apiVersion: apps/v1 kind: DaemonSet metadata: name: ingress-nginx-controller namespace: ingress-nginx spec: selector: matchLabels: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller template: metadata: labels: app.kubernetes.io/name: ingress-nginx app.kubernetes.io/instance: ingress-nginx app.kubernetes.io/component: controller spec: containers: - name: controller image: k8s.gcr.io/ingress-nginx/controller:v1.2.0 #quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.33.0 args: - /nginx-ingress-controller - --publish-service=ingress-nginx/ingress-nginx-controller-lb - --publish-service=ingress-nginx/ingress-nginx-controller-np - --election-id=ingress-controller-leader - --ingress-class=nginx - --controller-class=k8s.io/ingress-nginx - --configmap=ingress-nginx/ingress-nginx-controller securityContext: runAsUser: 101 allowPrivilegeEscalation: true env: - name: POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: POD_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace ports: - name: http containerPort: 80 protocol: TCP - name: https containerPort: 443 protocol: TCP serviceAccountName: ingress-nginx