k8s-mediaserver-operator icon indicating copy to clipboard operation
k8s-mediaserver-operator copied to clipboard

Published 20 hours ago verified publisher icon kubealex

[BR] Help for install

Open bobdivx opened this issue 9 months ago • 0 comments

Describe the bug I can't configure it correctly

To Reproduce I apologize in advance but I'm still new to k8s. I had help to configure k8s, and I can't adapt my configuration So I have several questions:

  • Should we clone the entire folder from github?
  • If I try to deploy without modifying a file I cannot access the pod
  • Here is a model of how I deploy a pod. My folders on private github are built like this: Base: podnam.yaml `apiVersion: apps/v1 kind: Deployment metadata: name: APP namespace: NameSpace labels: app: APP spec: replicas: 1 selector: matchLabels: app: APP strategy: type: RollingUpdate rollingUpdate: maxSurge: 25% maxUnavailable: 25% template: metadata: labels: app: APP ♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Obtenir l'image (Helm) spec: containers: - name: APP image: ghcr.io/APP adresse imagePullPolicy: IfNotPresent ♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Demande de ressources resources: requests: cpu: CPU memory: Ram limits: cpu: CPU memory: RAM ♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Santé des conteneurs livenessProbe: tcpSocket: port: Port initialDelaySeconds: 5 timeoutSeconds: 5 successThreshold: 1 failureThreshold: 3 periodSeconds: 10 readinessProbe: httpGet: path: / port: Port initialDelaySeconds: 5 timeoutSeconds: 2 successThreshold: 1 failureThreshold: 3 periodSeconds: 10 ♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Base de données env: - name: DB_URL valueFrom: secretKeyRef: name: APP-pg-app key: uri - name: TZ value: "Europe/Paris" ports: - containerPort: Port name: APP ♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Monter les volumes volumeMounts: - name: APP mountPath: /config #Ou monter dans le pod volumes: configMap: name: configuration - name: APP persistentVolumeClaim: claimName: APP

♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Demande de services apiVersion: v1 kind: Service metadata: name: APP namespace: NameSpace spec: selector: app: APP type: ClusterIP ports:

  • name: APP protocol: TCP port: Port targetPort: Port

♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯♯Demande de PVC apiVersion: v1 kind: PersistentVolumeClaim metadata: name: APP namespace: NameSpace labels: app: APP spec: storageClassName: ceph-filesystem accessModes:

  • ReadWriteMany resources: requests: storage: Stockage`

In a PODNAME subfolder Gateway.yaml: `apiVersion: cert-manager.io/v1 kind: Certificate metadata: name: APP namespace: istio-system spec: secretName: APP-tls duration: 2160h # 90d renewBefore: 360h # 15d isCA: false privateKey: algorithm: RSA encoding: PKCS1 size: 4096 usages: - server auth - client auth dnsNames: - "APP.###.me" issuerRef: name: letsencrypt-prod kind: ClusterIssuer group: cert-manager.io

apiVersion: networking.istio.io/v1alpha3 kind: Gateway metadata: name: APP-gateway namespace: APP spec: selector: istio: ingressgateway servers: - port: number: 80 name: http-APP protocol: HTTP hosts: - "APP.###.me" - port: number: 443 name: https protocol: HTTPS hosts: - "APP.###.me" tls: mode: SIMPLE credentialName: APP-tls

apiVersion: networking.istio.io/v1alpha3 kind: VirtualService metadata: name: APP-vs namespace: NameSpace spec: hosts: - "APP.###.me" gateways: - APP-gateway http: - match: - uri: prefix: / route: - destination: host: APP port: number: Port headers: response: set: Strict-Transport-Security: max-age=31536000; includeSubDomains`

Environment:

  • K8s version: last
  • CNI Plugin: flux
  • CSI Type:

bobdivx avatar May 02 '24 07:05 bobdivx