fix

2023-10-15 18:24:59 +02:00
parent 84700cb09c
commit 18a8dcff11
2 changed files with 97 additions and 88 deletions
--- a/apps/dbgate/deploy.tf
+++ b/apps/dbgate/deploy.tf
@@ -17,6 +17,11 @@ resource "kubectl_manifest" "deploy" {
          securityContext:
            fsGroup: 1000
            runAsGroup: 1000
+          volumes:
+          - name: certs
+            secret:
+              secretName: "${var.instance}-cert"
+              defaultMode: 0444
          containers:
          - name: dbgate
            securityContext:
@@ -24,6 +29,10 @@ resource "kubectl_manifest" "deploy" {
              runAsGroup: 1000
              runAsNonRoot: true
              runAsUser: 1000
+            volumeMounts:
+            - name: certs
+              mountPath: /etc/local-ca
+              readOnly: true
            envFrom:
            - secretRef:
                name: "${var.component}-${var.instance}"