K3S-HOME/applications
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
2eede3a3d726a4ceddcf6fd1d028683dc666e807
applications/crafty/deployment.yaml
Mayne0213 2eede3a3d7 FIX(crafty): fix permissions and add backend HTTPS 
- Add initContainer to set proper file permissions (chown 1000:0)
- Add fsGroup: 0 for root group permissions
- Add ServersTransport for Traefik backend HTTPS with insecureSkipVerify
- Add traefik.ingress.kubernetes.io/service.serversscheme annotation
2026-01-05 00:43:51 +09:00

90 lines
2.2 KiB
YAML
Raw Blame History

apiVersion: apps/v1
kind: Deployment
metadata:
name: crafty
namespace: crafty
labels:
app: crafty
spec:
replicas: 1
strategy:
type: Recreate
selector:
matchLabels:
app: crafty
template:
metadata:
labels:
app: crafty
spec:
securityContext:
fsGroup: 0
initContainers:
- name: init-permissions
image: busybox:latest
command: ['sh', '-c', 'chown -R 1000:0 /crafty && chmod -R g+rwX /crafty']
volumeMounts:
- name: backups
mountPath: /crafty/backups
- name: logs
mountPath: /crafty/logs
- name: servers
mountPath: /crafty/servers
- name: config
mountPath: /crafty/app/config
- name: import
mountPath: /crafty/import
securityContext:
runAsUser: 0
containers:
- name: crafty
image: registry.gitlab.com/crafty-controller/crafty-4:latest
env:
- name: TZ
value: Asia/Seoul
ports:
- name: https
containerPort: 8443
protocol: TCP
- name: dynmap
containerPort: 8123
protocol: TCP
- name: bedrock
containerPort: 19132
protocol: UDP
resources:
requests:
memory: "512Mi"
cpu: "250m"
limits:
memory: "2Gi"
volumeMounts:
- name: backups
mountPath: /crafty/backups
- name: logs
mountPath: /crafty/logs
- name: servers
mountPath: /crafty/servers
- name: config
mountPath: /crafty/app/config
- name: import
mountPath: /crafty/import
securityContext:
allowPrivilegeEscalation: false
volumes:
- name: backups
persistentVolumeClaim:
claimName: crafty-backups
- name: logs
persistentVolumeClaim:
claimName: crafty-logs
- name: servers
persistentVolumeClaim:
claimName: crafty-servers
- name: config
persistentVolumeClaim:
claimName: crafty-config
- name: import
persistentVolumeClaim:
claimName: crafty-import
Reference in New Issue View Git Blame Copy Permalink