mirror of
https://gitea.fenix-dev.com/fenix-gitea-admin/iac-ansible-private.git
synced 2025-12-16 19:27:37 +00:00
87 lines
2.2 KiB
YAML
87 lines
2.2 KiB
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: qbittorrentvpn
|
|
namespace: stack-arr
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: qbittorrentvpn
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: qbittorrentvpn
|
|
spec:
|
|
imagePullSecrets:
|
|
- name: regcred
|
|
containers:
|
|
- name: qbittorrentvpn
|
|
image: binhex/arch-qbittorrentvpn:5
|
|
securityContext:
|
|
privileged: true # necessário para manipular tun devices
|
|
ports:
|
|
- containerPort: 8080 # WebUI do qBittorrent
|
|
- containerPort: 8118
|
|
- containerPort: 9118
|
|
- containerPort: 58946
|
|
env:
|
|
- name: VPN_ENABLED
|
|
value: "yes"
|
|
- name: VPN_PROV
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: vpn-secret
|
|
key: vpnprov
|
|
- name: VPN_USER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: vpn-secret
|
|
key: username
|
|
- name: VPN_PASS
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: vpn-secret
|
|
key: password
|
|
- name: VPN_CLIENT
|
|
value: "openvpn"
|
|
- name: ENABLE_STARTUP_SCRIPTS
|
|
value: "no"
|
|
- name: ENABLE_PRIVOXY
|
|
value: "yes"
|
|
- name: STRICT_PORT_FORWARD
|
|
value: "yes"
|
|
- name: USERSPACE_WIREGUARD
|
|
value: "no"
|
|
- name: ENABLE_SOCKS
|
|
value: "no"
|
|
- name: DEBUG
|
|
value: "false"
|
|
- name: WEBUI_PORT
|
|
value: "8080"
|
|
- name: UMASK
|
|
value: "000"
|
|
- name: PUID
|
|
value: "1013"
|
|
- name: PGID
|
|
value: "1013"
|
|
- name: LAN_NETWORK
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: vpn-secret
|
|
key: lannetwork
|
|
- name: NAME_SERVERS
|
|
value: "1.1.1.1,8.8.8.8"
|
|
volumeMounts:
|
|
- name: config
|
|
mountPath: /config
|
|
- name: downloads
|
|
mountPath: /data
|
|
volumes:
|
|
- name: config
|
|
persistentVolumeClaim:
|
|
claimName: qbittorrent-config-pvc
|
|
- name: downloads
|
|
persistentVolumeClaim:
|
|
claimName: qbittorrent-downloads-pvc
|