ingress-nginx-helm/deploy/cloud-generic/deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
  name: nginx-ingress-controller
spec:
  replicas: 1
  template:
    metadata:
      annotations:
        prometheus.io/port: "10254"
        prometheus.io/scrape: "true"
    spec:
      # wait up to five minutes for the drain of connections
      terminationGracePeriodSeconds: 300
      serviceAccountName: nginx-ingress-serviceaccount
      containers:
        - name: nginx-ingress-controller
          image: quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.28.0
          args:
            - /nginx-ingress-controller
            - --configmap=$(POD_NAMESPACE)/$(NGINX_CONFIGMAP_NAME)
            - --tcp-services-configmap=$(POD_NAMESPACE)/$(TCP_CONFIGMAP_NAME)
            - --udp-services-configmap=$(POD_NAMESPACE)/$(UDP_CONFIGMAP_NAME)
            - --publish-service=$(POD_NAMESPACE)/$(SERVICE_NAME)
            - --annotations-prefix=nginx.ingress.kubernetes.io
          securityContext:
            allowPrivilegeEscalation: true
            capabilities:
              drop:
                - ALL
              add:
                - NET_BIND_SERVICE
            # www-data -> 101
            runAsUser: 101
          env:
            - name: POD_NAME
              valueFrom:
                fieldRef:
                  fieldPath: metadata.name
            - name: POD_NAMESPACE
              valueFrom:
                fieldRef:
                  fieldPath: metadata.namespace
          ports:
            - name: http
              containerPort: 80
              protocol: TCP
            - name: https
              containerPort: 443
              protocol: TCP
          livenessProbe:
            failureThreshold: 3
            httpGet:
              path: /healthz
              port: 10254
              scheme: HTTP
            initialDelaySeconds: 10
            periodSeconds: 10
            successThreshold: 1
            timeoutSeconds: 10
          readinessProbe:
            failureThreshold: 3
            httpGet:
              path: /healthz
              port: 10254
              scheme: HTTP
            periodSeconds: 10
            successThreshold: 1
            timeoutSeconds: 10
          lifecycle:
            preStop:
              exec:
                command:
                  - /wait-shutdown
Replace deprecated apiVersion in deploy/ 2019-01-09 21:40:24 +00:00			`apiVersion: apps/v1`
Split documentation 2017-10-13 13:55:03 +00:00			`kind: Deployment`
			`metadata:`
			`name: nginx-ingress-controller`
			`spec:`
			`replicas: 1`
			`template:`
			`metadata:`
Update documentation and examples [ci skip] 2017-10-16 12:55:46 +00:00			`annotations:`
Fix deployments until next release (#3142) 2018-09-26 13:15:57 +00:00			`prometheus.io/port: "10254"`
			`prometheus.io/scrape: "true"`
Split documentation 2017-10-13 13:55:03 +00:00			`spec:`
Release 0.26.0 2019-09-27 13:23:12 +00:00			`# wait up to five minutes for the drain of connections`
			`terminationGracePeriodSeconds: 300`
Split documentation 2017-10-13 13:55:03 +00:00			`serviceAccountName: nginx-ingress-serviceaccount`
			`containers:`
			`- name: nginx-ingress-controller`
Release 0.28.0 (#4970) 2020-01-28 10:56:33 +00:00			`image: quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.28.0`
Split documentation 2017-10-13 13:55:03 +00:00			`args:`
			`- /nginx-ingress-controller`
Rearrange deployment files into kustomizations 2019-04-30 16:45:58 +00:00			`- --configmap=$(POD_NAMESPACE)/$(NGINX_CONFIGMAP_NAME)`
			`- --tcp-services-configmap=$(POD_NAMESPACE)/$(TCP_CONFIGMAP_NAME)`
			`- --udp-services-configmap=$(POD_NAMESPACE)/$(UDP_CONFIGMAP_NAME)`
			`- --publish-service=$(POD_NAMESPACE)/$(SERVICE_NAME)`
Change annotations prefix 2017-11-24 18:46:51 +00:00			`- --annotations-prefix=nginx.ingress.kubernetes.io`
Update manifest to run as user (#2691) 2018-06-23 12:41:57 +00:00			`securityContext:`
Fixed: error parsing with-rbac.yaml: error converting YAML to JSON: yaml: line 36: did not find expected key 2019-01-07 16:22:42 +00:00			`allowPrivilegeEscalation: true`
Update manifest to run as user (#2691) 2018-06-23 12:41:57 +00:00			`capabilities:`
Fix deployments until next release (#3142) 2018-09-26 13:15:57 +00:00			`drop:`
Update manifest to run as user (#2691) 2018-06-23 12:41:57 +00:00			`- ALL`
Fix deployments until next release (#3142) 2018-09-26 13:15:57 +00:00			`add:`
Update manifest to run as user (#2691) 2018-06-23 12:41:57 +00:00			`- NET_BIND_SERVICE`
Migrate to alpine linux 2019-12-27 23:08:30 +00:00			`# www-data -> 101`
			`runAsUser: 101`
Split documentation 2017-10-13 13:55:03 +00:00			`env:`
			`- name: POD_NAME`
			`valueFrom:`
			`fieldRef:`
			`fieldPath: metadata.name`
			`- name: POD_NAMESPACE`
			`valueFrom:`
			`fieldRef:`
			`fieldPath: metadata.namespace`
			`ports:`
Fix deployments until next release (#3142) 2018-09-26 13:15:57 +00:00			`- name: http`
			`containerPort: 80`
deploy: add protocol to all Container/ServicePorts kubectl apply --server-side currently doesn't work with Port specs that are missing protocol: https://github.com/kubernetes-sigs/structured-merge-diff/issues/130 so we should always specify it. 2019-11-28 12:41:48 +00:00			`protocol: TCP`
Fix deployments until next release (#3142) 2018-09-26 13:15:57 +00:00			`- name: https`
			`containerPort: 443`
deploy: add protocol to all Container/ServicePorts kubectl apply --server-side currently doesn't work with Port specs that are missing protocol: https://github.com/kubernetes-sigs/structured-merge-diff/issues/130 so we should always specify it. 2019-11-28 12:41:48 +00:00			`protocol: TCP`
Add missing probes in deployments 2017-10-25 04:06:11 +00:00			`livenessProbe:`
			`failureThreshold: 3`
			`httpGet:`
			`path: /healthz`
			`port: 10254`
			`scheme: HTTP`
			`initialDelaySeconds: 10`
			`periodSeconds: 10`
			`successThreshold: 1`
Adjust probe timeouts 2019-02-06 23:19:12 +00:00			`timeoutSeconds: 10`
Add missing probes in deployments 2017-10-25 04:06:11 +00:00			`readinessProbe:`
			`failureThreshold: 3`
			`httpGet:`
			`path: /healthz`
			`port: 10254`
			`scheme: HTTP`
			`periodSeconds: 10`
			`successThreshold: 1`
Adjust probe timeouts 2019-02-06 23:19:12 +00:00			`timeoutSeconds: 10`
Release 0.26.0 2019-09-27 13:23:12 +00:00			`lifecycle:`
			`preStop:`
			`exec:`
			`command:`
			`- /wait-shutdown`