Gitiles
Code Review Sign In
code.v1.dodo.cloud / helm-charts / 4ec4c0232ca1681e96dc0cd0f6e1de32c72e5ea0^! / . / charts / nebula / templates
commit4ec4c0232ca1681e96dc0cd0f6e1de32c72e5ea0[log] [tgz]
authorGiorgi Lekveishvili <lekva@gl-mbp-m1-max.local>Sat Aug 17 15:09:24 2024 +0400
committerGiorgi Lekveishvili <lekva@gl-mbp-m1-max.local>Sat Aug 17 15:09:24 2024 +0400
treeb43c5f4e56145b66c2cbc4eb20fbc11b84eef105
parent924c61fd74046934228aa1fd58b88b3156cfdb29 [diff]
update

diff --git a/charts/nebula/templates/api.yaml b/charts/nebula/templates/api.yaml
new file mode 100644
index 0000000..a1ec876
--- /dev/null
+++ b/charts/nebula/templates/api.yaml

@@ -0,0 +1,53 @@
+# apiVersion: v1
+# kind: Service
+# metadata:
+#   name: nebula-api
+#   namespace: {{ .Release.Namespace }}
+# spec:
+#   type: LoadBalancer
+#   selector:
+#     app: nebula-api
+#   ports:
+#   - name: http
+#     port: 80
+#     targetPort: http
+#     protocol: TCP
+# ---
+# apiVersion: apps/v1
+# kind: Deployment
+# metadata:
+#   name: nebula-api
+#   namespace: {{ .Release.Namespace }}
+# spec:
+#   selector:
+#     matchLabels:
+#       app: nebula-api
+#   replicas: 1
+#   template:
+#     metadata:
+#       labels:
+#         app: nebula-api
+#     spec:
+#       containers:
+#       - name: web
+#         image: {{ .Values.manage.image.repository }}:{{ .Values.manage.image.tag }}
+#         imagePullPolicy: {{ .Values.manage.image.pullPolicy }}
+#         ports:
+#         - name: http
+#           containerPort: 8080
+#           protocol: TCP
+#         command:
+#         - nebula-api
+#         - --port=8080
+#         resources:
+#           requests:
+#             memory: "10Mi"
+#             cpu: "10m"
+#           limits:
+#             memory: "20Mi"
+#             cpu: "100m"
+#       tolerations:
+#       - key: "pcloud"
+#         operator: "Equal"
+#         value: "role"
+#         effect: "NoSchedule"

diff --git a/charts/nebula/templates/controller.yaml b/charts/nebula/templates/controller.yaml
new file mode 100644
index 0000000..495539d
--- /dev/null
+++ b/charts/nebula/templates/controller.yaml

@@ -0,0 +1,69 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nebula-controller
+  namespace: {{ .Release.Namespace }}
+spec:
+  selector:
+    matchLabels:
+      app: nebula-controller
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        app: nebula-controller
+    spec:
+      containers:
+      - name: controller
+        image: {{ .Values.controller.image.repository }}:{{ .Values.controller.image.tag }}
+        imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
+        command:
+        - nebula-controller
+      tolerations:
+      - key: "pcloud"
+        operator: "Equal"
+        value: "role"
+        effect: "NoSchedule"
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: {{ .Release.Namespace }}-nebula-controller
+  namespace: {{ .Release.Namespace }}
+rules:
+- apiGroups:
+  - "lekva.me"
+  resources:
+  - nebulacas
+  - nebulacas/status
+  - nebulanodes
+  - nebulanodes/status
+  verbs:
+  - list
+  - get
+  - create
+  - update
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - list
+  - get
+  - create
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: {{ .Release.Namespace }}-nebula-controller
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ .Release.Namespace }}-nebula-controller
+subjects:
+- kind: ServiceAccount
+  name: default
+  namespace: {{ .Release.Namespace }}