apiVersion: v1
kind: Service
metadata:
  name: postgres
  namespace: planka
spec:
  ports:
    - port: 5432
  selector:
    app: postgres
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: postgres
  namespace: planka
spec:
  selector:
    matchLabels:
      app: postgres
  template:
    metadata:
      labels:
        app: postgres
    spec:
      securityContext:
        fsGroup: 999
      containers:
        - name: postgres
          image: postgres:13
          env:
            - name: POSTGRES_DB
              value: "planka"
            - name: POSTGRES_USER
              value: "plankauser"
            - name: POSTGRES_PASSWORD
              value: "8148"
            - name: PGDATA
              value: "/var/lib/postgresql/data/pgdata"
          ports:
            - containerPort: 5432
          volumeMounts:
            - name: postgres-storage
              mountPath: "/var/lib/postgresql/data"
          securityContext:
            runAsUser: 999  # Пользователь, от имени которого запускается процесс
            runAsGroup: 999  # Группа, от имени которой запускается процесс
            allowPrivilegeEscalation: false
      volumes:
        - name: postgres-storage
          persistentVolumeClaim:
            claimName: postgres-pvc