platform/manifests
1
0
Fork 0
Code Issues 8 Pull Requests 13 Actions Packages Projects Releases Wiki Activity

feat: update atlantis charts

Browse Source
This commit is contained in:
Jonas Juselius
2024-02-16 06:25:49 +01:00
parent f35aed93d0
commit 5d50de13cf
14 changed files with 82 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files
applications/atlantis.yaml
+16 -4
View File
@@ -4,23 +4,28 @@ metadata:
name: atlantis name: atlantis
namespace: argocd namespace: argocd
spec: spec:
goTemplate: true
generators: generators:
- list: - list:
elements: elements:
- cluster: https://kubernetes.default.svc - cluster: https://kubernetes.default.svc
env: prod env: prod
hostname: atlantis.srv.oceanbox.io hostname: atlantis.srv.oceanbox.io
autoSync: false
prune: true
- cluster: https://staging-vcluster.staging-vcluster:443 - cluster: https://staging-vcluster.staging-vcluster:443
env: staging env: staging
hostname: atlantis.beta.oceanbox.io hostname: atlantis.beta.oceanbox.io
autoSync: true
prune: true
template: template:
metadata: metadata:
name: '{{ env }}-atlantis' name: '{{ .env }}-atlantis'
spec: spec:
project: atlantis project: atlantis
destination: destination:
namespace: atlantis namespace: atlantis
server: '{{ cluster }}' server: '{{ .cluster }}'
sources: sources:
- repoURL: https://gitlab.com/oceanbox/manifests.git - repoURL: https://gitlab.com/oceanbox/manifests.git
targetRevision: dev targetRevision: dev
@@ -29,9 +34,16 @@ spec:
name: kustomize-helm-with-rewrite name: kustomize-helm-with-rewrite
parameters: parameters:
- name: env - name: env
string: '{{ env }}' string: '{{ .env }}'
- name: hostname - name: hostname
string: '{{ hostname }}' string: '{{ .hostname }}'
- repoURL: https://gitlab.com/oceanbox/manifests.git - repoURL: https://gitlab.com/oceanbox/manifests.git
targetRevision: dev targetRevision: dev
path: charts/atlantis/manifests path: charts/atlantis/manifests
templatePatch: |
{{- if .autoSync }}
spec:
syncPolicy:
automated:
prune: {{ .prune }}
{{- end }}
charts/atlantis/base/deployment_patch.yaml
+3
View File
@@ -4,3 +4,6 @@
- op: replace - op: replace
path: /spec/template/spec/containers/0/readinessProbe/httpGet/path path: /spec/template/spec/containers/0/readinessProbe/httpGet/path
value: /healthz value: /healthz
- op: add
path: /spec/template/spec/containers/0/envFrom
value: []
charts/atlantis/base/kustomization.yaml
-2
View File
@@ -5,12 +5,10 @@ patches:
version: v1 version: v1
group: apps group: apps
kind: Deployment kind: Deployment
name: atlantis
path: deployment_patch.yaml path: deployment_patch.yaml
- target: - target:
version: v1 version: v1
kind: Service kind: Service
name: atlantis
path: service_patch.yaml path: service_patch.yaml
resources: resources:
- _manifest.yaml - _manifest.yaml
charts/atlantis/chart/values.yaml
+1 -1
View File
@@ -6,7 +6,7 @@ replicaCount: 1
image: image:
repository: registry.gitlab.com/oceanbox/atlantis repository: registry.gitlab.com/oceanbox/atlantis
tag: latest tag: v2.76.0
pullPolicy: IfNotPresent pullPolicy: IfNotPresent
init: init:
charts/atlantis/manifests/subscriptions.yaml
+2 -6
View File
@@ -7,9 +7,7 @@ spec:
route: /hipster-events route: /hipster-events
pubsubname: pubsub pubsubname: pubsub
scopes: scopes:
- staging-atlantis - atlantis
- production-atlantis
- x-review-atlantis
--- ---
apiVersion: dapr.io/v1alpha1 apiVersion: dapr.io/v1alpha1
kind: Subscription kind: Subscription
@@ -20,6 +18,4 @@ spec:
route: /inbox-events route: /inbox-events
pubsubname: pubsub pubsubname: pubsub
scopes: scopes:
- staging-atlantis - atlantis
- production-atlantis
- x-review-atlantis
charts/atlantis/prod/appsettings.json
+3 -3
View File
@@ -7,7 +7,7 @@
"userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo", "userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo",
"device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code", "device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code",
"clientId": "atlantis", "clientId": "atlantis",
"clientSecret": "KOJ6bDHzE5vdyfSrzgwLjtM5PzA809Zm", "clientSecret": "",
"scopes": [ "scopes": [
"openid", "openid",
"email", "email",
@@ -18,7 +18,7 @@
"sso": { "sso": {
"cookieDomain": ".oceanbox.io", "cookieDomain": ".oceanbox.io",
"signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html", "signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html",
"redis": "redis-master,user=default,password=ymL4dlOBvU", "redis": "prod-redis-master,user=default,password=secret",
"appDomain": "atlantis", "appDomain": "atlantis",
"dataProtectionKeys": "DataProtection-Keys" "dataProtectionKeys": "DataProtection-Keys"
}, },
@@ -31,5 +31,5 @@
"https://atlantis.srv.oceanbox.io" "https://atlantis.srv.oceanbox.io"
], ],
"logService" : "https://seq.oceanbox.io", "logService" : "https://seq.oceanbox.io",
"logApiKey": "bFdYPKLDvnau3fQa1vRV" "logApiKey": ""
} }
charts/atlantis/prod/default.env
+2
View File
@@ -0,0 +1,2 @@
OICD_CLIENT_SECRET=KOJ6bDHzE5vdyfSrzgwLjtM5PzA809Zm
SEQ_APIKEY=WmZplDeFoxIHpJQ5BiDk
charts/atlantis/prod/deployment_patch.yaml
+18
View File
@@ -24,3 +24,21 @@
name: prod-atlantis-barentswatch name: prod-atlantis-barentswatch
key: client-id key: client-id
optional: true optional: true
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_USER
value: default
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_PASSWORD
valueFrom:
secretKeyRef:
name: prod-redis
key: redis-password
- op: add
path: /spec/template/spec/containers/0/envFrom/-
value:
secretRef:
name: prod-atlantis-env
charts/atlantis/staging/appsettings.json
+3 -3
View File
@@ -7,7 +7,7 @@
"userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo", "userinfo_endpoint": "https://idp.oceanbox.io/dex/userinfo",
"device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code", "device_authorization_endpoint": "https://idp.oceanbox.io/dex/device/code",
"clientId": "atlantis_dev", "clientId": "atlantis_dev",
"clientSecret": "3QjfSPmAemjn34XVA2o1fvoS7I4gKvOR", "clientSecret": "",
"scopes": [ "scopes": [
"openid", "openid",
"email", "email",
@@ -18,7 +18,7 @@
"sso": { "sso": {
"cookieDomain": ".oceanbox.io", "cookieDomain": ".oceanbox.io",
"signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html", "signedOutRedirectUri": "https://idp.oceanbox.io/dex/static/logout.html",
"redis": "redis-master,user=default,password=JICkoUKD0Y", "redis": "prod-redis-master,user=default,password=secret",
"appDomain": "atlantis", "appDomain": "atlantis",
"dataProtectionKeys": "DataProtection-Keys" "dataProtectionKeys": "DataProtection-Keys"
}, },
@@ -29,5 +29,5 @@
"https://atlantis.beta.oceanbox.io" "https://atlantis.beta.oceanbox.io"
], ],
"logService" : "https://seq.oceanbox.io", "logService" : "https://seq.oceanbox.io",
"logApiKey": "WmZplDeFoxIHpJQ5BiDk" "logApiKey": ""
} }
charts/atlantis/staging/default.env
+2
View File
@@ -0,0 +1,2 @@
OICD_CLIENT_SECRET=3QjfSPmAemjn34XVA2o1fvoS7I4gKvOR
SEQ_APIKEY=WmZplDeFoxIHpJQ5BiDk
charts/atlantis/staging/deployment_patch.yaml
+18
View File
@@ -29,3 +29,21 @@
name: staging-atlantis-barentswatch name: staging-atlantis-barentswatch
key: client-id key: client-id
optional: true optional: true
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_USER
value: default
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: REDIS_PASSWORD
valueFrom:
secretKeyRef:
name: staging-redis
key: redis-password
- op: add
path: /spec/template/spec/containers/0/envFrom/-
value:
secretRef:
name: staging-atlantis-env
charts/atlantis/staging/kustomization.yaml
+6 -5
View File
@@ -1,16 +1,17 @@
namePrefix: staging-
generatorOptions: generatorOptions:
disableNameSuffixHash: true disableNameSuffixHash: true
secretGenerator: secretGenerator:
- name: atlantis-appsettings - name: staging-atlantis-appsettings
files: files:
- appsettings.json - appsettings.json
- name: staging-atlantis-env
envs:
- default.env
patches: patches:
- target: - target:
group: apps group: apps
version: v1 version: v1
kind: Deployment kind: Deployment
name: atlantis
path: deployment_patch.yaml path: deployment_patch.yaml
resources: resources:
- ../base - ../base
charts/atlantis/values-prod.yaml
-3
View File
@@ -1,10 +1,7 @@
fullnameOverride: atlantis
ingress: ingress:
annotations: annotations:
cert-manager.io/cluster-issuer: letsencrypt-production cert-manager.io/cluster-issuer: letsencrypt-production
nginx.ingress.kubernetes.io/proxy-buffer-size: 128k nginx.ingress.kubernetes.io/proxy-buffer-size: 128k
# nginx.ingress.kubernetes.io/whitelist-source-range: 0.0.0.0/0
hosts: hosts:
- host: atlantis.srv.oceanbox.io - host: atlantis.srv.oceanbox.io
paths: paths:
charts/atlantis/values-staging.yaml
+2 -3
View File
@@ -1,14 +1,13 @@
fullnameOverride: atlantis fullnameOverride: atlantis
image: image:
tag: latest tag: e8fc5f7d-debug
ingress: ingress:
annotations: annotations:
cert-manager.io/cluster-issuer: letsencrypt-production cert-manager.io/cluster-issuer: letsencrypt-production
nginx.ingress.kubernetes.io/proxy-buffer-size: 128k nginx.ingress.kubernetes.io/proxy-buffer-size: 128k
# nginx.ingress.kubernetes.io/whitelist-source-range: 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16 # atlantis.oceanbox.io/expose: internal
# nginx.ingress.kubernetes.io/whitelist-source-range: 0.0.0.0/0
hosts: hosts:
- host: atlantis.beta.oceanbox.io - host: atlantis.beta.oceanbox.io
paths: paths: