---
apiVersion: v1
kind: ConfigMap
metadata:
  namespace: woj
  name: runner-config
  labels:
    app: runner
data:
  DATABASE_HOST: "db-service.woj.svc.cluster.local"
  DATABASE_USER: "woj"
  DATABASE_PASSWORD: "A_VeRy-S3cUr3^PaSsWoRd"
  DATABASE_NAME: "woj"

  REDIS_ADDRESS: "cache-service.woj.svc.cluster.local"
  REDIS_PASSWORD: "YeT_An0tHeR_VeRy-S3cUr3^PaSsWoRd"

  STORAGE_ENDPOINT: "storage-service.woj.svc.cluster.local:9000"
  STORAGE_ACCESS_KEY: "A_VeRy_CoMpLeX_AcCeSs_KeY"
  STORAGE_SECRET_KEY: "A_VeRy_CoMpLeX_ScReT_KeY"
  STORAGE_BUCKET: "woj"
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  namespace: woj
  name: runner-pvc
  labels:
    app: runner
spec:
  accessModes:
    - ReadWriteOnce
  storageClassName: local-path
  resources:
    requests:
      storage: 5Gi
---
apiVersion: apps/v1
kind: Deployment
metadata:
  namespace: woj
  name: runner-deployment
  labels:
    app: runner
spec:
  replicas: 3
  selector:
    matchLabels:
      app: runner
  template:
    metadata:
      namespace: woj
      name: runner-pod
      labels:
        app: runner
    spec:
      containers:
        - name: runner
          image: git.0x7f.app/woj/woj-runner:1.1.0
          imagePullPolicy: IfNotPresent
          args:
            - runner
          envFrom:
            - configMapRef:
                name: runner-config
          securityContext:
            privileged: true
          volumeMounts:
            - name: runner-vol
              mountPath: /app/resource/runner/user
      volumes:
        - name: runner-vol
          persistentVolumeClaim:
            claimName: runner-pvc