---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  namespace: woj
  name: runner-pvc
  labels:
    app: runner
spec:
  accessModes:
    - ReadWriteOnce
  storageClassName: local-path
  resources:
    requests:
      storage: 5Gi
---
apiVersion: apps/v1
kind: Deployment
metadata:
  namespace: woj
  name: runner-deployment
  labels:
    app: runner
spec:
  replicas: 3
  selector:
    matchLabels:
      app: runner
  template:
    metadata:
      namespace: woj
      name: runner-pod
      labels:
        app: runner
    spec:
      containers:
        - name: runner
          image: git.0x7f.app/woj/woj-runner:1.3.1-dev
          imagePullPolicy: IfNotPresent
          args:
            - runner
          env:
            - name: REDIS_ADDRESS
              value: "cache-service.woj.svc.cluster.local"
            - name: REDIS_PASSWORD
              valueFrom:
                configMapKeyRef:
                  name: shared-config
                  key: REDIS_PASSWORD
            - name: STORAGE_ENDPOINT
              value: "storage-service.woj.svc.cluster.local:9000"
            - name: STORAGE_ACCESS_KEY
              valueFrom:
                configMapKeyRef:
                  name: shared-config
                  key: MINIO_ROOT_USER
            - name: STORAGE_SECRET_KEY
              valueFrom:
                configMapKeyRef:
                  name: shared-config
                  key: MINIO_ROOT_PASSWORD
            - name: STORAGE_BUCKET
              value: "woj"
            - name: SETUP_CGROUP
              value: "true"
          securityContext:
            privileged: true
          volumeMounts:
            - name: runner-vol
              mountPath: /app/resource/runner/user
      volumes:
        - name: runner-vol
          persistentVolumeClaim:
            claimName: runner-pvc