Netbird/manifests/deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
    name: netbird-dashboard
    namespace: netbird
spec:
    replicas: 1
    selector:
        matchLabels:
            app: netbird-dashboard
    template:
        metadata:
            labels:
                app: netbird-dashboard
        spec:
          containers:
            - name: dashboard
              image: netbirdio/dashboard:v2.11.0
              ports:
                - containerPort: 80
              env:
                - name: NETBIRD_MGMT_API_ENDPOINT
                  value: "https://netbird.halis.io"
                - name: NETBIRD_MGMT_GRPC_API_ENDPOINT
                  value: "https://netbird.halis.io"
                - name: AUTH_AUDIENCE
                  value: "309574205744152807@netbird"
                - name: AUTH_CLIENT_ID
                  value: "309574205744152807@netbird"
                - name: AUTH_AUTHORITY
                  value: "https://zitadel.halis.io"
                - name: USE_AUTH0
                  value: "false"
                - name: AUTH_SUPPORTED_SCOPES
                  value: "openid profile email offline_access"
                - name: AUTH_REDIRECT_URI
                  value: "/nb-auth"
                - name: AUTH_SILENT_REDIRECT_URI
                  value: "/nb-silent-auth"
---
apiVersion: apps/v1
kind: Deployment
metadata:
    name: netbird
    namespace: netbird
spec:
    replicas: 1
    selector:
        matchLabels:
            app: netbird
    template:
        metadata:
            labels:
                app: netbird
        spec:
            containers:
              - name: management
                image: netbirdio/management:0.43.0
                args: [
                  "--port", "443",
                  "--log-file", "console",
                  "--log-level", "info",
                  "--disable-anonymous-metrics=true",
                  "--single-account-mode-domain=entos.kerux",
                  "--dns-domain=entos.kerux"
                ]
                ports:
                  - containerPort: 443
                volumeMounts:
                  - mountPath: "/etc/netbird/management.json"
                    name: management-config
                    subPath: management.json
                  - mountPath: "/var/lib/netbird"
                    name: management-pvc
            volumes:
              - name: management-config
                secret:
                  secretName: netbird-management-secrets
              - name: management-pvc
                persistentVolumeClaim:
                  claimName: management-pvc
---
apiVersion: apps/v1
kind: Deployment
metadata:
    name: netbird-signal
    namespace: netbird
spec:
    replicas: 1
    selector:
        matchLabels:
            app: netbird-signal
    template:
        metadata:
            labels:
                app: netbird-signal
        spec:
            containers:
              - name: signal
                image: netbirdio/signal:0.43.0
                ports:
                  - containerPort: 10000
                volumeMounts:
                  - mountPath: "/var/lib/netbird"
                    name: signal-pvc
            volumes:
              - name: signal-pvc
                persistentVolumeClaim:
                  claimName: signal-pvc
---
apiVersion: apps/v1
kind: Deployment
metadata:
    name: netbird-relay
    namespace: netbird
spec:
    replicas: 1
    selector:
        matchLabels:
            app: netbird-relay
    template:
        metadata:
            labels:
                app: netbird-relay
        spec:
            containers:
              - name: relay
                image: netbirdio/relay:0.43.0
                ports:
                  - containerPort: 33080
                    protocol: TCP
                  - containerPort: 33080
                    protocol: UDP
                env:
                    - name: NB_LOG_LEVEL
                      value: "debug"
                    - name: NB_LISTEN_ADDRESS
                      value: ":33080"
                    - name: NB_EXPOSED_ADDRESS
                      value: "rels://netbird.halis.io:33080"
                      # Add Relay section in configmap
                    - name: NB_AUTH_SECRET
                      valueFrom:
                        secretKeyRef:
                          name: netbird-relay-secrets
                          key: auth_secret
---
apiVersion: apps/v1
kind: Deployment
metadata:
    name: netbird-turn
    namespace: netbird
spec:
    replicas: 1
    selector:
        matchLabels:
            app: netbird-turn
    template:
        metadata:
            labels:
                app: netbird-turn
        spec:
            containers:
              - name: coturn
                image: coturn/coturn:4.6.3
                args: [
                  "-c", "/etc/turnserver.conf"
                ]
                ports:
                  - containerPort: 3478
                    protocol: UDP
                  - containerPort: 3478
                    protocol: TCP
                  - containerPort: 5349
                    protocol: UDP
                  - containerPort: 5349
                    protocol: TCP
                volumeMounts:
                  - mountPath: "/etc/turnserver.conf:ro"
                    name: coturn-config
                    subPath: turnserver.conf
            volumes:
              - name: coturn-config
                secret:
                  secretName: netbird-turn-secrets