chore(bootstrap): Added Vault to ArgoCD
This commit is contained in:
Daniël Groothuis
@@ -4,3 +4,4 @@ kind: Kustomization
|
||||
|
||||
resources:
|
||||
- argocd
|
||||
- vault
|
||||
|
||||
18
clusters/artemis/apps/vault/app-project.yaml
Normal file
18
clusters/artemis/apps/vault/app-project.yaml
Normal file
@@ -0,0 +1,18 @@
|
||||
---
|
||||
apiVersion: argoproj.io/v1alpha1
|
||||
kind: AppProject
|
||||
metadata:
|
||||
name: vault
|
||||
namespace: vault
|
||||
spec:
|
||||
description: Kubernetes Secrets Management
|
||||
sourceRepos:
|
||||
- '*'
|
||||
sourceNamespaces:
|
||||
- '*'
|
||||
destinations:
|
||||
- namespace: '*'
|
||||
server: '*'
|
||||
clusterResourceWhitelist:
|
||||
- group: '*'
|
||||
kind: '*'
|
||||
24
clusters/artemis/apps/vault/application.yaml
Normal file
24
clusters/artemis/apps/vault/application.yaml
Normal file
@@ -0,0 +1,24 @@
|
||||
apiVersion: argoproj.io/v1alpha1
|
||||
kind: Application
|
||||
metadata:
|
||||
name: vault
|
||||
namespace: vault
|
||||
labels:
|
||||
platform.dgse.cloud/cluster: artemis
|
||||
finalizers:
|
||||
- resources-finalizer.argocd.argoproj.io
|
||||
spec:
|
||||
project: vault
|
||||
source:
|
||||
repoURL: 'https://git.dgse.cloud/DGSE/kubernetes.git'
|
||||
path: manifests/artemis/vault
|
||||
targetRevision: HEAD
|
||||
destination:
|
||||
namespace: vault
|
||||
name: in-cluster
|
||||
syncPolicy:
|
||||
syncOptions:
|
||||
- CreateNamespace=true
|
||||
automated:
|
||||
prune: true
|
||||
selfHeal: true
|
||||
7
clusters/artemis/apps/vault/kustomization.yaml
Normal file
7
clusters/artemis/apps/vault/kustomization.yaml
Normal file
@@ -0,0 +1,7 @@
|
||||
---
|
||||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
|
||||
resources:
|
||||
- app-project.yaml
|
||||
- application.yaml
|
||||
23
manifests/artemis/vault/ingress.yaml
Normal file
23
manifests/artemis/vault/ingress.yaml
Normal file
@@ -0,0 +1,23 @@
|
||||
apiVersion: networking.k8s.io/v1
|
||||
kind: Ingress
|
||||
metadata:
|
||||
annotations:
|
||||
cert-manager.io/cluster-issuer: letsencrypt
|
||||
labels:
|
||||
name: vault-ingress
|
||||
spec:
|
||||
rules:
|
||||
- host: sealed.dgse.cloud
|
||||
http:
|
||||
paths:
|
||||
- backend:
|
||||
service:
|
||||
name: vault
|
||||
port:
|
||||
number: 8200
|
||||
path: /
|
||||
pathType: Prefix
|
||||
tls:
|
||||
- hosts:
|
||||
- sealed.dgse.cloud
|
||||
secretName: letsencrypt
|
||||
11
manifests/artemis/vault/kustomization.yaml
Normal file
11
manifests/artemis/vault/kustomization.yaml
Normal file
@@ -0,0 +1,11 @@
|
||||
---
|
||||
resources:
|
||||
- ingress.yaml
|
||||
|
||||
helmCharts:
|
||||
- name: vault
|
||||
repo: https://helm.releases.hashicorp.com/
|
||||
version: 0.30.0
|
||||
releaseName: vault
|
||||
namespace: vault
|
||||
valuesFile: values.yaml
|
||||
9
manifests/artemis/vault/values.yaml
Normal file
9
manifests/artemis/vault/values.yaml
Normal file
@@ -0,0 +1,9 @@
|
||||
server:
|
||||
ha:
|
||||
enabled: true
|
||||
raft:
|
||||
enabled: true
|
||||
replicas: 1
|
||||
dataStorage:
|
||||
enabled: true
|
||||
size: 10Gi
|
||||
Reference in New Issue
Block a user