Dan V
deb6c38d7b
- Add .gitignore: exclude compiled binaries, build artifacts, and Helm values files containing real secrets (authentik, prometheus) - Add all Kubernetes deployment manifests (deployment/) - Add services source code: ha-sync, device-inventory, games-console, paperclip, parts-inventory - Add Ansible orchestration: playbooks, roles, inventory, cloud-init - Add hardware specs, execution plans, scripts, HOMELAB.md - Add skills/homelab/SKILL.md + skills/install.sh to preserve Copilot skill - Remove previously-tracked inventory-cli binary from git index Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
135 lines
2.9 KiB
YAML
135 lines
2.9 KiB
YAML
---
|
|
# NOTE: Secret 'iot-db-secret' must be created manually:
|
|
# kubectl create secret generic iot-db-secret \
|
|
# --from-literal=root-password=<ROOT_PASS> \
|
|
# --from-literal=database=iot_db \
|
|
# --from-literal=user=<USER> \
|
|
# --from-literal=password=<PASS> \
|
|
# -n iot
|
|
---
|
|
apiVersion: v1
|
|
kind: PersistentVolumeClaim
|
|
metadata:
|
|
annotations: {}
|
|
name: iot-db-v2-pvc
|
|
namespace: iot
|
|
spec:
|
|
accessModes:
|
|
- ReadWriteOnce
|
|
resources:
|
|
requests:
|
|
storage: 10Gi
|
|
storageClassName: nfs-iot
|
|
---
|
|
apiVersion: apps/v1
|
|
kind: StatefulSet
|
|
metadata:
|
|
annotations: {}
|
|
name: iot-db
|
|
namespace: iot
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: iot-db
|
|
serviceName: iot-db
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: iot-db
|
|
spec:
|
|
containers:
|
|
- env:
|
|
- name: MYSQL_ROOT_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
key: root-password
|
|
name: iot-db-secret
|
|
- name: MYSQL_DATABASE
|
|
valueFrom:
|
|
secretKeyRef:
|
|
key: database
|
|
name: iot-db-secret
|
|
- name: MYSQL_USER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
key: user
|
|
name: iot-db-secret
|
|
- name: MYSQL_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
key: password
|
|
name: iot-db-secret
|
|
image: mysql:9
|
|
livenessProbe:
|
|
exec:
|
|
command:
|
|
- mysqladmin
|
|
- ping
|
|
- -h
|
|
- localhost
|
|
- -u
|
|
- root
|
|
- -piot-db-root-passwort
|
|
failureThreshold: 10
|
|
initialDelaySeconds: 120
|
|
periodSeconds: 10
|
|
timeoutSeconds: 20
|
|
name: mysql
|
|
ports:
|
|
- containerPort: 3306
|
|
name: mysql
|
|
readinessProbe:
|
|
exec:
|
|
command:
|
|
- mysqladmin
|
|
- ping
|
|
- -h
|
|
- localhost
|
|
- -u
|
|
- root
|
|
- -piot-db-root-passwort
|
|
failureThreshold: 10
|
|
initialDelaySeconds: 60
|
|
periodSeconds: 10
|
|
timeoutSeconds: 20
|
|
resources:
|
|
limits:
|
|
cpu: 500m
|
|
memory: 512Mi
|
|
requests:
|
|
cpu: 100m
|
|
memory: 256Mi
|
|
volumeMounts:
|
|
- mountPath: /var/lib/mysql
|
|
name: mysql-data
|
|
volumes:
|
|
- name: mysql-data
|
|
persistentVolumeClaim:
|
|
claimName: iot-db-v2-pvc
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
annotations: {}
|
|
name: iot-db
|
|
namespace: iot
|
|
spec:
|
|
clusterIP: None
|
|
ports:
|
|
- name: mysql
|
|
port: 3306
|
|
targetPort: 3306
|
|
selector:
|
|
app: iot-db
|
|
---
|
|
# ExternalName alias so apps can use 'db' as hostname
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
annotations: {}
|
|
name: db
|
|
namespace: iot
|
|
spec:
|
|
externalName: iot-db.iot.svc.cluster.local
|
|
type: ExternalName
|