v/infrastructure
1
0
Fork 0
Code Issues 13 Pull requests 1 Projects Releases Packages Activity Actions 2

deploy umami

Browse source
This commit is contained in:
Vivian 2022-05-26 14:34:01 +02:00
parent a3ac4b8cc0
commit 0de792fd0d
12 changed files with 118 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
flux/cluster/apps/kustomization.yaml
View file

@ -6,3 +6,4 @@ resources:
- authentik
- gitops
- monitoring
- olympus

5
flux/cluster/apps/olympus/kustomization.yaml Normal file
View file

@ -0,0 +1,5 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- xirion-registry-creds.yaml
- umami

32
flux/cluster/apps/olympus/umami/deployment.yaml Normal file
View file

@ -0,0 +1,32 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: umami
namespace: olympus
labels:
app: umami
spec:
replicas: 1
selector:
matchLabels:
app: umami
template:
metadata:
labels:
app: umami
spec:
containers:
- name: umami
imagePullPolicy: IfNotPresent
image: ghcr.io/mikecao/umami:postgresql-v1.31.0
ports:
- containerPort: 3000
name: web
env:
- name: DATABASE_TYPE
value: postgres
- name: DATABASE_URL
value: "postgresql://umami@10.42.42.26/umami"
envFrom:
- secretRef:
name: umami

17
flux/cluster/apps/olympus/umami/external-secret.yaml Normal file
View file

@ -0,0 +1,17 @@
apiVersion: external-secrets.io/v1beta1
kind: ExternalSecret
metadata:
name: umami
namespace: olympus
spec:
refreshInterval: "5m"
secretStoreRef:
name: vault
kind: ClusterSecretStore
target:
name: umami
data:
- secretKey: HASH_SALT
remoteRef:
key: olympus/umami
property: hash_salt

17
flux/cluster/apps/olympus/umami/ingress.yaml Normal file
View file

@ -0,0 +1,17 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: umami
namespace: olympus
spec:
rules:
- host: "analytics.0x76.dev"
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: umami
port:
number: 80

6
flux/cluster/apps/olympus/umami/kustomization.yaml Normal file
View file

@ -0,0 +1,6 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- deployment.yaml
- ingress.yaml
- svc.yaml

12
flux/cluster/apps/olympus/umami/svc.yaml Normal file
View file

@ -0,0 +1,12 @@
apiVersion: v1
kind: Service
metadata:
name: umami
namespace: olympus
spec:
selector:
app: umami
ports:
- protocol: TCP
port: 80
targetPort: web

19
flux/cluster/apps/olympus/xirion-registry-creds.yaml Normal file
View file

@ -0,0 +1,19 @@
apiVersion: external-secrets.io/v1beta1
kind: ExternalSecret
metadata:
name: xirion-registry-creds
namespace: olympus
spec:
refreshInterval: "5m"
secretStoreRef:
name: vault
kind: ClusterSecretStore
target:
name: xirion-registry-creds
template:
type: kubernetes.io/dockerconfigjson
data:
- secretKey: .dockerconfigjson
remoteRef:
key: xirion-registry-creds
property: dockerconfigjson

1
flux/cluster/apps/presidential-paradise/zookeeper/ingress.yaml
View file

@ -15,4 +15,3 @@ spec:
name: zookeeper
port:
number: 8085

7
flux/cluster/core/namespaces/olympus.yaml Normal file
View file

@ -0,0 +1,7 @@
---
apiVersion: v1
kind: Namespace
metadata:
name: olympus
labels:
goldilocks.fairwinds.com/enabled: "true"

2
nixos/hosts/database/configuration.nix
View file

@ -4,7 +4,7 @@
{ config, pkgs, ... }:
let
databases = [ "authentik" ];
databases = [ "authentik" "umami" ];
in
{

2
nixos/hosts/nginx/configuration.nix
View file

@ -46,7 +46,7 @@ in
# Kubernetes endpoints
virtualHosts."0x76.dev" = k8s_proxy;
virtualHosts."id.0x76.dev" = k8s_proxy;
virtualHosts."agola.0x76.dev" = k8s_proxy;
virtualHosts."analytics.0x76.dev" = k8s_proxy;
virtualHosts."zookeeper.0x76.dev" = k8s_proxy;
virtualHosts."wooloofan.club" = k8s_proxy;
virtualHosts."whoami.wooloofan.club" = k8s_proxy;