apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    app: bitwarden
  name: bitwarden-deployment
  namespace: default
spec:
  progressDeadlineSeconds: 600
  replicas: 1
  revisionHistoryLimit: 10
  selector:
    matchLabels:
      app: bitwarden
  strategy:
    rollingUpdate:
      maxSurge: 25%
      maxUnavailable: 25%
    type: RollingUpdate
  template:
    metadata:
      labels:
        app: bitwarden
    spec:
      containers:
      - env:
        - name: SIGNUPS_ALLOWED
          value: "false"
        - name: INVITATIONS_ALLOWED
          value: "true"
        - name: ADMIN_TOKEN
          valueFrom:
            secretKeyRef:
              key: admin_token
              name: bitwarden
        image: vaultwarden/server:latest
        imagePullPolicy: IfNotPresent
        name: bitwarden
        ports:
        - containerPort: 80
          protocol: TCP
        - containerPort: 3012
          protocol: TCP
        resources: {}
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
        volumeMounts:
        - mountPath: /data
          name: bitwarden-data-nfs
      dnsPolicy: ClusterFirst
      restartPolicy: Always
      schedulerName: default-scheduler
      securityContext:
        fsGroup: 0
        runAsGroup: 0
        runAsUser: 0
      terminationGracePeriodSeconds: 30
      volumes:
      - name: bitwarden-data-nfs
        persistentVolumeClaim:
          claimName: bitwarden-nfs