install postgresql to camper

2024-03-01 22:04:45 +01:00 · 2024-03-01 22:04:45 +01:00 · 3c27d5a0fd
parent ed4325313e
commit 3c27d5a0fd
4 changed files with 68 additions and 0 deletions
--- a/apps/camper/postgresql/kustomization.yaml
+++ b/apps/camper/postgresql/kustomization.yaml
@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+generators:
+  - secret-generator.yaml
--- a/apps/camper/postgresql/secret-generator.yaml
+++ b/apps/camper/postgresql/secret-generator.yaml
@ -0,0 +1,6 @@
+apiVersion: viaduct.ai/v1
+kind: ksops
+metadata:
+  name: secret-generator
+files:
+  - secret.sops.yaml
--- a/apps/camper/postgresql/secret.sops.yaml
+++ b/apps/camper/postgresql/secret.sops.yaml
@ -0,0 +1,27 @@
+apiVersion: v1
+kind: Secret
+metadata:
+    name: postgresql-secret
+type: Opaque
+stringData:
+    postgres-password: ENC[AES256_GCM,data:ThfllX1HfSrLO8C2GUcnFNqEbLyEyheSfqchZwahknQ=,iv:s2qnd9ikX9krNf43pAx4ANXVGAAcI7jvVrgqProUUMU=,tag:SwRfQlOMaGryTzdLjC4nUQ==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1dfk8euu7afvw7ge5l2qek45z23hdq5anjd56cy4d7kcsf0e0e5pqfjylx8
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBoV3NXa0owNFBEM0JFUFV5
+            NEVBcTZZL0RuNlhUNDdsQWFzMU9xbERIQ21FCnBpcmZReExSRkE4QjF2dUdEeUpm
+            bEViVnUreDZnbnliVWd1TTc4NzdIUWcKLS0tICtpTG9BVWwyaXZLNUlEK202eXdP
+            c2Fyek5BcDhHTGlpYzNpcGgvd0YzMWMKMhDgjLE8SEg26l+H/++48W+5ALgrNEPr
+            KT2/81+LG+FLHbmdNls/daYzJptT4sZ8GeDdtUJC8xbLMzbWy4WMaw==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2024-03-01T21:04:28Z"
+    mac: ENC[AES256_GCM,data:SBroohqRidBO3MN1yohHwibLcqPwXvF11bU1Fcexdg4NcRwK4EJhPO43MHkKclGHt0y7pIJStjzWV7wzWwmtrgXnaLpuH8EEvJev6mYn0I6yLMfrMlEpUIK8XPwvKPaD6/+hCnIUlxVlMHBBRQJvUlbMUFSLM9fSbZGCPRaGWQc=,iv:FsFRDCeAG2utfeK7zFdq1Xg2ttPHNS8eQkUN3hDcQ+Q=,tag:EiOpSQltSlrTfy7zJLJ8Cg==,type:str]
+    pgp: []
+    encrypted_regex: ^(data|stringData)$
+    version: 3.8.1
--- a/argoapps/camper/postgresql.yaml
+++ b/argoapps/camper/postgresql.yaml
@ -0,0 +1,31 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: postgresql
+  namespace: argocd
+  finalizers:
+    - resources-finalizer.argocd.argoproj.io
+spec:
+  project: apps
+  sources:
+    - chart: bitnamicharts/postgresql
+      repoURL: docker.io
+      targetRevision: 14.2.3
+      helm:
+        values: |
+          global:
+            storageClass: local-path
+          auth:
+            existingSecret: postgresql-secret
+    - path: apps/camper/postgresql
+      repoURL: https://git.tbrnt.ch/tobru/gitops-zurrli.git
+      targetRevision: HEAD
+  destination:
+    name: camper
+    namespace: postgresql
+  syncPolicy:
+    syncOptions:
+      - ServerSideApply=true
+      - CreateNamespace=true
+    automated:
+      prune: true