dhall-kubernetes/examples/aws-iam-authenticator-chart.dhall

let kubernetes =
      ../package.dhall sha256:0a6949aabfb5a1250f08c4e3a533024d4705bea98ace08d8d107417e54a9648a

let release = "wintering-rodent"

let name = "aws-iam-authenticator"

let fullName = "${release}-${name}"

let version = "0.1.1"

let chart = "${name}-${version}"

let heritage = "dhall"

in  kubernetes.DaemonSet::{
    , metadata =
        kubernetes.ObjectMeta::{
        , name = fullName
        , labels =
            toMap
              { app = name
              , chart = chart
              , release = release
              , heritage = heritage
              }
        }
    , spec =
        Some
          kubernetes.DaemonSetSpec::{
          , updateStrategy =
              Some
                kubernetes.DaemonSetUpdateStrategy::{
                , type = Some "RollingUpdate"
                }
          , template =
              kubernetes.PodTemplateSpec::{
              , metadata =
                  kubernetes.ObjectMeta::{
                  , name = name
                  , annotations =
                      toMap
                        { `scheduler.alpha.kubernetes.io/critical-pod` = "" }
                  , labels = toMap { app = name, release = release }
                  }
              , spec =
                  Some
                    kubernetes.PodSpec::{
                    , hostNetwork = Some True
                    , nodeSelector =
                        toMap { `node-role.kubernetes.io/master` = "" }
                    , tolerations =
                        [ kubernetes.Toleration::{
                          , effect = Some "NoSchedule"
                          , key = Some "node-role.kubernetes.io/master"
                          }
                        , kubernetes.Toleration::{
                          , effect = Some "CriticalAddonsOnly"
                          , key = Some "Exists"
                          }
                        ]
                    , containers =
                        [ kubernetes.Container::{
                          , name = fullName
                          , image =
                              Some "gcr.io/heptio-images/authenticator:v0.1.0"
                          , args =
                              [ "server"
                              , "--config=/etc/aws-iam-authenticator/config.yaml"
                              , "--state-dir=/var/aws-iam-authenticator"
                              , "--generate-kubeconfig=/etc/kubernetes/aws-iam-authenticator/kubeconfig.yaml"
                              ]
                          , volumeMounts =
                              [ kubernetes.VolumeMount::{
                                , name = "config"
                                , mountPath = "/etc/aws-iam-authenticator/"
                                }
                              , kubernetes.VolumeMount::{
                                , name = "state"
                                , mountPath = "/var/aws-iam-authenticator/"
                                }
                              , kubernetes.VolumeMount::{
                                , name = "output"
                                , mountPath =
                                    "/etc/kubernetes/aws-iam-authenticator/"
                                }
                              ]
                          }
                        ]
                    , volumes =
                        [ kubernetes.Volume::{
                          , name = "config"
                          , configMap =
                              Some
                                kubernetes.ConfigMapVolumeSource::{
                                , name = Some fullName
                                }
                          }
                        , kubernetes.Volume::{
                          , name = "output"
                          , hostPath =
                              Some
                                kubernetes.HostPathVolumeSource::{
                                , path =
                                    "/srv/kubernetes/aws-iam-authenticator/"
                                }
                          }
                        , kubernetes.Volume::{
                          , name = "state"
                          , hostPath =
                              Some
                                kubernetes.HostPathVolumeSource::{
                                , path =
                                    "/srv/kubernetes/aws-iam-authenticator/"
                                }
                          }
                        ]
                    }
              }
          }
    }