Init commit

2024-03-28 18:50:54 +01:00
commit e6d934ad7b
24 changed files with 511 additions and 0 deletions
--- a/workload/helmfile.yaml
+++ b/workload/helmfile.yaml
@ -0,0 +1,83 @@
+repositories:
+  - name: zot
+    url: registry.badhouseplants.net/helmule
+    oci: true
+
+releases: 
+  - name: namespaces
+    chart: ../charts/namespaces
+    namespace: kube-system
+    values: 
+      - ./values/namespaces.yaml
+  
+  - name: coredns
+    chart: zot/coredns
+    version: 1.29.0
+    namespace: kube-system
+    values:
+      - ./values/coredns.yaml
+
+  - name: cilium
+    chart: zot/cilium
+    installed: true
+    version: 1.15.2
+    namespace: kube-system
+    needs:
+      - kube-system/coredns
+      - kube-system/namespaces
+    values:
+      - ./values/cilium.yaml
+
+  - name: metrics-server
+    chart: zot/metrics-server
+    version: 3.12.0
+    namespace: kube-system
+    needs:
+      - kube-system/coredns
+      - kube-system/cilium
+    values:
+      - ./values/metrics-server.yaml
+
+  - name: traefik
+    chart: zot/traefik
+    version: 26.1.0
+    needs:
+      - kube-system/namespaces 
+      - kube-system/coredns
+      - kube-system/cilium
+    namespace: traefik-system
+
+  - name: cert-manager
+    chart: zot/cert-manager
+    version: v1.14.4
+    namespace: cert-manager
+    needs:
+      - kube-system/namespaces 
+      - kube-system/coredns
+    values:
+      - ./values/cert-mangager.yaml
+  
+  - name: metallb
+    chart: zot/metallb
+    version: 0.14.3
+    namespace: metallb-system
+    needs:
+      - kube-system/namespaces 
+      - kube-system/coredns
+      - kube-system/cilium
+
+  - name: local-path-provisioner
+    chart: zot/local-path-provisioner
+    version: 0.0.25-dev
+
+  - name: longhorn
+    chart: zot/longhorn
+    namespace: longhorn-system
+    installed: false
+    version: 1.6.0
+    values:
+      - ./values/longhorn.yaml
+    needs:
+      - kube-system/namespaces 
+      - kube-system/coredns
+      - kube-system/cilium
--- a/workload/helmule/helmule.yaml
+++ b/workload/helmule/helmule.yaml
@ -0,0 +1,75 @@
+repositories:
+  - name: metrics-server
+    helm:
+      url: https://kubernetes-sigs.github.io/metrics-server/
+  - name: jetstack
+    helm:
+      url: https://charts.jetstack.io
+  - name: longhorn
+    helm:
+      url: https://charts.longhorn.io
+  - name: metallb
+    helm:
+      url: https://metallb.github.io/metallb
+  - name: coredns
+    helm:
+      url: https://coredns.github.io/helm
+  - name: cilium
+    helm:
+      url: https://helm.cilium.io/
+  - name: traefik
+    helm:
+      url: https://traefik.github.io/charts
+  - name: flannel
+    helm:
+      url: https://flannel-io.github.io/flannel/
+  - name: rancher-local-path
+    git:
+      url: https://github.com/rancher/local-path-provisioner.git
+      git_ref: main
+      path: deploy/chart
+mirrors:
+  - name: custom-commands
+    custom_command:
+      package:
+        - helm package -d package .
+      upload:
+        - helm push ./package/{{ name }}-{{ version }}.tgz oci://registry.badhouseplants.net/helmule
+        - rm -rf ./package
+charts:
+  - name: coredns
+    repository: coredns
+    mirrors:
+      - custom_command
+  - name: cilium
+    repository: cilium
+    mirrors:
+      - custom_command
+  - name: metrics-server
+    repository: metrics-server
+    mirrors:
+      - custom_command
+  - name: traefik
+    repository: traefik
+    mirrors:
+      - custom_command
+  - name: cert-manager
+    repository: jetstack
+    mirrors:
+      - custom_command
+  - name: metallb
+    repository: metallb
+    mirrors:
+      - custom_command
+  - name: longhorn
+    repository: longhorn
+    mirrors:
+      - custom_command
+  - name: flannel
+    repository: flannel
+    mirrors:
+      - custom_command
+  - name: local-path-provisioner
+    repository: rancher-local-path
+    mirrors:
+      - custom_command
--- a/workload/values/cert-mangager.yaml
+++ b/workload/values/cert-mangager.yaml
@ -0,0 +1 @@
+installCRDs: true
--- a/workload/values/cilium.yaml
+++ b/workload/values/cilium.yaml
@ -0,0 +1,12 @@
+
+operator:
+  replicas: 1
+endpointRoutes:
+  # -- Enable use of per endpoint routes instead of routing via
+  # the cilium_host interface.
+  enabled: true
+ipam:
+  ciliumNodeUpdateRate: "15s"
+  operator:
+    clusterPoolIPv4PodCIDRList:
+      - 10.244.0.0/16
--- a/workload/values/coredns.yaml
+++ b/workload/values/coredns.yaml
@ -0,0 +1,2 @@
+service:
+  clusterIP: 10.43.0.10
--- a/workload/values/flannel.yaml
+++ b/workload/values/flannel.yaml
@ -0,0 +1 @@
+podCidr: 10.244.0.0/16
--- a/workload/values/longhorn.yaml
+++ b/workload/values/longhorn.yaml
@ -0,0 +1,9 @@
+defaultSettings:
+  guaranteedEngineManagerCPU: 6
+  guaranteedReplicaManagerCPU: 6
+  storageOverProvisioningPercentage: 300
+  storageMinimalAvailablePercentage: 5
+  defaultDataPath: /media-longhorn
+persistence:
+  defaultClassReplicaCount: 1
+enablePSP: false
--- a/workload/values/metrics-server.yaml
+++ b/workload/values/metrics-server.yaml
@ -0,0 +1,4 @@
+apiService:
+  insecureSkipTLSVerify: true
+args:
+  - --kubelet-insecure-tls
--- a/workload/values/namespaces.yaml
+++ b/workload/values/namespaces.yaml
@ -0,0 +1,5 @@
+namespaces:
+  - name: metallb-system
+  - name: traefik-system
+  - name: longhorn-system
+  - name: cilium-system