--- # Source: loki-stack/charts/promtail/templates/daemonset.yaml apiVersion: apps/v1 kind: DaemonSet metadata: name: loki-promtail namespace: monitoring labels: helm.sh/chart: promtail-6.3.0 app.kubernetes.io/name: promtail app.kubernetes.io/instance: loki app.kubernetes.io/version: "2.6.1" app.kubernetes.io/managed-by: Helm spec: selector: matchLabels: app.kubernetes.io/name: promtail app.kubernetes.io/instance: loki updateStrategy: {} template: metadata: labels: app.kubernetes.io/name: promtail app.kubernetes.io/instance: loki annotations: checksum/config: 807310f261dd2585fdcb196f53c15ad3295af56ceac4869de7beaa331ecc9a3c spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchExpressions: - key: type operator: NotIn values: - "outbound" serviceAccountName: loki-promtail securityContext: runAsGroup: 0 runAsUser: 0 containers: - name: promtail image: "docker.io/grafana/promtail:2.6.1" imagePullPolicy: IfNotPresent args: - "-config.file=/etc/promtail/promtail.yaml" volumeMounts: - name: config mountPath: /etc/promtail - mountPath: /run/promtail name: run - mountPath: /var/lib/docker/containers name: containers readOnly: true - mountPath: /var/log/pods name: pods readOnly: true env: - name: HOSTNAME valueFrom: fieldRef: fieldPath: spec.nodeName ports: - name: http-metrics containerPort: 3101 protocol: TCP securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL readOnlyRootFilesystem: true readinessProbe: failureThreshold: 5 httpGet: path: /ready port: http-metrics initialDelaySeconds: 10 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 1 tolerations: - effect: NoSchedule key: node-role.kubernetes.io/master operator: Exists - effect: NoSchedule key: node-role.kubernetes.io/control-plane operator: Exists volumes: - name: config secret: secretName: loki-promtail - hostPath: path: /run/promtail name: run - hostPath: path: /var/lib/docker/containers name: containers - hostPath: path: /var/log/pods name: pods