apiVersion: v1
kind: ConfigMap
metadata:
name: cloud-skms-config
namespace: dev
data:
CUSTOM_AUTH_SERVICE_EXTRA: "uFhoVIZI-wni6zwDS-E6xGXPqT-m2ms8GWh"
CUSTOM_APP_TENANT_ID: "1ba26d0f-c519-4a76-95bc-90736a2ece55"
CUSTOM_APP_TENANT_SECRET: "Ky0jLCUpKSEmJCsiLSgiJCEkJCYsIyYmKiYlLSMjISg"
CUSTOM_NAMESPACE: "dev"
CUSTOM_AUTH_SERVICE_URL: "http://cloud-oauth-service.dev.svc.cluster.local"
CUSTOM_LOG_SERVICE_URL: "http://cloud-log-service.dev.svc.cluster.local"
CUSTOM_KMS_SERVICE_URL: "http://cloud-kms-service.dev.svc.cluster.local"
CUSTOM_EKMS_SERVICE_URL: "http://cloud-ekms-service.dev.svc.cluster.local"
AZURE_INFO: "7e82e70d-4386-419d-9dfd-6c8d6e6068fc|LBd8Q~.aDAmOjOhZSbcgu.sakTgSPrb_zNPxrbuM"
CUSTOM_APP_FRONT_REDIRECT: "https://devskmsfe.softcamp.co.kr"
CUSTOM_APP_BACK_REDIRECT: "https://devskms.softcamp.co.kr"
CUSTOM_ZIPKIN_USE: "false"
CUSTOM_ZIPKIN_BASE_URL: "http://127.0.0.1:9411"
CUSTOM_APPLICATION_NAME: "SKMS"
CUSTOM_SLEUTH_SAMPLER_PROBABILITY: "0.1"
CUSTOM_RABBITMQ_USE: "true"
CUSTOM_RABBITMQ_HOST: "security365-rabbitmq.dev.svc.cluster.local"
CUSTOM_RABBITMQ_PORT: "5672"
CUSTOM_RABBITMQ_USERNAME: "security365"
CUSTOM_RABBITMQ_PASSWORD: "security365"
---
apiVersion: v1
kind: ConfigMap
metadata:
name: cloud-cdf-config
namespace: dev
data:
SKMS_API_URL: "http://cloud-skms-service.dev.svc.cluster.local"
CONTAINER_LINKER_SERVER_PORT: "8181"
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: cloud-skms-service
namespace: dev
labels:
app: cloud-skms-service
spec:
replicas: 1
selector:
matchLabels:
app: cloud-skms-service
template:
metadata:
labels:
app: cloud-skms-service
spec:
containers:
- name: cloud-skms-service
image: security365acr.azurecr.io/shieldrm/cloud-skms:latest
imagePullPolicy: Always
resources:
requests:
memory: 2Gi
limits:
memory: 2Gi
ports:
- containerPort: 8080
envFrom:
- configMapRef:
name: cloud-skms-config
volumeMounts:
- name: cloud-ekms-data
mountPath: /opt/shieldrm/data
- name: cloud-containerlinker-service
image: security365acr.azurecr.io/shieldrm/cloud-containerlinker:latest
imagePullPolicy: Always
resources:
requests:
memory: 256Mi
limits:
memory: 512Mi
ports:
- containerPort: 8181
envFrom:
- configMapRef:
name: cloud-cdf-config
volumeMounts:
- name: cloud-ekms-data
mountPath: /opt/shieldrm/data
volumes:
- name: cloud-ekms-data
persistentVolumeClaim:
claimName: cloud-ekms-data
imagePullSecrets:
- name: security365acr
---
apiVersion: v1
kind: Service
metadata:
labels:
app: cloud-skms-service
name: cloud-skms-service
namespace: dev
spec:
type: ClusterIP
ports:
- name : skms
port : 80
protocol: TCP
targetPort: 8080
- name : metric
port : 9090
protocol: TCP
targetPort: 9090
selector:
app: cloud-skms-service