v4l3n71n/covas-deployment
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: v4l3n71n:284e86c4241403e6aac33d04030cdf887c55760e
Branches Tags
v4l3n71n:master v4l3n71n:k8s-deploy
...
compare: v4l3n71n:master
Branches Tags
v4l3n71n:master v4l3n71n:k8s-deploy

20 Commits
284e86c424 ... master

Author SHA1 Message Date
Valentin CZERYBA
f7622d10a6 add mongo docker 2023-01-10 21:58:12 +01:00
Valentin CZERYBA
f36366a319 add condition for update or drop-create database 2023-01-03 19:05:39 +01:00
v4l3n71n
e502e04372 Merge pull request 'deploy-image' (#4) from deploy-image into master 
Reviewed-on: #4
 2022-12-18 17:50:19 +00:00
Valentin CZERYBA
67c2a0ed3e add or update dns with API OVH 2022-12-18 18:42:14 +01:00
Valentin CZERYBA
2a63aed0e3 add API curl 2022-12-11 11:45:40 +01:00
Valentin CZERYBA
452a650b16 deploy backend api 2022-12-10 23:05:52 +01:00
Valentin CZERYBA
3a16d3e723 deploy api 2022-12-10 22:10:13 +01:00
Valentin CZERYBA
369aed9ea1 copy kubeconfig 2022-12-10 20:30:25 +01:00
Valentin CZERYBA
11d0273ac1 fix copy kubeconfig files 2022-12-10 20:14:13 +01:00
Valentin CZERYBA
4eee20f63f list item and copy template 2022-12-10 15:24:35 +01:00
Valentin CZERYBA
8008b025d0 variabilisation kubernetes 2022-12-10 15:14:00 +01:00
Valentin CZERYBA
572be625bd push to scaleway registry 2022-11-26 18:37:05 +01:00
Valentin CZERYBA
005127a37b fix variable 2022-11-07 23:07:06 +01:00
Valentin CZERYBA
097d0621d6 fix hosts 2022-11-06 18:31:35 +01:00
Valentin CZERYBA
398adda930 add tag and push image 2022-11-06 18:13:59 +01:00
Valentin CZERYBA
371ee06a41 ajout pause dans le task create-build 2022-11-03 21:53:42 +01:00
Valentin CZERYBA
27fcb8b6ec create template env for build image 2022-11-03 21:49:56 +01:00
v4l3n71n
653891f446 Merge pull request 'drone' (#3) from drone into master 
Reviewed-on: #3
 2022-11-02 21:19:52 +00:00
Valentin CZERYBA
87db6ddf40 ignore file 2022-11-02 22:16:46 +01:00
Valentin CZERYBA
c9a0e48346 essai drone 2022-11-02 22:15:31 +01:00
34 changed files with 552 additions and 77 deletions
Expand all files Collapse all files

8
.drone.yml
View File

@@ -3,11 +3,17 @@ name: default
type: docker type: docker
steps: steps:
- name: check syntax ansible - name: deploy
image: v4l3n71n/covas:latest image: v4l3n71n/covas:latest
pull: if-not-exists pull: if-not-exists
commands: commands:
- eval $(ssh-agent -s)
- id -u ansible
- sshpass -p 50ford5080850 ssh-add ssh_keys/id_rsa_nas
- sshpass -p 23v4l3n71n02cz3ry841993 ssh-add ssh_keys/id_rsa_vps
- ansible-playbook -i inventory --syntax-check playbook.yml - ansible-playbook -i inventory --syntax-check playbook.yml
- ansible --ask-vault-password -i inventory -m ping playbook.yml
image_pull_secrets: image_pull_secrets:
- dockerconfig - dockerconfig

1
.gitignore vendored Normal file
View File

@@ -0,0 +1 @@
ssh_keys/

6
Dockerfile
View File

@@ -1,9 +1,9 @@
FROM debian:bookworm-slim FROM debian:bookworm-slim
RUN apt-get update --yes && apt-get upgrade --yes && apt-get install --yes python3 python3-pip && rm -rf /var/lib/apt/lists/* RUN apt-get update --yes && apt-get upgrade --yes && apt-get install --yes python3 python3-pip openssh-client sshpass && rm -rf /var/lib/apt/lists/*
RUN groupadd -r ansible && useradd -m -r -g ansible ansible RUN groupadd -r ansible && useradd -m -r -g ansible ansible
USER ansible USER ansible
RUN pip install ansible RUN pip install ansible
WORKDIR /home/ansible WORKDIR /home/ansible
ENV PATH="${PATH}:/home/ansible/.local/bin" ENV PATH="${PATH}:/home/ansible/.local/bin"
COPY . /home/ansible COPY --chown=ansible:ansible . /home/ansible
RUN ansible-galaxy install -vvvv -r requirements.yml RUN ansible-galaxy install -vvvv -r requirements.yml

6
inventory/group_vars/db
View File

@@ -11,13 +11,17 @@ project_directory:
- "{{ project_src }}" - "{{ project_src }}"
- "{{ project_src }}/{{ project_name }}" - "{{ project_src }}/{{ project_name }}"
docker_compose_file: "docker-compose-db.yml" docker_compose_file: "docker-compose-db.yml.j2"
project_env: "env-db.j2" project_env: "env-db.j2"
redis_url: redis.valczeryba.ovh redis_url: redis.valczeryba.ovh
redis_port: 63791 redis_port: 63791
mongo_port: 28017
ports_tcp: ports_tcp:
- "{{ postgres_port }}" - "{{ postgres_port }}"
- "{{ redis_port }}" - "{{ redis_port }}"
- "{{ mongo_port }}"
covas_liquibase: false

30
inventory/group_vars/db_vault
View File

@@ -1,15 +1,17 @@
$ANSIBLE_VAULT;1.1;AES256 $ANSIBLE_VAULT;1.1;AES256
39326362343932646638333238366563643865333035666231336238353131643433313237373031 64653663303437333433396331636461353737313832366539353264623561393761666464316363
3732373733343264303039653534306461623661333266630a373363646661393764323139366266 3633613637663530383739353830366662646461653138650a663939373238663737363737353535
39326432626434343230613334386266613030313862623436623335343734343565393831376263 65313433373565343830396230656162663361366265363131323961353764333462386464376239
3131346166303836310a663066643333613866303538653066336366353966656662333332646639 3662656464633566310a616331653331383631343065396537333338353738353865636539396533
33373134366662323632613465316465326530363662326437633630306164393438303137663730 63333436663739346231626139316265643438393739383761383033616465613964643830643033
37333065633230663862306364356161323131653662633339353361383437346339346262383139 66336237303833616638636336393739326332623738393032646561376564343835353533366632
64363634333364363666373636373037386265383063393938356466623237313966633538336138 64633239656639303063653538396562393366396137316530633638333539333631343238376463
61346639313535323730323834373230373733396661386163643531356465343532323266306335 62366463393234663834616639633635303537633565636634383435363663336363386238646563
38656232626432323737663030613130323536396266623332326130396463333434633363383139 32633634323332393765343933313666333134346132636637383233633064383663323531333834
37636630623263383933353066333736346162376162336239376530316533663936363062616131 61366334633532653430326266623366353761626330386439626437623266316636633235326263
30636437353963633138353838626532646238363935343764623530613139393564643464653538 33393233313463656335353639633262623335633336613030633435363232316632313031663034
61373964373063633331653131363663333230663239633764636333363435646433643637323664 34366130346135336365376332383637343761303435623138613533393561613039353561663866
66666336386464663231393836613862613935373465303331353563656361386363316438393662 66636139323138376566643239383563363738363130373735653365363133303864386462333065
3530383833303736656536363238626465663330396430636332 63623934623032353638643034363439616333646530306430346461393264323661376335393366
62656639633339303536643535383035383964623761386166373135323465663132323262663961
39313365616266333636

2
inventory/group_vars/drone
View File

@@ -15,7 +15,7 @@ project_directory:
- "{{ project_src }}" - "{{ project_src }}"
project_env: env-drone.j2 project_env: env-drone.j2
docker_compose_file: "docker-compose-drone.yml" docker_compose_file: "docker-compose-drone.yml.j2"
ports_tcp: ports_tcp:
- 8000 - 8000

34
inventory/group_vars/drone_vault
View File

@@ -1,18 +1,18 @@
$ANSIBLE_VAULT;1.1;AES256 $ANSIBLE_VAULT;1.1;AES256
33363236363632653263383164663339323738366635613164353231396462303361333135623330 38303932316262306464333166316363643239366561323234643563623362336335613237376239
3564623639306161626331643662366339663465313132370a636136316366353434353035346138 3535393466323064333163363932663731663031663933350a323431653239396663343666373765
32393263626430326234626235666137306262666134656232316465626563633535373732643838 31373066383234303139663135326462613539626363373930346366383831646536316465373563
3861303734656165630a646433623162393563303862393661303434356234643638303030646432 3537653761373233300a383637623932616663393763643066326238633932643730336339336330
33386130626163653965353732313164373239303366626433393566343638343362633234313339 38366430336561613866373634313130616438313234666431396638366161613839303864353561
63323532613733353538303038663632623932366238343132356536396165636137633036313533 35613234326539383765666637323236303161623061633164646430663834393764623931656638
62396134303862623733323639633134323838366164363937626138386265643465356464366565 63336533383065343738373564393266653738656163643165383434623836666434646337336565
34303438383838656632383462366162663538353430646165643339383261643063373431383364 32373261636363396363343236353336306331313761623531653834346536353039656564316138
38646239613465356337306636306639336164623761666165616663626635343130653230656162 66643166653435666162383333366233353165393837303539646538353765653465363532346231
65396561343638366532313062363066663838346337356463316331336133336234653334613830 65633365353131613437623663313934626461313437373730623164636364393362366537373162
66326337633038623036613430316662316432613962303337663430643531653665633264343564 62363965323662356638633661363236326437353366356134346333313466323139336362363234
39383564633432643039306236613633643236646163353831346632653764633436336237346433 62376262346338643339363566303339366165636566623565363238363736646637646635303531
33306136346235386465356630386333646366663037386230306261346161303938633032373361 38343031666635323539353431316164353830363838313662613063616532623730346561333665
63306431306439373037343663616263373037386235303665643635336430346139653165636634 33316137613666636439383364353735653535346537383831323333646238356534393935643435
63323634306333663030383431363437383966633461333432393636613863306134386162326664 31643637323366616230633039336633313631316330323064306638663039393330376366633930
36376361343738653531623137326266663635633633323239633263383761616538656535343039 65643861363231313033333662396339636432343133336561356438636233643762313539323166
6435 6261

20
inventory/group_vars/local
View File

@@ -1,4 +1,20 @@
project_terraform: "/home/valentin/terraform" project_terraform: "/home/valentin/terraform"
project_backend: "/home/valentin/k8s_backend"
project_kubeconfig: "/home/valentin/.kube/config"
region_k8s: "fr-par" region_k8s: "fr-par"
project_name: "terraform-test" project_name_tf: "terraform-test"
quarkus_project: "covas-quarkus" quarkus_project: "covas-quarkus"
mailer_host: "smtp.gmail.com"
mailer_from: "valczebackup@gmail.com"
mailer_port: "587"
port: 8083
targetPort: 8080
backend_yaml:
- backend-deployment
- backend-service
- env-configmap
- secret

55
inventory/group_vars/local_vault
View File

@@ -1,11 +1,46 @@
$ANSIBLE_VAULT;1.1;AES256 $ANSIBLE_VAULT;1.1;AES256
30366237393836333338316164656633656435383866666462663830643463633064356261396431 30356465363432393266326366393162306331353564346565663139336538613832396135306537
3066613335326464373833346430373663333736353537630a653934316366383165346238663134 6262336438613736636266623766333233336631656661640a663838373936613666373133383632
30376439373634323636613566373534353138653964613236326464653662306136653964313861 32613962623330303964333161373165363164646266396461633233346136336630646631306564
6135623361346639650a646533383761393435303833336138346164633161613739323765323664 3939363432643961610a313338306136303132666461393637643235623361393830653534643137
65623039633039343039303931626138316132613433666136633336326433653561343761316363 38623038613364396538353533336631633863343834333030653164303231346263316435356231
66666230343165383130353939303633623264663161663030336533663437363630383565353064 61383966663834333662393138303035613330366533663037326532356332633839363763356466
35376633323564623361613663356230663664323261383564653433656638306432343132343631 63396536323864383933346434363231396164613838316162656333626634373936643738386565
32386232316234643464326533303065653535633064393438663931336334373965313064386532 32326532346334343666383632306264636132613266333863626462366530306439613130333564
66306664303937356636366564623830623764386136663830636634326438373963666134613430 38623461613739343461386564323865316332653530623862313163396566616230653030653266
6530323937303637393934376466396565343133613736663166 61613836303231363534393531373233363332316639316137653132336638356161333764373562
34363034353935633437353466303364653039626137383534633239316563373663623030646330
38383639326563643266346530616666646337373765643336326536303864613363663536643465
34343663373131323437666462303763366439356362306337356131383932353731393935343931
32613333373439343864653864636438646431306637613038313061663961653033643465643864
31333366663037373835326330316535326134393761333662326665333464666164623336666439
35313066303830343737343063396335383461653338303734353461643736343163346565323864
65356437376663386535646437653566326532346462313932346435393730366530646164323537
35363633333065356162653762623239343836356230303734316130383234313536623339626531
36643434336233626234333235636566313566353939616433373465666362316663353336653162
32346534333665353934653738343335356137643539376639323164393837383065323436363064
35643762656365313261373030336339616266333765613735346565623138366533626335633033
38373732626337353535656230636235373535363332376535343162666266393931303236653631
33653432633337306230396434316230663438363630313038386538663732393863633837313638
31663763303462343063613638663361626462623035336465383661646433643833636361346236
32386263326664363338633861643264383462313863666662623033323761613132666130353235
34633261303761623033633964323862666137333035306333323932346334356365333563316630
34313263306561303538353134613233313337323636623230616532383133613561333439663337
64376230363038306238656236653366353738633436623330383239373062313831393066313838
38653532356632383765613530373034396639633064383336393934353061656266633463336333
66356538616233313936376565386432303134306363343734333563333266643062666231303532
37363664396165653333656661376334333432376566666237316232643234386332323936346630
63303563363162356666643732366131393066333838363935613336353062633862353838613761
64333939663733643132366334653835633733623539393735313961613131303934363731663231
64313434613934336630306165343665376261353562656634356365613137346232633431343734
63363532313765646434346132313434373366656332353133383530306639633062633365613932
65383865643262666666383933363534623838653661376531303763623261323937626335373635
32623262343130383462316462643338363433653133353737633562353330313533303835666634
65386336616466316663356236316466353164353139326333316362303737343335353731366531
36653062323764316332353136343738616338313465333261363664663934393038343237313135
64363036636634646137616365366538613338343761646137623432396539363035663031313464
66646663373838316161643161613838343139346165663331373334383334316562353235633461
65316666616334653034393165616434306664633336613639636433663761363932396663396630
64383961623136623639306435663965303632663039653538646463663235653333306434313931
32636536643536636561663534346633663464333830646139383939626665393964353739616435
35663834393738646130316564633966653765303033356132393961653831646362

11
inventory/group_vars/nas_vault
View File

@@ -1,6 +1,7 @@
$ANSIBLE_VAULT;1.1;AES256 $ANSIBLE_VAULT;1.1;AES256
32373966623936633630666638373762306130326162383539633032616330323831643063613465 61643965343735653231363764646132363434653530346532343765663036376434353334356330
6633346330663030353837306235353133356161633236660a666230326236316537363130353733 6133383634643439353338383039653234303666306661350a636366343465356639646535663234
61373037313536373364613731386137643931303365373737613433653835386533653638393037 31356434363130663961653638363463333330346561333933643263643362343132376131313764
3134666533313136330a626331313231613163323162663436653261623762656632373434383566 3439663335386235610a396435303138666166383363303038663163393538323362313965613933
34353930626630643762303530363665636161316163313031366238373362376461 65666338653533386234336365316664313266326130313064653864386235323461303938386333
3239646561363831643530633466613035643630363761326666

2
inventory/group_vars/registry
View File

@@ -5,7 +5,7 @@ project_directory:
- "{{ project_src }}" - "{{ project_src }}"
docker_compose_file: "docker-compose-registry.yml" docker_compose_file: "docker-compose-registry.yml.j2"
ports_tcp: ports_tcp:

10
inventory/hosts
View File

@@ -1,9 +1,13 @@
vps ansible_connection=ssh ansible_host=51.222.107.37 ansible_port=2424 ansible_user=valentin vps-host ansible_connection=ssh ansible_host=51.222.107.37 ansible_port=2424 ansible_user=valentin
valentin-nas ansible_connection=ssh ansible_host=151.80.37.38 ansible_port=2424 ansible_user=valentin valentin-nas ansible_connection=ssh ansible_host=151.80.37.38 ansible_port=2424 ansible_user=valentin
drone-host ansible_connection=ssh ansible_host=151.80.37.38 ansible_port=2424 ansible_user=valentin drone-host ansible_connection=ssh ansible_host=151.80.37.38 ansible_port=2424 ansible_user=valentin
localhost ansible_host=127.0.0.1 localhost ansible_host=127.0.0.1 ansible_python_interpreter=/usr/bin/python3.10
[db] [vps]
vps-host
[db:children]
local
vps vps
[db_vault:children] [db_vault:children]

2
playbook.yml
View File

@@ -1,5 +1,5 @@
--- ---
- hosts: registry db drone - hosts: registry vps
remote_user: valentin remote_user: valentin
roles: roles:
- server - server

1
scaleway-k8s/files/requierements.txt Normal file
View File

@@ -0,0 +1 @@
ovh

32
scaleway-k8s/tasks/create-build.yml
View File

@@ -27,4 +27,34 @@
- name: Template env file - name: Template env file
template: template:
src: "env-build.j2" src: "env-build.j2"
dest: "{{ home_dir }}/{{ quarkus_project }}/.env" dest: "{{ home_dir }}/{{ quarkus_project }}/.env"
- name: Pause for build image
pause:
prompt: aller au dossier {{ home_dir }}/{{ quarkus_project }}, et exécuter le script build-image.sh
- name: Get quarkus image
docker_image_info:
name: quarkus-native
register: result
- name: Check quarkus image
assert:
that:
- result.images | length == 1
- name: Login to scaleway registry
docker_login:
registry_url: rg.fr-par.scw.cloud/covas
username: nologin
password: "{{ token_scaleway }}"
reauthorize: true
- name: Tag and push to custom registry
docker_image:
name: quarkus-native
repository: rg.fr-par.scw.cloud/covas/quarkus-native
tag: latest
push: yes
source: local

1
scaleway-k8s/tasks/create-cluster.yml
View File

@@ -11,7 +11,6 @@
src: main.tf.j2 src: main.tf.j2
dest: "{{ project_terraform }}/main.tf" dest: "{{ project_terraform }}/main.tf"
- name: Create cluster scaleway - name: Create cluster scaleway
community.general.terraform: community.general.terraform:
project_path: '{{ project_terraform }}' project_path: '{{ project_terraform }}'

98
scaleway-k8s/tasks/deploy-backend.yml Normal file
View File

@@ -0,0 +1,98 @@
---
# tasks file for create cluster k8s via terraform
- name: Create directory {{ project_terraform }}
file:
path: "{{ project_backend }}"
state: directory
- name: Copy backend k8s yaml
template:
src: "{{ item }}.yaml.j2"
dest: "{{ project_backend }}/{{ item }}.yaml"
with_items: "{{ backend_yaml }}"
- name: Create a k8s namespace
kubernetes.core.k8s:
name: testing
api_version: v1
kind: Namespace
state: present
- name: Apply deployment
kubernetes.core.k8s:
src: "{{ project_backend }}/backend-deployment.yaml"
state: present
- name: Apply services
kubernetes.core.k8s:
src: "{{ project_backend }}/backend-service.yaml"
state: present
- name: Apply configmap
kubernetes.core.k8s:
src: "{{ project_backend }}/env-configmap.yaml"
state: present
- name: Apply secret
kubernetes.core.k8s:
src: "{{ project_backend }}/secret.yaml"
state: present
- name: En attente d'une adresse IP publique du cluster
ansible.builtin.pause:
minutes: 2
- name: Get IP Cluster
block:
- name: Fetch services
set_fact:
service: "{{ query('kubernetes.core.k8s', kind='Service', namespace='testing') }}"
register: result
- name: debug services
debug:
msg: "{{ result.ansible_facts.service[0].status.loadBalancer.ingress[0].ip }}"
- name: Test API Backend
ansible.builtin.uri:
url: "http://{{ result.ansible_facts.service[0].status.loadBalancer.ingress[0].ip }}:{{ port }}/api/hello"
status_code: 200
method: GET
tags: ["services", "dns"]
- name: Add DNS for IP Cluster
block:
- name: Copy script add or update DNS
template:
src: "dns_add_update.py.j2"
dest: "{{ project_backend }}/dns_add_update.py"
- name: Copy requierements python
copy:
src: "requierements.txt"
dest: "{{ project_backend }}"
- name: Pip install requierements
shell: "pip3.10 install -r {{ project_backend }}/requierements.txt"
- name: En attente de l'installation des packages
ansible.builtin.pause:
minutes: 2
- name: Add or update DNS
shell: "python3.10 {{ project_backend }}/dns_add_update.py --ip {{ result.ansible_facts.service[0].status.loadBalancer.ingress[0].ip }}"
register: result
- name: Display result script
debug:
msg: "{{ result }}"
- name: Test API Backend with DNS
ansible.builtin.uri:
url: "http://api.valczeryba.ovh:{{ port }}/api/hello"
status_code: 200
method: GET
tags: [ "dns" ]

42
scaleway-k8s/tasks/destroy-backend.yml Normal file
View File

@@ -0,0 +1,42 @@
---
# tasks file for create cluster k8s via terraform
- name: Apply deployment
kubernetes.core.k8s:
src: "{{ project_backend }}/backend-deployment.yaml"
state: absent
- name: Apply services
kubernetes.core.k8s:
src: "{{ project_backend }}/backend-service.yaml"
state: absent
- name: Apply configmap
kubernetes.core.k8s:
src: "{{ project_backend }}/env-configmap.yaml"
state: absent
- name: Apply secret
kubernetes.core.k8s:
src: "{{ project_backend }}/secret.yaml"
state: absent
- name: Create a k8s namespace
kubernetes.core.k8s:
name: testing
api_version: v1
kind: Namespace
state: absent
- name: Create directory {{ project_terraform }}
file:
path: "{{ project_backend }}"
state: absent

8
scaleway-k8s/tasks/kubeconfig.yml
View File

@@ -16,6 +16,10 @@
method: GET method: GET
headers: headers:
X-Auth-Token: "{{ scw_secret_key }}" X-Auth-Token: "{{ scw_secret_key }}"
when: item.name == "{{ project_name }}" when: item.name == "{{ project_name_tf }}"
with_items: "{{ (output.content |from_json).clusters }}" with_items: "{{ (output.content |from_json).clusters }}"
- name: Copy kubeconfig
copy:
src: "{{ project_terraform }}/kubeconfig"
dest: "{{ project_kubeconfig }}"

9
scaleway-k8s/tasks/main.yml
View File

@@ -10,6 +10,15 @@
import_tasks: kubeconfig.yml import_tasks: kubeconfig.yml
tags: ["create-cluster", "kubeconfig"] tags: ["create-cluster", "kubeconfig"]
- name: Deploy a API backend
import_tasks: deploy-backend.yml
tags: ["deploy"]
- name: Deploy a API backend
import_tasks: destroy-backend.yml
tags: ["destroy"]
- name: Destroy cluster k8s scaleway via terraform - name: Destroy cluster k8s scaleway via terraform
import_tasks: destroy-cluster.yml import_tasks: destroy-cluster.yml
tags: ["destroy-cluster"] tags: ["destroy-cluster"]

98
scaleway-k8s/templates/backend-deployment.yaml.j2 Normal file
View File

@@ -0,0 +1,98 @@
apiVersion: apps/v1
kind: Deployment
metadata:
annotations:
kompose.cmd: kompose convert -f ../docker-compose.yml
kompose.version: 1.26.0 (40646f47)
creationTimestamp: null
labels:
io.kompose.service: backend
name: backend
namespace: testing
spec:
replicas: 1
selector:
matchLabels:
io.kompose.service: backend
strategy: {}
template:
metadata:
annotations:
kompose.cmd: kompose convert -f ../docker-compose.yml
kompose.version: 1.26.0 (40646f47)
creationTimestamp: null
labels:
io.kompose.service: backend
spec:
imagePullSecrets:
- name: regcred
containers:
- env:
- name: POSTGRES_DB
valueFrom:
configMapKeyRef:
key: POSTGRES_DB
name: env
- name: POSTGRES_PASSWORD
valueFrom:
configMapKeyRef:
key: POSTGRES_PASSWORD
name: env
- name: POSTGRES_PORT
valueFrom:
configMapKeyRef:
key: POSTGRES_PORT
name: env
- name: POSTGRES_URL
valueFrom:
configMapKeyRef:
key: POSTGRES_URL
name: env
- name: POSTGRES_USER
valueFrom:
configMapKeyRef:
key: POSTGRES_USER
name: env
- name: REDIS_PORT
valueFrom:
configMapKeyRef:
key: REDIS_PORT
name: env
- name: REDIS_URL
valueFrom:
configMapKeyRef:
key: REDIS_URL
name: env
- name: MAILER_FROM
valueFrom:
configMapKeyRef:
key: MAILER_FROM
name: env
- name: MAILER_HOST
valueFrom:
configMapKeyRef:
key: MAILER_HOST
name: env
- name: MAILER_PORT
valueFrom:
configMapKeyRef:
key: MAILER_PORT
name: env
- name: MAILER_USERNAME
valueFrom:
configMapKeyRef:
key: MAILER_USERNAME
name: env
- name: MAILER_PASSWORD
valueFrom:
configMapKeyRef:
key: MAILER_PASSWORD
name: env
image: rg.fr-par.scw.cloud/covas/quarkus-native
name: backend
ports:
- containerPort: 8080
resources: {}
restartPolicy: Always
status: {}

21
scaleway-k8s/templates/backend-service.yaml.j2 Normal file
View File

@@ -0,0 +1,21 @@
apiVersion: v1
kind: Service
metadata:
annotations:
kompose.cmd: kompose convert -f ../docker-compose.yml
kompose.version: 1.26.0 (40646f47)
creationTimestamp: null
labels:
io.kompose.service: backend
name: backend
namespace: testing
spec:
ports:
- name: "{{ port }}"
port: {{ port }}
targetPort: {{ targetPort }}
type: LoadBalancer
selector:
io.kompose.service: backend
status:
loadBalancer: {}

49
scaleway-k8s/templates/dns_add_update.py.j2 Normal file
View File

@@ -0,0 +1,49 @@
# -*- encoding: utf-8 -*-
'''
First, install the latest release of Python wrapper: $ pip install ovh
'''
import json
import ovh
import argparse
parser = argparse.ArgumentParser()
parser.add_argument('--ip', help='foo help')
args = parser.parse_args()
# Instanciate an OVH Client.
# You can generate new credentials with full access to your account on
# the token creation page
client = ovh.Client(
endpoint='ovh-eu', # Endpoint of API OVH Europe (List of available endpoints)
application_key='{{ application_key }}', # Application Key
application_secret='{{ application_secret }}', # Application Secret
consumer_key='{{ consumer_key }}', # Consumer Key
)
result = client.get('/domain/zone/valczeryba.ovh/record',
fieldType='A',
subDomain='api',
)
# Pretty print
if len(result) > 0:
for idDns in result:
result = client.get('/domain/zone/valczeryba.ovh/record/{0}'.format(idDns))
if result["target"] != args.ip:
result = client.put('/domain/zone/valczeryba.ovh/record/{0}'.format(idDns),
subDomain='api',
target=args.ip,
)
print(result)
else:
result = client.post('/domain/zone/valczeryba.ovh/record',
fieldType='A',
subDomain='api',
target=args.ip,
ttl=None,
)
print(result)

7
scaleway-k8s/templates/env-build.j2
View File

@@ -5,3 +5,10 @@ POSTGRES_URL={{ postgres_url }}
POSTGRES_PORT={{ postgres_port }} POSTGRES_PORT={{ postgres_port }}
REDIS_URL={{ redis_url }} REDIS_URL={{ redis_url }}
REDIS_PORT={{ redis_port }} REDIS_PORT={{ redis_port }}
MAILER_FROM={{ mailer_from }}
MAILER_HOST={{ mailer_host }}
MAILER_PORT={{ mailer_port }}
MAILER_USERNAME={{ mailer_username }}
MAILER_PASSWORD={{ mailer_password }}

22
scaleway-k8s/templates/env-configmap.yaml.j2 Normal file
View File

@@ -0,0 +1,22 @@
apiVersion: v1
data:
POSTGRES_DB: {{ postgres_db }}
POSTGRES_PASSWORD: {{ postgres_password }}
POSTGRES_PORT: "{{ postgres_port }}"
POSTGRES_URL: {{ postgres_url }}
POSTGRES_USER: {{ postgres_user }}
REDIS_PORT: "{{ redis_port }}"
REDIS_URL: {{ redis_url }}
MAILER_FROM: {{ mailer_from }}
MAILER_HOST: {{ mailer_host }}
MAILER_PORT: "{{ mailer_port }}"
MAILER_USERNAME: {{ mailer_username }}
MAILER_PASSWORD: {{ mailer_password }}
kind: ConfigMap
metadata:
creationTimestamp: null
labels:
io.kompose.service: backend-env
name: env
namespace: testing

12
scaleway-k8s/templates/main.tf.j2
View File

@@ -8,8 +8,8 @@ terraform {
} }
resource "scaleway_k8s_cluster" "{{ project_name }}" { resource "scaleway_k8s_cluster" "{{ project_name_tf }}" {
name = "{{ project_name }}" name = "{{ project_name_tf }}"
version = "1.24.3" version = "1.24.3"
cni = "cilium" cni = "cilium"
project_id = "{{ project_id }}" project_id = "{{ project_id }}"
@@ -17,7 +17,7 @@ terraform {
} }
resource "scaleway_k8s_pool" "john" { resource "scaleway_k8s_pool" "john" {
cluster_id = scaleway_k8s_cluster.{{ project_name }}.id cluster_id = scaleway_k8s_cluster.{{ project_name_tf }}.id
name = "john" name = "john"
node_type = "DEV1-M" node_type = "DEV1-M"
size = 1 size = 1
@@ -26,9 +26,9 @@ terraform {
resource "null_resource" "kubeconfig" { resource "null_resource" "kubeconfig" {
depends_on = [scaleway_k8s_pool.john] # at least one pool here depends_on = [scaleway_k8s_pool.john] # at least one pool here
triggers = { triggers = {
host = scaleway_k8s_cluster.{{ project_name }}.kubeconfig[0].host host = scaleway_k8s_cluster.{{ project_name_tf }}.kubeconfig[0].host
token = scaleway_k8s_cluster.{{ project_name }}.kubeconfig[0].token token = scaleway_k8s_cluster.{{ project_name_tf }}.kubeconfig[0].token
cluster_ca_certificate = scaleway_k8s_cluster.{{ project_name }}.kubeconfig[0].cluster_ca_certificate cluster_ca_certificate = scaleway_k8s_cluster.{{ project_name_tf }}.kubeconfig[0].cluster_ca_certificate
} }
} }

10
scaleway-k8s/templates/secret.yaml.j2 Normal file
View File

@@ -0,0 +1,10 @@
apiVersion: v1
data:
.dockerconfigjson: {{ dockerconfigjson }}
kind: Secret
metadata:
creationTimestamp: "2022-11-26T19:19:41Z"
name: regcred
namespace: testing
uid: {{ uid_secret }}
type: kubernetes.io/dockerconfigjson

2
server/tasks/deploy.yml
View File

@@ -30,6 +30,6 @@
when: "project_env is defined" when: "project_env is defined"
- name: Copy docker compose server file - name: Copy docker compose server file
copy: template:
src: "{{ docker_compose_file }}" src: "{{ docker_compose_file }}"
dest: "{{ project_src }}/docker-compose.yml" dest: "{{ project_src }}/docker-compose.yml"

8
server/tasks/main.yml
View File

@@ -8,17 +8,17 @@
- name: Deploy services - name: Deploy services
import_tasks: deploy.yml import_tasks: deploy.yml
tags: ["deploy", "create"] tags: ["configure", "create"]
- name: Start services - name: Start services
import_tasks: start.yml import_tasks: start.yml
tags: ["deploy", "start"] tags: ["configure", "start"]
- name: stop services - name: stop services
import_tasks: stop.yml import_tasks: stop.yml
tags: ["destroy", "stop"] tags: ["deconfigure", "stop"]
- name: Remove services - name: Remove services
import_tasks: remove.yml import_tasks: remove.yml
tags: ["destroy"] tags: ["deconfigure"]

6
server/tasks/remove.yml
View File

@@ -15,4 +15,8 @@
- name: Remove project - name: Remove project
file: file:
path: "{{ project_src }}" path: "{{ project_src }}"
state: absent state: absent
vars:
ansible_become: yes
ansible_become_method: sudo
ansible_become_password: "{{ sudo_password }}"

11
server/files/docker-compose-db.yml → server/templates/docker-compose-db.yml.j2
View File

@@ -11,12 +11,20 @@ services:
- PGDATA=/var/lib/postgresql/data/pgdata - PGDATA=/var/lib/postgresql/data/pgdata
ports: ports:
- "54321:5432" - "54321:5432"
mongo:
image: mongo
env_file:
- .env
ports:
- "28017:27017"
redis: redis:
image: redis/redis-stack-server:latest image: redis/redis-stack-server:latest
ports: ports:
- "63791:6379" - "63791:6379"
{% if covas_liquibase == true %}
liquibase: liquibase:
build: build:
context: ./covas-liquibase context: ./covas-liquibase
@@ -25,6 +33,7 @@ services:
- db - db
command: command:
- "update" - "update"
{% endif %}
volumes: volumes:
app-db-data: app-db-data:

0
server/files/docker-compose-drone.yml → server/templates/docker-compose-drone.yml.j2
View File

0
server/files/docker-compose-registry.yml → server/templates/docker-compose-registry.yml.j2
View File

5
server/templates/env-db.j2
View File

@@ -1,3 +1,6 @@
POSTGRES_PASSWORD={{ postgres_password }} POSTGRES_PASSWORD={{ postgres_password }}
POSTGRES_USER={{ postgres_user }} POSTGRES_USER={{ postgres_user }}
POSTGRES_DB={{ postgres_db }} POSTGRES_DB={{ postgres_db }}
MONGO_INITDB_ROOT_USERNAME={{ mongo_user }}
MONGO_INITDB_ROOT_PASSWORD={{ mongo_password }}