2022-08-17 19:55:10 +00:00
|
|
|
image:
|
2022-08-18 22:19:54 +00:00
|
|
|
repository: tailscale/tailscale
|
2022-08-17 19:55:10 +00:00
|
|
|
pullPolicy: IfNotPresent
|
2023-12-15 18:43:38 +00:00
|
|
|
tag: v1.56.0@sha256:ed1f9317d0bab2bc17f6eecc29401479b91c938df48c28b1bd3d3014eba9d013
|
2022-08-17 19:55:10 +00:00
|
|
|
serviceAccount:
|
|
|
|
main:
|
2022-09-03 17:22:28 +00:00
|
|
|
enabled: true
|
2023-04-13 08:49:01 +00:00
|
|
|
primary: true
|
2022-08-17 19:55:10 +00:00
|
|
|
rbac:
|
|
|
|
main:
|
|
|
|
enabled: true
|
2023-04-11 18:42:17 +00:00
|
|
|
primary: true
|
2022-08-17 19:55:10 +00:00
|
|
|
rules:
|
|
|
|
- apiGroups:
|
|
|
|
- ""
|
|
|
|
resources:
|
2022-11-05 18:24:36 +00:00
|
|
|
- secrets
|
2022-08-17 19:55:10 +00:00
|
|
|
verbs:
|
2022-11-05 18:24:36 +00:00
|
|
|
- create
|
2022-08-17 19:55:10 +00:00
|
|
|
- apiGroups:
|
|
|
|
- ""
|
|
|
|
resources:
|
2022-11-05 18:24:36 +00:00
|
|
|
- secrets
|
2022-08-17 19:55:10 +00:00
|
|
|
resourceNames:
|
2023-04-11 10:07:17 +00:00
|
|
|
- '{{ printf "%s-tailscale-secret" (include "tc.v1.common.lib.chart.names.fullname" .) }}'
|
2022-08-17 19:55:10 +00:00
|
|
|
verbs:
|
2022-11-05 18:24:36 +00:00
|
|
|
- get
|
|
|
|
- update
|
2022-11-07 23:36:34 +00:00
|
|
|
- patch
|
2022-08-17 19:55:10 +00:00
|
|
|
tailscale:
|
2022-11-05 18:24:36 +00:00
|
|
|
authkey: supersecret
|
|
|
|
auth_once: true
|
2022-09-30 14:17:48 +00:00
|
|
|
userspace: true
|
2022-08-17 19:55:10 +00:00
|
|
|
accept_dns: false
|
|
|
|
routes: ""
|
|
|
|
dest_ip: ""
|
|
|
|
sock5_server: ""
|
2022-11-05 18:24:36 +00:00
|
|
|
outbound_http_proxy_listen: ""
|
2022-08-17 19:55:10 +00:00
|
|
|
extra_args: ""
|
2022-08-20 13:20:48 +00:00
|
|
|
daemon_extra_args: ""
|
2022-09-14 14:25:36 +00:00
|
|
|
hostname: ""
|
|
|
|
advertise_as_exit_node: false
|
|
|
|
hostNetwork: true
|
2022-08-17 19:55:10 +00:00
|
|
|
service:
|
|
|
|
main:
|
2022-09-14 14:25:36 +00:00
|
|
|
enabled: false
|
2022-08-17 19:55:10 +00:00
|
|
|
ports:
|
|
|
|
main:
|
2022-09-14 14:25:36 +00:00
|
|
|
enabled: false
|
2022-08-17 19:55:10 +00:00
|
|
|
persistence:
|
2022-08-22 06:04:31 +00:00
|
|
|
varrun:
|
2022-08-17 19:55:10 +00:00
|
|
|
enabled: true
|
2022-08-20 13:20:48 +00:00
|
|
|
tun:
|
|
|
|
enabled: true
|
|
|
|
type: hostPath
|
|
|
|
hostPath: /dev/net/tun
|
|
|
|
mountPath: /dev/net/tun
|
|
|
|
hostPathType: ""
|
|
|
|
readOnly: false
|
2022-08-17 19:55:10 +00:00
|
|
|
portal:
|
2023-04-11 10:07:17 +00:00
|
|
|
open:
|
|
|
|
enabled: false
|
|
|
|
securityContext:
|
|
|
|
container:
|
|
|
|
readOnlyRootFilesystem: false
|
|
|
|
runAsNonRoot: false
|
|
|
|
capabilities:
|
|
|
|
add:
|
|
|
|
- NET_ADMIN
|
|
|
|
runAsUser: 0
|
|
|
|
runAsGroup: 0
|
|
|
|
workload:
|
|
|
|
main:
|
|
|
|
podSpec:
|
2023-04-14 07:45:29 +00:00
|
|
|
automountServiceAccountToken: true
|
2023-04-11 10:07:17 +00:00
|
|
|
containers:
|
|
|
|
main:
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: false
|
2023-04-14 07:45:29 +00:00
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- tailscale
|
|
|
|
- status
|
2023-04-11 10:07:17 +00:00
|
|
|
readiness:
|
|
|
|
enabled: false
|
2023-04-14 07:45:29 +00:00
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- tailscale
|
|
|
|
- status
|
2023-04-11 10:07:17 +00:00
|
|
|
startup:
|
|
|
|
enabled: false
|
2023-04-14 07:45:29 +00:00
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- tailscale
|
|
|
|
- status
|
2023-04-11 10:07:17 +00:00
|
|
|
envFrom:
|
|
|
|
- configMapRef:
|
|
|
|
name: "tailscale-config"
|
|
|
|
command:
|
|
|
|
- /usr/local/bin/containerboot
|