update

charts/durpapi/templates/deployment.yaml

@@ -9,7 +9,7 @@ spec:
   selector:
     matchLabels:
       app: {{ .Chart.Name }}
-  replicas: {{ .Values.deployment.replicas }}
+  replicas: {{ .Values.deployment.hpa.minReplicas }}
   template:
     metadata:
       labels:
@@ -25,3 +25,9 @@ spec:
         envFrom:
         - secretRef:
             name: {{ .Values.deployment.secretfile }} 
+        resources:
+          requests:
+            memory: {{ .Values.deployment.resources.requests.cpu }} 
+            cpu: {{ .Values.deployment.resources.requests.memory }} 
+          limits:
+            memory: {{ .Values.deployment.resources.limits.memory }} 

charts/durpapi/templates/hpa.yaml

@@ -0,0 +1,24 @@
+apiVersion: autoscaling/v2
+kind: HorizontalPodAutoscaler
+metadata:
+  name: {{ .Chart.Name }}-hpa
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: Deployment
+    name: ctix
+  minReplicas: {{ .Values.deployment.hpa.minReplicas  }}
+  maxReplicas: {{ .Values.deployment.hpa.maxReplicas  }}
+  metrics:
+    - type: Resource
+      resource:
+        name: memory
+        target:
+          type: Utilization
+          averageUtilization: 80
+    - type: Resource
+      resource:
+        name: cpu
+        target:
+          type: Utilization
+          averageUtilization: 40

charts/durpapi/values.yaml

@@ -1,9 +1,17 @@
 deployment: 
-  replicas: 1
   image: registry.gitlab.com/developerdurp/durpapi
   tag: ""
   imagePullPolicy: Always
   secretfile: durpapi-secret
+  hpa:
+    minReplicas: 3
+    maxReplicas: 10
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "50Mi"
+    limits:
+      memory: "150Mi"
 
 ingress:
   clusterissuer: letsencrypt-production

main.go

@@ -86,7 +86,7 @@ func authMiddleware(allowedGroups []string) gin.HandlerFunc {
 		if !isAllowed {
 			c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{
 				"message": "Unauthorized access",
-				"groups":  groupsHeader,
+				"groups":  allowedGroups,
 			})
 			return
 		}