From bd8caa57bf4ad5d4d45d7b4f453600e6de7d127c Mon Sep 17 00:00:00 2001 From: AB Date: Wed, 5 Nov 2025 15:50:00 +0200 Subject: [PATCH] Added pasarguard --- k8s/apps/pasarguard/deployment.yaml | 28 ++++++++++++++++++++++++-- k8s/apps/pasarguard/kustomization.yaml | 1 + 2 files changed, 27 insertions(+), 2 deletions(-) diff --git a/k8s/apps/pasarguard/deployment.yaml b/k8s/apps/pasarguard/deployment.yaml index 22f4dc7..0e860b9 100644 --- a/k8s/apps/pasarguard/deployment.yaml +++ b/k8s/apps/pasarguard/deployment.yaml @@ -29,14 +29,38 @@ spec: - secretRef: name: pasarguard-secrets env: - - name: UVICORN_HOST + - name: UVICORN_HOST value: "0.0.0.0" - - name: UVICORN_PORT + - name: UVICORN_PORT value: "8000" + - name: UVICORN_SSL_CERTFILE + value: "/etc/ssl/certs/tls.crt" + - name: UVICORN_SSL_KEYFILE + value: "/etc/ssl/private/tls.key" ports: - name: http containerPort: 8000 protocol: TCP + volumeMounts: + - name: tls-certs + mountPath: /etc/ssl/certs + readOnly: true + - name: tls-keys + mountPath: /etc/ssl/private + readOnly: true + volumes: + - name: tls-certs + secret: + secretName: pasarguard-tls + items: + - key: tls.crt + path: tls.crt + - name: tls-keys + secret: + secretName: pasarguard-tls + items: + - key: tls.key + path: tls.key --- apiVersion: v1 kind: Service diff --git a/k8s/apps/pasarguard/kustomization.yaml b/k8s/apps/pasarguard/kustomization.yaml index 0cfd475..b37b057 100644 --- a/k8s/apps/pasarguard/kustomization.yaml +++ b/k8s/apps/pasarguard/kustomization.yaml @@ -6,5 +6,6 @@ resources: - ./external-secrets.yaml - ./deployment.yaml - ./daemonset.yaml + - ./certificate.yaml