vynil/domain-incoming
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2023-07-26 22:33:11 +02:00
parent d0e39cbff2
commit d59d177ba8
2 changed files with 37 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
apps/code-server/deploy.tf
View File

@@ -15,6 +15,9 @@ resource "kubectl_manifest" "deploy" {
template: template:
metadata: metadata:
labels: ${jsonencode(local.common-labels)} labels: ${jsonencode(local.common-labels)}
annotations:
container.apparmor.security.beta.kubernetes.io/code-server: unconfined
container.seccomp.security.alpha.kubernetes.io/code-server: unconfined
spec: spec:
securityContext: securityContext:
fsGroup: 1000 fsGroup: 1000
@@ -33,6 +36,7 @@ resource "kubectl_manifest" "deploy" {
runAsNonRoot: true runAsNonRoot: true
runAsUser: 1000 runAsUser: 1000
privileged: true privileged: true
procMount: unmasked
env: env:
- name: USER - name: USER
value: coder value: coder

66
apps/code-server/index.yaml
View File

@@ -11,31 +11,11 @@ options:
examples: examples:
- code - code
type: string type: string
issuer: timezone:
default: letsencrypt-prod default: Europe/Paris
examples: examples:
- letsencrypt-prod - Europe/Paris
type: string type: string
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
admin:
default:
cluster: false
namespace: false
examples:
- cluster: false
namespace: false
properties:
cluster:
default: false
type: boolean
namespace:
default: false
type: boolean
type: object
storage: storage:
default: default:
accessMode: ReadWriteOnce accessMode: ReadWriteOnce
@@ -63,20 +43,40 @@ options:
- block - block
type: string type: string
type: object type: object
timezone: ingress-class:
default: Europe/Paris default: traefik
examples: examples:
- Europe/Paris - traefik
type: string type: string
admin:
default:
cluster: false
namespace: false
examples:
- cluster: false
namespace: false
properties:
cluster:
default: false
type: boolean
namespace:
default: false
type: boolean
type: object
domain: domain:
default: your-company default: your-company
examples: examples:
- your-company - your-company
type: string type: string
ingress-class: issuer:
default: traefik default: letsencrypt-prod
examples: examples:
- traefik - letsencrypt-prod
type: string
domain-name:
default: your_company.com
examples:
- your_company.com
type: string type: string
images: images:
default: default:
@@ -84,20 +84,20 @@ options:
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
registry: docker.io registry: docker.io
repository: sebt3/code-server repository: sebt3/code-server
tag: 4.14 tag: 4.15
examples: examples:
- codeserver: - codeserver:
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
registry: docker.io registry: docker.io
repository: sebt3/code-server repository: sebt3/code-server
tag: 4.14 tag: 4.15
properties: properties:
codeserver: codeserver:
default: default:
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
registry: docker.io registry: docker.io
repository: sebt3/code-server repository: sebt3/code-server
tag: 4.14 tag: 4.15
properties: properties:
pullPolicy: pullPolicy:
default: IfNotPresent default: IfNotPresent
@@ -113,7 +113,7 @@ options:
default: sebt3/code-server default: sebt3/code-server
type: string type: string
tag: tag:
default: 4.14 default: 4.15
type: number type: number
type: object type: object
type: object type: object