--- apiVersion: apps/v1 kind: Deployment metadata: name: authentik-server namespace: authentik spec: replicas: 1 selector: matchLabels: app: authentik component: server template: metadata: labels: app: authentik component: server spec: containers: - name: server image: registry.ops.eblu.me/blumeops/authentik:kustomized args: ["server"] ports: - name: http containerPort: 9000 - name: https containerPort: 9443 env: - name: AUTHENTIK_SECRET_KEY valueFrom: secretKeyRef: name: authentik-config key: secret-key - name: AUTHENTIK_POSTGRESQL__HOST valueFrom: secretKeyRef: name: authentik-config key: postgresql-host - name: AUTHENTIK_POSTGRESQL__PORT valueFrom: secretKeyRef: name: authentik-config key: postgresql-port - name: AUTHENTIK_POSTGRESQL__NAME valueFrom: secretKeyRef: name: authentik-config key: postgresql-name - name: AUTHENTIK_POSTGRESQL__USER valueFrom: secretKeyRef: name: authentik-config key: postgresql-user - name: AUTHENTIK_POSTGRESQL__PASSWORD valueFrom: secretKeyRef: name: authentik-config key: postgresql-password - name: AUTHENTIK_REDIS__HOST value: authentik-redis livenessProbe: httpGet: path: /-/health/live/ port: 9000 initialDelaySeconds: 30 periodSeconds: 30 readinessProbe: httpGet: path: /-/health/ready/ port: 9000 initialDelaySeconds: 15 periodSeconds: 10 resources: requests: memory: "256Mi" cpu: "100m" limits: memory: "1Gi" cpu: "1000m"