apiVersion: apps/v1
kind: Deployment
metadata:
  name: secure-web
  namespace: tls-lab
  labels:
    lesson: tls
    app: secure-web
spec:
  replicas: 1
  selector:
    matchLabels:
      lesson: tls
      app: secure-web
  template:
    metadata:
      labels:
        lesson: tls
        app: secure-web
    spec:
      containers:
      - name: main
        image: busybox:1.36
        imagePullPolicy: IfNotPresent
        env:
        - name: POD_NAME
          valueFrom:
            fieldRef:
              fieldPath: metadata.name
        - name: POD_IP
          valueFrom:
            fieldRef:
              fieldPath: status.podIP
        - name: NODE_NAME
          valueFrom:
            fieldRef:
              fieldPath: spec.nodeName
        command:
        - sh
        - -c
        - |
          mkdir -p /www
          cat > /www/index.html <<EOF
          app=secure-web
          pod=${POD_NAME}
          pod_ip=${POD_IP}
          node=${NODE_NAME}
          ingress_host=secure.k8s-lab.local
          ingress_path=/
          EOF
          exec httpd -f -p 8080 -h /www
        ports:
        - containerPort: 8080
          name: http
        readinessProbe:
          httpGet:
            path: /
            port: http
          initialDelaySeconds: 2
          periodSeconds: 5