vynil/domain-incoming
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2024-05-29 15:34:59 +02:00
parent a83413a2e9
commit 3dfe5b4a69
3 changed files with 77 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
apps/dbgate/index.yaml
View File

@@ -12,9 +12,9 @@ options:
- dev - dev
type: string type: string
domain: domain:
default: your-company default: media
examples: examples:
- your-company - media
type: string type: string
domain_name: domain_name:
default: your_company.com default: your_company.com

59
apps/dbgate/template.rhai Normal file
View File

@@ -0,0 +1,59 @@
const DEST=dest;
const DOMAIN = config.domain;
fn post_template() {
let nss = list_namespace().items.filter(|ns| ns.metadata.name.starts_with(global::DOMAIN)).map(|ns| ns.metadata.name);
let pgs = [];
let rediss = [];
let mongos = [];
let marias = [];
for ns in nss {
let svcs = list_service(ns).items;
let secrets = list_secret(ns).items;
for svc in svcs {
if svc.metadata.name.ends_with("-pg-rw") {
let basename = svc.metadata.name-"-pg-rw";
let pg_secrets = secrets.filter(|s| s.metadata.name == `${basename}-pg-app`);
if pg_secrets.len>0 && basename.split("-").len>1 {
let tmp = (basename-"-dataset").split("-");
let comp = tmp[tmp.len-1];
log_info(`Found a PG database ${svc.metadata.namespace} ${basename}`);
pgs += #{
name: `${basename}-pg`,
dbname: comp,
username: comp,
namespace: svc.metadata.namespace,
secret: #{
name: `${basename}-pg-app`,
key: "password"
}
};
}
}
if svc.metadata.name.ends_with("-mongo-svc") {
let basename = svc.metadata.name-"-mongo-svc";
let mongo_secrets = secrets.filter(|s| s.metadata.name == `${basename}-mongo`);
if mongo_secrets.len>0 && basename.split("-").len>1 {
let tmp = (basename-"-dataset").split("-");
let comp = tmp[tmp.len-1];
log_info(`Found a MongoDB database ${svc.metadata.namespace} ${basename}`);
mongos += #{
name: `${basename}-mongo`,
dbname: comp,
username: comp,
namespace: svc.metadata.namespace,
secret: #{
name: `${basename}-mongo`,
key: "password"
}
};
}
}
}
}
save_to_tf(`${global::DEST}/detected.tf`, "detected", #{
pgs: pgs,
mongos: mongos,
rediss: rediss,
marias: marias
});
}

16
apps/wordpress/database.tf
View File

@@ -11,6 +11,7 @@ locals {
mysql_username = "root" mysql_username = "root"
mysql_password = random_password.mysql_root_pass.result mysql_password = random_password.mysql_root_pass.result
} }
resource "kubectl_manifest" "mysql_root_pass" { resource "kubectl_manifest" "mysql_root_pass" {
yaml_body = <<-EOF yaml_body = <<-EOF
apiVersion: v1 apiVersion: v1
@@ -62,6 +63,21 @@ resource "mysql_user" "component" {
host = "%" host = "%"
plaintext_password = random_password.mysql_comp_pass.result plaintext_password = random_password.mysql_comp_pass.result
} }
resource "kubectl_manifest" "app_db_pass" {
yaml_body = <<-EOF
apiVersion: v1
kind: Secret
metadata:
name: "${var.instance}-${var.component}-mysql-app"
labels: ${jsonencode(local.secret_labels)}
namespace: ${var.namespace}
stringData:
username: "${var.component}"
password: "${random_password.mysql_comp_pass.result}"
EOF
}
resource "mysql_grant" "component" { resource "mysql_grant" "component" {
user = mysql_user.component.user user = mysql_user.component.user
host = mysql_user.component.host host = mysql_user.component.host