Asara/k8s
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

post-fail fixes pt.1

Browse source
This commit is contained in:
Asara 2024-12-10 03:23:13 +00:00
parent c71e472093
commit ef3185a8ff
6 changed files with 43 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
argo/apps/values.yaml
View file

@ -29,7 +29,7 @@ helmApps:
namespace: prometheus namespace: prometheus
repoURL: https://prometheus-community.github.io/helm-charts repoURL: https://prometheus-community.github.io/helm-charts
chart: kube-prometheus-stack chart: kube-prometheus-stack
revision: 65.6.0 revision: 66.3.0
- app: goldpinger - app: goldpinger
namespace: goldpinger namespace: goldpinger
repoURL: https://okgolove.github.io/helm-charts repoURL: https://okgolove.github.io/helm-charts

2
helm/forgejo/install.sh
View file

@ -1,6 +1,6 @@
#!/bin/bash #!/bin/bash
CHART_VERSION=8.1.0 CHART_VERSION=10.1.1
NAMESPACE=gitea NAMESPACE=gitea
VAULT_AUTH_NAMESPACE="k8s-teapot" VAULT_AUTH_NAMESPACE="k8s-teapot"

38
helm/forgejo/pv.yaml Normal file
View file

@ -0,0 +1,38 @@
apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
longhorn.io/volume-scheduling-error: ""
pv.kubernetes.io/provisioned-by: driver.longhorn.io
volume.kubernetes.io/provisioner-deletion-secret-name: longhorn-encryption
volume.kubernetes.io/provisioner-deletion-secret-namespace: longhorn-system
name: pvc-04e95cac-441e-4cd8-afbb-670ab8ba4c4d
spec:
accessModes:
- ReadWriteOnce
capacity:
storage: 20Gi
claimRef:
apiVersion: v1
kind: PersistentVolumeClaim
name: data-gitea-0
namespace: gitea
csi:
driver: driver.longhorn.io
fsType: ext4
nodePublishSecretRef:
name: longhorn-encryption
namespace: longhorn-system
nodeStageSecretRef:
name: longhorn-encryption
namespace: longhorn-system
volumeAttributes:
encrypted: "true"
fromBackup: ""
fsType: ext4
numberOfReplicas: "3"
staleReplicaTimeout: "120"
volumeHandle: pvc-04e95cac-441e-4cd8-afbb-670ab8ba4c4d
persistentVolumeReclaimPolicy: Retain
storageClassName: longhorn-encrypted-retain
volumeMode: Filesystem

1
helm/forgejo/pvc.yaml
View file

@ -10,3 +10,4 @@ spec:
resources: resources:
requests: requests:
storage: 20Gi storage: 20Gi
volumeName: pvc-04e95cac-441e-4cd8-afbb-670ab8ba4c4d

2
helm/longhorn/install.sh
View file

@ -1,7 +1,7 @@
#!/bin/bash #!/bin/bash
CHART_VERSION=1.7.2 CHART_VERSION=1.7.2
#helm repo add longhorn https://charts.longhorn.io helm repo add longhorn https://charts.longhorn.io
helm repo update helm repo update
helm upgrade --install \ helm upgrade --install \
longhorn \ longhorn \

2
scripts/vault-config-operator-vault.sh
View file

@ -18,7 +18,7 @@ vault policy write vault-config-operator vault-config-operator.hcl
rm vault-config-operator.hcl rm vault-config-operator.hcl
HOST_IP=$(ip addr show eth0 | grep -Po 'inet \K[\d.]+') HOST_IP=$(ip addr show eth0 | grep -Po 'inet \K[\d.]+')
TOKEN="$(kubectl get secret serviceaccounttoken -n ${NAMESPACE} -o go-template='{{ .data.token }}' | base64 -d)" TOKEN="$(kubectl get secret serviceaccounttoken -n vco -o go-template='{{ .data.token }}' | base64 -d)"
vault write auth/${VAULT_AUTH_NAMESPACE}/role/vault-config-operator \ vault write auth/${VAULT_AUTH_NAMESPACE}/role/vault-config-operator \
bound_service_account_names=vault-config-operator,controller-manager,default \ bound_service_account_names=vault-config-operator,controller-manager,default \