badhouseplants/k8s-deployment
4
0
Fork 0
Code Issues 3 Pull Requests 4 Actions Packages Projects Releases Activity

Fix certs

Browse Source
This commit is contained in:
Nikolai Rodionov 2025-04-01 12:23:49 +02:00
parent 2c0f498611
commit 8deb163e0d
Signed by: allanger
GPG Key ID: 09F8B434D0FDD99B
8 changed files with 47 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
charts/namespaces/templates/namespaces.yaml
View File

@ -25,6 +25,14 @@ metadata:
namespace: {{ $ns.name }} namespace: {{ $ns.name }}
data: data:
.dockerconfigjson: {{ $.Values.defaultRegcred }} .dockerconfigjson: {{ $.Values.defaultRegcred }}
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: default
namespace: {{ $ns.name }}
imagePullSecrets:
- name: regcred
{{- end }} {{- end }}
{{- end }} {{- end }}
{{- end }} {{- end }}

2
common/environments.yaml
View File

@ -2,7 +2,7 @@ environments:
badhouseplants: badhouseplants:
kubeContext: badhouseplants kubeContext: badhouseplants
values: values:
#- ./common/values/values.badhouseplants.yaml - ./common/values/values.badhouseplants.yaml
- base: - base:
enabled: true enabled: true
- velero: - velero:

2
helmfiles/system.yaml
View File

@ -163,7 +163,6 @@ releases:
- name: istio-base - name: istio-base
chart: istio/base chart: istio/base
condition: istio.enabled
namespace: istio-system namespace: istio-system
version: 1.25.1 version: 1.25.1
inherit: inherit:
@ -171,7 +170,6 @@ releases:
- name: istiod - name: istiod
chart: istio/istiod chart: istio/istiod
condition: istio.enabled
namespace: istio-system namespace: istio-system
version: 1.25.1 version: 1.25.1
inherit: inherit:

8
installations/applications/helmfile-etersoft.yaml
View File

@ -27,6 +27,14 @@ releases:
- template: default-env-values - template: default-env-values
- template: default-env-secrets - template: default-env-secrets
- name: memos
chart: allangers-charts/memos
version: 0.3.0
namespace: applications
inherit:
- template: default-env-values
- name: external-service-xray - name: external-service-xray
chart: ../../kustomizations/external-service-xray chart: ../../kustomizations/external-service-xray
installed: true installed: true

9
values/badhouseplants/kube-system/namespaces/values.yaml
View File

@ -7,7 +7,9 @@ namespaces:
- name: velero - name: velero
defaultRegcred: true defaultRegcred: true
- name: observability - name: observability
defaultRegcred: true
- name: databases - name: databases
defaultRegcred: true
- name: istio-system - name: istio-system
defaultRegcred: true defaultRegcred: true
- name: applications - name: applications
@ -17,10 +19,17 @@ namespaces:
- name: platform - name: platform
defaultRegcred: true defaultRegcred: true
- name: games - name: games
defaultRegcred: true
- name: team-fortress-2 - name: team-fortress-2
defaultRegcred: true
- name: pipelines - name: pipelines
defaultRegcred: true
- name: public-xray - name: public-xray
defaultRegcred: true
labels: labels:
istio-injection: disabled istio-injection: disabled
- name: org-badhouseplants - name: org-badhouseplants
defaultRegcred: true
- name: org-allanger - name: org-allanger
labels:
istio-injection: enabled

15
values/badhouseplants/values.memos.yaml
View File

@ -25,10 +25,11 @@ storage:
storageClassName: openebs-hostpath storageClassName: openebs-hostpath
ingress: ingress:
main: main:
annotations: metadata:
kubernetes.io/ingress.class: traefik annotations:
kubernetes.io/tls-acme: "true" kubernetes.io/ingress.class: traefik
kubernetes.io/ingress.allow-http: "false" kubernetes.io/tls-acme: "true"
kubernetes.io/ingress.global-static-ip-name: "" kubernetes.io/ingress.allow-http: "false"
cert-manager.io/cluster-issuer: badhouseplants-issuer-http01 kubernetes.io/ingress.global-static-ip-name: ""
traefik.ingress.kubernetes.io/router.entrypoints: web,websecure cert-manager.io/cluster-issuer: badhouseplants-issuer-http01
traefik.ingress.kubernetes.io/router.entrypoints: web,websecure

1
values/etersoft/kube-system/namespaces/values.yaml
View File

@ -3,6 +3,7 @@ namespaces:
- name: kube-system - name: kube-system
defaultRegcred: true defaultRegcred: true
- name: applications - name: applications
defaultRegcred: true
- name: platform - name: platform
defaultRegcred: true defaultRegcred: true
- name: kyverno - name: kyverno

12
values/etersoft/values.memos.yaml Normal file
View File

@ -0,0 +1,12 @@
shortcuts:
hostname: memos.ds.badhouseplants.net
ingress:
main:
metadata:
annotations:
kubernetes.io/ingress.class: traefik
kubernetes.io/tls-acme: "true"
kubernetes.io/ingress.allow-http: "false"
kubernetes.io/ingress.global-static-ip-name: ""
cert-manager.io/cluster-issuer: badhouseplants-issuer-http01
traefik.ingress.kubernetes.io/router.entrypoints: web,websecure