ac680b7f3f
All checks were successful
Rename all Docker/K8s service names, DNS hostnames, secrets, volumes, and manifest files to use the cameleer- prefix, making it clear which software package each container belongs to. Services renamed: - postgres → cameleer-postgres - clickhouse → cameleer-clickhouse - logto → cameleer-logto - logto-postgresql → cameleer-logto-postgresql - traefik (service) → cameleer-traefik - postgres-external → cameleer-postgres-external Secrets renamed: - postgres-credentials → cameleer-postgres-credentials - clickhouse-credentials → cameleer-clickhouse-credentials - logto-credentials → cameleer-logto-credentials Volumes renamed: - pgdata → cameleer-pgdata - chdata → cameleer-chdata - certs → cameleer-certs - bootstrapdata → cameleer-bootstrapdata K8s manifests renamed: - deploy/postgres.yaml → deploy/cameleer-postgres.yaml - deploy/clickhouse.yaml → deploy/cameleer-clickhouse.yaml - deploy/logto.yaml → deploy/cameleer-logto.yaml Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
121 lines
3.7 KiB
YAML
121 lines
3.7 KiB
YAML
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: cameleer3-server
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: cameleer3-server
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: cameleer3-server
|
|
spec:
|
|
imagePullSecrets:
|
|
- name: gitea-registry
|
|
securityContext:
|
|
runAsNonRoot: true
|
|
runAsUser: 1000
|
|
containers:
|
|
- name: server
|
|
image: gitea.siegeln.net/cameleer/cameleer3-server:latest
|
|
ports:
|
|
- containerPort: 8081
|
|
env:
|
|
- name: CAMELEER_SERVER_TENANT_ID
|
|
value: "default"
|
|
- name: SPRING_DATASOURCE_USERNAME
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-postgres-credentials
|
|
key: POSTGRES_USER
|
|
- name: SPRING_DATASOURCE_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-postgres-credentials
|
|
key: POSTGRES_PASSWORD
|
|
- name: SPRING_FLYWAY_USER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-postgres-credentials
|
|
key: POSTGRES_USER
|
|
- name: SPRING_FLYWAY_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-postgres-credentials
|
|
key: POSTGRES_PASSWORD
|
|
- name: CAMELEER_SERVER_SECURITY_BOOTSTRAPTOKEN
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-auth
|
|
key: CAMELEER_SERVER_SECURITY_BOOTSTRAPTOKEN
|
|
- name: CAMELEER_SERVER_SECURITY_UIUSER
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-auth
|
|
key: CAMELEER_SERVER_SECURITY_UIUSER
|
|
optional: true
|
|
- name: CAMELEER_SERVER_SECURITY_UIPASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-auth
|
|
key: CAMELEER_SERVER_SECURITY_UIPASSWORD
|
|
optional: true
|
|
- name: CAMELEER_SERVER_SECURITY_UIORIGIN
|
|
value: "http://localhost:5173"
|
|
- name: CAMELEER_SERVER_SECURITY_JWTSECRET
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-auth
|
|
key: CAMELEER_SERVER_SECURITY_JWTSECRET
|
|
optional: true
|
|
- name: CAMELEER_SERVER_CLICKHOUSE_URL
|
|
value: "jdbc:clickhouse://cameleer-clickhouse.cameleer.svc.cluster.local:8123/cameleer"
|
|
- name: CAMELEER_SERVER_CLICKHOUSE_USERNAME
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-clickhouse-credentials
|
|
key: CLICKHOUSE_USER
|
|
- name: CAMELEER_SERVER_CLICKHOUSE_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: cameleer-clickhouse-credentials
|
|
key: CLICKHOUSE_PASSWORD
|
|
|
|
resources:
|
|
requests:
|
|
memory: "256Mi"
|
|
cpu: "100m"
|
|
limits:
|
|
memory: "512Mi"
|
|
cpu: "500m"
|
|
livenessProbe:
|
|
httpGet:
|
|
path: /api/v1/health
|
|
port: 8081
|
|
initialDelaySeconds: 30
|
|
periodSeconds: 10
|
|
timeoutSeconds: 3
|
|
failureThreshold: 3
|
|
readinessProbe:
|
|
httpGet:
|
|
path: /api/v1/health
|
|
port: 8081
|
|
initialDelaySeconds: 10
|
|
periodSeconds: 5
|
|
timeoutSeconds: 3
|
|
failureThreshold: 3
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
name: cameleer3-server
|
|
spec:
|
|
type: ClusterIP
|
|
selector:
|
|
app: cameleer3-server
|
|
ports:
|
|
- port: 8081
|
|
targetPort: 8081
|