apiVersion: v1
kind: Pod
metadata:
  namespace: kube-system
  name: k8s-scheduler
  annotations:
    novit.io/bootstrap-prio: "500"
  labels:
    component: k8s-scheduler
    tier: control-plane
spec:
    hostNetwork: true
    dnsPolicy: Default
    priorityClassName: system-cluster-critical
    automountServiceAccountToken: false
    tolerations:
    - key: node.kubernetes.io/not-ready
      effect: NoSchedule
    containers:
    - name: scheduler
      image: {{ .vars.k8s_registry}}/kube-scheduler:{{ .vars.kubernetes_version }}
      command:
      - kube-scheduler
      - --kubeconfig=/run/k8s/kubeconfig
      - --authentication-kubeconfig=/run/k8s/kubeconfig
      - --authorization-kubeconfig=/run/k8s/kubeconfig
      volumeMounts:
      - name: config
        mountPath: /run/k8s
      - name: tls-cluster-client
        mountPath: /etc/tls/cluster-client
{{ if .vars.control_plane.reserve_resources }}
      resources:
        requests:
          cpu: 10m
          memory: 128Mi
{{ end }}
      livenessProbe:
          httpGet:
              scheme: HTTPS
              host: 127.0.0.1
              port: 10259
              path: /healthz
          initialDelaySeconds: 15
          timeoutSeconds: 15
          failureThreshold: 8
    volumes:
    - name: config
      hostPath:
        path: /etc/kubernetes/control-plane
    - name: tls-cluster-client
      hostPath:
        path: /etc/tls/cluster-client