skrd/server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

lanzando cnpg

Browse Source
This commit is contained in:
Daniel Cortés
2025-06-14 16:57:17 -04:00
parent 22bfe3ad64
commit 14d762d085
5 changed files with 51 additions and 87 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
manifest/04-ceph/blockstorage.yaml Normal file
View File

@@ -0,0 +1,10 @@
apiVersion: ceph.rook.io/v1
kind: CephBlockPool
metadata:
name: blockstorage
namespace: rook-ceph
spec:
failureDomain: host
replicated:
size: 3
requireSafeReplicaSize: true

67
manifest/04-ceph/example.yaml
View File

@@ -1,67 +0,0 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
name: cephfs-pvc
namespace: kube-system
spec:
accessModes:
- ReadWriteMany
resources:
requests:
storage: 1Gi
storageClassName: rook-cephfs
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: kube-registry
namespace: kube-system
labels:
k8s-app: kube-registry
kubernetes.io/cluster-service: "true"
spec:
replicas: 3
selector:
matchLabels:
k8s-app: kube-registry
template:
metadata:
labels:
k8s-app: kube-registry
kubernetes.io/cluster-service: "true"
spec:
containers:
- name: registry
image: registry:2
imagePullPolicy: Always
resources:
limits:
memory: 100Mi
env:
# Configuration reference: https://docs.docker.com/registry/configuration/
- name: REGISTRY_HTTP_ADDR
value: :5000
- name: REGISTRY_HTTP_SECRET
value: "Ple4seCh4ngeThisN0tAVerySecretV4lue"
- name: REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY
value: /var/lib/registry
volumeMounts:
- name: image-store
mountPath: /var/lib/registry
ports:
- containerPort: 5000
name: registry
protocol: TCP
livenessProbe:
httpGet:
path: /
port: registry
readinessProbe:
httpGet:
path: /
port: registry
volumes:
- name: image-store
persistentVolumeClaim:
claimName: cephfs-pvc
readOnly: false

2
manifest/04-ceph/filesystem.yaml
View File

@@ -8,7 +8,7 @@
apiVersion: ceph.rook.io/v1
kind: CephFilesystem
metadata:
name: myfs
name: cephfs
namespace: rook-ceph # namespace:cluster
spec:
# The metadata pool spec. Must use replication.

38
manifest/05-postgres/cnpg.yml
View File

@@ -11,29 +11,15 @@ spec:
secret:
name: cnpg-secret
storage:
pvcTemplate:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 20Gi
storageClassName: cnpg-storage
storageClass: cnpg-storage
size: 1Gi
walStorage:
storageClass: cnpg-storage
size: 1Gi
affinity:
enablePodAntiAffinity: true
topologyKey: kubernetes.io/hostname
podAntiAffinityType: required
backup:
retentionPolicy: "7d"
barmanObjectStore:
destinationPath: "s3://backups/"
endpointURL: "https://minio-api.skrd.fun"
s3Credentials:
accessKeyId:
name: aws-creds
key: ACCESS_KEY
secretAccessKey:
name: aws-creds
key: SECRET_KEY
managed:
services:
additional:
@@ -43,3 +29,17 @@ spec:
name: "cnpg-cluster-open"
spec:
type: LoadBalancer
roles:
- name: preinversion
ensure: present
login: true
superuser: false
passwordSecret:
name: preinversion-secret
- name: laravel
ensure: present
inherit: false
login: true
superuser: false
passwordSecret:
name: laravel-secret

21
manifest/05-postgres/storage.yml Normal file
View File

@@ -0,0 +1,21 @@
apiVersion: storage.k8s.io/v1
kind: StorageClass
metadata:
name: cnpg-storage
provisioner: rook-ceph.rbd.csi.ceph.com
parameters:
clusterID: rook-ceph
pool: blockstorage
imageFormat: "2"
imageFeatures: layering
csi.storage.k8s.io/provisioner-secret-name: rook-csi-rbd-provisioner
csi.storage.k8s.io/provisioner-secret-namespace: rook-ceph
csi.storage.k8s.io/controller-expand-secret-name: rook-csi-rbd-provisioner
csi.storage.k8s.io/controller-expand-secret-namespace: rook-ceph
csi.storage.k8s.io/node-stage-secret-name: rook-csi-rbd-node
csi.storage.k8s.io/node-stage-secret-namespace: rook-ceph
csi.storage.k8s.io/fstype: ext4
allowVolumeExpansion: true
reclaimPolicy: Delete