app-sidecar-authservice-tenant.yaml
1 # Copyright 2024 Defense Unicorns 2 # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial 3 4 apiVersion: v1 5 kind: ServiceAccount 6 metadata: 7 name: httpbin 8 namespace: authservice-sidecar-test-app 9 --- 10 apiVersion: v1 11 kind: Service 12 metadata: 13 name: httpbin 14 namespace: authservice-sidecar-test-app 15 labels: 16 app: httpbin 17 service: httpbin 18 spec: 19 ports: 20 - name: http 21 port: 8000 22 targetPort: 80 23 selector: 24 app: httpbin 25 --- 26 apiVersion: apps/v1 27 kind: Deployment 28 metadata: 29 name: httpbin 30 namespace: authservice-sidecar-test-app 31 spec: 32 replicas: 1 33 selector: 34 matchLabels: 35 app: httpbin 36 version: v1 37 template: 38 metadata: 39 labels: 40 app: httpbin 41 version: v1 42 spec: 43 serviceAccountName: httpbin 44 containers: 45 - image: docker.io/kong/httpbin:0.2.3 46 imagePullPolicy: IfNotPresent 47 name: httpbin 48 resources: 49 limits: 50 cpu: 50m 51 memory: 64Mi 52 requests: 53 cpu: 50m 54 memory: 64Mi 55 ports: 56 - containerPort: 80 57 securityContext: 58 allowPrivilegeEscalation: false 59 privileged: false 60 runAsGroup: 10001 61 runAsNonRoot: true 62 runAsUser: 10001 63 capabilities: 64 drop: 65 - ALL 66 add: 67 - NET_BIND_SERVICE