seth
/
video-iac
mirror of https://bitbucket.org/jamkazam/video-iac.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity

add production values

This commit is contained in:
Victor Barba Martin 2021-11-18 08:15:38 +01:00
parent 2d72a69e54
commit c4c977efaf
7 changed files with 139 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
k8s/applications/values-production.yaml Normal file
View File

@ -0,0 +1 @@
environment: "staging"

9
k8s/argocd/overlays/production/applications.yaml Normal file
View File

@ -0,0 +1,9 @@
apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
name: applications
spec:
source:
helm:
valueFiles:
- values-production.yaml

7
k8s/argocd/overlays/production/hostname.yaml Normal file
View File

@ -0,0 +1,7 @@
---
- op: replace
path: /spec/rules/0/host
value: &host argocd.video.jamkazam.com
- op: replace
path: /spec/tls/0/hosts/0
value: *host

20
k8s/argocd/overlays/production/kustomization.yaml Normal file
View File

@ -0,0 +1,20 @@
---
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
bases:
- ../../base
commonLabels:
app.kubernetes.io/instance: argocd
patchesStrategicMerge:
- applications.yaml
patchesJson6902:
- path: hostname.yaml
target:
group: networking.k8s.io
kind: Ingress
name: argocd-server-ingress
version: v1

1
k8s/coturn-dns/values-production.yaml Normal file
View File

@ -0,0 +1 @@
domain: "video.jamkazam.com"

97
k8s/monitoring/values-production.yaml Normal file
View File

@ -0,0 +1,97 @@
# Helm chart values for Prometheus Operator with HTTPS and basic auth
kube-prometheus-stack:
prometheus:
ingress:
enabled: true
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/rewrite-target: /$2
cert-manager.io/cluster-issuer: letsencrypt-nginx-production
# nginx.ingress.kubernetes.io/auth-type: basic
# nginx.ingress.kubernetes.io/auth-secret: basic-auth
# nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
hosts:
- monitoring.video.jamkazam.com
paths:
- /prometheus(/|$)(.*)
tls:
- secretName: monitoring
hosts:
- monitoring.video.jamkazam.com
prometheusSpec:
routePrefix: /
externalUrl: https://monitoring.video.jamkazam.com/prometheus
storageSpec:
volumeClaimTemplate:
spec:
storageClassName: linode-block-storage-retain
resources:
requests:
storage: 10Gi
alertmanager:
ingress:
enabled: true
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/rewrite-target: /$2
cert-manager.io/cluster-issuer: letsencrypt-nginx-production
# nginx.ingress.kubernetes.io/auth-type: basic
# nginx.ingress.kubernetes.io/auth-secret: basic-auth
# nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
hosts:
- monitoring.video.jamkazam.com
paths:
- /alertmanager(/|$)(.*)
tls:
- secretName: monitoring
hosts:
- monitoring.video.jamkazam.com
alertmanagerSpec:
routePrefix: /
externalUrl: https://monitoring.video.jamkazam.com/alertmanager
storage:
volumeClaimTemplate:
spec:
storageClassName: linode-block-storage-retain
resources:
requests:
storage: 10Gi
grafana:
persistence:
enabled: true
storageClassName: linode-block-storage-retain
size: 10Gi
ingress:
enabled: true
annotations:
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/rewrite-target: /$2
cert-manager.io/cluster-issuer: letsencrypt-nginx-production
# nginx.ingress.kubernetes.io/auth-type: basic
# nginx.ingress.kubernetes.io/auth-secret: basic-auth
# nginx.ingress.kubernetes.io/auth-realm: 'Authentication Required'
hosts:
- monitoring.video.jamkazam.com
path: /grafana(/|$)(.*)
tls:
- secretName: monitoring
hosts:
- monitoring.video.jamkazam.com
grafana.ini:
server:
domain: monitoring.video.jamkazam.com
root_url: "%(protocol)s://%(domain)s/grafana/"
enable_gzip: "true"
# Disable control plane metrics
kubeEtcd:
enabled: false
kubeControllerManager:
enabled: false
kubeScheduler:
enabled: false

4
k8s/webrtc-be/values-production.yaml Normal file
View File

@ -0,0 +1,4 @@
# Ingress
domain: "webrtc-be.video.jamkazam.com"
# Webrtc env variables
backendUrl: "https://jamkazam.com"