Merge pull request #1899 from lcc3108/master

update example/k8s/dex.yaml
dexidp · Feb 10, 2021 · a7a92b0 · a7a92b0
2 parents 1c9fb49 + f2fcb2c
commit a7a92b0
Showing 1 changed file with 23 additions and 5 deletions.
diff --git a/examples/k8s/dex.yaml b/examples/k8s/dex.yaml
@@ -1,19 +1,29 @@
-apiVersion: extensions/v1beta1
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: dex
+---
+apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
     app: dex
   name: dex
+  namespace: dex
 spec:
   replicas: 3
+  selector:
+    matchLabels:
+      app: dex
   template:
     metadata:
       labels:
         app: dex
     spec:
       serviceAccountName: dex # This is created below
       containers:
-      - image: quay.io/dexidp/dex:v2.10.0
+      - image: dexidp/dex:v2.27.0 #or quay.io/dexidp/dex:v2.26.0
         name: dex
         command: ["/usr/local/bin/dex", "serve", "/etc/dex/cfg/config.yaml"]
 
@@ -38,6 +48,11 @@ spec:
             secretKeyRef:
               name: github-client
               key: client-secret
+
+        readinessProbe:
+          httpGet:
+            path: /healthz
+            port: 5556
       volumes:
       - name: config
         configMap:
@@ -53,6 +68,7 @@ kind: ConfigMap
 apiVersion: v1
 metadata:
   name: dex
+  namespace: dex
 data:
   config.yaml: |
     issuer: https://dex.example.com:32000
@@ -95,6 +111,7 @@ apiVersion: v1
 kind: Service
 metadata:
   name: dex
+  namespace: dex
 spec:
   type: NodePort
   ports:
@@ -112,8 +129,9 @@ metadata:
   labels:
     app: dex
   name: dex
+  namespace: dex
 ---
-apiVersion: rbac.authorization.k8s.io/v1beta1
+apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   name: dex
@@ -125,7 +143,7 @@ rules:
   resources: ["customresourcedefinitions"]
   verbs: ["create"] # To manage its own resources, dex must be able to create customresourcedefinitions
 ---
-apiVersion: rbac.authorization.k8s.io/v1beta1
+apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   name: dex
@@ -136,4 +154,4 @@ roleRef:
 subjects:
 - kind: ServiceAccount
   name: dex           # Service account assigned to the dex pod, created above
-  namespace: default  # The namespace dex is running in
+  namespace: dex  # The namespace dex is running in