From b40aa7b60a664331d3cfe225e33d24c3f6748c70 Mon Sep 17 00:00:00 2001 From: Justine Pelletreau Date: Sat, 25 Jun 2022 12:29:03 +0200 Subject: [PATCH] archives added --- archives/certmanager/INSTALL.md | 9 +++++ archives/certmanager/issuer.yaml | 15 ++++++++ archives/matrix/matrix-depl.yaml | 33 ++++++++++++++++++ archives/matrix/matrix-ingress.yaml | 18 ++++++++++ archives/matrix/matrix-pv.yaml | 28 +++++++++++++++ archives/matrix/postgres-conf.yaml | 11 ++++++ archives/matrix/postgres-pv.yaml | 28 +++++++++++++++ archives/matrix/postgres-service.yaml | 12 +++++++ archives/matrix/postgres-stateful.yaml | 33 ++++++++++++++++++ .../owntracks}/owntracks-deployment.yaml | 0 .../owntracks}/owntracks-ingress.yaml | 0 .../owntracks}/owntracks-pvc.yaml | 0 .../owntracks}/owntracks-services.yaml | 0 .../owntracks}/owntracks-volumeclaims.yaml | 0 .../vaultwarden/vaultwarden-deployment.yaml | 34 +++++++++++++++++++ archives/vaultwarden/vaultwarden-ingress.yaml | 19 +++++++++++ archives/vaultwarden/vaultwarden-pv.yaml | 15 ++++++++ archives/vaultwarden/vaultwarden-pvc.yaml | 13 +++++++ archives/vaultwarden/vaultwarden-service.yaml | 14 ++++++++ blog/blog-daemonset.yaml | 1 + ...aemonset.yaml => freshrss-deployment.yaml} | 3 +- grafana/graf-services.yaml | 3 +- sqnotes/ingr.yml | 1 - 23 files changed, 286 insertions(+), 4 deletions(-) create mode 100644 archives/certmanager/INSTALL.md create mode 100644 archives/certmanager/issuer.yaml create mode 100644 archives/matrix/matrix-depl.yaml create mode 100644 archives/matrix/matrix-ingress.yaml create mode 100644 archives/matrix/matrix-pv.yaml create mode 100644 archives/matrix/postgres-conf.yaml create mode 100644 archives/matrix/postgres-pv.yaml create mode 100644 archives/matrix/postgres-service.yaml create mode 100644 archives/matrix/postgres-stateful.yaml rename {owntracks => archives/owntracks}/owntracks-deployment.yaml (100%) rename {owntracks => archives/owntracks}/owntracks-ingress.yaml (100%) rename {owntracks => archives/owntracks}/owntracks-pvc.yaml (100%) rename {owntracks => archives/owntracks}/owntracks-services.yaml (100%) rename {owntracks => archives/owntracks}/owntracks-volumeclaims.yaml (100%) create mode 100644 archives/vaultwarden/vaultwarden-deployment.yaml create mode 100644 archives/vaultwarden/vaultwarden-ingress.yaml create mode 100644 archives/vaultwarden/vaultwarden-pv.yaml create mode 100644 archives/vaultwarden/vaultwarden-pvc.yaml create mode 100644 archives/vaultwarden/vaultwarden-service.yaml rename freshrss/{freshrss-daemonset.yaml => freshrss-deployment.yaml} (95%) diff --git a/archives/certmanager/INSTALL.md b/archives/certmanager/INSTALL.md new file mode 100644 index 0000000..ac1c5e6 --- /dev/null +++ b/archives/certmanager/INSTALL.md @@ -0,0 +1,9 @@ +# Install +``` + helm repo add jetstack https://charts.jetstack.io + helm repo update + helm upgrade --install cert-manager jetstack/cert-manager \ + --namespace cert-manager \ + --create-namespace \ + --set installCRDs=true +``` diff --git a/archives/certmanager/issuer.yaml b/archives/certmanager/issuer.yaml new file mode 100644 index 0000000..43dca06 --- /dev/null +++ b/archives/certmanager/issuer.yaml @@ -0,0 +1,15 @@ +apiVersion: cert-manager.io/v1 +kind: ClusterIssuer +metadata: + name: letsencrypt-prod + namespace: cert-manager +spec: + acme: + server: https://acme-v02.api.letsencrypt.org/directory + email: blanchespams@gmail.com + privateKeySecretRef: + name: letsencrypt-prod + solvers: + - http01: + ingress: + class: nginx diff --git a/archives/matrix/matrix-depl.yaml b/archives/matrix/matrix-depl.yaml new file mode 100644 index 0000000..267424b --- /dev/null +++ b/archives/matrix/matrix-depl.yaml @@ -0,0 +1,33 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: matrix-synapse +spec: + selector: + matchLabels: + run: matrix-synapse + strategy: + type: Recreate + template: + metadata: + labels: + run: matrix-synapse + spec: + containers: + - image: matrixdotorg/synapse:v1.25.0 + name: synapse + #args: ["generate"] + #env: + #- name: SYNAPSE_SERVER_NAME + # value: "matrix.squi.fr" + #- name: SYNAPSE_REPORT_STATS + # value: "yes" + volumeMounts: + - name: data + mountPath: /data + ports: + - containerPort: 8008 + volumes: + - name: data + persistentVolumeClaim: + claimName: matrix-synapse diff --git a/archives/matrix/matrix-ingress.yaml b/archives/matrix/matrix-ingress.yaml new file mode 100644 index 0000000..916df1e --- /dev/null +++ b/archives/matrix/matrix-ingress.yaml @@ -0,0 +1,18 @@ +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: gitea-ingr +spec: + ingressClassName: nginx + rules: + - host: matrix.squi.fr + http: + paths: + - pathType: Prefix + backend: + service: + name: gitea + port: + number: 8008 + path: / + diff --git a/archives/matrix/matrix-pv.yaml b/archives/matrix/matrix-pv.yaml new file mode 100644 index 0000000..3802db1 --- /dev/null +++ b/archives/matrix/matrix-pv.yaml @@ -0,0 +1,28 @@ +apiVersion: v1 +kind: PersistentVolume +metadata: + name: matrix-synapse +spec: + capacity: + storage: 30Gi + accessModes: + - ReadWriteOnce + nfs: + server: nas.sq.lan + path: "/swarmdata/matrix/synapse" + mountOptions: + - nfsvers=4.2 + +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: matrix-synapse +spec: + accessModes: + - ReadWriteOnce + storageClassName: "" + resources: + requests: + storage: 30Gi + volumeName: matrix-synapse diff --git a/archives/matrix/postgres-conf.yaml b/archives/matrix/postgres-conf.yaml new file mode 100644 index 0000000..4c266d0 --- /dev/null +++ b/archives/matrix/postgres-conf.yaml @@ -0,0 +1,11 @@ +apiVersion: v1 +kind: ConfigMap +metadata: + name: postgres-configuration + labels: + app: postgres +data: + POSTGRES_DB: synapse + POSTGRES_USER: synapse + POSTGRES_PASSWORD: mBYTE93Gx86Awu + POSTGRES_INITDB_ARGS: "--locale=C --encoding=UTF-8" diff --git a/archives/matrix/postgres-pv.yaml b/archives/matrix/postgres-pv.yaml new file mode 100644 index 0000000..2050230 --- /dev/null +++ b/archives/matrix/postgres-pv.yaml @@ -0,0 +1,28 @@ +apiVersion: v1 +kind: PersistentVolume +metadata: + name: matrix-postgres +spec: + capacity: + storage: 30Gi + accessModes: + - ReadWriteOnce + nfs: + server: nas.sq.lan + path: "/swarmdata/matrix/postgres" + mountOptions: + - nfsvers=4.2 + +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: matrix-postgres +spec: + accessModes: + - ReadWriteOnce + storageClassName: "" + resources: + requests: + storage: 30Gi + volumeName: matrix-postgres diff --git a/archives/matrix/postgres-service.yaml b/archives/matrix/postgres-service.yaml new file mode 100644 index 0000000..3c2871a --- /dev/null +++ b/archives/matrix/postgres-service.yaml @@ -0,0 +1,12 @@ +apiVersion: v1 +kind: Service +metadata: + labels: + run: matrix-postgres + name: matrix-postgres +spec: + ports: + - name: "postgres" + port: 5432 + selector: + run: matrix-postgres diff --git a/archives/matrix/postgres-stateful.yaml b/archives/matrix/postgres-stateful.yaml new file mode 100644 index 0000000..84b77f2 --- /dev/null +++ b/archives/matrix/postgres-stateful.yaml @@ -0,0 +1,33 @@ +apiVersion: apps/v1 +kind: StatefulSet +metadata: + name: postgres-statefulset + labels: + run: matrix-postgres +spec: + serviceName: "matrix-postgres" + replicas: 1 + selector: + matchLabels: + run: matrix-postgres + template: + metadata: + labels: + run: matrix-postgres + spec: + containers: + - name: postgres + image: postgres:12 + envFrom: + - configMapRef: + name: postgres-configuration + ports: + - containerPort: 5432 + name: postgresdb + volumeMounts: + - name: data + mountPath: /var/lib/postgresql/data + volumes: + - name: data + persistentVolumeClaim: + claimName: matrix-postgres diff --git a/owntracks/owntracks-deployment.yaml b/archives/owntracks/owntracks-deployment.yaml similarity index 100% rename from owntracks/owntracks-deployment.yaml rename to archives/owntracks/owntracks-deployment.yaml diff --git a/owntracks/owntracks-ingress.yaml b/archives/owntracks/owntracks-ingress.yaml similarity index 100% rename from owntracks/owntracks-ingress.yaml rename to archives/owntracks/owntracks-ingress.yaml diff --git a/owntracks/owntracks-pvc.yaml b/archives/owntracks/owntracks-pvc.yaml similarity index 100% rename from owntracks/owntracks-pvc.yaml rename to archives/owntracks/owntracks-pvc.yaml diff --git a/owntracks/owntracks-services.yaml b/archives/owntracks/owntracks-services.yaml similarity index 100% rename from owntracks/owntracks-services.yaml rename to archives/owntracks/owntracks-services.yaml diff --git a/owntracks/owntracks-volumeclaims.yaml b/archives/owntracks/owntracks-volumeclaims.yaml similarity index 100% rename from owntracks/owntracks-volumeclaims.yaml rename to archives/owntracks/owntracks-volumeclaims.yaml diff --git a/archives/vaultwarden/vaultwarden-deployment.yaml b/archives/vaultwarden/vaultwarden-deployment.yaml new file mode 100644 index 0000000..8574656 --- /dev/null +++ b/archives/vaultwarden/vaultwarden-deployment.yaml @@ -0,0 +1,34 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + labels: + run: vaultwarden + name: vaultwarden +spec: + replicas: 1 + selector: + matchLabels: + run: vaultwarden + template: + metadata: + labels: + run: vaultwarden + spec: + containers: + - env: + - name: SIGNUPS_ALLOWED + value: "true" + image: vaultwarden/server:latest + imagePullPolicy: Always + name: vaultwarden + ports: + - containerPort: 80 + volumeMounts: + - mountPath: /data/ + name: vaultwarden-data + restartPolicy: Always + volumes: + - name: vaultwarden-data + persistentVolumeClaim: + claimName: vaultwarden-data + diff --git a/archives/vaultwarden/vaultwarden-ingress.yaml b/archives/vaultwarden/vaultwarden-ingress.yaml new file mode 100644 index 0000000..a94b3c0 --- /dev/null +++ b/archives/vaultwarden/vaultwarden-ingress.yaml @@ -0,0 +1,19 @@ +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: ingress-vaultwarden + annotations: + kubernetes.io/ingress.class: "nginx" +spec: + rules: + - host: vault.sq.lan + http: + paths: + - path: / + pathType: Prefix + backend: + service: + name: vaultwarden + port: + number: 80 + diff --git a/archives/vaultwarden/vaultwarden-pv.yaml b/archives/vaultwarden/vaultwarden-pv.yaml new file mode 100644 index 0000000..3e32d2a --- /dev/null +++ b/archives/vaultwarden/vaultwarden-pv.yaml @@ -0,0 +1,15 @@ +apiVersion: v1 +kind: PersistentVolume +metadata: + name: vaultwarden-data +spec: + capacity: + storage: 1Gi + accessModes: + - ReadWriteMany + nfs: + server: nas.sq.lan + path: "/swarmdata/vaultwarden" + mountOptions: + - nfsvers=4.2 + diff --git a/archives/vaultwarden/vaultwarden-pvc.yaml b/archives/vaultwarden/vaultwarden-pvc.yaml new file mode 100644 index 0000000..184e9cf --- /dev/null +++ b/archives/vaultwarden/vaultwarden-pvc.yaml @@ -0,0 +1,13 @@ +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: vaultwarden-data +spec: + accessModes: + - ReadWriteMany + storageClassName: "" + resources: + requests: + storage: 1Gi + volumeName: vaultwarden-data diff --git a/archives/vaultwarden/vaultwarden-service.yaml b/archives/vaultwarden/vaultwarden-service.yaml new file mode 100644 index 0000000..5e302d0 --- /dev/null +++ b/archives/vaultwarden/vaultwarden-service.yaml @@ -0,0 +1,14 @@ +apiVersion: v1 +kind: Service +metadata: + labels: + run: vaultwarden + name: vaultwarden +spec: + ports: + - name: "80" + port: 80 + targetPort: 80 + selector: + run: vaultwarden + diff --git a/blog/blog-daemonset.yaml b/blog/blog-daemonset.yaml index 3a27271..cb84157 100644 --- a/blog/blog-daemonset.yaml +++ b/blog/blog-daemonset.yaml @@ -16,6 +16,7 @@ spec: containers: - image: nginx:latest name: blog + imagePullPolicy: "Always" volumeMounts: - mountPath: /usr/share/nginx/html name: blog diff --git a/freshrss/freshrss-daemonset.yaml b/freshrss/freshrss-deployment.yaml similarity index 95% rename from freshrss/freshrss-daemonset.yaml rename to freshrss/freshrss-deployment.yaml index 4210401..ee1c302 100644 --- a/freshrss/freshrss-daemonset.yaml +++ b/freshrss/freshrss-deployment.yaml @@ -1,10 +1,11 @@ apiVersion: apps/v1 -kind: DaemonSet +kind: Deployment metadata: labels: run: freshrss name: freshrss spec: + replicas: 1 selector: matchLabels: run: freshrss diff --git a/grafana/graf-services.yaml b/grafana/graf-services.yaml index 72d91b4..03bafaa 100644 --- a/grafana/graf-services.yaml +++ b/grafana/graf-services.yaml @@ -25,8 +25,7 @@ spec: port: 9090 targetPort: 9090 selector: - run: grafana - type: LoadBalancer + run: prometheus --- apiVersion: v1 diff --git a/sqnotes/ingr.yml b/sqnotes/ingr.yml index a5b806c..692fc04 100644 --- a/sqnotes/ingr.yml +++ b/sqnotes/ingr.yml @@ -5,7 +5,6 @@ metadata: spec: ingressClassName: nginx rules: - #- host: test.squi.fr - host: notes.squi.fr http: paths: