From 20889f093e1376df22adb27e4f94532ef1fae241 Mon Sep 17 00:00:00 2001 From: Erki Aas Date: Thu, 27 Nov 2025 21:26:09 +0200 Subject: [PATCH] Migrate wiki to dedicated mariadb --- wiki/application.yml | 10 ++--- wiki/mariadb.yml | 99 ++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 104 insertions(+), 5 deletions(-) create mode 100644 wiki/mariadb.yml diff --git a/wiki/application.yml b/wiki/application.yml index 98a83ae..0efd86b 100644 --- a/wiki/application.yml +++ b/wiki/application.yml @@ -85,18 +85,18 @@ spec: - name: DB_TYPE value: mysql - name: DB_HOST - value: mariadb.infra.k-space.ee + value: mariadb - name: DB_PORT value: "3306" - name: DB_USER - value: kspace_wiki + value: wiki - name: DB_NAME - value: kspace_wiki + value: wiki - name: DB_PASS valueFrom: secretKeyRef: - name: wikijs-secrets - key: DB_PASS + name: mariadb-secrets + key: MYSQL_PASSWORD ports: - containerPort: 3000 name: http diff --git a/wiki/mariadb.yml b/wiki/mariadb.yml new file mode 100644 index 0000000..e273338 --- /dev/null +++ b/wiki/mariadb.yml @@ -0,0 +1,99 @@ +--- +apiVersion: apps/v1 +kind: StatefulSet +metadata: + name: mariadb +spec: + revisionHistoryLimit: 0 + serviceName: mariadb + selector: + matchLabels: + app: mariadb + replicas: 1 + template: + metadata: + labels: + app: mariadb + annotations: + prometheus.io/port: '9104' + prometheus.io/scrape: 'true' + spec: + containers: + - name: exporter + image: mirror.gcr.io/prom/mysqld-exporter:latest + args: + - --mysqld.username + - exporter + - name: mariadb + image: mirror.gcr.io/library/mariadb:12.1 + imagePullPolicy: Always + env: + - name: MYSQL_ROOT_PASSWORD + valueFrom: + secretKeyRef: + name: mariadb-secrets + key: MYSQL_ROOT_PASSWORD + - name: MYSQL_USER + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: MYSQL_DATABASE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + - name: MYSQL_PASSWORD + valueFrom: + secretKeyRef: + name: mariadb-secrets + key: MYSQL_PASSWORD + volumeMounts: + - name: mariadb-data + mountPath: /var/lib/mysql + - name: mariadb-init + mountPath: /docker-entrypoint-initdb.d + volumes: + - name: mariadb-init + configMap: + name: mariadb-init-config + volumeClaimTemplates: + - metadata: + name: mariadb-data + spec: + storageClassName: ceph-rbd + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 2Gi +--- +apiVersion: codemowers.cloud/v1beta1 +kind: SecretClaim +metadata: + name: mariadb-secrets +spec: + size: 32 + mapping: + - key: MYSQL_ROOT_PASSWORD + value: "%(plaintext)s" + - key: MYSQL_PASSWORD + value: "%(plaintext)s" +--- +apiVersion: v1 +kind: Service +metadata: + name: mariadb +spec: + ports: + - protocol: TCP + port: 3306 + selector: + app: mariadb +--- +apiVersion: v1 +kind: ConfigMap +metadata: + name: mariadb-init-config +data: + initdb.sql: | + CREATE USER 'exporter'@'127.0.0.1' WITH MAX_USER_CONNECTIONS 3; + GRANT PROCESS, REPLICATION CLIENT, SLAVE MONITOR, SELECT ON *.* TO 'exporter'@'127.0.0.1';