linkerd
/
linkerd2
mirror of https://github.com/linkerd/linkerd2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linkerd2/multicluster/cmd/testdata/serivce_mirror_default.golden

142 lines
3.7 KiB
Plaintext
Raw Blame History

---
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: linkerd-service-mirror-access-local-resources-test-cluster
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
rules:
- apiGroups: [""]
resources: ["endpoints", "services"]
verbs: ["list", "get", "watch", "create", "delete", "update"]
- apiGroups: [""]
resources: ["namespaces"]
verbs: ["list", "get", "watch"]
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: linkerd-service-mirror-access-local-resources-test-cluster
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: linkerd-service-mirror-access-local-resources-test-cluster
subjects:
- kind: ServiceAccount
name: linkerd-service-mirror-test-cluster
namespace: test
---
kind: Role
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: linkerd-service-mirror-read-remote-creds-test-cluster
namespace: test
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
rules:
- apiGroups: [""]
resources: ["secrets"]
resourceNames: ["cluster-credentials-test-cluster"]
verbs: ["list", "get", "watch"]
- apiGroups: ["multicluster.linkerd.io"]
resources: ["links"]
verbs: ["list", "get", "watch"]
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: linkerd-service-mirror-read-remote-creds-test-cluster
namespace: test
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: Role
name: linkerd-service-mirror-read-remote-creds-test-cluster
subjects:
- kind: ServiceAccount
name: linkerd-service-mirror-test-cluster
namespace: test
---
kind: ServiceAccount
apiVersion: v1
metadata:
name: linkerd-service-mirror-test-cluster
namespace: test
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
---
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
linkerd.io/extension: multicluster
component: service-mirror
mirror.linkerd.io/cluster-name: test-cluster
name: linkerd-service-mirror-test-cluster
namespace: test
spec:
replicas: 1
selector:
matchLabels:
component: linkerd-service-mirror
mirror.linkerd.io/cluster-name: test-cluster
template:
metadata:
annotations:
linkerd.io/inject: enabled
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
labels:
component: linkerd-service-mirror
mirror.linkerd.io/cluster-name: test-cluster
spec:
containers:
- args:
- service-mirror
- -log-level=info
- -event-requeue-limit=3
- -namespace=test
- -enable-pprof=false
- test-cluster
image: cr.l5d.io/linkerd/controller:dev-undefined
name: service-mirror
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
runAsNonRoot: true
runAsUser: 2103
seccompProfile:
type: RuntimeDefault
ports:
- containerPort: 9999
name: admin-http
serviceAccountName: linkerd-service-mirror-test-cluster
---
apiVersion: v1
kind: Service
metadata:
name: probe-gateway-test-cluster
namespace: test
labels:
mirror.linkerd.io/mirrored-gateway: "true"
mirror.linkerd.io/cluster-name: test-cluster
spec:
ports:
- name: mc-probe
port: 4191
protocol: TCP
Reference in New Issue View Git Blame Copy Permalink