polynom.me/infra-charts
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

headscale: Add headscale Chart

Browse Source
This commit is contained in:
PapaTutuWawa
2025-10-12 00:49:12 +02:00
parent afaa5222ed
commit 9cf72e7de2
7 changed files with 134 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
headscale/templates/configmap.yaml Normal file
View File

@@ -0,0 +1,13 @@
---
apiVersion: v1
kind: ConfigMap
metadata:
namespace: {{ .Values.namespace }}
name: headscale
labels: {{ include "common.app.labels" . | nindent 4 }}
data:
config.yaml: |
{{- .Values.config | toYaml | nindent 4 }}
{{- if .Values.extraConfig }}
{{- .Values.extraConfig | toYaml | nindent 2 }}
{{- end }}

60
headscale/templates/deployment.yaml Normal file
View File

@@ -0,0 +1,60 @@
---
apiVersion: apps/v1
kind: Deployment
metadata:
namespace: {{ .Values.namespace }}
name: headscale
labels: {{ include "common.app.labels" . | nindent 4 }}
spec:
replicas: 1
selector:
matchLabels: {{ include "common.app.labels" . | nindent 6 }}
template:
spec:
containers:
- name: headscale
image: "{{ .Values.image }}:{{ .Values.imageTag }}"
ports:
- containerPort: 8080
name: http
protocol: TCP
- containerPort: 9090
name: metrics
protocol: TCP
args:
- --config
- /etc/headscale/config/config.yaml
- serve
volumeMounts:
- mountPath: /etc/headscale/config
name: config
readOnly: true
- mountPath: /var/run
name: tmp
{{- if .Values.secrets }}
- mountPath: /etc/headscale/secrets
name: secrets
readOnly: true
{{- end }}
securityContext:
capabilities:
drop:
- ALL
volumes:
- name: config
configMap:
name: headscale
- name: tmp
emptyDir:
medium: Memory
- name: data
{{- .Values.mounts.data | toYaml | nindent 10 }}
{{- if .Values.secrets }}
- name: secrets
secret:
secretName: {{ .Values.secrets.secretName }}
{{- end }}
securityContext:
runAsNonRoot: true
runAsUser: 10000
runAsGroup: 10000