vynil/domain
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2024-01-22 15:53:32 +01:00
parent 2dcfe651af
commit bb9c0e745d
109 changed files with 6512 additions and 117 deletions
Download Patch File Download Diff File Expand all files Collapse all files

119
meta/domain-monitor/apps.tf Normal file
View File

@@ -0,0 +1,119 @@
locals {
annotations = {
"vynil.solidite.fr/meta" = "domain-monitor"
"vynil.solidite.fr/name" = var.namespace
"vynil.solidite.fr/domain" = var.domain-name
"vynil.solidite.fr/issuer" = var.issuer
"vynil.solidite.fr/ingress" = var.ingress-class
}
global = {
"domain" = var.namespace
"domain-name" = "admin.${var.domain-name}"
"issuer" = var.issuer
"ingress-class" = var.ingress-class
"backups" = var.backups
"app-group" = var.app-group
}
prometheus = { for k, v in var.prometheus : k => v if k!="enable" }
alertmanager = { for k, v in var.alertmanager : k => v if k!="enable" }
nodeExporter = { for k, v in var.node-exporter : k => v if k!="enable" }
kubeStateMetrics = merge({"cluster-admin" = true}, { for k, v in var.kube-state-metrics : k => v if k!="enable" })
monitorControlPlan = merge({"cluster-admin" = true}, { for k, v in var.monitor-control-plan : k => v if k!="enable" })
}
resource "kubernetes_namespace_v1" "monitor-ns" {
count = ( var.prometheus.enable || var.alertmanager.enable || var.nodeExporter.enable || var.kubeStateMetrics.enable || var.monitorControlPlan.enable )? 1 : 0
metadata {
annotations = local.annotations
labels = merge(local.common-labels, local.annotations)
name = "${var.namespace}-monitor"
}
}
resource "kubectl_manifest" "alertmanager" {
count = var.alertmanager.enable ? 1 : 0
depends_on = [kubernetes_namespace_v1.monitor-ns]
yaml_body = <<-EOF
nodeExporterVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "alertmanager"
namespace: "${kubernetes_namespace_v1.monitor-ns[0].metadata[0].name}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "share"
component: "alertmanager"
options: ${jsonencode(merge(local.global, local.alertmanager))}
EOF
}
resource "kubectl_manifest" "prometheus" {
count = var.prometheus.enable ? 1 : 0
yaml_body = <<-EOF
nodeExporterVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "prometheus"
namespace: "${kubernetes_namespace_v1.monitor-ns[0].metadata[0].name}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "monitor"
component: "prometheus"
options: ${jsonencode(merge(local.global, local.prometheus))}
EOF
}
resource "kubectl_manifest" "nodeExporter" {
count = var.nodeExporter.enable ? 1 : 0
yaml_body = <<-EOF
nodeExporterVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "node-exporter"
namespace: "${kubernetes_namespace_v1.monitor-ns[0].metadata[0].name}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "monitor"
component: "k8s-nodeExporter"
options: ${jsonencode(merge(local.global, local.nodeExporter))}
EOF
}
resource "kubectl_manifest" "kubeStateMetrics" {
count = var.kubeStateMetrics.enable ? 1 : 0
depends_on = [kubernetes_namespace_v1.monitor-ns]
yaml_body = <<-EOF
nodeExporterVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "kube-state-metrics"
namespace: "${kubernetes_namespace_v1.monitor-ns[0].metadata[0].name}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "monitor"
component: "kubeStateMetrics"
options: ${jsonencode(merge(local.global, local.kubeStateMetrics))}
EOF
}
resource "kubectl_manifest" "monitorControlPlan" {
count = var.monitorControlPlan.enable ? 1 : 0
depends_on = [kubernetes_namespace_v1.monitor-ns]
yaml_body = <<-EOF
nodeExporterVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "monitor-control-plan"
namespace: "${kubernetes_namespace_v1.monitor-ns[0].metadata[0].name}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "monitor"
component: "monitor-control-plan"
options: ${jsonencode(merge(local.global, local.monitorControlPlan))}
EOF
}

173
meta/domain-monitor/index.yaml Normal file
View File

@@ -0,0 +1,173 @@
---
apiVersion: vinyl.solidite.fr/v1beta1
kind: Component
category: meta
metadata:
name: domain-monitor
description: null
options:
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
backups:
default:
enable: false
endpoint: ''
key-id-key: s3-id
secret-key: s3-secret
secret-name: backup-settings
examples:
- enable: false
endpoint: ''
key-id-key: s3-id
secret-key: s3-secret
secret-name: backup-settings
properties:
enable:
default: false
type: boolean
endpoint:
default: ''
type: string
key-id-key:
default: s3-id
type: string
secret-key:
default: s3-secret
type: string
secret-name:
default: backup-settings
type: string
type: object
ingress-class:
default: traefik
examples:
- traefik
type: string
distributions:
default:
core: core
domain: domain
examples:
- core: core
domain: domain
properties:
core:
default: core
type: string
domain:
default: domain
type: string
type: object
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
node-exporter:
default:
enable: true
examples:
- enable: true
properties:
enable:
default: true
type: boolean
type: object
x-vynil-category: monitor
x-vynil-package: node-exporter
kube-state-metrics:
default:
enable: true
examples:
- enable: true
properties:
enable:
default: true
type: boolean
type: object
x-vynil-category: monitor
x-vynil-package: kube-state-metrics
storage-classes:
default:
BlockReadWriteMany: ''
BlockReadWriteOnce: ''
FilesystemReadWriteMany: ''
FilesystemReadWriteOnce: ''
examples:
- BlockReadWriteMany: ''
BlockReadWriteOnce: ''
FilesystemReadWriteMany: ''
FilesystemReadWriteOnce: ''
properties:
BlockReadWriteMany:
default: ''
type: string
BlockReadWriteOnce:
default: ''
type: string
FilesystemReadWriteMany:
default: ''
type: string
FilesystemReadWriteOnce:
default: ''
type: string
type: object
app-group:
default: infra
examples:
- infra
type: string
prometheus:
default:
enable: true
examples:
- enable: true
properties:
enable:
default: true
type: boolean
type: object
x-vynil-category: monitor
x-vynil-package: prometheus
alertmanager:
default:
enable: true
examples:
- enable: true
properties:
enable:
default: true
type: boolean
type: object
x-vynil-category: monitor
x-vynil-package: alertmanager
domain:
default: your-company
examples:
- your-company
type: string
monitor-control-plan:
default:
enable: false
examples:
- enable: false
properties:
enable:
default: false
type: boolean
type: object
x-vynil-category: monitor
x-vynil-package: monitor-control-plan
dependencies: []
providers:
kubernetes: true
authentik: null
kubectl: true
postgresql: null
restapi: null
http: null
gitea: null
tfaddtype: null

246
meta/domain/index.yaml
View File

@@ -6,95 +6,6 @@ metadata:
name: domain
description: null
options:
erp:
default:
dolibarr:
enable: true
enable: false
examples:
- dolibarr:
enable: true
enable: false
properties:
dolibarr:
default:
enable: true
properties:
enable:
default: true
type: boolean
type: object
enable:
default: false
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-erp
ingress-class:
default: traefik
examples:
- traefik
type: string
devspaces:
default:
enable: false
examples:
- enable: false
properties:
enable:
default: false
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-devspaces
auth:
default:
authentik:
enable: true
enable: true
examples:
- authentik:
enable: true
enable: true
properties:
authentik:
default:
enable: true
properties:
enable:
default: true
type: boolean
type: object
enable:
default: true
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-auth
infra:
default:
enable: false
traefik:
enable: false
examples:
- enable: false
traefik:
enable: false
properties:
enable:
default: false
type: boolean
traefik:
default:
enable: false
properties:
enable:
default: false
type: boolean
type: object
type: object
x-vynil-category: meta
x-vynil-package: domain-infra
storage-classes:
default:
BlockReadWriteMany: ''
@@ -120,16 +31,115 @@ options:
default: ''
type: string
type: object
domain-name:
default: your_company.com
ci:
default:
enable: false
gitea:
enable: true
examples:
- your_company.com
type: string
- enable: false
gitea:
enable: true
properties:
enable:
default: false
type: boolean
gitea:
default:
enable: true
properties:
enable:
default: true
type: boolean
type: object
type: object
x-vynil-category: meta
x-vynil-package: domain-ci
monitor:
default:
enable: false
examples:
- enable: false
properties:
enable:
default: false
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-monitor
distributions:
default:
core: core
domain: domain
examples:
- core: core
domain: domain
properties:
core:
default: core
type: string
domain:
default: domain
type: string
type: object
infra:
default:
enable: false
traefik:
enable: false
examples:
- enable: false
traefik:
enable: false
properties:
enable:
default: false
type: boolean
traefik:
default:
enable: false
properties:
enable:
default: false
type: boolean
type: object
type: object
x-vynil-category: meta
x-vynil-package: domain-infra
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
ingress-class:
default: traefik
examples:
- traefik
type: string
erp:
default:
dolibarr:
enable: true
enable: false
examples:
- dolibarr:
enable: true
enable: false
properties:
dolibarr:
default:
enable: true
properties:
enable:
default: true
type: boolean
type: object
enable:
default: false
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-erp
apps:
default:
enable: false
@@ -176,6 +186,18 @@ options:
type: boolean
type: object
type: object
devspaces:
default:
enable: false
examples:
- enable: false
properties:
enable:
default: false
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-devspaces
backups:
default:
enable: false
@@ -206,35 +228,22 @@ options:
default: backup-settings
type: string
type: object
distributions:
default:
core: core
domain: domain
domain-name:
default: your_company.com
examples:
- core: core
domain: domain
properties:
core:
default: core
type: string
domain:
default: domain
type: string
type: object
ci:
- your_company.com
type: string
auth:
default:
enable: false
gitea:
authentik:
enable: true
enable: true
examples:
- enable: false
gitea:
- authentik:
enable: true
enable: true
properties:
enable:
default: false
type: boolean
gitea:
authentik:
default:
enable: true
properties:
@@ -242,9 +251,12 @@ options:
default: true
type: boolean
type: object
enable:
default: true
type: boolean
type: object
x-vynil-category: meta
x-vynil-package: domain-ci
x-vynil-package: domain-auth
dependencies: []
providers:
kubernetes: null

17
meta/domain/installs.tf
View File

@@ -21,6 +21,7 @@ locals {
erp = { for k, v in var.erp : k => v if k!="enable" }
apps = { for k, v in var.apps : k => v if k!="enable" }
mail = { for k, v in var.mail : k => v if k!="enable" }
monitor = { for k, v in var.monitor : k => v if k!="enable" }
devspaces = { for k, v in var.devspaces : k => v if k!="enable" }
# Force install authentik and it's modules when any are needed
@@ -218,6 +219,22 @@ resource "kubectl_manifest" "mail" {
options: ${jsonencode(merge(local.global, local.mail))}
EOF
}
resource "kubectl_manifest" "monitor" {
count = var.monitor.enable ? 1 : 0
yaml_body = <<-EOF
apiVersion: "vynil.solidite.fr/v1"
kind: "Install"
metadata:
name: "monitor"
namespace: "${var.namespace}"
labels: ${jsonencode(local.common-labels)}
spec:
distrib: "${var.distributions.domain}"
category: "meta"
component: "domain-monitor"
options: ${jsonencode(merge(local.global, local.monitor))}
EOF
}
resource "kubectl_manifest" "devspaces" {
count = var.devspaces.enable ? 1 : 0
yaml_body = <<-EOF