fix: Add inital nexus and update drupal image

2025-12-02 21:26:17 +01:00
parent de9388691a
commit a18e7d2e23
7 changed files with 171 additions and 0 deletions
@@ -0,0 +1,43 @@
+bases:
+ - ../envs/environments.yaml.gotmpl
+
+repositories:
+  - name: stevehipwell
+    url: 'https://stevehipwell.github.io/helm-charts/'
+
+commonLabels:
+  tier: system
+
+releases:
+- name: nexus3
+  namespace: nexus
+  chart: stevehipwell/nexus3
+  version: 5.9.0
+  condition: nexus.enabled
+  values:
+  - ../values/nexus/values/nexus.yaml.gotmpl
+  - ../values/nexus/values/nexus-{{ .Environment.Name }}.yaml.gotmpl
+  postRenderer: ../bin/kustomizer
+  postRendererArgs:
+  - ../values/nexus/kustomize/{{ .Environment.Name }}
+  missingFileHandler: Info
+- name: manifests
+  namespace: nexus
+  chart: manifests
+  condition: nexus.enabled
+  missingFileHandler: Info
+  values:
+  - ../values/env.yaml
+  - ../values/env-{{ requiredEnv "ARGOCD_ENV_CLUSTER_NAME" }}.yaml
+  - ../values/nexus/env.yaml.gotmpl
+  - ../values/nexus/env-{{ requiredEnv "ARGOCD_ENV_CLUSTER_NAME" }}.yaml.gotmpl
+  hooks:
+  - events: [ prepare, cleanup ]
+    showlogs: true
+    command: ../bin/helmify
+    args:
+    - '{{`{{ if eq .Event.Name "prepare" }}build{{ else }}clean{{ end }}`}}'
+    - '{{`{{ .Release.Chart }}`}}'
+    - '{{`{{ .Environment.Name }}`}}'
+    - ../values/nexus/manifests
+    - manifests
@@ -60,6 +60,23 @@ spec:
            - containerPort: 80
              name: http
              protocol: TCP
+          env:
+          - name: DRUPAL_DATABASE_HOST
+            value: drupal-db-rw
+          - name: DRUPAL_DATABASE_PREFIX
+            value: ""
+          - name: DRUPAL_DATABASE_NAME
+            value: app
+          - name: DRUPAL_DATABASE_USERNAME
+            valueFrom:
+              secretKeyRef:
+                name: drupal-db-app
+                key: username
+          - name: DRUPAL_DATABASE_PASSWORD
+            valueFrom:
+              secretKeyRef:
+                name: drupal-db-app
+                key: password
          volumeMounts:
            - mountPath: /var/www/html/modules
              name: drupal
@@ -0,0 +1,3 @@
+nexus:
+ enabled: true
+ autosync: true
@@ -0,0 +1,3 @@
+nexus:
+ enabled: false
+ autosync: false
@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: nexus-admin-password
+  namespace: nexus
+type: Opaque
+stringData:
+  password: "changeme-admin-password-here"
@@ -0,0 +1,37 @@
+{{- if .Values.clusterConfig.argo.enabled }}
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: nexus
+  namespace: argocd
+spec:
+  destination:
+    namespace: nexus
+    server: 'https://kubernetes.default.svc'
+  sources:
+  - repoURL: {{ .Values.clusterConfig.manifests }}
+    targetRevision: HEAD
+    path: helmfile.d
+    plugin:
+      name: helmfile-cmp
+      env:
+      - name: CLUSTER_NAME
+        value: {{ .Values.clusterConfig.cluster }}
+      - name: HELMFILE_ENVIRONMENT
+        value: default
+      - name: HELMFILE_FILE_PATH
+        value: nexus.yaml.gotmpl
+  project: sys
+  syncPolicy:
+    managedNamespaceMetadata:
+      labels:
+        component: sys
+    syncOptions:
+      - CreateNamespace=true
+      - ApplyOutOfSyncOnly=true
+      - ServerSideApply=true
+    {{- if .Values.nexus.autosync }}
+    automated:
+      prune: true
+    {{- end }}
+{{- end }}
@@ -0,0 +1,60 @@
+image:
+  tag: 3.74.0
+
+ingress:
+  enabled: true
+  ingressClassName: nginx
+  hosts:
+    - host: mochi.tos.oceanbox.io
+      paths:
+        - path: /
+          pathType: Prefix
+  tls:
+    - secretName: nexus-tls
+      hosts:
+        - mochi.tos.oceanbox.io
+
+persistence:
+  enabled: true
+  storageClass: "ceph-rbd"
+  size: 8Gi
+
+env:
+  - name: INSTALL4J_ADD_VM_PARAMS
+    value: "-Xms1024m -Xmx1024m -XX:MaxDirectMemorySize=1024m -Djava.util.prefs.userRoot=/nexus-data/javaprefs"
+
+resources:
+  requests:
+    cpu: 200m
+    memory: 1Gi
+  limits:
+    memory: 1Gi
+
+config:
+  enabled: true
+  data:
+    nexus.properties: |
+      nexus.s3.blobstore.enabled=true
+  rootPassword:
+    secret: nexus-admin-password
+    key: password
+
+serviceAccount:
+  create: true
+
+additionalConfigMaps:
+  - name: nexus-s3-config
+    data:
+      s3-blobstore.json: |
+        {
+          "name": "s3-nuget",
+          "type": "S3",
+          "attributes": {
+            "s3": {
+              "bucket": "nexus-nuget-registry",
+              "region": "us-east-1",
+              "prefix": "nuget/",
+              "expiration": -1
+            }
+          }
+        }