Peter Kurfer
2578e6951d
All checks were successful
continuous-integration/drone/push Build is passing
43 lines
No EOL
960 B
YAML
43 lines
No EOL
960 B
YAML
---
|
|
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: hedgedoc
|
|
spec:
|
|
selector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: hedgedoc
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: hedgedoc
|
|
spec:
|
|
containers:
|
|
- name: hedgedoc
|
|
image: hedgedoc
|
|
envFrom:
|
|
- secretRef:
|
|
name: hedgedoc-base-config
|
|
- secretRef:
|
|
name: hedgedoc-secret-config
|
|
ports:
|
|
- containerPort: 3000
|
|
protocol: TCP
|
|
name: web
|
|
resources:
|
|
requests:
|
|
memory: "168Mi"
|
|
cpu: "50m"
|
|
limits:
|
|
memory: "256Mi"
|
|
cpu: "500m"
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
readOnlyRootFilesystem: true
|
|
securityContext:
|
|
runAsUser: 1000
|
|
runAsGroup: 1000
|
|
runAsNonRoot: true |