vynil/domain-incoming
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2024-05-12 12:03:32 +02:00
parent 599d175f82
commit 2890064fd4
191 changed files with 893 additions and 1068 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
apps/okd/datas.tf
View File

@@ -1,7 +1,7 @@
locals {
authentik_url = "http://authentik.${var.domain}-auth.svc"
authentik_token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
common-labels = {
common_labels = {
"vynil.solidite.fr/owner-name" = var.instance
"vynil.solidite.fr/owner-namespace" = var.namespace
"vynil.solidite.fr/owner-category" = var.category
@@ -21,6 +21,6 @@ data "kubernetes_secret_v1" "authentik" {
data "kustomization_overlay" "data" {
namespace = var.namespace
common_labels = local.common-labels
common_labels = local.common_labels
resources = []
}

6
apps/okd/deploy.tf
View File

@@ -5,14 +5,14 @@ resource "kubectl_manifest" "deploy" {
metadata:
name: "${var.instance}-${var.component}"
namespace: "${var.namespace}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
spec:
replicas: 1
selector:
matchLabels: ${jsonencode(local.common-labels)}
matchLabels: ${jsonencode(local.common_labels)}
template:
metadata:
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
spec:
securityContext:
fsGroup: 1000

6
apps/okd/presentation.tf
View File

@@ -14,7 +14,7 @@ module "service" {
component = var.component
instance = var.instance
namespace = var.namespace
labels = local.common-labels
labels = local.common_labels
targets = ["http"]
providers = {
kubectl = kubectl
@@ -28,7 +28,7 @@ module "ingress" {
namespace = var.namespace
issuer = var.issuer
ingress_class = var.ingress_class
labels = local.common-labels
labels = local.common_labels
dns_names = local.dns_names
middlewares = [module.forward.middleware]
services = [module.service.default_definition]
@@ -67,7 +67,7 @@ module "forward" {
domain = var.domain
namespace = var.namespace
ingress_class = var.ingress_class
labels = local.common-labels
labels = local.common_labels
dns_names = local.dns_names
service = module.service.default_definition
icon = local.icon

12
apps/okd/rbac.tf
View File

@@ -8,7 +8,7 @@ resource "kubectl_manifest" "okd_sa" {
metadata:
name: "${var.instance}-${var.component}"
namespace: "${var.namespace}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
EOF
}
@@ -19,7 +19,7 @@ resource "kubectl_manifest" "okd_crb_admin" {
kind: ClusterRoleBinding
metadata:
name: "${var.namespace}-${var.instance}-${var.component}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
@@ -39,7 +39,7 @@ resource "kubectl_manifest" "okd_roles" {
metadata:
name: "${var.namespace}-${var.instance}-${var.component}"
namespace: "${local.sorted-namespaces[count.index]}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
rules:
- apiGroups: ["*"]
resources: ["*"]
@@ -55,7 +55,7 @@ resource "kubectl_manifest" "okd_role_bindings" {
metadata:
name: "${var.namespace}-${var.instance}-${var.component}"
namespace: "${local.sorted-namespaces[count.index]}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
subjects:
- kind: ServiceAccount
name: "${var.instance}-${var.component}"
@@ -74,7 +74,7 @@ resource "kubectl_manifest" "okd_clusterrole" {
kind: ClusterRole
metadata:
name: "${var.namespace}-${var.instance}-${var.component}-list"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
rules:
- apiGroups: [""]
resources: ["namespaces"]
@@ -94,7 +94,7 @@ resource "kubectl_manifest" "okd_clusterrole_bindings" {
metadata:
name: "${var.namespace}-${var.instance}-${var.component}-list"
namespace: "${local.sorted-namespaces[count.index]}"
labels: ${jsonencode(local.common-labels)}
labels: ${jsonencode(local.common_labels)}
subjects:
- kind: ServiceAccount
name: "${var.instance}-${var.component}"