diff --git a/multi-agent/deploy/charts/observer/templates/deployment.yaml b/multi-agent/deploy/charts/observer/templates/deployment.yaml index a222f8bd..e1ce0d52 100644 --- a/multi-agent/deploy/charts/observer/templates/deployment.yaml +++ b/multi-agent/deploy/charts/observer/templates/deployment.yaml @@ -108,6 +108,10 @@ spec: secretKeyRef: name: {{ default (include "observer.configSecretName" .) .Values.existingSecret }} key: {{ default "cluster-secret" .Values.cluster.secretKey }} + {{- with .Values.cluster.assertSecret.resources }} + resources: + {{- toYaml . | nindent 12 }} + {{- end }} {{- end }} {{- end }} containers: diff --git a/multi-agent/deploy/charts/observer/values.yaml b/multi-agent/deploy/charts/observer/values.yaml index 19b5119c..3375c986 100644 --- a/multi-agent/deploy/charts/observer/values.yaml +++ b/multi-agent/deploy/charts/observer/values.yaml @@ -47,6 +47,18 @@ cluster: headlessServiceName: "" # default "-observer-headless" computed in _helpers.tpl networkPolicy: enabled: true + # Resources for the assert-cluster-secret init container. Namespaces + # with a ResourceQuota that requires per-container cpu/memory + # requests+limits (e.g. dev-yuzishu) will reject the Deployment + # otherwise. Match postgresql.wait.resources for consistency. + assertSecret: + resources: + requests: + cpu: 25m + memory: 64Mi + limits: + cpu: 100m + memory: 128Mi secret: create: false