summaryrefslogtreecommitdiff
path: root/contrib/k8s-emc/onion-hack/stream-site-deploy.yml
blob: 8ae9b14b11728edcb4d7ac94551fa9daeb47e7bc (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93

apiVersion: apps/v1
kind: Deployment
metadata:
  namespace: emc
  name: stream-site-public-onion
  labels:
    app: nginx
    type: stream-site
    stream: public-onion
spec:
  replicas: 1
  selector:
    matchLabels:
      app: nginx
      type: stream-site
      stream: public-onion
  strategy:
    type: Recreate
  revisionHistoryLimit: 5
  template:
    metadata:
      labels:
        app: nginx
        type: stream-site
        stream: public-onion
    spec:
      nodeName: emc-00
      securityContext:
        runAsUser: 998
        fsGroup: 998
      initContainers:
      - name: prepare-onion
        image: busybox
        command: ['sh', '-c', 'mkdir /srv/onion_service && cp /secrets/onion_service/* /srv/onion_service && chown -R 998:998 /var/lib/tor /srv/onion_service && chmod 0750 /var/lib/tor && chmod 0700 /srv/onion_service']
        securityContext:
          runAsUser: 0
        volumeMounts:
        - name: home
          mountPath: /srv
        - name: onion-lib
          mountPath: /var/lib/tor
        - name: onion-service
          mountPath: /secrets/onion_service/
      containers:
      - name: nginx
        image: spreadspace/nginx-streaming:4
        imagePullPolicy: Always
        args:
        - nginx
        - -c
        - /srv/config/nginx.conf
        - -g
        - "daemon off;"
        volumeMounts:
        - name: home
          mountPath: /srv
        - name: nginx-lib
          mountPath: /var/lib/nginx
        - name: config
          mountPath: /srv/config
        - name: www
          mountPath: /srv/www
      - name: onion-service
        image: spreadspace/onion-service:master-23
        imagePullPolicy: Always
        args: [ '/usr/bin/tor', '-f', '/srv/config/torrc', '--RunAsDaemon', '0' ]
        volumeMounts:
        - name: home
          mountPath: /srv
        - name: onion-lib
          mountPath: /var/lib/tor
        - name: config
          mountPath: /srv/config
      volumes:
      - name: home
        emptyDir:
          medium: Memory
      - name: onion-lib
        emptyDir:
          medium: Memory
      - name: nginx-lib
        emptyDir:
          medium: Memory
      - name: config
        configMap:
          name: stream-site-public-onion
      - name: www
        hostPath:
          type: Directory
          path: /srv/www/emc18
      - name: onion-service
        secret:
          secretName: stream-site-public-onion
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-20 13:25:55 +0000