Update secret-store rbac
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
parent
b883b17fe7
commit
766e34dbf3
3 changed files with 34 additions and 7 deletions
|
|
@ -12,8 +12,6 @@ spec:
|
|||
labels:
|
||||
app: csi-secrets-store
|
||||
spec:
|
||||
nodeSelector:
|
||||
beta.kubernetes.io/os: linux
|
||||
serviceAccountName: secrets-store-csi-driver
|
||||
hostNetwork: true
|
||||
containers:
|
||||
|
|
@ -45,12 +43,13 @@ spec:
|
|||
- name: registration-dir
|
||||
mountPath: /registration
|
||||
- name: secrets-store
|
||||
image: docker.io/deislabs/secrets-store-csi:v0.0.11
|
||||
image: us.gcr.io/k8s-artifacts-prod/csi-secrets-store/driver:v0.0.12
|
||||
args:
|
||||
- "--debug=true"
|
||||
- "--endpoint=$(CSI_ENDPOINT)"
|
||||
- "--nodeid=$(KUBE_NODE_NAME)"
|
||||
- "--provider-volume=/etc/kubernetes/secrets-store-csi-providers"
|
||||
- "--metrics-addr=:8080"
|
||||
env:
|
||||
- name: CSI_ENDPOINT
|
||||
value: unix:///csi/csi.sock
|
||||
|
|
@ -83,12 +82,13 @@ spec:
|
|||
- name: providers-dir
|
||||
mountPath: /etc/kubernetes/secrets-store-csi-providers
|
||||
- name: liveness-probe
|
||||
image: quay.io/k8scsi/livenessprobe:v1.1.0
|
||||
image: quay.io/k8scsi/livenessprobe:v2.0.0
|
||||
imagePullPolicy: Always
|
||||
args:
|
||||
- --csi-address=/csi/csi.sock
|
||||
- --probe-timeout=3s
|
||||
- --health-port=9808
|
||||
- -v=2
|
||||
volumeMounts:
|
||||
- name: plugin-dir
|
||||
mountPath: /csi
|
||||
|
|
@ -109,3 +109,5 @@ spec:
|
|||
hostPath:
|
||||
path: /etc/kubernetes/secrets-store-csi-providers
|
||||
type: DirectoryOrCreate
|
||||
nodeSelector:
|
||||
kubernetes.io/os: linux
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue