diff --git a/templates/server-statefulset.yaml b/templates/server-statefulset.yaml index bc14a6b..5ce9ee9 100644 --- a/templates/server-statefulset.yaml +++ b/templates/server-statefulset.yaml @@ -13,20 +13,12 @@ spec: serviceName: {{ template "vault.fullname" . }}-server podManagementPolicy: Parallel replicas: {{ .Values.server.replicas }} -# TODO: verify for Vault - {{- if (gt (int .Values.server.updatePartition) 0) }} - updateStrategy: - type: RollingUpdate - rollingUpdate: - partition: {{ .Values.server.updatePartition }} - {{- end }} selector: matchLabels: app: {{ template "vault.name" . }} chart: {{ template "vault.chart" . }} release: {{ .Release.Name }} component: server - #hasDNS: "true" template: metadata: labels: @@ -34,7 +26,6 @@ spec: chart: {{ template "vault.chart" . }} release: {{ .Release.Name }} component: server - #hasDNS: "true" spec: affinity: podAntiAffinity: @@ -65,6 +56,7 @@ spec: - name: vault securityContext: fsGroup: 1000 + # TODO: confirm Vault needs this privileged: true image: "{{ default .Values.global.image .Values.server.image }}" env: @@ -78,10 +70,6 @@ spec: fieldPath: metadata.namespace - name: VAULT_ADDR value: "http://localhost:8200" - - name: HOST_IP - valueFrom: - fieldRef: - fieldPath: status.hostIP command: - "vault" - "server" @@ -125,7 +113,6 @@ spec: name: data spec: accessModes: - #- ReadWriteMany - ReadWriteOnce resources: requests: diff --git a/templates/ui-service.yaml b/templates/ui-service.yaml index 6a893bd..a8a33c8 100644 --- a/templates/ui-service.yaml +++ b/templates/ui-service.yaml @@ -18,6 +18,7 @@ spec: app: {{ template "vault.name" . }} release: "{{ .Release.Name }}" component: server + type: LoadBalancer ports: - name: http port: 80