Skip to content

Commit

Permalink
feat(doc): update doc
Browse files Browse the repository at this point in the history
  • Loading branch information
@Neeptossss
Neeptossss committed Dec 2, 2023
1 parent 72497a9 commit 7783e1b
Show file tree
Hide file tree
Showing 57 changed files with 845 additions and 19 deletions.
32 changes: 27 additions & 5 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -1,9 +1,31 @@
# Whanos
# Whanos 🦄
Don't let your applications be snapped by Thanos 🫰
## Introduction
### What is Whanos?
Whanos is a tool that allows you to easily Dockerize your applications and deploy them to a Kubernetes cluster. It uses a Jenkins instance to build and push the Docker images to a private Docker registry and a Helm chart to deploy the applications to the Kubernetes cluster.

Epitech project - Whanos
### Goals
- Easily deploy applications to a Kubernetes cluster
- Easily build and push Docker images to a private Docker registry

## Documentation
You can find documentation under the [docs](docs) directory.
The mail goal of Whanos is for a developer to focus on the application code and not on the infrastructure.

By simply starting a Jenkins job, the developer will be able to Dockerize his application.

If the developer want to deploy the application to the Kubernetes cluster, he will simply have to add a file called `whanos.yaml` to the root of his project and start a Jenkins job. Whanos will take care of building the Docker image, pushing it to the private Docker registry and deploying the application to the Kubernetes cluster.

## Table of contents
- [Introduction](#introduction)
- [What is Whanos?](#what-is-whanos)
- [Goals](#goals)
- [Installation](#installation)
- [Using ansible](#using-ansible)
- [How it works](#how-it-works)
- [What ansible does on the machines](#what-ansible-does-on-the-machines)
- [Install prerequisites](#install-prerequisites)
- [Deploy the cluster](#deploy-the-cluster)
- [Install docker registry](#install-docker-registry)
- [Usage](#usage)

## Authors
* [Gwenaël HUBLER](https://github.com/Neeptossss)
- [**Gwenaël HUBLER**](https://github.com/Neeptossss)
70 changes: 70 additions & 0 deletions docs/how-it-works.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,70 @@
# How it works ?
In this section we will break down the different steps that are involved in the installation and usage of Whanos.

## What ansible does on the machines ?
### Install prerequisites

### Deploy the cluster

### Install docker registry
To deploy the docker registry, we will use official templates for the docker-registry and the ingress-nginx controller. We will also use official cert-manager helm chart to generate a self-signed certificate for the registry.

**Install Nginx ingress controller**
```shell
kubectl apply -f kube/init/nginx-ingress-controller/deployment.yaml
```

- **Wait for the ingress controller to be ready**
```shell
kubectl wait --namespace ingress-nginx \
--for=condition=ready pod \
--selector=app.kubernetes.io/component=controller \
--timeout=120s
```

- **Install cert-manager using Helm**
```shell
helm repo add jetstack https://charts.jetstack.io
helm repo update
helm install \
cert-manager jetstack/cert-manager \
--namespace cert-manager \
--create-namespace \
--version v1.5.4 \
--set installCRDs=true \
--set ingressShim.defaultIssuerName=letsencrypt-prod \
--set ingressShim.defaultIssuerKind=ClusterIssuer \
--set ingressShim.defaultIssuerGroup=cert-manager.io
```

- **Wait for the cert-manager to be ready**
```shell
kubectl wait --namespace cert-manager \
--for=condition=ready pod \
--selector=app.kubernetes.io/component=webhook \
--timeout=120s
```

- **Create the ClusterIssuer for self-signed certificates**
```shell
kubectl apply -f kube/init/cert-manager/cluster-issuer.yaml
```

- **Deploy the docker registry**
```shell
kubectl apply -f kube/init/docker-registry/deployment.yaml
kubectl apply -f kube/init/docker-registry/ingress.yaml
```

- **Wait for the docker registry ingress to have an external IP and add it to /etc/hosts**
```shell
sudo sh -c 'external_ip=""; while [ -z $external_ip ]; do echo "Waiting for end point..."; external_ip=$(kubectl get ingress -n docker-registry docker-registry -o jsonpath="{.status.loadBalancer.ingress[0].ip}"); [ -z "$external_ip" ] && sleep 10; done; echo "End point ready" && echo $external_ip whanos-registry.local >> /etc/hosts'
```

- **Add the self-signed certificate to docker client truster certificates**
```shell
sudo mkdir -p /etc/docker/certs.d/whanos-registry.local:443/
kubectl get secret registry-tls -n docker-registry -o jsonpath='{.data.ca\.crt}' | base64 --decode > /etc/docker/certs.d/whanos-registry.local:443/ca.crt
```

### Install jenkins
0 docs/install.md → docs/installation.md
View file
File renamed without changes.
Binary file removed helm/whanos-1.0.0.tgz
View file
Binary file not shown.
9 changes: 0 additions & 9 deletions helm/whanos/Chart.lock
View file

This file was deleted.

Binary file removed helm/whanos/charts/docker-registry-2.2.2.tgz
View file
Binary file not shown.
Binary file added kube/helm/whanos-1.0.0.tgz
View file
Binary file not shown.
0 helm/whanos/.helmignore → kube/helm/whanos/.helmignore
View file
File renamed without changes.
12 changes: 12 additions & 0 deletions kube/helm/whanos/Chart.lock
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
dependencies:
- name: jenkins
repository: https://charts.jenkins.io
version: 4.8.3
- name: docker-registry
repository: https://helm.twun.io
version: 2.2.2
- name: nginx-ingress
repository: https://helm.nginx.com/stable
version: 1.0.2
digest: sha256:e2833a772c4622b364121c3e2d2d3f0aafeccbba7766d6e7891fcd56fa9667e3
generated: "2023-11-30T12:56:46.739367+01:00"
3 changes: 0 additions & 3 deletions helm/whanos/Chart.yaml → kube/helm/whanos/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,3 @@ dependencies:
- name: jenkins
version: 4.8.3
repository: https://charts.jenkins.io
- name: docker-registry
version: 2.2.2
repository: https://helm.twun.io
0 helm/whanos/charts/jenkins-4.8.3.tgz → kube/helm/whanos/charts/jenkins-4.8.3.tgz
View file
File renamed without changes.
0 helm/whanos/charts/jenkins/CHANGELOG.md → kube/helm/whanos/charts/jenkins/CHANGELOG.md
View file
File renamed without changes.
0 helm/whanos/charts/jenkins/Chart.yaml → kube/helm/whanos/charts/jenkins/Chart.yaml
View file
File renamed without changes.
0 helm/whanos/charts/jenkins/README.md → kube/helm/whanos/charts/jenkins/README.md
View file
File renamed without changes.
0 helm/whanos/charts/jenkins/VALUES_SUMMARY.md → ...m/whanos/charts/jenkins/VALUES_SUMMARY.md
View file
File renamed without changes.
0 ...whanos/charts/jenkins/templates/NOTES.txt → ...whanos/charts/jenkins/templates/NOTES.txt
View file
File renamed without changes.
0 ...nos/charts/jenkins/templates/_helpers.tpl → ...nos/charts/jenkins/templates/_helpers.tpl
View file
File renamed without changes.
0 ...enkins/templates/config-init-scripts.yaml → ...enkins/templates/config-init-scripts.yaml
View file
File renamed without changes.
0 ...anos/charts/jenkins/templates/config.yaml → ...anos/charts/jenkins/templates/config.yaml
View file
File renamed without changes.
0 ...charts/jenkins/templates/deprecation.yaml → ...charts/jenkins/templates/deprecation.yaml
View file
File renamed without changes.
0 ...os/charts/jenkins/templates/home-pvc.yaml → ...os/charts/jenkins/templates/home-pvc.yaml
View file
File renamed without changes.
0 ...harts/jenkins/templates/jcasc-config.yaml → ...harts/jenkins/templates/jcasc-config.yaml
View file
File renamed without changes.
0 .../jenkins/templates/jenkins-agent-svc.yaml → .../jenkins/templates/jenkins-agent-svc.yaml
View file
File renamed without changes.
0 .../jenkins-aws-security-group-policies.yaml → .../jenkins-aws-security-group-policies.yaml
View file
File renamed without changes.
0 ...ins/templates/jenkins-backup-cronjob.yaml → ...ins/templates/jenkins-backup-cronjob.yaml
View file
File renamed without changes.
0 ...enkins/templates/jenkins-backup-rbac.yaml → ...enkins/templates/jenkins-backup-rbac.yaml
View file
File renamed without changes.
0 ...es/jenkins-controller-alerting-rules.yaml → ...es/jenkins-controller-alerting-rules.yaml
View file
File renamed without changes.
0 ...tes/jenkins-controller-backendconfig.yaml → ...tes/jenkins-controller-backendconfig.yaml
View file
File renamed without changes.
0 ...templates/jenkins-controller-ingress.yaml → ...templates/jenkins-controller-ingress.yaml
View file
File renamed without changes.
0 ...tes/jenkins-controller-networkpolicy.yaml → ...tes/jenkins-controller-networkpolicy.yaml
View file
File renamed without changes.
0 ...ins/templates/jenkins-controller-pdb.yaml → ...ins/templates/jenkins-controller-pdb.yaml
View file
File renamed without changes.
0 ...plates/jenkins-controller-podmonitor.yaml → ...plates/jenkins-controller-podmonitor.yaml
View file
File renamed without changes.
0 ...s/templates/jenkins-controller-route.yaml → ...s/templates/jenkins-controller-route.yaml
View file
File renamed without changes.
0 ...jenkins-controller-secondary-ingress.yaml → ...jenkins-controller-secondary-ingress.yaml
View file
File renamed without changes.
0 ...es/jenkins-controller-servicemonitor.yaml → ...es/jenkins-controller-servicemonitor.yaml
View file
File renamed without changes.
0 ...lates/jenkins-controller-statefulset.yaml → ...lates/jenkins-controller-statefulset.yaml
View file
File renamed without changes.
0 ...ins/templates/jenkins-controller-svc.yaml → ...ins/templates/jenkins-controller-svc.yaml
View file
File renamed without changes.
0 ...whanos/charts/jenkins/templates/rbac.yaml → ...whanos/charts/jenkins/templates/rbac.yaml
View file
File renamed without changes.
0 .../jenkins/templates/secret-additional.yaml → .../jenkins/templates/secret-additional.yaml
View file
File renamed without changes.
0 ...arts/jenkins/templates/secret-claims.yaml → ...arts/jenkins/templates/secret-claims.yaml
View file
File renamed without changes.
0 ...s/jenkins/templates/secret-https-jks.yaml → ...s/jenkins/templates/secret-https-jks.yaml
View file
File renamed without changes.
0 ...anos/charts/jenkins/templates/secret.yaml → ...anos/charts/jenkins/templates/secret.yaml
View file
File renamed without changes.
0 ...kins/templates/service-account-agent.yaml → ...kins/templates/service-account-agent.yaml
View file
File renamed without changes.
0 ...ts/jenkins/templates/service-account.yaml → ...ts/jenkins/templates/service-account.yaml
View file
File renamed without changes.
0 ...jenkins/templates/tests/jenkins-test.yaml → ...jenkins/templates/tests/jenkins-test.yaml
View file
File renamed without changes.
0 .../jenkins/templates/tests/test-config.yaml → .../jenkins/templates/tests/test-config.yaml
View file
File renamed without changes.
0 helm/whanos/charts/jenkins/values.yaml → kube/helm/whanos/charts/jenkins/values.yaml
View file
File renamed without changes.
0 helm/whanos/templates/_helpers.tpl → kube/helm/whanos/templates/_helpers.tpl
View file
File renamed without changes.
0 helm/whanos/templates/jenkins-namespace.yaml → ...m/whanos/templates/jenkins-namespace.yaml
View file
File renamed without changes.
0 helm/whanos/templates/jenkins-sa.yaml → kube/helm/whanos/templates/jenkins-sa.yaml
View file
File renamed without changes.
0 helm/whanos/templates/jenkins-ssh-key.yaml → ...elm/whanos/templates/jenkins-ssh-key.yaml
View file
File renamed without changes.
0 helm/whanos/templates/jenkins-volume.yaml → ...helm/whanos/templates/jenkins-volume.yaml
View file
File renamed without changes.
3 changes: 1 addition & 2 deletions helm/whanos/values.yaml → kube/helm/whanos/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ jenkins:

additionalSecrets:
- name: "jenkins-ssh-key-private"
value: "-----BEGIN OPENSSH PRIVATE KEY-----\nb3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn\nNhAAAAAwEAAQAAAYEAqTXLJRLwvt2pDz3OxCEve/0n2GYg5gbb7BILU2ty2KmBNCKk2uT4\n3hQvqEH3VKHDv0jfYGzPXCl4kPjbBEfVJa2DCh7lX1MfYkxLgbb7OrQWcW6IMCM04fm6ip\nG+TMtQ1Wmi+r49bQJT8wGbQCTEOVu4hCixOMkff7PQFNKjjL8s4VrxrWYZrxhjLMS5TgYB\nH4fZxPhjbdm8kayTwGx+pNuh8TVv5DorGYNcA6kyNX4oSYxGQ4E6fbw4NXo3c0RI2xt9g2\n1reShhHXnmaRrPl1M2ocUeUXn4XcVUo1wT06Hmm5KbY8GmzkpNlgCdYYG8Kk2SKazmhaCn\nHKhlWXxNaFd7HKohLvSJLZmGK4NWvoC08N/Cjxm6pkR6QL+LS6EWEdxrH9td9cLabOcoLm\nanwm5bOY8DSi2qb/nScDDFnIo39VGeOl/feF3lKdLxHVufHVJGWjnCIWb1T7tYjzIUViYI\ngvco5s+gzrFZFa/hUJgvxnlR6fQHIunXO5p8it9rAAAFmIxEH72MRB+9AAAAB3NzaC1yc2\nEAAAGBAKk1yyUS8L7dqQ89zsQhL3v9J9hmIOYG2+wSC1NrctipgTQipNrk+N4UL6hB91Sh\nw79I32Bsz1wpeJD42wRH1SWtgwoe5V9TH2JMS4G2+zq0FnFuiDAjNOH5uoqRvkzLUNVpov\nq+PW0CU/MBm0AkxDlbuIQosTjJH3+z0BTSo4y/LOFa8a1mGa8YYyzEuU4GAR+H2cT4Y23Z\nvJGsk8BsfqTbofE1b+Q6KxmDXAOpMjV+KEmMRkOBOn28ODV6N3NESNsbfYNta3koYR155m\nkaz5dTNqHFHlF5+F3FVKNcE9Oh5puSm2PBps5KTZYAnWGBvCpNkims5oWgpxyoZVl8TWhX\nexyqIS70iS2ZhiuDVr6AtPDfwo8ZuqZEekC/i0uhFhHcax/bXfXC2mznKC5mp8JuWzmPA0\notqm/50nAwxZyKN/VRnjpf33hd5SnS8R1bnx1SRlo5wiFm9U+7WI8yFFYmCIL3KObPoM6x\nWRWv4VCYL8Z5Uen0ByLp1zuafIrfawAAAAMBAAEAAAGANk11LCiv6hDouGN1f6vGuVu89c\n2QsUFyQohn6hWJfc6oEDst/LGOzHZd9Pl2jkp7r1+LkD5bLZCBiMTURMNou/a7HvxbUAQ1\nBi7F7JL0fRpeOXjna8tgpUSngODU2YBGKLcF/sIepGUi29GgKS2ja2TsCj2k4jxpR2pFVO\nlkYz7XAFtXQ/aIN5D0AuH/NfLnWV8XnAa6of5GbdmccRxgaDez+NzVU8D3I/DsDqC15ETg\nWPoTcoZ+ZuuIfmECepNm6G+7EUt5RJDoAeMBe30057N+A2evFcJKvEDjTOnCi2z5/bAzsP\nXRPM6nu7ZZIKFCnp2Ln9nmz4w3DRcxlMtv81MaCK3J42nSRQhoXxl6FxZ/luOMrqWw59fy\nSTLDEVs6aHtDfH+2QrKVO4bs+QXPG7iSS0aTijOVIug1mPtGxooQdHV40I24bq+27UcU+P\n6+8HgmIyVJBj/KhrYKsaTfzYLtrSOBXEk6ZjX1RAI/Z3zOridVL/LSjI8XJ0LXw5bBAAAA\nwHrZCg/FYSnE9GMfNaNZs52SfCsGXmz/vmOrmicyYKrV2WiQPZVCWZ6/+mxxVEVV9/5a59\nv6fjJ+O9iD8gWXOa6BKTlikZPQF4z+1SpytG1Iualb08xPl76tFbu6t4hoMj+wWJ4oBD/T\n7aAjkvOjQCPvypNf6TsE2+6zAy24sDDsVYX+C8tm/yPAbCSPtKdyR8+tuh7tijs2sGvLph\neDVzME4sOwEKAa8yLLXwavtf798ZX+aru60N0Mn5Nbrn8jKQAAAMEA2exS5RdeeeAE5etM\nfCSFIKQeHgaw1sqZ15aTjs5YdQ0zm6i5zD64YQ/1ePeVEbeknErfCfQbTPYux2jk3FHPX5\nJgS5dOBCtyZyrXmv63xIwAVriEWqVNTA0HHdnI1ef6wSXE04lIyVXSwsYZjI5N9Wtdb6fB\nQmZAl+VxG/bRLEDuqjgSvUus+7K9ccttDqitbpohO9waERVJxepAFXpzF6R+GwkrunW66c\nQRLl+14VH+Y/EGBhZ28ZMUGixOfTMlAAAAwQDGxorpCnTMhgpjPe7z5EWI/FegmFLUWd4a\niecuS+moM9eUlEV8IW6KcRx9p7IMqy837byZ3FomnVdneocP2YP9PhPCeClUasKoHbJ3LY\n2KEHk8JdYVdeSq1UT3aBfnxTuZSViYbeYDtnOtSrpOQ11ilZDHXGo8qhyL3fDxeiDR2KKa\nxzLNuTyPddKNTkfH9Yy2txdATubs3UwIAifdVm57hvRybor0VCs7fUG+tqoZVnoWmo/22o\nOjilN2Bnyni08AAAAibmVwdG9zQG1hY2Jvb2stcHJvLWRlLWd3ZW5hZWwuaG9tZQE=\n-----END OPENSSH PRIVATE KEY-----"
value: "-----BEGIN OPENSSH PRIVATE KEY-----\nb3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn\nNhAAAAAwEAAQAAAYEArdFAYpdEiyUtXh9XOazgWd1osTYighf+3BTa3Y6SQUOAn3NPPE1e\nEqlw7XGvf+gyeAnUjUgO3ZtZj3Dq23Z04jfUe+Tw7Em8184dJUKWGUZ4UVTQe2hNrkNNvh\n3iq2biLh0fyJi2cQ0TOMevHZOufmExKdxt8WgjB6TOAq/FW1W/+a2pOpFqsKz4I7he5wYd\nI4XyC98Ge7uF7LzNCdGNhcx0TaG34U2KhPZYiR0X9x1CdO5I1MFWDYaYieaNVDzXsrdbLC\nc5PD+iaOD8uefhMT/2J0hOROENFWmXIMpyRge9ETyC1ttwoh+5FlXQpmX32/t5ghnRfHyU\ntrePo09kpQicTmTHCP8h/wAU3wl6JsFZIzdTeS+u1H9uiUbYHaaayoZjI9Fm9tlF1GE70h\nV7m2nE5ibRijQEE57UzyNh3ZEQtXjD+fmLcShn4Y4qZlDN3zRRB5Dqd+fYN0BNTcBWfaaM\n2/1E8rc/CVtU2Hhvsis09DwIjgnORLEETPSCruGbAAAFmMoZi8zKGYvMAAAAB3NzaC1yc2\nEAAAGBAK3RQGKXRIslLV4fVzms4FndaLE2IoIX/twU2t2OkkFDgJ9zTzxNXhKpcO1xr3/o\nMngJ1I1IDt2bWY9w6tt2dOI31Hvk8OxJvNfOHSVClhlGeFFU0HtoTa5DTb4d4qtm4i4dH8\niYtnENEzjHrx2Trn5hMSncbfFoIwekzgKvxVtVv/mtqTqRarCs+CO4XucGHSOF8gvfBnu7\nhey8zQnRjYXMdE2ht+FNioT2WIkdF/cdQnTuSNTBVg2GmInmjVQ817K3WywnOTw/omjg/L\nnn4TE/9idITkThDRVplyDKckYHvRE8gtbbcKIfuRZV0KZl99v7eYIZ0Xx8lLa3j6NPZKUI\nnE5kxwj/If8AFN8JeibBWSM3U3kvrtR/bolG2B2mmsqGYyPRZvbZRdRhO9IVe5tpxOYm0Y\no0BBOe1M8jYd2RELV4w/n5i3EoZ+GOKmZQzd80UQeQ6nfn2DdATU3AVn2mjNv9RPK3Pwlb\nVNh4b7IrNPQ8CI4JzkSxBEz0gq7hmwAAAAMBAAEAAAGAXyfdHZw+VAaoTYzOza5MrCW/+L\nPwNFQ6m/V21DAG9V+k/KW9zP917rWAMx03vMg7SOfoyueV68/uOc7RZA/3cRirZKAzHMhJ\nb8NQxWMslO21VKEf+U9ip3IFD32A5+DNFf2vtruTtVQ5H66Bualtr5Y5ufcI4U3nT3nzph\njf7F6HWIKv0HZneA1ZUwTOP59jOF1N4x3XiMliSfYaMbPczFDfothTuC4hFSVf1sBsrEYC\nac1BZefp2kHDJEtpN6KOc9HpBkn5Vnl4KAlMFXUMp6UW/15o6cba6KQuwZbhwPEZBOydnP\nV2DigApZyEb7OI5jx7Pbn+muj59vQRzieD9WTmnPqzIODzMzXunkZPeLy4BXfv/YM0PThq\nhgcypdzyoEdaBqQwnj5fpBAenD7Zn1ogi79Rt8rZGdHuGSRDCiQdG2c07gf+AhbJ7P53hH\nD1AtJZRT2ocbpkig85b55rZlYsmP0hRjixN72Ogpa476zTFujuJ2cGyGBL/OkRwBSBAAAA\nwBhTwjBiXZnDNVrkaZ7yWKVB0b3jgZw+QYRlncTQ/hi3OyVgIo7VzTroU0S8ybGYKFQyg5\n/ClhQwyhgYtA1iLKnQH/AJiVveh3zaiRO9GL+TxSjKqS+P4HLzm0PzVu6mGVKcVQidOelA\nkd0muBKIvN0/+gTnMO3pdoenkvowv1ltt+/OGTjwpnHnGbvpLBI/8TlXXc0V6H4fkjA/DU\nlZ7k3mF+XAyIwCvbZJcoc6aZ9EWgBLww9BUe+uvf5ri18d9AAAAMEA3+6ERa0fyf8g+YFa\niq+sqL0MG7I1tdfBG0O9UohXXsZtzowsPfg9yKzBp8L8DiH9GdNmkqWRfU7wH/94QfwYSf\nhHIa7B7ucId+52coW2WzYsU0lKpDPKpDgI4d75uGDDd0ItCp+1kRURYaJOBaphskU4liLq\nmvj7uZgGh738bd9PdtnJUaYHpHdR7IDLFuBwMVq8QTh05B6QXk71RqZAISONba6hJmFW0v\npEOhS9+Pdmibu35GwpWYI8oOFm+cr7AAAAwQDGtYLUs/R7dwsUD1xTFnRYqffexEJexlzk\nMSD9LrdPaPfEdC8Vwv84noO+OUDvfNCiH52AUfvkH875DrVW9Jy09lw1/eZsVb+B864tWL\nKxA2Y4sMKuhCYO/saiNpZr5bJbDu/jHw+UjXa3u0VU5/SbIJTj3AUF8gDwwmhO1BeEG3oJ\nsG3/cQpXkT98dodRjC7m1kFlCsXA+afxO6PesErQjIJ0gKgG41Ui/oKutMh3yagAYpFOUY\nYKmU6pzE6hgeEAAAAjbmVwdG9zQE1hY0Jvb2stUHJvLWRlLUd3ZW5hZWwubG9jYWw=\n-----END OPENSSH PRIVATE KEY-----"

JCasC:
defaultConfig: true
Expand Down Expand Up @@ -102,4 +102,3 @@ docker-registry:
enabled: true
hosts:
- whanos-docker-registry.local
tls: false
6 changes: 6 additions & 0 deletions kube/init/cert-manager/cluster-issuer.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: selfsigned-issuer
spec:
selfSigned: {}
56 changes: 56 additions & 0 deletions kube/init/docker-registry/deployment.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,56 @@
apiVersion: v1
kind: Namespace
metadata:
name: docker-registry

---

apiVersion: apps/v1
kind: Deployment
metadata:
name: docker-registry
namespace: docker-registry
spec:
replicas: 1
selector:
matchLabels:
app: docker-registry
template:
metadata:
labels:
app: docker-registry
spec:
containers:
- name: docker-registry
image: registry:2.6.2
env:
- name: REGISTRY_HTTP_ADDR
value: ":5000"
- name: REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY
value: "/var/lib/registry"
ports:
- name: http
containerPort: 5000
volumeMounts:
- name: image-store
mountPath: "/var/lib/registry"
volumes:
- name: image-store
emptyDir: {}

---

kind: Service
apiVersion: v1
metadata:
name: docker-registry
namespace: docker-registry
labels:
app: docker-registry
spec:
selector:
app: docker-registry
ports:
- name: http
port: 5000
targetPort: 5000
24 changes: 24 additions & 0 deletions kube/init/docker-registry/ingress.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
annotations:
cert-manager.io/cluster-issuer: selfsigned-issuer
name: docker-registry
namespace: docker-registry
spec:
ingressClassName: nginx
tls:
- hosts:
- whanos-registry.local
secretName: registry-tls
rules:
- host: whanos-registry.local
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: docker-registry
port:
number: 5000
Loading

0 comments on commit 7783e1b

Please sign in to comment.