From da2dea51fcee154e4a10243b6462ece7032c64fc Mon Sep 17 00:00:00 2001
From: Tommy Chen <tommy351@gmail.com>
Date: Tue, 30 Apr 2024 14:46:21 +0800
Subject: [PATCH] fix: Add volume for plugin and tmp folder

Signed-off-by: Tommy Chen <tommy351@gmail.com>
---
 manifests/base/argo-rollouts-deployment.yaml | 11 +++++++++++
 manifests/install.yaml                       | 11 +++++++++++
 manifests/namespace-install.yaml             | 11 +++++++++++
 3 files changed, 33 insertions(+)

diff --git a/manifests/base/argo-rollouts-deployment.yaml b/manifests/base/argo-rollouts-deployment.yaml
index 046a1a0bba..1b61fcc5c7 100644
--- a/manifests/base/argo-rollouts-deployment.yaml
+++ b/manifests/base/argo-rollouts-deployment.yaml
@@ -52,7 +52,18 @@ spec:
           readOnlyRootFilesystem: true
           seccompProfile:
             type: RuntimeDefault
+        resources:
+          limits:
+            ephemeral-storage: 1Gi
+        volumeMounts:
+        - name: plugin-bin
+          mountPath: /home/argo-rollouts/plugin-bin
       securityContext:
         runAsNonRoot: true
+      volumes:
+      - name: plugin-bin
+        emptyDir: {}
+      - name: tmp
+        emptyDir: {}
   strategy:
     type: RollingUpdate
diff --git a/manifests/install.yaml b/manifests/install.yaml
index dfb8d18768..cc89ab99b6 100755
--- a/manifests/install.yaml
+++ b/manifests/install.yaml
@@ -16757,6 +16757,9 @@ spec:
           periodSeconds: 5
           successThreshold: 1
           timeoutSeconds: 4
+        resources:
+          limits:
+            ephemeral-storage: 1Gi
         securityContext:
           allowPrivilegeEscalation: false
           capabilities:
@@ -16765,6 +16768,14 @@ spec:
           readOnlyRootFilesystem: true
           seccompProfile:
             type: RuntimeDefault
+        volumeMounts:
+        - mountPath: /home/argo-rollouts/plugin-bin
+          name: plugin-bin
       securityContext:
         runAsNonRoot: true
       serviceAccountName: argo-rollouts
+      volumes:
+      - emptyDir: {}
+        name: plugin-bin
+      - emptyDir: {}
+        name: tmp
diff --git a/manifests/namespace-install.yaml b/manifests/namespace-install.yaml
index 0a7adf80ed..953b4e5d53 100644
--- a/manifests/namespace-install.yaml
+++ b/manifests/namespace-install.yaml
@@ -413,6 +413,9 @@ spec:
           periodSeconds: 5
           successThreshold: 1
           timeoutSeconds: 4
+        resources:
+          limits:
+            ephemeral-storage: 1Gi
         securityContext:
           allowPrivilegeEscalation: false
           capabilities:
@@ -421,6 +424,14 @@ spec:
           readOnlyRootFilesystem: true
           seccompProfile:
             type: RuntimeDefault
+        volumeMounts:
+        - mountPath: /home/argo-rollouts/plugin-bin
+          name: plugin-bin
       securityContext:
         runAsNonRoot: true
       serviceAccountName: argo-rollouts
+      volumes:
+      - emptyDir: {}
+        name: plugin-bin
+      - emptyDir: {}
+        name: tmp