Blame - charts/auth/templates/ui.yaml - pcloud

blob: 8c07d740fb084460ba1ec9fb89344d00e6da5325 [file] [log] [blame]

giolekva	dd75080	2021-11-07 13:24:21 +0400	[diff] [blame]	1	apiVersion: v1
				2	kind: Service
				3	metadata:
				4	name: ui
				5	namespace: {{ .Release.Namespace }}
				6	spec:
				7	type: ClusterIP
				8	selector:
				9	app: ui
				10	ports:
				11	- name: http
				12	port: 80
				13	targetPort: http
				14	protocol: TCP
				15	---
				16	apiVersion: networking.k8s.io/v1
				17	kind: Ingress
				18	metadata:
				19	name: ui
				20	namespace: {{ .Release.Namespace }}
giolekva	95340e8	2021-11-08 21:36:55 +0400	[diff] [blame]	21	# annotations:
				22	# cert-manager.io/cluster-issuer: {{ .Values.ui.certificateIssuer }}
				23	# acme.cert-manager.io/http01-edit-in-place: "true"
giolekva	dd75080	2021-11-07 13:24:21 +0400	[diff] [blame]	24	spec:
				25	ingressClassName: {{ .Values.ui.ingressClassName }}
				26	tls:
				27	- hosts:
				28	- accounts-ui.{{ .Values.ui.domain }}
giolekva	95340e8	2021-11-08 21:36:55 +0400	[diff] [blame]	29	# secretName: cert-accounts-ui.{{ .Values.ui.domain }}
				30	secretName: cert-wildcard.{{ .Values.ui.domain }}
giolekva	dd75080	2021-11-07 13:24:21 +0400	[diff] [blame]	31	rules:
				32	- host: accounts-ui.{{ .Values.ui.domain }}
				33	http:
				34	paths:
				35	- path: /
				36	pathType: Prefix
				37	backend:
				38	service:
				39	name: ui
				40	port:
				41	name: http
				42	---
				43	apiVersion: apps/v1
				44	kind: Deployment
				45	metadata:
				46	name: ui
				47	namespace: {{ .Release.Namespace }}
				48	spec:
				49	selector:
				50	matchLabels:
				51	app: ui
				52	replicas: 1
				53	template:
				54	metadata:
				55	labels:
				56	app: ui
				57	spec:
				58	volumes:
				59	- name: cert
				60	secret:
				61	secretName: {{ .Values.ui.nebula.node.secretName }}
				62	- name: config
				63	configMap:
				64	name: {{ .Values.ui.nebula.lighthouse.name }}
				65	hostAliases:
				66	- ip: "111.0.0.1"
				67	hostnames:
				68	- "hydra.{{ .Values.ui.internalDomain }}"
				69	containers:
				70	- name: server
				71	image: giolekva/auth-ui:latest
				72	imagePullPolicy: Always
				73	env:
				74	- name: KRATOS_PUBLIC_URL
				75	value: "https://accounts.{{ .Values.ui.domain }}"
				76	ports:
				77	- name: http
				78	containerPort: 8080
				79	protocol: TCP
				80	command:
				81	- server
				82	- --port=8080
				83	- --kratos=https://accounts.{{ .Values.ui.domain }}
giolekva	95340e8	2021-11-08 21:36:55 +0400	[diff] [blame]	84	- --hydra=hydra.{{ .Values.ui.internalDomain }}
giolekva	dd75080	2021-11-07 13:24:21 +0400	[diff] [blame]	85	- --email-domain={{ .Values.ui.domain }}
				86	# resources:
				87	# requests:
				88	# memory: "10Mi"
				89	# cpu: "10m"
				90	# limits:
				91	# memory: "20Mi"
				92	# cpu: "100m"
				93	- name: lighthouse
				94	image: giolekva/nebula:latest
				95	imagePullPolicy: Always
				96	securityContext:
				97	capabilities:
				98	add:
				99	- NET_ADMIN
				100	privileged: true
				101	ports:
				102	- name: lighthouse
				103	containerPort: 4247
				104	protocol: UDP
				105	command:
				106	- nebula
				107	- --config=/etc/nebula/config/lighthouse.yaml
				108	volumeMounts:
				109	- name: cert
				110	mountPath: /etc/nebula/lighthouse
				111	readOnly: true
				112	- name: config
				113	mountPath: /etc/nebula/config
				114	readOnly: true
				115	---
				116	apiVersion: lekva.me/v1
				117	kind: NebulaNode
				118	metadata:
				119	name: {{ .Values.ui.nebula.node.name }}
				120	namespace: {{ .Release.Namespace }}
				121	spec:
				122	caName: {{ .Values.ui.nebula.certificateAuthority.name }}
				123	caNamespace: {{ .Values.ui.nebula.certificateAuthority.namespace }}
				124	ipCidr: {{ .Values.ui.nebula.node.ipCidr }}
				125	secretName: {{ .Values.ui.nebula.node.secretName }}