diff --git a/installations/storage/helmfile.yaml b/installations/storage/helmfile.yaml index 2df12d0..169242a 100644 --- a/installations/storage/helmfile.yaml +++ b/installations/storage/helmfile.yaml @@ -33,7 +33,7 @@ releases: - name: longhorn chart: longhorn/longhorn namespace: longhorn-system - installed: false + installed: true version: 1.6.2 inherit: - template: default-env-values diff --git a/installations/system/helmfile.yaml b/installations/system/helmfile.yaml index dc20767..1a589e4 100644 --- a/installations/system/helmfile.yaml +++ b/installations/system/helmfile.yaml @@ -24,7 +24,6 @@ repositories: url: https://piraeus.io/helm-charts/ - name: vmware-tanzu url: https://vmware-tanzu.github.io/helm-charts/ - releases: - name: namespaces chart: '{{ requiredEnv "PWD" }}/charts/namespaces/chart' @@ -51,8 +50,11 @@ releases: - name: snapshot-controller chart: piraeus-charts/snapshot-controller + installed: true version: 3.0.5 namespace: kube-system + needs: + - kube-system/cilium inherit: - template: crd-management-hook @@ -123,6 +125,9 @@ releases: chart: vmware-tanzu/velero namespace: kube-system version: 7.1.4 + needs: + - kube-system/cilium inherit: - template: default-env-values - template: default-env-secrets + diff --git a/manifests/longhorn-snapshot-class.yaml b/manifests/longhorn-snapshot-class.yaml new file mode 100644 index 0000000..4995c4f --- /dev/null +++ b/manifests/longhorn-snapshot-class.yaml @@ -0,0 +1,10 @@ +kind: VolumeSnapshotClass +apiVersion: snapshot.storage.k8s.io/v1 +metadata: + name: longhorn-snapshot-vsc + labels: + velero.io/csi-volumesnapshot-class: "true" +driver: driver.longhorn.io +deletionPolicy: Delete +parameters: + type: bak diff --git a/manifests/values.yaml b/manifests/values.yaml new file mode 100644 index 0000000..93d35ea --- /dev/null +++ b/manifests/values.yaml @@ -0,0 +1,4 @@ +rsync: + nodeName: copenhagen +sshd: + nodeName: copenhagen diff --git a/values.yaml b/values.yaml new file mode 100644 index 0000000..55805f8 --- /dev/null +++ b/values.yaml @@ -0,0 +1,333 @@ +# Default values for longhorn. +# This is a YAML-formatted file. +# Declare variables to be passed into your templates. +global: + cattle: + systemDefaultRegistry: "" + windowsCluster: + # Enable this to allow Longhorn to run on the Rancher deployed Windows cluster + enabled: false + # Tolerate Linux node taint + tolerations: + - key: "cattle.io/os" + value: "linux" + effect: "NoSchedule" + operator: "Equal" + # Select Linux nodes + nodeSelector: + kubernetes.io/os: "linux" + # Recognize toleration and node selector for Longhorn run-time created components + defaultSetting: + taintToleration: cattle.io/os=linux:NoSchedule + systemManagedComponentsNodeSelector: kubernetes.io/os:linux + +image: + longhorn: + engine: + repository: longhornio/longhorn-engine + tag: v1.4.0 + manager: + repository: longhornio/longhorn-manager + tag: v1.4.0 + ui: + repository: longhornio/longhorn-ui + tag: v1.4.0 + instanceManager: + repository: longhornio/longhorn-instance-manager + tag: v1.4.0 + shareManager: + repository: longhornio/longhorn-share-manager + tag: v1.4.0 + backingImageManager: + repository: longhornio/backing-image-manager + tag: v1.4.0 + supportBundleKit: + repository: longhornio/support-bundle-kit + tag: v0.0.17 + csi: + attacher: + repository: longhornio/csi-attacher + tag: v3.4.0 + provisioner: + repository: longhornio/csi-provisioner + tag: v2.1.2 + nodeDriverRegistrar: + repository: longhornio/csi-node-driver-registrar + tag: v2.5.0 + resizer: + repository: longhornio/csi-resizer + tag: v1.3.0 + snapshotter: + repository: longhornio/csi-snapshotter + tag: v5.0.1 + livenessProbe: + repository: longhornio/livenessprobe + tag: v2.8.0 + pullPolicy: IfNotPresent + +service: + ui: + type: ClusterIP + nodePort: null + manager: + type: ClusterIP + nodePort: "" + loadBalancerIP: "" + loadBalancerSourceRanges: "" + +persistence: + defaultClass: true + defaultFsType: ext4 + defaultMkfsParams: "" + defaultClassReplicaCount: 3 + defaultDataLocality: disabled # best-effort otherwise + defaultReplicaAutoBalance: ignored # "disabled", "least-effort" or "best-effort" otherwise + reclaimPolicy: Delete + migratable: false + recurringJobSelector: + enable: false + jobList: [] + backingImage: + enable: false + name: ~ + dataSourceType: ~ + dataSourceParameters: ~ + expectedChecksum: ~ + defaultNodeSelector: + enable: false # disable by default + selector: [] + removeSnapshotsDuringFilesystemTrim: ignored # "enabled" or "disabled" otherwise + +csi: + kubeletRootDir: ~ + attacherReplicaCount: ~ + provisionerReplicaCount: ~ + resizerReplicaCount: ~ + snapshotterReplicaCount: ~ + +defaultSettings: + backupTarget: ~ + backupTargetCredentialSecret: ~ + allowRecurringJobWhileVolumeDetached: ~ + createDefaultDiskLabeledNodes: ~ + defaultDataPath: ~ + defaultDataLocality: ~ + replicaSoftAntiAffinity: ~ + replicaAutoBalance: ~ + storageOverProvisioningPercentage: ~ + storageMinimalAvailablePercentage: ~ + upgradeChecker: ~ + defaultReplicaCount: ~ + defaultLonghornStaticStorageClass: ~ + backupstorePollInterval: ~ + failedBackupTTL: ~ + restoreVolumeRecurringJobs: ~ + recurringSuccessfulJobsHistoryLimit: ~ + recurringFailedJobsHistoryLimit: ~ + supportBundleFailedHistoryLimit: ~ + taintToleration: ~ + systemManagedComponentsNodeSelector: ~ + priorityClass: ~ + autoSalvage: ~ + autoDeletePodWhenVolumeDetachedUnexpectedly: ~ + disableSchedulingOnCordonedNode: ~ + replicaZoneSoftAntiAffinity: ~ + nodeDownPodDeletionPolicy: ~ + allowNodeDrainWithLastHealthyReplica: ~ + mkfsExt4Parameters: ~ + disableReplicaRebuild: ~ + replicaReplenishmentWaitInterval: ~ + concurrentReplicaRebuildPerNodeLimit: ~ + concurrentVolumeBackupRestorePerNodeLimit: ~ + disableRevisionCounter: ~ + systemManagedPodsImagePullPolicy: ~ + allowVolumeCreationWithDegradedAvailability: ~ + autoCleanupSystemGeneratedSnapshot: ~ + concurrentAutomaticEngineUpgradePerNodeLimit: ~ + backingImageCleanupWaitInterval: ~ + backingImageRecoveryWaitInterval: ~ + guaranteedEngineManagerCPU: ~ + guaranteedReplicaManagerCPU: ~ + kubernetesClusterAutoscalerEnabled: ~ + orphanAutoDeletion: ~ + storageNetwork: ~ + deletingConfirmationFlag: ~ + engineReplicaTimeout: ~ + snapshotDataIntegrity: ~ + snapshotDataIntegrityImmediateCheckAfterSnapshotCreation: ~ + snapshotDataIntegrityCronjob: ~ + removeSnapshotsDuringFilesystemTrim: ~ + fastReplicaRebuildEnabled: ~ + replicaFileSyncHttpClientTimeout: ~ +privateRegistry: + createSecret: ~ + registryUrl: ~ + registryUser: ~ + registryPasswd: ~ + registrySecret: ~ + +longhornManager: + log: + ## Allowed values are `plain` or `json`. + format: plain + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn Manager DaemonSet, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn Manager DaemonSet, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + serviceAnnotations: {} + ## If you want to set annotations for the Longhorn Manager service, delete the `{}` in the line above + ## and uncomment this example block + # annotation-key1: "annotation-value1" + # annotation-key2: "annotation-value2" + +longhornDriver: + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn Driver Deployer Deployment, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn Driver Deployer Deployment, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + +longhornUI: + replicas: 2 + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn UI Deployment, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn UI Deployment, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + +longhornConversionWebhook: + replicas: 2 + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn conversion webhook Deployment, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn conversion webhook Deployment, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + +longhornAdmissionWebhook: + replicas: 2 + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn admission webhook Deployment, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn admission webhook Deployment, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + +longhornRecoveryBackend: + replicas: 2 + priorityClass: ~ + tolerations: [] + ## If you want to set tolerations for Longhorn recovery backend Deployment, delete the `[]` in the line above + ## and uncomment this example block + # - key: "key" + # operator: "Equal" + # value: "value" + # effect: "NoSchedule" + nodeSelector: {} + ## If you want to set node selector for Longhorn recovery backend Deployment, delete the `{}` in the line above + ## and uncomment this example block + # label-key1: "label-value1" + # label-key2: "label-value2" + +ingress: + ## Set to true to enable ingress record generation + enabled: false + + ## Add ingressClassName to the Ingress + ## Can replace the kubernetes.io/ingress.class annotation on v1.18+ + ingressClassName: ~ + + host: sslip.io + + ## Set this to true in order to enable TLS on the ingress record + tls: false + + ## Enable this in order to enable that the backend service will be connected at port 443 + secureBackends: false + + ## If TLS is set to true, you must declare what secret will store the key/certificate for TLS + tlsSecret: longhorn.local-tls + + ## If ingress is enabled you can set the default ingress path + ## then you can access the UI by using the following full path {{host}}+{{path}} + path: / + + ## Ingress annotations done as key:value pairs + ## If you're using kube-lego, you will want to add: + ## kubernetes.io/tls-acme: true + ## + ## For a full list of possible ingress annotations, please see + ## ref: https://github.com/kubernetes/ingress-nginx/blob/master/docs/annotations.md + ## + ## If tls is set to true, annotation ingress.kubernetes.io/secure-backends: "true" will automatically be set + annotations: + # kubernetes.io/ingress.class: nginx + # kubernetes.io/tls-acme: true + + secrets: + ## If you're providing your own certificates, please use this to add the certificates as secrets + ## key and certificate should start with -----BEGIN CERTIFICATE----- or + ## -----BEGIN RSA PRIVATE KEY----- + ## + ## name should line up with a tlsSecret set further up + ## If you're using kube-lego, this is unneeded, as it will create the secret for you if it is not set + ## + ## It is also possible to create and manage the certificates outside of this helm chart + ## Please see README.md for more information + # - name: longhorn.local-tls + # key: + # certificate: + +# For Kubernetes < v1.25, if your cluster enables Pod Security Policy admission controller, +# set this to `true` to ship longhorn-psp which allow privileged Longhorn pods to start +enablePSP: false + +## Specify override namespace, specifically this is useful for using longhorn as sub-chart +## and its release namespace is not the `longhorn-system` +namespaceOverride: "" + +# Annotations to add to the Longhorn Manager DaemonSet Pods. Optional. +annotations: {} + +serviceAccount: + # Annotations to add to the service account + annotations: {} diff --git a/values/badhouseplants/secrets.longhorn.yaml b/values/badhouseplants/secrets.longhorn.yaml index ca6debb..04e3ee8 100644 --- a/values/badhouseplants/secrets.longhorn.yaml +++ b/values/badhouseplants/secrets.longhorn.yaml @@ -1,9 +1,9 @@ ext-secret: - name: ENC[AES256_GCM,data:IpPv89vpwii27UclFUCcTA==,iv:qMeYGveJD198bxIZjfMIdZu7dBipRCu4EsoeiBC6Efs=,tag:k79JW54qd/xfgyHmkbR4Iw==,type:str] + name: ENC[AES256_GCM,data:Dd4Qr9Yg3JMYCJgbeUoHHw==,iv:COAFXS+dSFJ9JdQUPJr6sr7vzjdvjWU42Ml1aR980hg=,tag:u3ByF0nt+rRAtx5PDpwACQ==,type:str] data: - AWS_ACCESS_KEY_ID: ENC[AES256_GCM,data:Dl1SneGa,iv:AVFCJ75cJ+RKYSvtLJtR0iickPLhgyJku+I0l8t0Hhc=,tag:QwUpBSLDlHNUR1w4xLlQ8w==,type:str] - AWS_ENDPOINTS: ENC[AES256_GCM,data:RfiEBXY9wl3rzrTXq2JBy0EavblH+EM=,iv:Y1MptogOs9MQmnW5Lzo0WuwiDkq5WGQmWRE/12CxJeg=,tag:4xbTXBmQfWMukzVItYD5Nw==,type:str] - AWS_SECRET_ACCESS_KEY: ENC[AES256_GCM,data:k/I4oC2s7rkChuc68pk=,iv:SzWiTO/74MzobUXgA8C/abM+WOV/dO18LP1ogxHQJ28=,tag:xQcPyCiPd2JW1qEQlImpBg==,type:str] + AWS_ACCESS_KEY_ID: ENC[AES256_GCM,data:9FvxD2dF,iv:1XwnZV8k0UUvH1ooSb3o5WZbQia5qaGiamJKG99r9n4=,tag:dRtnXUqbFdqkrcJKfs1WuA==,type:str] + AWS_ENDPOINTS: ENC[AES256_GCM,data:RSKfl2WGh6pJaQcmfg92QMEjtH9NeTk=,iv:yxAr7M7WPW4Ry5+VevPmyRGFPIzEwtcdEOlbSkHDiTg=,tag:Qjgpm8vsXLpF6feYP36sDg==,type:str] + AWS_SECRET_ACCESS_KEY: ENC[AES256_GCM,data:1ryLQn2uG82w06ANVWY=,iv:ab+wENEkReJbWv7yluqs5f2pMXJi3njvyWgM3IKLIgY=,tag:p5CsKKI450H0voJdvQiFsw==,type:str] sops: kms: [] gcp_kms: [] @@ -13,14 +13,14 @@ sops: - recipient: age1vzkv97n2p7gfkw8dyx8ctz2kumattz89th2jq47zyjyrarmnssysdkw9v8 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB2YWcyYWhCT1NoTTlGWW1p - OVF1RVU0a1lPOEVFM3NkU3BQZkE5RWUwZ3prCkhaMUp4OWlLS2orMDFQR1ZzWTJ0 - QnJSOStDOG9Ob0diOThDZE0zQ0dibDAKLS0tIG5QSEpPUjFnZ2cxYW5FanJtRTNO - SUdza2xlTWtlRHFLb0pYZjBabzdvVkUKqUYqyBcS+UTc00KYC+BCRvFLq7Q9LQx+ - NwenXMGEDJ6EEcmiHW1qMFxf9me6zFoF1te37nJ5yOYqh91C6OhILw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBBVnNUNUpBUWFrVmFyV2VO + V3NSMlZ2ZS84Mk1pWkwvQ1NOeFNodHVRMkNVCldIV3V5MEpqZ2J3VVhubFNKTVhp + UHgxa1pjWHA0a3drMnVNNnN5SVVnNTQKLS0tIHhNWXJ2YWFQRnh0TXlPZ1hYTllp + ZDBaTTZIWU1ZQmd1TVBKMlZYbEV2TUkKjp0AgpvKscNpouIhwYb01x+T3YNQfMK2 + EOEZNdcNGQY33BMwSCwEgrBfWWpLECbsRswOXNTVC1D3xB1rfwX9FA== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-07-20T21:35:51Z" - mac: ENC[AES256_GCM,data:KQXidT8xb6tfar6nuWmmT8vYPHafMz/jdvBYWU9+FPU4zOnDoz4PN+c22PAfHIvlWuA/BPtBii9xMExGRAOo6cdwfK4B7SynELVU5sETlhRRiz5Cb/hjXuW+wBi+ydWjQv0hDiRqnjAmrzvChUFXYQyI0pMXeA2MzyqPPEJAc0U=,iv:Bvj4vxvvampJcXZSNQIIIHPIiH5aGqX2Fx6jCWjNj4U=,tag:EixnB5lnc2zhAYO1+k589g==,type:str] + lastmodified: "2024-08-05T07:45:16Z" + mac: ENC[AES256_GCM,data:MNSprThcVhc6FtfQKkG9qsh0zr6G2Xwv89GqIAFjD2/U5DY3ESn43vm6sWOyvFRcZ8KJNCAbFlFBNTKE8WMlJno/n7+kcuvL+RNDy8ZX1o14bmdWunQhc0/JTtoVvGkLIWeG7v5umXbF4hsag8gGWk/75joaxe0yExUgAH5USoU=,iv:4iOVJJZcgds76SryTlsR1r1CKDHmeofRTTGT3mFE10Y=,tag:mGtlKfWyB0MSQFoue6KCvg==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.9.0 diff --git a/values/badhouseplants/secrets.velero.yaml b/values/badhouseplants/secrets.velero.yaml index 58c329d..441b599 100644 --- a/values/badhouseplants/secrets.velero.yaml +++ b/values/badhouseplants/secrets.velero.yaml @@ -1,8 +1,8 @@ credentials: - useSecret: ENC[AES256_GCM,data:FiegMQ==,iv:bZB11+MhsNGPuprsMvQtClZq8OV8fqbPce3Eupswte0=,tag:ycXSZBJyI6P8/gCgv5exKQ==,type:bool] - name: ENC[AES256_GCM,data:WGAJC/rfYcRo8NSPSYrM,iv:2HXiJWCXQ35fUMpKk7B0a854pzgKIwkN+b7Df55sqJI=,tag:dUtBG5NTFx3LafLX5tXmMw==,type:str] + useSecret: ENC[AES256_GCM,data:zn9jOw==,iv:lEdpRvbV9vfwcWvImAg2yapCNgYwGxN37jrsrY3WBCs=,tag:50CBlc3UZQEbCDLXCOVgaw==,type:bool] + name: ENC[AES256_GCM,data:6jkV0vyc+qAO/iT6jZ6z,iv:GbWE1biI7+qZfqEnlG5tQNKvSBe0WpYApcg3RnYXYts=,tag:0K5vKZrAHhO7xNNRkguEFw==,type:str] secretContents: - data: ENC[AES256_GCM,data:OKCSfWAHMQcnZKWXrR5typuPqiHJhOqaRF8N2qOptrvZAxYNbqvp1wU485N0c2bI45RcD08IDcmwl4IwcQ0fIpVWcNSkwCWQ,iv:ZJv8AiCYHyBAwX7WTI/skV00Y4jBA95SZWVfaVaIvqM=,tag:8hcgKSHAAp3W4BNOhmao7Q==,type:str] + data: ENC[AES256_GCM,data:hFvL51EwLkX/sx0FL4PNRxFdK/jMjOVchgFK7GGtANBK9ZwzktAt1vd2YMp7gFgueltjC3qQYy6oHc0WnKgOo3XayBIstJNT,iv:Gwymmy0/M5B35qYOZOqW7g5MmfeDciAqIJbohU533Ng=,tag:tKi1amgZkyKcU4VkaPEWZA==,type:str] sops: kms: [] gcp_kms: [] @@ -12,14 +12,14 @@ sops: - recipient: age1vzkv97n2p7gfkw8dyx8ctz2kumattz89th2jq47zyjyrarmnssysdkw9v8 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB6NzI3QzV0bnVpWlRlMGtD - SjZzZHlRaGMxZldzampxbERONmZqVkk3dFNJCjlXZ3NpQlZZQ1RVVHE1SU1IY204 - ZmFsdVcwcldZQm9abko5NytXVk5JRGcKLS0tIHd1dzZ4YkJTMUdscTRubXRaemVV - YlZzRTNSOTZ4NmgvQmRQbVluUk4yTjQKg2iVVuqZmzkvmrhOcOzUc5GB2eZW07pV - nWBaGBaSUKBQZxOooGiuMj7qGcfPrVRcLmM/brCYfEpmLHWjvJ+Nwg== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBTNjhYcnAxOW9Ib1lyTlFJ + NFF3cWhYSU94UXA2N3ZPN3ZoWWRaRjE5aEVzCkdLbk1uUVEwNjdKVVRlTUNNbmpw + SWR0Vkt5QkVtZnhqdGhTSUlYaXdNWTgKLS0tIG9DNzUwdktmN3FHVWtLWFNuakps + RVVKTDlWZ0ZNaVg3bXFmN0FhK1FaSnMKyOqdgYzP1QP3FcZat+8pZHjMxmUJs7vn + 0LlnPd8hMg1nmM9P3kkE1/4X5z13yiuE2wdMV3iT7RqiexGlCi43Vw== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-07-20T17:31:44Z" - mac: ENC[AES256_GCM,data:/WGEptmu5VTNE4sTFfDueJiteaPSJQn+dyfTN4dXnHwi5htBfGtRwsp9VWMsh22GR5fpkTYFBr9W1rFQ12fvv8TtxhiVyRmiCABd9LVxVsf459jgGg/BKvnoqh8OvjrindD5NxgsL/6aUMVYpacD49bmDPfres6ijiboBvn4sQE=,iv:hUIsTHP3SXdrppTGa6Azc2SSBsMuR0j8joGpCWNiiEg=,tag:K1p0o/AegrwT1cYJBiDQDQ==,type:str] + lastmodified: "2024-08-04T11:36:43Z" + mac: ENC[AES256_GCM,data:5Vyq/jGjKbeONBkzFWCjdecoxMGSemY1EQJOeLgncmM+VW+hvck8m0PcHmZYLz5BNyzw8lfnFYdfBARtwD6wv2BvD4p5A/8iZUUd7BxmrCCtlm5P39Abi0E5OZkOgr+js6rGzmRM5vBUyE86hOHc9yXtD1F2isOPkHhlXH7atJs=,iv:eN9NgFn95tku7BEvlYNK5v6kAktyWPwG6Zomirx2W9E=,tag:PBZFykWJKKw6J7kAZn3H0A==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.9.0 diff --git a/values/badhouseplants/values.local-path-provisioner.yaml b/values/badhouseplants/values.local-path-provisioner.yaml index aa1d3e2..690a5bc 100644 --- a/values/badhouseplants/values.local-path-provisioner.yaml +++ b/values/badhouseplants/values.local-path-provisioner.yaml @@ -1,3 +1,8 @@ storageClass: create: true defaultClass: false + defaultVolumeType: local +nodePathMap: + - node: DEFAULT_PATH_FOR_NON_LISTED_NODES + paths: + - /mnt/k8s-storage diff --git a/values/badhouseplants/values.longhorn.yaml b/values/badhouseplants/values.longhorn.yaml index 03cd89c..1a73d35 100644 --- a/values/badhouseplants/values.longhorn.yaml +++ b/values/badhouseplants/values.longhorn.yaml @@ -1,12 +1,13 @@ defaultSettings: backupTarget: s3://longhorn@us-east1/backupstore backupTargetCredentialSecret: s3-backup-secret - guaranteedEngineManagerCPU: 6 - guaranteedReplicaManagerCPU: 6 + guaranteedEngineManagerCPU: 2 + guaranteedReplicaManagerCPU: 2 storageOverProvisioningPercentage: 300 storageMinimalAvailablePercentage: 5 storageReservedPercentageForDefaultDisk: 1 defaultDataPath: /media/longhorn + defaultReplicaCount: 1 csi: kubeletRootDir: /var/lib/kubelet/ attacherReplicaCount: 1 @@ -15,6 +16,15 @@ csi: snapshotterReplicaCount: 1 persistence: defaultClassReplicaCount: 1 + defaultNodeSelector: + enable: true + selector: longhorn enablePSP: false longhornUI: replicas: 1 +longhornManager: + nodeSelector: + node-role.kubernetes.io/longhorn: "true" +longhornDriver: + nodeSelector: + node-role.kubernetes.io/longhorn: "true" diff --git a/values/badhouseplants/values.minecraft.yaml b/values/badhouseplants/values.minecraft.yaml index 92bbc7b..e35ff88 100644 --- a/values/badhouseplants/values.minecraft.yaml +++ b/values/badhouseplants/values.minecraft.yaml @@ -43,7 +43,8 @@ resources: # postStart: # - bash # - -c - +nodeSelector: + node-role.kubernetes.io/minecraft: "true" livenessProbe: command: - mc-health @@ -97,7 +98,7 @@ persistence: #storageClass: local-path dataDir: enabled: true - Size: 10Gi + Size: 9Gi mcbackup: enabled: false backupInterval: 2h diff --git a/values/badhouseplants/values.namespaces.yaml b/values/badhouseplants/values.namespaces.yaml index a93d5c2..b909d9b 100644 --- a/values/badhouseplants/values.namespaces.yaml +++ b/values/badhouseplants/values.namespaces.yaml @@ -8,3 +8,4 @@ namespaces: - name: games - name: pipelines - name: rook-ceph + - name: longhorn-system diff --git a/values/badhouseplants/values.velero.yaml b/values/badhouseplants/values.velero.yaml index 25a54e8..120447e 100644 --- a/values/badhouseplants/values.velero.yaml +++ b/values/badhouseplants/values.velero.yaml @@ -28,7 +28,7 @@ configuration: region: us-east-1 deployNodeAgent: true schedules: - daiy: + daily: disabled: false labels: backups: daily diff --git a/velero-cm/change-storage-class.yaml b/velero-cm/change-storage-class.yaml new file mode 100644 index 0000000..4b9976b --- /dev/null +++ b/velero-cm/change-storage-class.yaml @@ -0,0 +1,10 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: change-storage-class-config + namespace: velero + labels: + velero.io/plugin-config: "" + velero.io/change-storage-class: RestoreItemAction +data: + ceph-filesystem: local-path