From 745f65acf69ecfb9af7acc3f91fc2481c0192898 Mon Sep 17 00:00:00 2001 From: Michael Thomson Date: Tue, 16 Jan 2024 10:14:58 -0500 Subject: [PATCH] website --- .../imagerepository-michaelthomson.yaml | 10 ++++++++ .../namespaces/namespace-michaelthomson.yaml | 4 ++++ bootstrap/secrets/gitea-registry-auth.yaml | 15 ++++++++++++ michaelthomson/deployment.yaml | 21 ++++++++++++++++ michaelthomson/dns-endpoint.yaml | 15 ++++++++++++ michaelthomson/ingress.yaml | 24 +++++++++++++++++++ michaelthomson/service.yaml | 12 ++++++++++ 7 files changed, 101 insertions(+) create mode 100644 bootstrap/imagerepositories/imagerepository-michaelthomson.yaml create mode 100644 bootstrap/namespaces/namespace-michaelthomson.yaml create mode 100644 bootstrap/secrets/gitea-registry-auth.yaml create mode 100644 michaelthomson/deployment.yaml create mode 100644 michaelthomson/dns-endpoint.yaml create mode 100644 michaelthomson/ingress.yaml create mode 100644 michaelthomson/service.yaml diff --git a/bootstrap/imagerepositories/imagerepository-michaelthomson.yaml b/bootstrap/imagerepositories/imagerepository-michaelthomson.yaml new file mode 100644 index 0000000..0deb486 --- /dev/null +++ b/bootstrap/imagerepositories/imagerepository-michaelthomson.yaml @@ -0,0 +1,10 @@ +apiVersion: image.toolkit.fluxcd.io/v1beta2 +kind: ImageRepository +metadata: + name: michaelthomson + namespace: flux-system +spec: + image: gitea.michaelthomson.dev/mthomson/michaelthomson + interval: 5m + secretRef: + name: gitea-registry-auth diff --git a/bootstrap/namespaces/namespace-michaelthomson.yaml b/bootstrap/namespaces/namespace-michaelthomson.yaml new file mode 100644 index 0000000..157e985 --- /dev/null +++ b/bootstrap/namespaces/namespace-michaelthomson.yaml @@ -0,0 +1,4 @@ +apiVersion: v1 +kind: Namespace +metadata: + name: michaelthomson diff --git a/bootstrap/secrets/gitea-registry-auth.yaml b/bootstrap/secrets/gitea-registry-auth.yaml new file mode 100644 index 0000000..6067e5f --- /dev/null +++ b/bootstrap/secrets/gitea-registry-auth.yaml @@ -0,0 +1,15 @@ +kind: SealedSecret +apiVersion: bitnami.com/v1alpha1 +metadata: + name: gitea-registry-auth + namespace: flux-system + creationTimestamp: +spec: + template: + metadata: + name: gitea-registry-auth + namespace: flux-system + creationTimestamp: + type: kubernetes.io/dockerconfigjson + encryptedData: + ".dockerconfigjson": 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 diff --git a/michaelthomson/deployment.yaml b/michaelthomson/deployment.yaml new file mode 100644 index 0000000..cbef065 --- /dev/null +++ b/michaelthomson/deployment.yaml @@ -0,0 +1,21 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: michaelthomson + namespace: michaelthomson +spec: + selector: + matchLabels: + app: michaelthomson + template: + metadata: + labels: + app: michaelthomson + spec: + containers: + - name: michaelthomson + image: gitea.michaelthomson.dev/mthomson/michaelthomson:latest + ports: + - containerPort: 3000 + name: http + protocol: TCP diff --git a/michaelthomson/dns-endpoint.yaml b/michaelthomson/dns-endpoint.yaml new file mode 100644 index 0000000..0239596 --- /dev/null +++ b/michaelthomson/dns-endpoint.yaml @@ -0,0 +1,15 @@ +apiVersion: externaldns.k8s.io/v1alpha1 +kind: DNSEndpoint +metadata: + name: michaelthomson.dev + namespace: michaelthomson +spec: + endpoints: + - dnsName: michaelthomson.dev + recordTTL: 180 + recordType: A + targets: + - 142.126.163.72 + providerSpecific: + - name: external-dns.alpha.kubernetes.io/cloudflare-proxied + value: "true" diff --git a/michaelthomson/ingress.yaml b/michaelthomson/ingress.yaml new file mode 100644 index 0000000..59043c0 --- /dev/null +++ b/michaelthomson/ingress.yaml @@ -0,0 +1,24 @@ +apiVersion: networking.k8s.io/v1 +kind: Ingress +metadata: + name: michaelthomson + namespace: michaelthomson + annotations: + traefik.ingress.kubernetes.io/router.entrypoints: websecure + traefik.ingress.kubernetes.io/router.tls: "true" +spec: + rules: + - host: michaelthomson.dev + http: + paths: + - pathType: ImplementationSpecific + path: / + backend: + service: + name: michaelthomson + port: + name: http + tls: + - hosts: + - michaelthomson.dev + secretName: letsencrypt-wildcard-cert-michaelthomson.dev diff --git a/michaelthomson/service.yaml b/michaelthomson/service.yaml new file mode 100644 index 0000000..a0880a6 --- /dev/null +++ b/michaelthomson/service.yaml @@ -0,0 +1,12 @@ +apiVersion: v1 +kind: Service +metadata: + name: michaelthomson + namespace: michaelthomson +spec: + selector: + app: michaelthomson + ports: + - port: 80 + targetPort: http + name: http