apiVersion: v1 kind: Secret metadata: name: docker-config namespace: starling annotations: kube-1password: i6ngbk5zf4k52xgwdwnfup5bby kube-1password/vault: Kubernetes kube-1password/secret-text-key: .dockerconfigjson type: kubernetes.io/dockerconfigjson data: .dockerconfigjson: e30= --- apiVersion: v1 kind: Secret metadata: name: starling namespace: starling annotations: kube-1password: ufxpki65ffgprn2upksirweeie kube-1password/vault: Kubernetes kube-1password/secret-text-parse: "true" type: Opaque --- apiVersion: v1 kind: Service metadata: name: starling namespace: starling spec: type: ClusterIP ports: - port: 80 targetPort: web name: web selector: app: starling --- apiVersion: apps/v1 kind: Deployment metadata: name: starling namespace: starling spec: replicas: 1 selector: matchLabels: app: starling template: metadata: labels: app: starling spec: imagePullSecrets: - name: docker-config containers: - name: web image: rg.fr-par.scw.cloud/averagemarcus-private/starling:latest imagePullPolicy: Always env: - name: PORT value: "3000" - name: SHARED_SECRET valueFrom: secretKeyRef: name: starling key: SHARED_SECRET - name: ACCESS_TOKEN valueFrom: secretKeyRef: name: starling key: ACCESS_TOKEN ports: - containerPort: 3000 name: web resources: limits: memory: 50Mi requests: memory: 50Mi --- apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: starling namespace: starling annotations: cert-manager.io/cluster-issuer: letsencrypt nginx.ingress.kubernetes.io/force-ssl-redirect: "true" spec: ingressClassName: nginx tls: - hosts: - starling.marcusnoble.co.uk secretName: starling-ingress rules: - host: starling.marcusnoble.co.uk http: paths: - path: / pathType: ImplementationSpecific backend: service: name: starling port: number: 80