appName}}
appgroup: autoroll
owner-primary: borenet
owner-secondary: rmistry
annotations:
prometheus.io.scrape: "true"
prometheus.io.port: "20000"
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
spec:
automountServiceAccountToken: false
securityContext:
runAsUser: 2000 # aka skia
fsGroup: 2000 # aka skia
containers:
- name: {{.appName}}
image: {{.image}}
command: ["/usr/local/bin/autoroll-fe"]
args:
- "--firestore_instance=production"
- "--host={{.hostName}}"
- "--port=:8000"
- "--prom_port=:20000"{{if eq .internal "true"}}
- "--internal"{{end}}
- "--config_repo=https://skia.googlesource.com/skia-autoroll-internal-config.git"
- "--config_gerrit_project=skia-autoroll-internal-config"
- "--resources_dir=/usr/local/share/autoroll-fe/dist"
ports:
- containerPort: 8000
- containerPort: 20000
name: prom
volumeMounts:
- name: {{.appName}}-sa
mountPath: /var/secrets/google
- name: legacy-login-secrets
mountPath: /etc/skia.org/
env:
- name: GOOGLE_APPLICATION_CREDENTIALS
value: /var/secrets/google/key.json
resources:
requests:
memory: "10Mi"
cpu: "10m"
ephemeral-storage: '1M'
readinessProbe:
httpGet:
path: /healthz
port: 8000
initialDelaySeconds: 10
periodSeconds: 3
failureThreshold: 10
volumes:
- name: {{.appName}}-sa
secret:
secretName: {{.appName}}
- name: legacy-login-secrets
secret:
secretName: {{.legacyLoginSecrets}}