diff --git a/k8s/external-account-rbac/matrix-bridge-meshtastic-deployer.yaml b/k8s/external-account-rbac/matrix-bridge-meshtastic-deployer.yaml index e682612..687a99e 100644 --- a/k8s/external-account-rbac/matrix-bridge-meshtastic-deployer.yaml +++ b/k8s/external-account-rbac/matrix-bridge-meshtastic-deployer.yaml @@ -4,8 +4,8 @@ metadata: name: matrix-bridge-meshtastic-deployer namespace: meshtastic rules: - - apiGroups: ["v1"] - resources: ["statefulsets"] + - apiGroups: ["apps"] + resources: ["deployments"] verbs: ["get", "patch"] --- apiVersion: rbac.authorization.k8s.io/v1 diff --git a/k8s/meshtastic/kustomization.yaml b/k8s/meshtastic/kustomization.yaml index 0f315f8..9e2c28a 100644 --- a/k8s/meshtastic/kustomization.yaml +++ b/k8s/meshtastic/kustomization.yaml @@ -3,10 +3,9 @@ kind: Kustomization namespace: meshtastic resources: - namespace.yaml + - matrix-bridge-meshtastic.yaml - secrets.yaml configMapGenerator: - name: matrix-bridge-meshtastic - options: - disableNameSuffixHash: true files: - matrix-bridge-meshtastic/config.json diff --git a/k8s/meshtastic/matrix-bridge-meshtastic.yaml b/k8s/meshtastic/matrix-bridge-meshtastic.yaml new file mode 100644 index 0000000..ac837ca --- /dev/null +++ b/k8s/meshtastic/matrix-bridge-meshtastic.yaml @@ -0,0 +1,44 @@ +apiVersion: apps/v1 +kind: StatefulSet +metadata: + name: matrix-bridge-meshtastic +spec: + selector: + matchLabels: + app: matrix-bridge-meshtastic + serviceName: matrix-bridge-meshtastic + replicas: 1 + template: + metadata: + labels: + app: matrix-bridge-meshtastic + spec: + containers: + - name: matrix-bridge-meshtastic + image: git.janky.solutions/finn/matrix-bridge-meshtastic:sha-fae2a30 + securityContext: + privileged: true + env: + - name: MATRIX_BRIDGE_MESHTASTIC_CONFIG + value: /config/config.json + envFrom: + - secretRef: + name: matrix-bridge-meshtastic + volumeMounts: + - name: config + mountPath: /config + - name: data + mountPath: /data + volumes: + - name: config + configMap: + name: matrix-bridge-meshtastic + volumeClaimTemplates: + - metadata: + name: data + spec: + storageClassName: longhorn + accessModes: ["ReadWriteOnce"] + resources: + requests: + storage: 1Gi