catalog/stable/tailscale/7.1.11/ix_values.yaml

102 lines
2.1 KiB
YAML

image:
repository: tailscale/tailscale
pullPolicy: IfNotPresent
tag: v1.56.1@sha256:ac0c192f6cba52877e4d9c2fe8943f16c0ab44927605a21416852590e3ccb71e
serviceAccount:
main:
enabled: true
primary: true
rbac:
main:
enabled: true
primary: true
rules:
- apiGroups:
- ""
resources:
- secrets
verbs:
- create
- apiGroups:
- ""
resources:
- secrets
resourceNames:
- '{{ printf "%s-tailscale-secret" (include "tc.v1.common.lib.chart.names.fullname" .) }}'
verbs:
- get
- update
- patch
tailscale:
authkey: supersecret
auth_once: true
userspace: true
accept_dns: false
routes: ""
dest_ip: ""
sock5_server: ""
outbound_http_proxy_listen: ""
extra_args: ""
daemon_extra_args: ""
hostname: ""
advertise_as_exit_node: false
hostNetwork: true
service:
main:
enabled: false
ports:
main:
enabled: false
persistence:
varrun:
enabled: true
tun:
enabled: true
type: hostPath
hostPath: /dev/net/tun
mountPath: /dev/net/tun
hostPathType: ""
readOnly: false
portal:
open:
enabled: false
securityContext:
container:
readOnlyRootFilesystem: false
runAsNonRoot: false
capabilities:
add:
- NET_ADMIN
runAsUser: 0
runAsGroup: 0
workload:
main:
podSpec:
automountServiceAccountToken: true
containers:
main:
probes:
liveness:
enabled: false
type: exec
command:
- tailscale
- status
readiness:
enabled: false
type: exec
command:
- tailscale
- status
startup:
enabled: false
type: exec
command:
- tailscale
- status
envFrom:
- configMapRef:
name: "tailscale-config"
command:
- /usr/local/bin/containerboot