Skip to content

Commit

Permalink
feat: topologySpreadConstraints
Browse files Browse the repository at this point in the history
  • Loading branch information
@kirinnee
kirinnee committed Feb 6, 2024
1 parent 1d1ef47 commit c26de6d
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 2 deletions.
2 changes: 1 addition & 1 deletion chart/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ Helm chart to deploy External DNS to configure DNS records to DNS providers

| Key | Type | Default | Description |
|-----|------|---------|-------------|
| external-dns | object | `{"commonLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"deploymentAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"env":[{"name":"CF_API_TOKEN","valueFrom":{"secretKeyRef":{"key":"CLOUDFLARE_TOKEN","name":"cloudflare-external-dns-token"}}}],"interval":"1m","logFormat":"json","podAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"podLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"podSecurityContext":{"<<":{"fsGroup":1000,"runAsGroup":1000,"runAsNonRoot":true,"runAsUser":1000}},"policy":"upsert-only","provider":"cloudflare","rbac":{"create":true},"resources":{"limits":{"cpu":1,"memory":"1Gi"},"requests":{"cpu":"250m","memory":"256Mi"}},"securityContext":{"<<":{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":3000,"runAsNonRoot":true,"runAsUser":1000}},"serviceMonitor":{"enabled":true},"sources":["service"]}` | ExternalDNS configuration. See [ExternalDNS Helm Chart](https://github.com/kubernetes-sigs/external-dns/tree/master/charts/external-dns) |
| external-dns | object | `{"commonLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"deploymentAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"env":[{"name":"CF_API_TOKEN","valueFrom":{"secretKeyRef":{"key":"CLOUDFLARE_TOKEN","name":"cloudflare-external-dns-token"}}}],"interval":"1m","logFormat":"json","podAnnotations":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"podLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}},"podSecurityContext":{"<<":{"fsGroup":1000,"runAsGroup":1000,"runAsNonRoot":true,"runAsUser":1000}},"policy":"upsert-only","provider":"cloudflare","rbac":{"create":true},"resources":{"limits":{"cpu":1,"memory":"1Gi"},"requests":{"cpu":"250m","memory":"256Mi"}},"securityContext":{"<<":{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":3000,"runAsNonRoot":true,"runAsUser":1000}},"serviceMonitor":{"enabled":true},"sources":["service"],"topologySpreadConstraints":[{"labelSelector":{"matchLabels":{"<<":{"atomi.cloud/layer":"1","atomi.cloud/module":"controller","atomi.cloud/platform":"sulfoxide","atomi.cloud/service":"tin"}}},"maxSkew":1,"topologyKey":"topology.kubernetes.io/zone","whenUnsatisfiable":"ScheduleAnyway"}]}` | ExternalDNS configuration. See [ExternalDNS Helm Chart](https://github.com/kubernetes-sigs/external-dns/tree/master/charts/external-dns) |
| podSecurityContext | object | `{"fsGroup":1000,"runAsGroup":1000,"runAsNonRoot":true,"runAsUser":1000}` | YAML Anchor for PodSecurityContext |
| secretAnnotation | object | `{"argocd.argoproj.io/sync-wave":"-2"}` | Secret Annotations (External Secrets) to control synchronization |
| securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":3000,"runAsNonRoot":true,"runAsUser":1000}` | YAML Anchor for SecurityContext |
Expand Down
8 changes: 7 additions & 1 deletion chart/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -90,7 +90,13 @@ token:

# -- ExternalDNS configuration. See [ExternalDNS Helm Chart](https://github.com/kubernetes-sigs/external-dns/tree/master/charts/external-dns)
external-dns:

topologySpreadConstraints:
- maxSkew: 1
topologyKey: "topology.kubernetes.io/zone"
whenUnsatisfiable: ScheduleAnyway
labelSelector:
matchLabels:
<<: *tags
interval: 1m
podSecurityContext:
<<: *podSecurityContext
Expand Down

0 comments on commit c26de6d

Please sign in to comment.