Mathis/dev-cluster
1
0
Fork 0
mirror of https://github.com/lordmathis/dev-cluster.git synced 2025-12-22 16:44:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add lemma notes deployment

Browse Source
This commit is contained in:
Matúš Námešný
2024-12-27 17:54:30 +01:00
parent d3e06ff448
commit bc6e1ed7a7
9 changed files with 144 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
apps/base/lemma/deployment.yaml Normal file
View File

@@ -0,0 +1,48 @@
# /app/base/lemma/deployment.yaml
apiVersion: apps/v1
kind: Deployment
metadata:
name: lemma
namespace: lemma
spec:
selector:
matchLabels:
app: lemma
template:
metadata:
labels:
app: lemma
spec:
containers:
- name: lemma
image: ghcr.io/lordmathis/lemma:latest
ports:
- containerPort: 8080
env:
- name: LEMMA_ADMIN_EMAIL
valueFrom:
secretKeyRef:
name: lemma-secrets
key: admin-email
- name: LEMMA_ADMIN_PASSWORD
valueFrom:
secretKeyRef:
name: lemma-secrets
key: admin-password
- name: LEMMA_ENCRYPTION_KEY
valueFrom:
secretKeyRef:
name: lemma-secrets
key: encryption-key
- name: LEMMA_JWT_SIGNING_KEY
valueFrom:
secretKeyRef:
name: lemma-secrets
key: jwt-signing-key
volumeMounts:
- name: lemma-data
mountPath: /data
volumes:
- name: lemma-data
persistentVolumeClaim:
claimName: lemma-pvc

10
apps/base/lemma/kustomization.yaml Normal file
View File

@@ -0,0 +1,10 @@
# /apps/base/lemma/kustomization.yaml
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: lemma
resources:
- namespace.yaml
- deployment.yaml
- service.yaml
- pvc.yaml

5
apps/base/lemma/namespace.yaml Normal file
View File

@@ -0,0 +1,5 @@
# /apps/base/lemma/namespace.yaml
apiVersion: v1
kind: Namespace
metadata:
name: lemma

11
apps/base/lemma/pvc.yaml Normal file
View File

@@ -0,0 +1,11 @@
# /apps/base/lemma/pvc.yaml
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: lemma-pvc
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 10Gi

11
apps/base/lemma/service.yaml Normal file
View File

@@ -0,0 +1,11 @@
# /apps/base/lemma/service.yaml
apiVersion: v1
kind: Service
metadata:
name: lemma
spec:
ports:
- port: 80
targetPort: 8080
selector:
app: lemma

3
apps/prod/kustomization.yaml
View File

@@ -4,4 +4,5 @@ kind: Kustomization
resources: resources:
- authelia - authelia
- gitea - gitea
- k9s-web - k9s-web
- lemma

14
apps/prod/lemma/ingress.yaml Normal file
View File

@@ -0,0 +1,14 @@
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: lemma
namespace: lemma
spec:
entryPoints:
- websecure
routes:
- match: Host(`lemma.example.com`)
kind: Rule
services:
- name: lemma
port: 80

9
apps/prod/lemma/kustomization.yaml Normal file
View File

@@ -0,0 +1,9 @@
# /apps/prod/lemma/kustomization.yaml
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: lemma
resources:
- ../../base/lemma
- secret.enc.yaml
- ingress.yaml

34
apps/prod/lemma/secret.enc.yaml Normal file
View File

@@ -0,0 +1,34 @@
#ENC[AES256_GCM,data:Uqck3jmR1Zu/sU6FF6zyzYbsisX6Y8LCNh3v7dGRhs0GApPVHTs=,iv:c24rCYF6OMBDAIGrYLHZVl7mUcumKa/SslhkXKHyDTA=,tag:gQkzVMn+4KrV3/RpjDHr3Q==,type:comment]
apiVersion: v1
kind: Secret
metadata:
name: lemma-secrets
namespace: lemma
type: Opaque
stringData:
admin-email: ENC[AES256_GCM,data:T5+fc4AJgvlL/co7t7ub3mH/tlc=,iv:T9d3Ek5Q5nLWDDlcZVeAW2GcMN6/bktaZovXOVZ/6FU=,tag:f+ZgF54kYVttdTrlHaiOJw==,type:str]
admin-password: ENC[AES256_GCM,data:13gTfsNR6XJ2PpmYvrrT0X2F+xg=,iv:Gpx2/bcqazTYmXl/hyJZSIPVt3d/9HUEPg66wd3sJ4g=,tag:xzQO9K7/wSIZeLp2wJTYMw==,type:str]
#ENC[AES256_GCM,data:6zPJx/rCo5v71Tl7i0A8qe1Doh3Yu2ZrSxDF7t1sxuRTshYYil1BWWs=,iv:Wr1JFRikaLkLF3DLWoGsIsEB5Nhw35GPTU6rSzFc3+U=,tag:rUhJRF3UiVurL7MtM6arXw==,type:comment]
encryption-key: ENC[AES256_GCM,data:Gcnue6hnd9wXMlhaPoFItuoPuCyZz3QabtM70eN9uwTyx69NVK8+mA0VLsI=,iv:gKCqaR8uKh0hO0vh5Jskz+b32Y4v0LLEjoxIgkEQsJw=,tag:FEY0+OIXH6eQ8o5dSaCeaA==,type:str]
#ENC[AES256_GCM,data:GsDZsAJLfHdqBKBdxgpTqxur5Qczv3AnOOWdPwOs6CSH6HOolujl/zU=,iv:N5OuEJ09mLQ8j9Rtu5Nzzu5G8M/jphxQu9YKV4R3iyg=,tag:DUZialaJ1ks5yHdBvQzylA==,type:comment]
jwt-signing-key: ENC[AES256_GCM,data:Qy5fWuDlWTWE2C5A3kFKLYJRyN2JJHXp25CS5uhe6CVYKtXSg5eluzi6Fs4=,iv:qFq/S9ghpAkVOvZ52VNwIgQSX5+kmAMv+5U/+/ZpCK4=,tag:OxsUA5tffIy2pQqSgYMAGA==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age1jk99rtxq3ep2xj2w886cchddf7jypqpwkr3dszg5dzq93gn8cy9qyc786m
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBBb0Q3RDdnZEJkTERCQWFV
K200T3ZweWZuU1BJSjloTHA2Qis3TDdqSnlFCmdJUmlrWUgvWDVSRHkzNkZnUXRo
dklaTEsrcjZ3bDVBd2twSklkZDFEL0UKLS0tIG8vd3Bueitwd2kyTTVNNHZmZVZW
RFNCeEVyTUpocHBNU3BFZGFveFVyU1UKbh+PzkseFGBajVpd1cpVoXpcxSsUPPM2
4d3Lsw+4CI5urj9Xi4/kRbSzTC3ARr4NXCRsUMdN21owMZvBG3SjKw==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2024-12-27T16:54:07Z"
mac: ENC[AES256_GCM,data:G65s2ZMyJrMJ+Zo7pjCsd4+lz4ad/O4RA5hZQPJFzMzPfB3tiR4Ci7w7Gsq3zfBIPTVQSumdQ8Ia/PVIfqtBwNswmvYOCEd4SnnLocaCCWbtY/lN71B3OB32Y/ALB/94HRXiON+5TUr9GmTorKDQa2AHwGAdYPthDcu4YZgTVq0=,iv:bcFNhcaqLCoOoyYzbtwyOSUZFCZv7QM78OYDUoa+x/8=,tag:dDgq98VIGG0zmUHc6SLhRA==,type:str]
pgp: []
unencrypted_regex: ^(apiVersion|metadata|kind|type)$
version: 3.9.0