Home Explore Help
Sign In
cecf
/
deploy
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e4538f3d9b
Branches Tags
deploy
/
rook
/
tests
/
scripts
/
tmate-pod.yaml

tmate-pod.yaml 1.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. # Apply this manifest to CI clusters to allow debugging complex failures during CI runs
    2. 

  2. #
    3. 

  3. # Usage:
    4. 

  4. #   kubectl apply -f tests/scripts/tmate-pod.yaml
    5. 

  5. #   kubectl -n tmate wait --for=condition=ready -l app=tmate pod --timeout=300
    6. 

  6. #   sleep 1 # just in case tmate hasn't output its web/ssh links yet
    7. 

  7. #   kubectl -n tmate logs deploy/tmate
    8. 

  8. 

  9. apiVersion: v1
    10. 

  10. kind: Namespace
    11. 

  11. metadata:
    12. 

  12.   name: tmate
    13. 

  13. ---
    14. 

  14. apiVersion: v1
    15. 

  15. kind: ServiceAccount
    16. 

  16. metadata:
    17. 

  17.   name: tmate
    18. 

  18.   namespace: tmate
    19. 

  19. ---
    20. 

  20. apiVersion: rbac.authorization.k8s.io/v1
    21. 

  21. kind: ClusterRole
    22. 

  22. metadata:
    23. 

  23.   name: allow-all
    24. 

  24. rules:
    25. 

  25.   - apiGroups:
    26. 

  26.       - "*"
    27. 

  27.     resources:
    28. 

  28.       - "*"
    29. 

  29.     verbs:
    30. 

  30.       - "*"
    31. 

  31.   - nonResourceURLs:
    32. 

  32.       - "*"
    33. 

  33.     verbs:
    34. 

  34.       - "*"
    35. 

  35. ---
    36. 

  36. apiVersion: rbac.authorization.k8s.io/v1
    37. 

  37. kind: ClusterRoleBinding
    38. 

  38. metadata:
    39. 

  39.   name: tmate-allow-all
    40. 

  40. subjects:
    41. 

  41.   - kind: ServiceAccount
    42. 

  42.     name: tmate
    43. 

  43.     namespace: tmate
    44. 

  44. roleRef:
    45. 

  45.   apiGroup: rbac.authorization.k8s.io
    46. 

  46.   kind: ClusterRole
    47. 

  47.   name: allow-all
    48. 

  48. ---
    49. 

  49. apiVersion: apps/v1
    50. 

  50. kind: Deployment
    51. 

  51. metadata:
    52. 

  52.   name: tmate
    53. 

  53.   namespace: tmate
    54. 

  54. spec:
    55. 

  55.   selector:
    56. 

  56.     matchLabels:
    57. 

  57.       app: tmate
    58. 

  58.   template:
    59. 

  59.     metadata:
    60. 

  60.       labels:
    61. 

  61.         app: tmate
    62. 

  62.     spec:
    63. 

  63.       serviceAccountName: tmate
    64. 

  64.       containers:
    65. 

  65.         - name: tmate
    66. 

  66.           image: quay.io/fedora/fedora:39
    67. 

  67.           command:
    68. 

  68.             - sh
    69. 

  69.             - -c
    70. 

  70.             - |
    71. 

  71.               dnf install -y tmate kubernetes-client bash vim
    72. 

  72.               tmate -F -S /var/tmp/tmate.sock
    73. 

  73.           resources: {}
    74. 

  74.           readinessProbe:
    75. 

  75.             exec:
    76. 

  76.               # return ready only when the tmate socket exists -- when tmate is officially running
    77. 

  77.               command:
    78. 

  78.                 - ls
    79. 

  79.                 - /var/tmp/tmate.sock
    80.