k-space/kube
12
1
Fork 3
Code Issues 64 Pull Requests Wiki Activity

wildduck to kustomize

Browse Source
This commit is contained in:
Rasmus Kallas
2026-01-05 01:51:53 +02:00
parent ea02208b0c
commit 98ec867e3a
6 changed files with 37 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
wildduck/README.md
View File

@@ -22,10 +22,3 @@ The mail stack consists of several moving parts:
Outside Kubernetes there is NAT rule on the Mikrotik router Outside Kubernetes there is NAT rule on the Mikrotik router
which rewrites source IP of any TCP port 25 headed traffic to which rewrites source IP of any TCP port 25 headed traffic to
originate from the IP address of the mail exchange. originate from the IP address of the mail exchange.
TODO: Figure out how to automate DH parameters generation:
```
openssl dhparam -out dhparams.pem 2048
kubectl create secret generic -n wildduck dhparams --from-file=dhparams.pem
```

23
wildduck/kustomization.yaml Normal file
View File

@@ -0,0 +1,23 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
namespace: wildduck
resources:
- ./certificate.yaml
- ./clamav.yaml
- ./dns.yaml
- ./haraka.yaml
- ./loadbalancer.yaml
- ./mongo.yaml
- ./rspamd.yaml
- ./session-storage.yaml
- ./srs.yaml
- ./webmail.yaml
- ./wildduck-exporter.yaml
- ./wildduck-operator-rbac.yaml
- ./wildduck-operator.yaml
- ./wildduck.yaml
- ./wildflock.yaml
- ./zonemta.yaml
- ssh://git@git.k-space.ee/secretspace/kube/wildduck

2
wildduck/webmail.yaml
View File

@@ -91,7 +91,7 @@ spec:
- name: APPCONF_api_accessToken - name: APPCONF_api_accessToken
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
name: wildduck name: wildduck-api
key: WILDDUCK_API_TOKEN key: WILDDUCK_API_TOKEN
- name: APPCONF_dbs_redis - name: APPCONF_dbs_redis
valueFrom: valueFrom:

2
wildduck/wildduck-operator.yaml
View File

@@ -28,7 +28,7 @@ spec:
- name: WILDDUCK_API_TOKEN - name: WILDDUCK_API_TOKEN
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
name: wildduck name: wildduck-api
key: WILDDUCK_API_TOKEN key: WILDDUCK_API_TOKEN
ports: ports:
- containerPort: 8000 - containerPort: 8000

12
wildduck/wildduck.yaml
View File

@@ -80,7 +80,7 @@ spec:
- name: APPCONF_api_accessToken - name: APPCONF_api_accessToken
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
name: wildduck name: wildduck-api
key: WILDDUCK_API_TOKEN key: WILDDUCK_API_TOKEN
- name: APPCONF_dbs_sender - name: APPCONF_dbs_sender
value: wildduck value: wildduck
@@ -110,3 +110,13 @@ spec:
- name: cert - name: cert
secret: secret:
secretName: wildduck-tls secretName: wildduck-tls
---
apiVersion: codemowers.cloud/v1beta1
kind: SecretClaim
metadata:
name: wildduck-api
spec:
size: 32
mapping:
- key: WILDDUCK_API_TOKEN
value: "%(plaintext)s"

2
wildduck/wildflock.yaml
View File

@@ -115,7 +115,7 @@ spec:
- name: WILDDUCK_TOKEN - name: WILDDUCK_TOKEN
valueFrom: valueFrom:
secretKeyRef: secretKeyRef:
name: wildduck name: wildduck-api
key: WILDDUCK_API_TOKEN key: WILDDUCK_API_TOKEN
- name: SESSION_SECRET - name: SESSION_SECRET
valueFrom: valueFrom: