Revise harbor to use HTTPRoute and Gateway API
This commit is contained in:
@@ -7,50 +7,51 @@
|
|||||||
:image-port 80
|
:image-port 80
|
||||||
:vault-load-yaml false
|
:vault-load-yaml false
|
||||||
:k8s:chart-opts {:fetchOpts {:repo "https://helm.goharbor.io"}
|
:k8s:chart-opts {:fetchOpts {:repo "https://helm.goharbor.io"}
|
||||||
:values {:externalURL '(str "https://" host)
|
:values {:externalURL '(str "https://" host)
|
||||||
:expose {:type "ingress"
|
:expose {:type "route"
|
||||||
:tls {:enabled false}
|
:tls {:enabled false}
|
||||||
:ingress {:className "caddy"
|
:route {:hosts ['host]
|
||||||
:hosts {:core 'host}}}
|
:parentRefs [{:name "main-gateway"
|
||||||
:harborAdminPassword 'admin-password
|
:namespace "traefik"}]}}
|
||||||
:secretKey 'secret-key
|
:harborAdminPassword 'admin-password
|
||||||
:database {:enabled true
|
:secretKey 'secret-key
|
||||||
:internal {:password 'db-password}}
|
:database {:enabled true
|
||||||
:postgresql {:auth {:postgresPassword 'db-password}}
|
:internal {:password 'db-password}}
|
||||||
:persistence {:enabled true
|
:postgresql {:auth {:postgresPassword 'db-password}}
|
||||||
:resourcePolicy "keep"
|
:persistence {:enabled true
|
||||||
:imageChartStorage {:type "s3"
|
:resourcePolicy "keep"
|
||||||
:redirect {:disable true}
|
:imageChartStorage {:type "s3"
|
||||||
:delete {:enabled true}
|
:redirect {:disable true}
|
||||||
:disableredirect true
|
:delete {:enabled true}
|
||||||
:s3 {:region 'region
|
:disableredirect true
|
||||||
:bucket 'bucket
|
:s3 {:region 'region
|
||||||
:secure false
|
:bucket 'bucket
|
||||||
:v4auth true
|
:secure false
|
||||||
:accesskey 's3-access-key
|
:v4auth true
|
||||||
:secretkey 's3-secret-key
|
:accesskey 's3-access-key
|
||||||
:regionendpoint 'region-endpoint}}}
|
:secretkey 's3-secret-key
|
||||||
:core {:secret 'core-secret
|
:regionendpoint 'region-endpoint}}}
|
||||||
:xsrfKey 'core-xrsf-key
|
:core {:secret 'core-secret
|
||||||
:tokenKey 'core-token-key
|
:xsrfKey 'core-xrsf-key
|
||||||
:tokenCert 'core-token-cert}
|
:tokenKey 'core-token-key
|
||||||
:jobservice {:secret 'jobservice-secret}
|
:tokenCert 'core-token-cert}
|
||||||
:registry {:secret 'registry-secret
|
:jobservice {:secret 'jobservice-secret}
|
||||||
:s3 {:region 'region
|
:registry {:secret 'registry-secret
|
||||||
:bucket 'bucket
|
:s3 {:region 'region
|
||||||
:secure false
|
:bucket 'bucket
|
||||||
:forcepathstyle true
|
:secure false
|
||||||
:accesskey 's3-access-key
|
:forcepathstyle true
|
||||||
:secretkey 's3-secret-key
|
:accesskey 's3-access-key
|
||||||
:regionendpoint 'region-endpoint}
|
:secretkey 's3-secret-key
|
||||||
:upload_purging {:enabled true}
|
:regionendpoint 'region-endpoint}
|
||||||
:logLevel "debug"}}
|
:upload_purging {:enabled true}
|
||||||
:transformations [(fn [args _opts]
|
:logLevel "debug"}}
|
||||||
(let [kind (get-in args [:resource :kind])]
|
:transformations [(fn [args _opts]
|
||||||
(if (some #{kind} ["StatefulSet" "PersistentVolumeClaim" "Ingress"])
|
(let [kind (get-in args [:resource :kind])]
|
||||||
(update-in args [:resource :metadata :annotations]
|
(if (some #{kind} ["StatefulSet" "PersistentVolumeClaim" "Ingress"])
|
||||||
#(assoc (or % {}) "pulumi.com/skipAwait" "true"))
|
(update-in args [:resource :metadata :annotations]
|
||||||
args)))]}
|
#(assoc (or % {}) "pulumi.com/skipAwait" "true"))
|
||||||
|
args)))]}
|
||||||
:k8s:storage-class-opts {:provisioner "ru.yandex.s3.csi"
|
:k8s:storage-class-opts {:provisioner "ru.yandex.s3.csi"
|
||||||
:parameters {"mounter" "geesefs"
|
:parameters {"mounter" "geesefs"
|
||||||
"bucket" "pulumi-harbor"
|
"bucket" "pulumi-harbor"
|
||||||
|
|||||||
Reference in New Issue
Block a user