102 lines
2.1 KiB
YAML
102 lines
2.1 KiB
YAML
image:
|
|
repository: tailscale/tailscale
|
|
pullPolicy: IfNotPresent
|
|
tag: v1.74.1@sha256:a013ce5266e5c796efe31c7cf9562deb21423f8586361d7faadaf675fa4296ac
|
|
serviceAccount:
|
|
main:
|
|
enabled: true
|
|
primary: true
|
|
rbac:
|
|
main:
|
|
enabled: true
|
|
primary: true
|
|
rules:
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- secrets
|
|
verbs:
|
|
- create
|
|
- apiGroups:
|
|
- ""
|
|
resources:
|
|
- secrets
|
|
resourceNames:
|
|
- '{{ printf "%s-tailscale-secret" (include "tc.v1.common.lib.chart.names.fullname" .) }}'
|
|
verbs:
|
|
- get
|
|
- update
|
|
- patch
|
|
tailscale:
|
|
authkey: supersecret
|
|
auth_once: true
|
|
userspace: true
|
|
accept_dns: false
|
|
routes: ""
|
|
dest_ip: ""
|
|
sock5_server: ""
|
|
outbound_http_proxy_listen: ""
|
|
extra_args: ""
|
|
daemon_extra_args: ""
|
|
hostname: ""
|
|
advertise_as_exit_node: false
|
|
hostNetwork: true
|
|
service:
|
|
main:
|
|
enabled: false
|
|
ports:
|
|
main:
|
|
enabled: false
|
|
persistence:
|
|
varrun:
|
|
enabled: true
|
|
tun:
|
|
enabled: true
|
|
type: hostPath
|
|
hostPath: /dev/net/tun
|
|
mountPath: /dev/net/tun
|
|
hostPathType: ""
|
|
readOnly: false
|
|
portal:
|
|
open:
|
|
enabled: false
|
|
securityContext:
|
|
container:
|
|
readOnlyRootFilesystem: false
|
|
runAsNonRoot: false
|
|
capabilities:
|
|
add:
|
|
- NET_ADMIN
|
|
runAsUser: 0
|
|
runAsGroup: 0
|
|
workload:
|
|
main:
|
|
podSpec:
|
|
automountServiceAccountToken: true
|
|
containers:
|
|
main:
|
|
probes:
|
|
liveness:
|
|
enabled: false
|
|
type: exec
|
|
command:
|
|
- tailscale
|
|
- status
|
|
readiness:
|
|
enabled: false
|
|
type: exec
|
|
command:
|
|
- tailscale
|
|
- status
|
|
startup:
|
|
enabled: false
|
|
type: exec
|
|
command:
|
|
- tailscale
|
|
- status
|
|
envFrom:
|
|
- configMapRef:
|
|
name: "tailscale-config"
|
|
command:
|
|
- /usr/local/bin/containerboot
|