forked from buildkite/agent-stack-k8s
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathconfig.yaml
107 lines (96 loc) · 3.3 KB
/
config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
agent-token-secret: my-kubernetes-secret
debug: true
image: my.registry.dev/buildkite-agent:latest
job-ttl: 5m
image-pull-backoff-grace-period: 60s
job-cancel-checker-poll-interval: 10s
empty-job-grace-period: 50s
poll-interval: 5s
stale-job-data-timeout: 10s
job-creation-concurrency: 5
max-in-flight: 100
namespace: my-buildkite-ns
org: my-buildkite-org
default-image-pull-policy: Never
default-image-check-pull-policy: IfNotPresent
# Setting a custom GraphQL endpoint is usually only useful if you have a
# different instance of Buildkite itself available to run.
graphql-endpoint: http://graphql.buildkite.localhost/v1
# only set cluster-uuid if the pipelines are in a cluster
# the UUID may be found in the cluster settings
cluster-uuid: beefcafe-abbe-baba-abba-deedcedecade
tags:
- queue=my-queue
- priority=high
# Causes the controller to prohibit the kubernetes plugin specified within jobs
# (pipeline YAML) - enabling this causes jobs with a kubernetes plugin to fail,
# preventing the pipeline YAML from having any influence over the podSpec
prohibit-kubernetes-plugin: true
# The workspace volume can be overriden from its default (an emptyDir named
# 'workspace').
workspace-volume:
name: workspace-2-the-reckoning
ephemeral:
volumeClaimTemplate:
spec:
accessModes: ["ReadWriteOnce"]
storageClassName: my-special-storage-class
resources:
requests:
storage: 1Gi
# Applies to all agents
agent-config:
# Setting a custom Agent REST API endpoint is usually only useful if you have
# a different instance of Buildkite itself available to run.
endpoint: http://agent.buildkite.localhost/v3
# Applies to the checkout container in all spawned pods
default-checkout-params:
gitCredentialsSecret:
secretName: "my-git-credentials"
envFrom:
- prefix: GITHUB_
secretRef:
name: github-secrets
# Applies to all command containers in all spawned pods
default-command-params:
interposer: vector
envFrom:
- prefix: DEPLOY_
secretRef:
name: deploy-secrets
# Applies to all sidecar containers in all spawned pods
default-sidecar-params:
envFrom:
- prefix: LOGGING_
configMapRef:
name: logging-config
# Applied to all spawned jobs.
default-metadata:
annotations:
# Note the constraints on annotation names:
# https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/#syntax-and-character-set
imageregistry: "https://hub.docker.com/"
labels:
# Note the constraints on label names:
# https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#syntax-and-character-set
argocd.argoproj.io/tracking-id: example-id-here
# This will be applied to the job's podSpec as a strategic merge patch
# See https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch
pod-spec-patch:
serviceAccountName: buildkite-agent-sa
automountServiceAccountToken: true
nodeSelector:
selectors.example.com/my-selector: example-value
containers:
- name: container-0
image: example.org/my-container@latest
env:
- name: GITHUB_TOKEN
valueFrom:
secretKeyRef:
name: github-secrets
key: github-token
resources:
requests:
cpu: 1000m # one core
mem: 4Gi