8c6ad5f431
This change enables installing the zuul-operator on a recent cluster, where CRD are no longer beta: - Update apiVersion in the CRD - Update cert-manager to v1.8.2 - Update pxc to v1.10.0 - Add openAPIV3Schema to zuul crd (from https://review.opendev.org/c/zuul/zuul-operator/+/800302) Change-Id: I12ac02d609ea6a2806c734ca00023e4d1059af37
109 lines
2.8 KiB
YAML
109 lines
2.8 KiB
YAML
{%- if manage_registry_cert %}
|
|
---
|
|
apiVersion: cert-manager.io/v1
|
|
kind: Certificate
|
|
metadata:
|
|
name: zuul-registry-tls
|
|
labels:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry-tls
|
|
spec:
|
|
keyEncoding: pkcs8
|
|
secretName: zuul-registry-tls
|
|
commonName: client
|
|
usages:
|
|
- digital signature
|
|
- key encipherment
|
|
- server auth
|
|
- client auth
|
|
issuerRef:
|
|
name: ca-issuer
|
|
kind: Issuer
|
|
{%- endif %}
|
|
---
|
|
apiVersion: v1
|
|
kind: Service
|
|
metadata:
|
|
name: zuul-registry
|
|
labels:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry
|
|
spec:
|
|
type: NodePort
|
|
ports:
|
|
- name: zuul-registry
|
|
port: 443
|
|
protocol: TCP
|
|
targetPort: registry
|
|
selector:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry
|
|
---
|
|
apiVersion: apps/v1
|
|
kind: StatefulSet
|
|
metadata:
|
|
name: zuul-registry
|
|
labels:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry
|
|
spec:
|
|
replicas: {{ spec.registry.count }}
|
|
serviceName: zuul-registry
|
|
selector:
|
|
matchLabels:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: zuul
|
|
app.kubernetes.io/instance: {{ instance_name }}
|
|
app.kubernetes.io/part-of: zuul
|
|
app.kubernetes.io/component: zuul-registry
|
|
spec:
|
|
imagePullSecrets: {{ spec.imagePullSecrets }}
|
|
containers:
|
|
- name: registry
|
|
image: {{ spec.imagePrefix }}/zuul-registry:{{ spec.zuulRegistryImageVersion }}
|
|
env:
|
|
- name: DEBUG
|
|
value: '1'
|
|
ports:
|
|
- name: registry
|
|
containerPort: 9000
|
|
volumeMounts:
|
|
- name: zuul-registry-config
|
|
mountPath: /conf
|
|
readOnly: true
|
|
- name: zuul-registry-tls
|
|
mountPath: /tls
|
|
readOnly: true
|
|
- name: zuul-registry
|
|
mountPath: /storage
|
|
volumes:
|
|
- name: zuul-registry-config
|
|
secret:
|
|
secretName: zuul-registry-generated-config
|
|
- name: zuul-registry-tls
|
|
secret:
|
|
secretName: {{ spec.registry.tls.secretName }}
|
|
volumeClaimTemplates:
|
|
- metadata:
|
|
name: zuul-registry
|
|
spec:
|
|
accessModes:
|
|
- ReadWriteOnce
|
|
resources:
|
|
requests:
|
|
storage: {{ spec.registry.volumeSize }} #80Gi
|