36 lines
897 B
YAML
36 lines
897 B
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: math-exercises-app
|
|
annotations:
|
|
# Production environment annotation
|
|
environment: production
|
|
# Security annotations
|
|
seccomp.security.alpha.kubernetes.io/pod: docker/default
|
|
spec:
|
|
template:
|
|
spec:
|
|
containers:
|
|
- name: math-exercises
|
|
env:
|
|
- name: ENVIRONMENT
|
|
value: production
|
|
- name: DEBUG
|
|
value: "false"
|
|
# Enhanced security for production
|
|
securityContext:
|
|
readOnlyRootFilesystem: true
|
|
allowPrivilegeEscalation: false
|
|
runAsNonRoot: true
|
|
runAsUser: 1000
|
|
capabilities:
|
|
drop:
|
|
- ALL
|
|
# Production resource settings
|
|
resources:
|
|
requests:
|
|
memory: "64Mi"
|
|
cpu: "250m"
|
|
limits:
|
|
memory: "128Mi"
|
|
cpu: "1" |