apiVersion: apps/v1
kind: Deployment
metadata:
  name: caddy
  labels:
    app: caddy
spec:
  replicas: 1
  selector:
    matchLabels:
      app: caddy
  template:
    metadata:
      name: caddy
      labels:
        app: caddy
    spec:
      hostNetwork: true
      restartPolicy: Always
      containers:
        - name: caddy
          image: caddy:latest
          imagePullPolicy: Always
          resources:
            requests:
              cpu: 500m
              memory: 32Mi
            limits:
              cpu: 2000m
              memory: 512Mi
          livenessProbe:
            httpGet:
              port: 5001
              path: /
            initialDelaySeconds: 5
            timeoutSeconds: 1
            periodSeconds: 10
            failureThreshold: 3
          #ports:
            #- containerPort: 5001
            #- containerPort: 5002
            #- containerPort: 5030
            #- containerPort: 5567
          volumeMounts:
            - name: caddy-file
              mountPath: /etc/caddy
              readOnly: true
            - name: caddy-logs
              mountPath: /var/log/caddy
            - name: caddy-data
              mountPath: /data
            - name: caddy-config
              mountPath: /config
          securityContext:
            runAsUser: 1000
            privileged: true
            capabilities:
              add:
                - NET_ADMIN
      volumes:
        - name: caddy-file
          hostPath:
            path: /mnt/Projects/k3s-testing/caddy/file
        - name: caddy-logs
          hostPath:
            path: /mnt/Projects/k3s-testing/caddy/logs
        - name: caddy-data
          hostPath:
            path: /mnt/Projects/k3s-testing/caddy/data
        - name: caddy-config
          hostPath:
            path: /mnt/Projects/k3s-testing/caddy/config
  strategy:
    type: RollingUpdate
    rollingUpdate:
      maxUnavailable: 0%
      maxSurge: 10%