mirror of
https://github.com/open-cluster-management-io/ocm.git
synced 2026-05-16 14:18:42 +00:00
34 lines
798 B
YAML
34 lines
798 B
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: manifestwork-admission
|
|
labels:
|
|
app: manifestwork-admission
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: manifestwork-admission
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: manifestwork-admission
|
|
spec:
|
|
serviceAccountName: manifestwork-admission-sa
|
|
containers:
|
|
- name: manifestwork-admission
|
|
image: quay.io/open-cluster-management/work:latest
|
|
imagePullPolicy: IfNotPresent
|
|
args:
|
|
- "/work"
|
|
- "webhook"
|
|
- "--cert-dir=/tmp"
|
|
- "--secure-port=6443"
|
|
securityContext:
|
|
allowPrivilegeEscalation: false
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
privileged: false
|
|
runAsNonRoot: true
|