Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / ef76a3e49aa32b4da9387d7c6eb417ff656a58f4 / . / helmfile / infra / helmfile.yaml
blob: 0d19bb4738a255cdcaa631f682dc5c8b57ff1a56 [file] [log] [blame]
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]1repositories:
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]2- name: appscode
3 url: https://charts.appscode.com/stable/
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]4- name: ingress-nginx
5 url: https://kubernetes.github.io/ingress-nginx
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]6- name: jetstack
7 url: https://charts.jetstack.io
8- name: bwolf
9 url: https://bwolf.github.io/cert-manager-webhook-gandi
giolekva163e33c2021-11-28 17:52:03 +0400[diff] [blame]10- name: metallb
11 url: https://metallb.github.io/metallb
giolekva8fc32ce2021-11-28 19:37:53 +0400[diff] [blame]12- name: longhorn
13 url: https://charts.longhorn.io
giolekvaf216f2c2021-12-01 17:29:25 +0400[diff] [blame]14- name: ory
15 url: https://k8s.ory.sh/helm/charts
giolekvaef76a3e2022-01-10 12:22:28 +0400[diff] [blame^]16- name: csi-driver-smb
17 url: https://raw.githubusercontent.com/kubernetes-csi/csi-driver-smb/master/charts
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]18
19helmDefaults:
20 tillerless: true
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]21 waitForJobs: false
22 createNamespace: true
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]23
24releases:
giolekva163e33c2021-11-28 17:52:03 +0400[diff] [blame]25- name: metallb
26 chart: metallb/metallb
27 version: 0.11.0
28 namespace: {{ .Values.name }}-networking-metallb
29 values:
30 - fullnameOverride: {{ .Values.name }}-metallb
31 - configInline:
32 address-pools:
33 - name: default
34 protocol: layer2
35 addresses:
36 - {{ .Values.loadBalancerIPRange }}
37 - controller:
38 image:
39 repository: quay.io/metallb/controller
40 tag: v0.11
41 pullPolicy: IfNotPresent
42 - speaker:
43 image:
44 repository: quay.io/metallb/speaker
45 tag: v0.11
46 pullPolicy: IfNotPresent
giolekva883992b2021-11-27 21:13:28 +0400[diff] [blame]47- name: ingress-public
48 chart: ingress-nginx/ingress-nginx
49 version: 4.0.3
50 namespace: {{ .Values.name }}-ingress-public
51 values:
52 - fullnameOverride: {{ .Values.name }}-ingress-public
53 - controller:
54 service:
55 type: LoadBalancer
56 ingressClassByName: true
57 ingressClassResource:
58 name: {{ .Values.name }}-ingress-public
59 enabled: true
60 default: false
61 controllerValue: k8s.io/{{ .Values.name }}-ingress-public
62 config:
63 proxy-body-size: 100M
giolekvaef76a3e2022-01-10 12:22:28 +0400[diff] [blame^]64 - udp:
65 6881: "lekva-app-torrent:torrent:6881" # TODO(giolekva): namespace
giolekva883992b2021-11-27 21:13:28 +0400[diff] [blame]66 - tcp:
67 25: {{ .Values.name }}-mail-gateway/maddy:25
giolekvaef76a3e2022-01-10 12:22:28 +0400[diff] [blame^]68 6881: "lekva-app-torrent:torrent:6881" # TODO(giolekva): namespace
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]69- name: kubed
70 chart: appscode/kubed
71 version: v0.12.0
72 namespace: {{ .Values.name }}-kubed
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]73 values:
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]74 - enableAnalytics: false
75 - fullnameOverride: {{ .Values.name }}-kubed
76 - operator:
77 registry: appscode
78 repository: kubed
79 tag: v0.12.0
80 - criticalAddon: true
81 - config:
82 clusterName: {{ .Values.name }}
83- name: cert-manager
84 chart: jetstack/cert-manager
85 version: v1.6
86 namespace: {{ .Values.name }}-cert-manager
87 values:
88 - installCRDs: true
89 - fullnameOverride: {{ .Values.name}}-cert-manager
90 - image:
91 tag: v1.6.1
92 pullPolicy: IfNotPresent
93 - resources:
94 requests:
95 cpu: "100m"
96 memory: "50M"
97 limits:
98 cpu: "250m"
99 memory: "150M"
100 - tolerations:
101 - key: "pcloud"
102 operator: "Equal"
103 value: "role"
104 effect: "NoSchedule"
105 - cainjector:
106 resources:
107 requests:
108 cpu: "100m"
109 memory: "50M"
110 limits:
111 cpu: "250m"
112 memory: "150M"
113 tolerations:
114 - key: "pcloud"
115 operator: "Equal"
116 value: "role"
117 effect: "NoSchedule"
118 - webhook:
119 resources:
120 requests:
121 cpu: "100m"
122 memory: "50M"
123 limits:
124 cpu: "250m"
125 memory: "150M"
126 tolerations:
127 - key: "pcloud"
128 operator: "Equal"
129 value: "role"
130 effect: "NoSchedule"
131- name: cert-manager-gandi
132 chart: bwolf/cert-manager-webhook-gandi
133 version: v0.2.0
134 namespace: {{ .Values.name }}-cert-manager
135 values:
136 - certManager:
137 namespace: {{ .Values.name }}-cert-manager
138 serviceAccountName: {{ .Values.name }}-cert-manager
139 - fullnameOverride: {{ .Values.name }}-cert-manager-webhook-gandi
140 - image:
141 repository: giolekva/cert-manager-webhook-gandi
142 tag: v0.2.0
143 pullPolicy: IfNotPresent
144 - logLevel: 2
145 - resources:
146 requests:
147 cpu: "100m"
148 memory: "50M"
149 limits:
150 cpu: "250m"
151 memory: "150M"
152 - tolerations:
153 - key: "pcloud"
154 operator: "Equal"
155 value: "role"
156 effect: "NoSchedule"
giolekva8fc32ce2021-11-28 19:37:53 +0400[diff] [blame]157- name: longhorn
158 chart: longhorn/longhorn
159 version: v1.1.2
160 # TODO(giolekva): pcloud-storage-longhorn ? https://github.com/longhorn/longhorn/issues/2034
161 namespace: longhorn-system
162 values:
163 - defaultSettings:
164 defaultDataPath: {{ .Values.storageDir }}
165 - persistence:
166 defaultClassReplicaCount: 2
167 - service:
168 ui:
169 type: LoadBalancer
170 - ingress:
171 # TODO(giolekva): maybe run separate Nebula network for pcloud infrastructure services?
172 enabled: false
giolekva3423ac22021-11-28 20:47:34 +0400[diff] [blame]173- name: mail-gateway
174 chart: ../../charts/mail-gateway
175 namespace: {{ .Values.name }}-mail-gateway
176 values:
giolekva3423ac22021-11-28 20:47:34 +0400[diff] [blame]177 - domains:
178 primary:
179 name: lekva.me
giolekvaee3a57b2021-12-01 16:18:23 +0400[diff] [blame]180 namespace: lekva-app-maddy
181 mx: mail.lekva.me
182 certificateIssuer: lekva-public
giolekva3423ac22021-11-28 20:47:34 +0400[diff] [blame]183 others:
184 - name: shve.li
185 namespace: shveli-app-maddy
186 - persistence:
187 size: 100Gi
giolekvaf216f2c2021-12-01 17:29:25 +0400[diff] [blame]188- name: oauth2-manager
189 chart: ory/hydra-maester
190 version: v0.20.1
191 namespace: {{ .Values.name }}-oauth2-manager
192 values:
193 - fullnameOverride: {{ .Values.name }}-hydra-maester
194 - image:
195 repository: giolekva/ory-hydra-maester
196 tag: latest
197 pullPolicy: IfNotPresent
198 - adminService:
199 name: hydra # IGNORED
200 port: 80
giolekva7e73ba72021-12-03 13:14:20 +0400[diff] [blame]201- name: nebula-controller
202 chart: ../../charts/nebula
203 namespace: {{ .Values.name }}-nebula-controller
204 values:
205 - controller:
206 image:
207 repository: giolekva/nebula-controller
208 tag: latest
209 pullPolicy: Always
210 - manage:
211 image:
212 repository: giolekva/nebula-web
213 tag: latest
214 pullPolicy: Always
giolekvaef76a3e2022-01-10 12:22:28 +0400[diff] [blame^]215- name: csi-driver-smb
216 chart: csi-driver-smb/csi-driver-smb
217 version: v1.5.0
218 namespace: pcloud-csi-driver-smb
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]219
220environments:
giolekva11881b52021-11-27 16:51:58 +0400[diff] [blame]221 prod:
giolekva5cd32162021-11-05 20:10:19 +0400[diff] [blame]222 values:
giolekva163e33c2021-11-28 17:52:03 +0400[diff] [blame]223 - name: pcloud
224 - loadBalancerIPRange: 192.168.0.200-192.168.0.250
giolekva8fc32ce2021-11-28 19:37:53 +0400[diff] [blame]225 - storageDir: /pcloud-storage/longhorn