apiVersion: apps/v1 kind: StatefulSet metadata: annotations: meta.helm.sh/release-name: vault-mgmt-e2e-2274 meta.helm.sh/release-namespace: vault-mgmt-e2e creationTimestamp: "2023-05-04T15:01:49Z" generation: 1 labels: app.kubernetes.io/instance: vault-mgmt-e2e-2274 app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: vault name: vault-mgmt-e2e-2274 namespace: vault-mgmt-e2e resourceVersion: "197457542" uid: 33507d00-6b79-42a7-a3b8-0422598baa8c spec: podManagementPolicy: Parallel replicas: 3 revisionHistoryLimit: 10 selector: matchLabels: app.kubernetes.io/instance: vault-mgmt-e2e-2274 app.kubernetes.io/name: vault component: server serviceName: vault-mgmt-e2e-2274-internal template: metadata: creationTimestamp: null labels: app.kubernetes.io/instance: vault-mgmt-e2e-2274 app.kubernetes.io/name: vault component: server helm.sh/chart: vault-0.24.1 spec: containers: - args: - "cp /vault/config/extraconfig-from-values.hcl /tmp/storageconfig.hcl;\n[ -n \"${HOST_IP}\" ] && sed -Ei \"s|HOST_IP|${HOST_IP?}|g\" /tmp/storageconfig.hcl;\n[ -n \"${POD_IP}\" ] && sed -Ei \"s|POD_IP|${POD_IP?}|g\" /tmp/storageconfig.hcl;\n[ -n \"${HOSTNAME}\" ] && sed -Ei \"s|HOSTNAME|${HOSTNAME?}|g\" /tmp/storageconfig.hcl;\n[ -n \"${API_ADDR}\" ] && sed -Ei \"s|API_ADDR|${API_ADDR?}|g\" /tmp/storageconfig.hcl;\n[ -n \"${TRANSIT_ADDR}\" ] && sed -Ei \"s|TRANSIT_ADDR|${TRANSIT_ADDR?}|g\" /tmp/storageconfig.hcl;\n[ -n \"${RAFT_ADDR}\" ] && sed -Ei \"s|RAFT_ADDR|${RAFT_ADDR?}|g\" /tmp/storageconfig.hcl;\n/usr/local/bin/docker-entrypoint.sh vault server -config=/tmp/storageconfig.hcl \n" command: - /bin/sh - -ec env: - name: HOST_IP valueFrom: fieldRef: apiVersion: v1 fieldPath: status.hostIP - name: POD_IP valueFrom: fieldRef: apiVersion: v1 fieldPath: status.podIP - name: VAULT_K8S_POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: VAULT_K8S_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: VAULT_ADDR value: http://127.0.0.1:8200 - name: VAULT_API_ADDR value: http://$(POD_IP):8200 - name: SKIP_CHOWN value: "true" - name: SKIP_SETCAP value: "true" - name: HOSTNAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: VAULT_CLUSTER_ADDR value: https://$(HOSTNAME).vault-mgmt-e2e-2274-internal:8201 - name: HOME value: /home/vault image: hashicorp/vault:1.13.0 imagePullPolicy: IfNotPresent lifecycle: preStop: exec: command: - /bin/sh - -c - sleep 5 && kill -SIGTERM $(pidof vault) name: vault ports: - containerPort: 8200 name: http protocol: TCP - containerPort: 8201 name: https-internal protocol: TCP - containerPort: 8202 name: http-rep protocol: TCP readinessProbe: exec: command: - /bin/sh - -ec - vault status -tls-skip-verify failureThreshold: 2 initialDelaySeconds: 5 periodSeconds: 5 successThreshold: 1 timeoutSeconds: 3 resources: {} securityContext: allowPrivilegeEscalation: false terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /vault/config name: config - mountPath: /vault/data name: data - mountPath: /home/vault name: home dnsPolicy: ClusterFirst restartPolicy: Always schedulerName: default-scheduler securityContext: fsGroup: 1000 runAsGroup: 1000 runAsNonRoot: true runAsUser: 100 serviceAccount: vault-mgmt-e2e-2274 serviceAccountName: vault-mgmt-e2e-2274 terminationGracePeriodSeconds: 10 volumes: - configMap: defaultMode: 420 name: vault-mgmt-e2e-2274-config name: config - emptyDir: {} name: data - emptyDir: {} name: home updateStrategy: type: OnDelete status: availableReplicas: 3 collisionCount: 0 currentReplicas: 3 currentRevision: vault-mgmt-e2e-2274-855dc4957b observedGeneration: 1 replicas: 3 updateRevision: vault-mgmt-e2e-2274-855dc4957b updatedReplicas: 3