netflux-kubernetes/deploy/dev/kustomization.yaml

121 lines
3.2 KiB
YAML
Raw Normal View History

---
2022-05-02 15:26:33 +00:00
namePrefix: dev-
resources:
- ../base
2022-05-05 15:44:44 +00:00
- svc-db.yaml
2022-05-16 20:23:53 +00:00
- cm-ingress-nginx-tcp-services.yaml
2022-05-05 15:44:44 +00:00
helmCharts:
- name: postgresql
version: "11.1.28"
repo: https://charts.bitnami.com/bitnami
releaseName: postgresql
valuesInline:
metrics:
enabled: true
auth:
postgresPassword: postgres
database: default
configMapGenerator:
- name: prometheus-server
behavior: merge
files:
- prometheus.yml=prometheus.yaml
2022-05-09 03:34:36 +00:00
- name: grafana
behavior: merge
files:
- grafana.ini
- datasources.yaml=grafana-datasources.yaml
2022-05-11 09:18:49 +00:00
- name: invidious-config
files:
- config.yml=invidious-config.yaml
2022-05-11 18:21:35 +00:00
- name: element-config
files:
- config.json=element-config.json
2022-05-18 16:11:15 +00:00
- name: drone-config
literals:
# For Gitea/drone integration to work in dev, Gitea must be served from the
# external hostname `dev-gitea` so it matches with the internal DNS.
- gitea-server=http://dev-gitea
- server-host=dev-drone
- server-proto=http
- rpc-host=dev-drone
- rpc-proto=http
- logs-debug=false
2022-05-09 03:34:36 +00:00
secretGenerator:
- name: grafana-credentials
literals:
- admin-user=rob
- admin-password=testme
2022-05-11 09:18:49 +00:00
- name: invidious-credentials
literals:
- database-url=postgresql://kemal:kemal@dev-db:5432/invidious
2022-05-11 09:18:49 +00:00
# Individual keys required by init-invidious-db:
- database-host=dev-db
- database-port=5432
- database-name=invidious
- database-user=kemal
- database-password=kemal
2022-05-16 20:23:53 +00:00
- name: gitea-config
literals:
- admin-username=rob
- admin-password=testme
- admin-email=mail@localhost
files:
- config.ini=gitea-config.ini
2022-05-18 16:11:15 +00:00
- name: drone-credentials
literals:
- database-url=postgres://postgres:postgres@dev-db:5432/drone?sslmode=disable
- gitea-client-id=55847c4a-c80e-4e77-ab36-c6d102273115
- gitea-client-secret=IU4cb59RNNLuI9PRkUbldcEQ5wYPEZMBK5s6p7vTdVfe
- rpc-secret=f5ec349109bb9bbdf00e4394afd28754
2022-05-25 05:09:29 +00:00
- name: elon-staging-credentials
literals:
- session-key=secret
- twitter-client-id=foo
- twitter-client-secret=bar
- twitter-callback-url=http://localhost:8000/callback
- twitter-bearer-token=secret
- database-url=postgres://postgres:postgres@dev-db:5432/elon_staging?sslmode=disable
2022-05-05 15:44:44 +00:00
2022-05-05 20:52:39 +00:00
patches:
2022-05-11 09:37:17 +00:00
# Patch the metrics-server to not require TLS in dev cluster.
- target:
kind: Deployment
name: metrics-server
path: deploy-metrics-server.yaml
# Patch the ingress-nginx deployment to allow it to use a service with a
# namePrefix. See https://github.com/kubernetes/ingress-nginx/issues/2599#issuecomment-601170289.
- target:
kind: Deployment
name: ingress-nginx-controller
path: deploy-ingress-nginx.yaml
2022-05-09 03:34:36 +00:00
# Patch the ingress-nginx-admission-create job to reference its webhook with a
# namePrefix.
- target:
kind: Job
name: ingress-nginx-admission-create
path: job-ingress-nginx-admission-create.yaml
# Patch the ingress-nginx-admission-patch job to reference its webhook with a
# namePrefix.
- target:
kind: Job
name: ingress-nginx-admission-patch
path: job-ingress-nginx-admission-patch.yaml
# Patch the ingress resource with stage-specific hostnames:
- target:
kind: Ingress
name: ingress
path: ingress.yaml
2022-05-09 03:34:36 +00:00
# Patch Grafana deployment to inject PostgreSQL credentials:
- target:
kind: Deployment
name: grafana
path: deploy-grafana.yaml