netflux-kubernetes/deploy/prod/kustomization.yaml

58 lines
1.4 KiB
YAML
Raw Normal View History

2022-05-02 15:26:33 +00:00
namePrefix: prod-
resources:
- ../base
2022-05-05 15:44:44 +00:00
- svc-db.yaml
- svc-netflux.yaml
configMapGenerator:
- name: prometheus-server
behavior: merge
files:
- prometheus.yml=prometheus.yaml
2022-05-09 03:34:36 +00:00
- name: grafana
behavior: merge
files:
- grafana.ini
- datasources.yaml=grafana-datasources.yaml
2022-05-05 15:42:23 +00:00
secretGenerator:
- name: prometheus-credentials
files:
- secrets/exporter-password
2022-05-09 03:34:36 +00:00
- name: grafana-credentials
files:
- admin-user=secrets/grafana-admin-user
- admin-password=secrets/grafana-admin-password
2022-05-05 15:42:23 +00:00
2022-05-05 20:52:39 +00:00
patches:
2022-05-09 03:34:36 +00:00
# Patch the ingress-nginx deployment to allow it to use a service with a
# namePrefix. See https://github.com/kubernetes/ingress-nginx/issues/2599#issuecomment-601170289.
- target:
kind: Deployment
name: ingress-nginx-controller
path: deploy-ingress-nginx.yaml
# Patch prometheus-server pod to mount the secrets volume.
- target:
kind: Deployment
name: prometheus-server
patch: |-
- op: add
path: /spec/template/spec/volumes/-
value:
secret:
secretName: prod-prometheus-credentials
name: secrets-volume
- op: add
path: /spec/template/spec/containers/1/volumeMounts/-
value:
mountPath: /etc/secrets
name: secrets-volume
readOnly: true
2022-05-09 03:34:36 +00:00
# Patch Grafana deployment to inject PostgreSQL credentials:
- target:
kind: Deployment
2022-05-09 03:34:36 +00:00
name: grafana
path: deploy-grafana.yaml