prskr/infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

feat(ansible): deploy Agola deploy role

Browse source
This commit is contained in:
Peter Kurfer 2022-09-14 21:42:28 +02:00
parent bb36acbed0
commit 8d9465a9f5
No known key found for this signature in database
8 changed files with 58 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

29
k8s/roles/agola/tasks/main.yml
View file

@ -9,20 +9,23 @@
- name: Create Agola manifests
kubernetes.core.k8s:
state: present
namespace: agola
definition: "{{ lookup('template', item) | from_yaml }}"
namespace: "{{ item.namespace | default('agola') }}"
definition: "{{ lookup('template', item.file) | from_yaml }}"
with_items:
- config.yml.j2
- pvc.yml.j2
- all-deployment.yml.j2
- all-internal-svc.yml.j2
- all-svc.yml.j2
- role.yml.j2
- rolebinding.yml.j2
- serviceaccount.yml.j2
- clusterrole.yml.j2
- clusterrolebinding.yml.j2
- ingress.yml.j2
- file: config.yml.j2
- file: pvc.yml.j2
- file: all-deployment.yml.j2
- file: all-internal-svc.yml.j2
- file: all-svc.yml.j2
- file: ingress.yml.j2
- file: rbac/role.yml.j2
- file: rbac/rolebinding.yml.j2
- file: rbac/serviceaccount.yml.j2
- file: rbac/clusterrole.yml.j2
- file: rbac/clusterrolebinding.yml.j2
- file: rbac/agola-deploy-role.yml.j2
- file: rbac/agola-deploy-rolebinding.yml.j2
namespace: blog
# - gateway-deployment.yml.j2
# - gateway-svc.yml.j2
# - gitserver-deployment.yml.j2

29
k8s/roles/agola/templates/rbac/agola-deploy-role.yml.j2 Normal file
View file

@ -0,0 +1,29 @@
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: agola-deploy
rules:
- apiGroups:
- ""
resources:
- configmaps
- secrets
- services
verbs:
- "*"
- apiGroups:
- "apps"
resources:
- deployments
- statefulsets
verbs:
- "*"
- apiGroups:
- "networking.k8s.io"
resources:
- "ingresses"
verbs:
- "*"

13
k8s/roles/agola/templates/rbac/agola-deploy-rolebinding.yml.j2 Normal file
View file

@ -0,0 +1,13 @@
---
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
name: agola-deploy
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: agola-agola
subjects:
- kind: ServiceAccount
name: agola
namespace: agola

0
k8s/roles/agola/templates/clusterrole.yml.j2 → k8s/roles/agola/templates/rbac/clusterrole.yml.j2
View file

0
k8s/roles/agola/templates/clusterrolebinding.yml.j2 → k8s/roles/agola/templates/rbac/clusterrolebinding.yml.j2
View file

1
k8s/roles/agola/templates/role.yml.j2 → k8s/roles/agola/templates/rbac/role.yml.j2
View file

@ -3,7 +3,6 @@ apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
name: agola
namespace: agola
rules:
- apiGroups:
- ""

0
k8s/roles/agola/templates/rolebinding.yml.j2 → k8s/roles/agola/templates/rbac/rolebinding.yml.j2
View file

0
k8s/roles/agola/templates/serviceaccount.yml.j2 → k8s/roles/agola/templates/rbac/serviceaccount.yml.j2
View file