infrastructure/clusters/cl01tl/manifests/cloudnative-pg/Deployment-cloudnative-pg-plugin-barman-cloud.yml

---
# Source: cloudnative-pg/charts/plugin-barman-cloud/templates/deployment.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    helm.sh/chart: plugin-barman-cloud-0.3.1
    app.kubernetes.io/name: plugin-barman-cloud
    app.kubernetes.io/instance: cloudnative-pg
    app.kubernetes.io/version: "v0.9.0"
    app.kubernetes.io/managed-by: Helm
  name: cloudnative-pg-plugin-barman-cloud
  namespace: cloudnative-pg
spec:
  replicas: 1
  selector:
    matchLabels:
      app.kubernetes.io/name: plugin-barman-cloud
      app.kubernetes.io/instance: cloudnative-pg
  # RollingUpdate strategy is not supported by the operator yet, so it can only use the Recreate strategy.
  strategy:
    type: Recreate
  template:
    metadata:
      labels:
        app.kubernetes.io/name: plugin-barman-cloud
        app.kubernetes.io/instance: cloudnative-pg
    spec:
      containers:
        - args:
            - operator
            - --server-cert=/server/tls.crt
            - --server-key=/server/tls.key
            - --client-cert=/client/tls.crt
            - --server-address=:9090
            - --leader-elect
            - --log-level=debug
          env:
            - name: SIDECAR_IMAGE
              valueFrom:
                configMapKeyRef:
                  key: SIDECAR_IMAGE
                  name: plugin-barman-cloud-config
          image: "ghcr.io/cloudnative-pg/plugin-barman-cloud:v0.9.0"
          name: barman-cloud
          ports:
            - containerPort: 9090
              protocol: TCP
          readinessProbe:
            initialDelaySeconds: 10
            periodSeconds: 10
            tcpSocket:
              port: 9090
          resources: {}
          securityContext:
            allowPrivilegeEscalation: false
            capabilities:
              drop:
                - ALL
            readOnlyRootFilesystem: true
            runAsGroup: 10001
            runAsUser: 10001
            seccompProfile:
              type: RuntimeDefault
          volumeMounts:
            - mountPath: /server
              name: server
            - mountPath: /client
              name: client
      securityContext:
        runAsNonRoot: true
        seccompProfile:
          type: RuntimeDefault
      serviceAccountName: cloudnative-pg-plugin-barman-cloud
      volumes:
        - name: server
          secret:
            secretName: barman-cloud-server-tls
        - name: client
          secret:
            secretName: barman-cloud-client-tls