platform/manifests
1
0
Fork 0
Code Issues 7 Pull Requests 5 Actions Packages Projects Releases Wiki Activity

fix: move values/attic to attic/values

Browse Source
This commit is contained in:
Jonas Juselius
2025-08-12 14:28:50 +02:00
parent 7f15b36de7
commit 0dab4702db
99 changed files with 0 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
attic/values/archmeister/base/deployment_patch.yaml
+9
View File
@@ -0,0 +1,9 @@
- op: replace
path: /spec/template/spec/containers/0/livenessProbe/httpGet/path
value: /healthz
- op: replace
path: /spec/template/spec/containers/0/readinessProbe/httpGet/path
value: /healthz
- op: add
path: /spec/template/spec/containers/0/envFrom
value: []
attic/values/archmeister/base/kustomization.yaml
+10
View File
@@ -0,0 +1,10 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
patches:
- path: deployment_patch.yaml
target:
group: apps
kind: Deployment
version: v1
resources:
- _manifest.yaml
attic/values/archmeister/chart
+1
View File
@@ -0,0 +1 @@
oceanbox/archmeister
attic/values/archmeister/prod/appsettings.json
+48
View File
@@ -0,0 +1,48 @@
{
"connString": "Username=app;Password=secret;Host=prod-archmeister-rw;Port=5432;Database=app;Pooling=true;",
"oidc": {
"issuer": "https://idp.oceanbox.io/dex",
"authorization_endpoint": "https://idp.oceanbox.io/dex/auth",
"token_endpoint": "https://idp.oceanbox.io/dex/token",
"jwks_uri": "https://idp.oceanbox.io/dex/keys",
"userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo",
"device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code",
"clientId": "archmeister",
"clientSecret": "",
"scopes": [
"openid",
"email",
"offline_access",
"profile"
]
},
"sso": {
"cookieDomain": ".oceanbox.io",
"signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html",
"redis": "prod-redis-master.redis.svc,user=default,password=secret",
"appDomain": "atlantis",
"dataProtectionKeys": "DataProtection-Keys"
},
"allowedOrigins": [
"https://maps.oceanbox.io",
"https://atlantis.srv.oceanbox.io",
"https://maps.relic.oceanbox.io",
"https://sorcerer.data.oceanbox.io",
"https://sorcerer.ekman.oceanbox.io",
"https://sorcerer.jonas.ekman.oceanbox.io",
"https://sorcerer.simkir.ekman.oceanbox.io",
"https://sorcerer.stig.ekman.oceanbox.io",
"https://atlantis.beta.oceanbox.io",
"https://atlantis.jonas.dev.oceanbox.io",
"https://atlantis.stig.dev.oceanbox.io",
"https://atlantis.simkir.dev.oceanbox.io",
"https://atlantis.local.oceanbox.io:8080"
],
"logService" : "https://seq.adm.oceanbox.io",
"logApiKey": "",
"cliUsers": [
"admin:en-to-tre-fire"
],
"cerbosUrl": "http://prod-cerbos.idp.svc:3593",
"deployEnv": "prod"
}
attic/values/archmeister/prod/default.env
+2
View File
@@ -0,0 +1,2 @@
OIDC_CLIENT_SECRET=ieK3yak9zoh3yeewee8quahY6seiv7Ro
SEQ_APIKEY=mxv08mP4RDQE7vgUkbfC
attic/values/archmeister/prod/deployment_patch.yaml
+44
View File
@@ -0,0 +1,44 @@
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_PASSWORD
valueFrom:
secretKeyRef:
name: prod-archmeister-app
key: password
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_USERNAME
valueFrom:
secretKeyRef:
name: prod-archmeister-app
key: username
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_HOST
value: prod-archmeister-rw
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_USER
value: default
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_PASSWORD
valueFrom:
secretKeyRef:
name: prod-redis
key: redis-password
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: RABBITMQ_USER
value: user
- op: add
path: /spec/template/spec/containers/0/envFrom/-
value:
secretRef:
name: prod-archmeister-env
attic/values/archmeister/prod/ingress_patch.yaml
+3
View File
@@ -0,0 +1,3 @@
- op: replace
path: /spec/rules/0/http/paths/0/path
value: /internal
attic/values/archmeister/prod/kustomization.yaml
+25
View File
@@ -0,0 +1,25 @@
generatorOptions:
disableNameSuffixHash: true
configMapGenerator:
- name: prod-archmeister-appsettings
files:
- appsettings.json
secretGenerator:
- name: prod-archmeister-env
envs:
- default.env
patches:
- path: deployment_patch.yaml
target:
version: v1
group: apps
kind: Deployment
- path: ingress_patch.yaml
target:
group: networking.k8s.io
kind: Ingress
name: prod-archmeister-internal
annotationSelector: oceanbox.io/expose=internal
version: v1
resources:
- ../base
attic/values/archmeister/staging/appsettings.json
+43
View File
@@ -0,0 +1,43 @@
{
"connString": "Username=app;Password=secret;Host=staging-archmeister-rw;Port=5432;Database=app;Pooling=true;",
"oidc": {
"issuer": "https://idp.oceanbox.io/dex",
"authorization_endpoint": "https://idp.oceanbox.io/dex/auth",
"token_endpoint": "https://idp.oceanbox.io/dex/token",
"jwks_uri": "https://idp.oceanbox.io/dex/keys",
"userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo",
"device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code",
"clientId": "archmeister_dev",
"clientSecret": "",
"scopes": [
"openid",
"email",
"offline_access",
"profile"
]
},
"sso": {
"cookieDomain": ".oceanbox.io",
"signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html",
"redis": "staging-redis-master.redis.svc,user=default,password=secret",
"appDomain": "atlantis",
"dataProtectionKeys": "DataProtection-Keys"
},
"allowedOrigins": [
"https://maps.oceanbox.io",
"https://atlantis.beta.oceanbox.io",
"https://sorcerer.data.oceanbox.io",
"https://sorcerer.ekman.oceanbox.io",
"https://atlantis.jonas.dev.oceanbox.io",
"https://atlantis.stig.dev.oceanbox.io",
"https://atlantis.simkir.dev.oceanbox.io",
"https://atlantis.local.oceanbox.io:8080"
],
"logService" : "https://seq.adm.oceanbox.io",
"logApiKey": "",
"cliUsers": [
"admin:en-to-tre-fire"
],
"cerbosUrl": "http://staging-cerbos.idp.svc:3593",
"deployEnv": "staging"
}
attic/values/archmeister/staging/default.env
+2
View File
@@ -0,0 +1,2 @@
OIDC_CLIENT_SECRET=ieK3yak9zoh3yeewee8quahY6seiv7Ro
SEQ_APIKEY=mxv08mP4RDQE7vgUkbfC
attic/values/archmeister/staging/deployment_patch.yaml
+49
View File
@@ -0,0 +1,49 @@
- op: replace
path: /spec/template/spec/containers/0/env/0
value:
name: LOG_LEVEL
value: "4"
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_PASSWORD
valueFrom:
secretKeyRef:
name: staging-archmeister-app
key: password
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_USERNAME
valueFrom:
secretKeyRef:
name: staging-archmeister-app
key: username
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: DB_HOST
value: staging-archmeister-rw
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_USER
value: default
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_PASSWORD
valueFrom:
secretKeyRef:
name: staging-redis
key: redis-password
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: RABBITMQ_USER
value: user
- op: add
path: /spec/template/spec/containers/0/envFrom/-
value:
secretRef:
name: staging-archmeister-env
attic/values/archmeister/staging/ingress_patch.yaml
+6
View File
@@ -0,0 +1,6 @@
- op: replace
path: /spec/rules/0/http/paths/0/path
value: /internal
- op: add
path: /metadata/annotations/nginx.ingress.kubernetes.io~1whitelist-source-range
value: 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16
attic/values/archmeister/staging/kustomization.yaml
+25
View File
@@ -0,0 +1,25 @@
generatorOptions:
disableNameSuffixHash: true
configMapGenerator:
- name: staging-archmeister-appsettings
files:
- appsettings.json
secretGenerator:
- name: staging-archmeister-env
envs:
- default.env
patches:
- path: deployment_patch.yaml
target:
version: v1
group: apps
kind: Deployment
- path: ingress_patch.yaml
target:
group: networking.k8s.io
kind: Ingress
name: staging-archmeister-internal
annotationSelector: oceanbox.io/expose=internal
version: v1
resources:
- ../base
attic/values/archmeister/values-prod.yaml
+45
View File
@@ -0,0 +1,45 @@
replicaCount: 2
podAnnotations:
dapr.io/app-id: "prod-archmeister"
dapr.io/enabled: "true"
dapr.io/app-port: "8000"
dapr.io/config: "tracing"
dapr.io/app-protocol: "http"
dapr.io/enable-app-health-check: "true"
dapr.io/app-health-check-path: "/healthz"
dapr.io/app-health-probe-interval: "3"
dapr.io/app-health-probe-timeout: "200"
dapr.io/app-health-threshold: "2"
dapr.io/sidecar-cpu-request: "100m"
dapr.io/sidecar-memory-request: "250Mi"
dapr.io/sidecar-cpu-limit: "300m"
dapr.io/sidecar-memory-limit: "1000Mi"
dapr.io/log-as-json: "true"
ingress:
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
hosts:
- host: archmeister.srv.oceanbox.io
paths:
- path: /
pathType: ImplementationSpecific
tls:
- hosts:
- archmeister.srv.oceanbox.io
secretName: prod-archmeister-tls
cluster:
backupEnabled: true
backupRetention: 60d
instances: 2
resources:
limits:
cpu: 1000m
memory: 2Gi
requests:
cpu: 200m
memory: 1Gi
attic/values/archmeister/values-staging.yaml
+39
View File
@@ -0,0 +1,39 @@
replicaCount: 1
podAnnotations:
dapr.io/app-id: "staging-archmeister"
dapr.io/enabled: "true"
dapr.io/app-port: "8000"
dapr.io/config: "tracing"
dapr.io/app-protocol: "http"
dapr.io/enable-app-health-check: "true"
dapr.io/app-health-check-path: "/healthz"
dapr.io/app-health-probe-interval: "3"
dapr.io/app-health-probe-timeout: "200"
dapr.io/app-health-threshold: "2"
dapr.io/sidecar-cpu-request: "100m"
dapr.io/sidecar-memory-request: "250Mi"
dapr.io/sidecar-cpu-limit: "300m"
dapr.io/sidecar-memory-limit: "1000Mi"
dapr.io/log-as-json: "true"
image:
tag: 16390a0c-debug
ingress:
annotations:
cert-manager.io/cluster-issuer: letsencrypt-production
# oceanbox.io/expose: internal
hosts:
- host: archmeister.beta.oceanbox.io
paths:
- path: /
pathType: ImplementationSpecific
tls:
- hosts:
- archmeister.beta.oceanbox.io
secretName: staging-archmeister-tls
resources:
limits:
cpu: 1000m
memory: 2Gi
requests:
cpu: 200m
memory: 1Gi