diff --git a/.gitignore b/.gitignore index 19ace02..b27f105 100644 --- a/.gitignore +++ b/.gitignore @@ -1,2 +1,3 @@ .env .swp +k8s/prod.secret.yaml diff --git a/k8s/deployment.yaml b/k8s/deployment.yaml new file mode 100644 index 0000000..306161c --- /dev/null +++ b/k8s/deployment.yaml @@ -0,0 +1,45 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: agendas-deployment + labels: + app: agendas +spec: + replicas: 1 + selector: + matchLabels: + app: agendas + template: + metadata: + labels: + app: agendas + spec: + containers: + - name: agendas + image: git.agecem.com/bottin/agendas:latest + command: ['agendas', '--config', '/etc/agendas/config.yaml'] + imagePullPolicy: Always + ports: + - containerPort: 3333 + volumeMounts: + - name: config-secret + mountPath: '/etc/agendas/' + readOnly: true + - name: localtime + mountPath: /etc/localtime + readOnly: true + volumes: + - name: config-secret + secret: + secretName: agendas-config-secret + items: + - key: config.yaml + path: config.yaml + - key: cert.pem + path: cert.pem + - key: key.pem + path: key.pem + - name: localtime + hostPath: + path: /etc/localtime + type: File diff --git a/k8s/example-secret.yaml b/k8s/example-secret.yaml new file mode 100644 index 0000000..06edeaf --- /dev/null +++ b/k8s/example-secret.yaml @@ -0,0 +1,31 @@ +apiVersion: v1 +kind: Secret +metadata: + name: agendas-config-secret +type: Opaque +stringData: + config.yaml: | + Bottin: + Host: 'api.bottin.agecem.com' + Key: 'CHANGE_ME' + Port: 443 + TLS: + Enabled: true + SkipVerify: false + Credentials: + 'agendas': 'CHANGE_ME' + DB: + Database: 'agendas' + Host: 'db' + Password: 'CHANGE_ME' + Port: 5432 + SSLMode: 'prefer' + Username: 'agendas' + TLS: + Enabled: true + Cert: '/etc/agendas/cert.pem' + Key: '/etc/agendas/key.pem' + cert.pem: | + CHANGE_ME + key.pem: | + CHANGE_ME diff --git a/k8s/service.yaml b/k8s/service.yaml new file mode 100644 index 0000000..1b8bd17 --- /dev/null +++ b/k8s/service.yaml @@ -0,0 +1,11 @@ +apiVersion: v1 +kind: Service +metadata: + name: agendas-service +spec: + type: NodePort + selector: + app: agendas + ports: + - protocol: TCP + port: 3333