wildduck: Cleanups #42

Merged
lauri merged 3 commits from wildduck into master 2024-08-15 07:50:36 +00:00
10 changed files with 104 additions and 137 deletions

View File

@ -177,8 +177,8 @@ spec:
- name: REDIS_URI
valueFrom:
secretKeyRef:
name: dragonfly-auth
key: REDIS_URI
name: session-storage
key: REDIS_WILDDUCK_URI
- name: MONGO_URI
valueFrom:
secretKeyRef:

View File

@ -0,0 +1,50 @@
---
apiVersion: codemowers.cloud/v1beta1
kind: SecretClaim
metadata:
name: session-storage
spec:
size: 32
mapping:
- key: password
value: "%(plaintext)s"
- key: REDIS_WILDDUCK_URI
value: "redis://:%(plaintext)s@session-storage/1"
- key: REDIS_WEBMAIL_URI
value: "redis://:%(plaintext)s@session-storage/2"
- key: REDIS_WILDFLOCK_URI
value: "redis://:%(plaintext)s@session-storage/2"
---
apiVersion: dragonflydb.io/v1alpha1
kind: Dragonfly
metadata:
name: session-storage
spec:
authentication:
passwordFromSecret:
key: password
name: session-storage
replicas: 3
resources:
limits:
memory: 1Gi
topologySpreadConstraints:
- maxSkew: 1
topologyKey: topology.kubernetes.io/zone
whenUnsatisfiable: DoNotSchedule
labelSelector:
matchLabels:
app: session-storage
app.kubernetes.io/part-of: dragonfly
---
apiVersion: monitoring.coreos.com/v1
kind: PodMonitor
metadata:
name: session-storage
spec:
selector:
matchLabels:
app: session-storage
app.kubernetes.io/part-of: dragonfly
podMetricsEndpoints:
- port: admin

View File

@ -1,13 +1,3 @@
# ---
# Commented out by argocd config drift
#
# apiVersion: codemowers.cloud/v1beta1
# kind: RedisClaim
# metadata:
# name: webmail
# spec:
# class: ephemeral
# capacity: 100Mi
---
apiVersion: codemowers.cloud/v1beta1
kind: OIDCMiddlewareClient
@ -98,8 +88,8 @@ spec:
- name: APPCONF_dbs_redis
valueFrom:
secretKeyRef:
name: dragonfly-auth
key: REDIS_URI
name: session-storage
key: REDIS_WEBMAIL_URI
volumes:
- name: webmail-config
projected:
@ -156,24 +146,3 @@ spec:
regex: ^https://webmail.k-space.ee/$
replacement: https://webmail.k-space.ee/webmail/
permanent: false
# ---
# apiVersion: networking.k8s.io/v1
# kind: NetworkPolicy
# metadata:
# name: webmail
# spec:
# podSelector:
# matchLabels:
# app.kubernetes.io/name: webmail
# policyTypes:
# - Ingress
# ingress:
# - ports:
# - port: 3000
# from:
# - namespaceSelector:
# matchLabels:
# kubernetes.io/metadata.name: traefik
# podSelector:
# matchLabels:
# app.kubernetes.io/name: traefik

View File

@ -1,30 +1,4 @@
---
apiVersion: codemowers.cloud/v1beta1
kind: SecretClaim
metadata:
name: dragonfly-auth
spec:
size: 32
mapping:
- key: password
value: "%(plaintext)s"
- key: REDIS_URI
value: "redis://:%(plaintext)s@dragonfly"
---
apiVersion: dragonflydb.io/v1alpha1
kind: Dragonfly
metadata:
name: dragonfly
spec:
authentication:
passwordFromSecret:
key: password
name: dragonfly-auth
replicas: 3
resources:
limits:
memory: 5Gi
---
apiVersion: v1
kind: Service
metadata:
@ -118,8 +92,8 @@ spec:
- name: APPCONF_dbs_redis
valueFrom:
secretKeyRef:
name: dragonfly-auth
key: REDIS_URI
name: session-storage
key: REDIS_WILDDUCK_URI
volumeMounts:
- mountPath: /cert
name: cert

View File

@ -96,8 +96,8 @@ spec:
- name: REDIS_URL
valueFrom:
secretKeyRef:
name: dragonfly-wildflock-auth
key: REDIS_URI
name: session-storage
key: REDIS_WILDFLOCK_URI
- name: CLIENT_URL
value: https://wildflock.k-space.ee
- name: WILDDUCK_DOMAIN
@ -139,29 +139,3 @@ spec:
envFrom:
- secretRef:
name: oidc-client-wildflock-owner-secrets
---
apiVersion: codemowers.cloud/v1beta1
kind: SecretClaim
metadata:
name: dragonfly-wildflock-auth
spec:
size: 32
mapping:
- key: password
value: "%(plaintext)s"
- key: REDIS_URI
value: "redis://:%(plaintext)s@dragonfly-wildflock"
---
apiVersion: dragonflydb.io/v1alpha1
kind: Dragonfly
metadata:
name: dragonfly-wildflock
spec:
authentication:
passwordFromSecret:
key: password
name: dragonfly-wildflock-auth
replicas: 3
resources:
limits:
memory: 5Gi

View File

@ -125,8 +125,8 @@ spec:
- name: APPCONF_dbs_redis
valueFrom:
secretKeyRef:
name: dragonfly-auth
key: REDIS_URI
name: session-storage
key: REDIS_WILDDUCK_URI
volumeMounts:
- name: cert
mountPath: /cert