mirrors/dendrite
1
0
Fork 0
mirror of https://github.com/matrix-org/dendrite.git synced 2026-01-21 04:53:14 -06:00
Code Issues Packages Projects Releases Wiki Activity

A few fixes

Browse source
This commit is contained in:
Till Faelligen 2022-12-06 11:54:33 +01:00
parent 00785f04a1
commit 1fe68f0b14
No known key found for this signature in database
GPG key ID: ACCDC9606D472758
8 changed files with 35 additions and 89 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
.github/workflows/k8s.yml vendored
View file

@ -12,6 +12,7 @@ on:
jobs: jobs:
lint: lint:
name: Lint Helm chart
runs-on: ubuntu-latest runs-on: ubuntu-latest
outputs: outputs:
changed: ${{ steps.list-changed.outputs.changed }} changed: ${{ steps.list-changed.outputs.changed }}
@ -36,14 +37,14 @@ jobs:
fi fi
- name: Run lint - name: Run lint
run: ct lint --config helm/ct.yaml --target-branch ${{ github.event.repository.default_branch }} run: ct lint --config helm/ct.yaml
# only bother to run if lint step reports a change to the helm chart # only bother to run if lint step reports a change to the helm chart
install: install:
needs: needs:
- lint - lint
if: ${{ needs.lint.outputs.changed == 'true' }} if: ${{ needs.lint.outputs.changed == 'true' }}
name: Install charts name: Install Helm charts
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Checkout - name: Checkout

6
helm/dendrite/ci/ct-gen-key.yaml
View file

@ -1,6 +0,0 @@
postgresql:
enabled: true
configuration:
signing_key:
create: true

2
helm/dendrite/ci/ct-postgres.yaml
View file

@ -1,2 +0,0 @@
postgresql:
enabled: true

36
helm/dendrite/templates/deployment.yaml
View file

@ -18,26 +18,26 @@ spec:
app: {{ $.Chart.Name }} app: {{ $.Chart.Name }}
spec: spec:
volumes: volumes:
- name: {{ $.Chart.Name }}-conf-vol - name: {{ .Release.Name }}-conf-vol
secret: secret:
secretName: {{ $.Chart.Name }}-conf secretName: {{ .Release.Name }}-conf
- name: {{ $.Chart.Name }}-signing-key - name: {{ .Release.Name }}-signing-key
secret: secret:
secretName: {{ default "dendrite-signing-key" $.Values.configuration.signing_key.existingSecret | quote }} secretName: {{ default (print .Release.Name "-signing-key") $.Values.configuration.signing_key.existingSecret | quote }}
{{- if (gt (len ($.Files.Glob "appservices/*")) 0) }} {{- if (gt (len ($.Files.Glob "appservices/*")) 0) }}
- name: {{ $.Chart.Name }}-appservices - name:{{ .Release.Name }}-appservices
secret: secret:
secretName: {{ $.Chart.Name }}-appservices-conf secretName: {{ .Release.Name }}-appservices-conf
{{- end }} {{- end }}
- name: dendrite-jetstream - name: {{ .Release.Name }}-jetstream
persistentVolumeClaim: persistentVolumeClaim:
claimName: {{ default "dendrite-jetstream-pvc" $.Values.persistence.jetstream.existingClaim | quote }} claimName: {{ default (print .Release.Name "-jetstream-pvc") $.Values.persistence.jetstream.existingClaim | quote }}
- name: dendrite-media - name: {{ .Release.Name }}-media
persistentVolumeClaim: persistentVolumeClaim:
claimName: {{ default "dendrite-media-pvc" $.Values.persistence.media.existingClaim | quote }} claimName: {{ default (print .Release.Name "-media-pvc") $.Values.persistence.media.existingClaim | quote }}
- name: dendrite-search - name: {{ .Release.Name }}-search
persistentVolumeClaim: persistentVolumeClaim:
claimName: {{ default "dendrite-serach-pvc" $.Values.persistence.search.existingClaim | quote }} claimName: {{ default (print .Release.Name "-search-pvc") $.Values.persistence.search.existingClaim | quote }}
containers: containers:
- name: {{ $.Chart.Name }} - name: {{ $.Chart.Name }}
{{- include "image.name" $.Values.image | nindent 8 }} {{- include "image.name" $.Values.image | nindent 8 }}
@ -48,17 +48,17 @@ spec:
{{- toYaml $.Values.resources | nindent 10 }} {{- toYaml $.Values.resources | nindent 10 }}
volumeMounts: volumeMounts:
- mountPath: /etc/dendrite/ - mountPath: /etc/dendrite/
name: {{ $.Chart.Name }}-conf-vol name: {{ .Release.Name }}-conf-vol
- mountPath: /etc/dendrite/secrets/ - mountPath: /etc/dendrite/secrets/
name: {{ $.Chart.Name }}-signing-key name: {{ .Release.Name }}-signing-key
{{- if (gt (len ($.Files.Glob "appservices/*")) 0) }} {{- if (gt (len ($.Files.Glob "appservices/*")) 0) }}
- mountPath: /etc/dendrite/appservices - mountPath: /etc/dendrite/appservices
name: {{ $.Chart.Name }}-appservices name: {{ .Release.Name }}-appservices
readOnly: true readOnly: true
{{ end }} {{ end }}
- mountPath: /data/media_store - mountPath: /data/media_store
name: dendrite-media name: {{ .Release.Name }}-media
- mountPath: /data/jetstream - mountPath: /data/jetstream
name: dendrite-jetstream name: {{ .Release.Name }}-jetstream
- mountPath: /data/search - mountPath: /data/search
name: dendrite-search name: {{ .Release.Name }}-search

6
helm/dendrite/templates/jobs.yaml
View file

@ -1,6 +1,6 @@
{{ if and .Values.configuration.signing_key.create (not .Values.configuration.signing_key.existingSecret ) }} {{ if and .Values.configuration.signing_key.create (not .Values.configuration.signing_key.existingSecret ) }}
{{ $name := "dendrite-signing-key" }} {{ $name := (print .Release.Name "-signing-key") }}
{{ $secretName := "dendrite-signing-key" }} {{ $secretName := (print .Release.Name "-signing-key") }}
--- ---
apiVersion: v1 apiVersion: v1
kind: ServiceAccount kind: ServiceAccount
@ -50,7 +50,7 @@ spec:
template: template:
spec: spec:
restartPolicy: "Never" restartPolicy: "Never"
serviceAccount: dendrite-signing-key serviceAccount: {{ $name }}
containers: containers:
- name: upload-key - name: upload-key
image: bitnami/kubectl image: bitnami/kubectl

54
helm/dendrite/templates/pvc.yaml
View file

@ -1,27 +1,11 @@
{{ if not .Values.persistence.media.existingClaim }} {{ if not .Values.persistence.media.existingClaim }}
--- ---
apiVersion: v1 apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
helm.sh/resource-policy: keep
name: dendrite-media
spec:
capacity:
storage: {{ .Values.persistence.media.capacity }}
volumeMode: Filesystem
accessModes:
- ReadWriteOnce
storageClassName: {{ .Values.persistence.storageClass }}
---
apiVersion: v1
kind: PersistentVolumeClaim kind: PersistentVolumeClaim
metadata: metadata:
annotations: annotations:
helm.sh/resource-policy: keep helm.sh/resource-policy: keep
name: dendrite-media-pvc name: {{ .Release.Name }}-media-pvc
labels:
app: dendrite
spec: spec:
accessModes: accessModes:
- ReadWriteOnce - ReadWriteOnce
@ -33,27 +17,11 @@ spec:
{{ if not .Values.persistence.jetstream.existingClaim }} {{ if not .Values.persistence.jetstream.existingClaim }}
--- ---
apiVersion: v1 apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
helm.sh/resource-policy: keep
name: dendrite-jetstream
spec:
capacity:
storage: {{ .Values.persistence.jetstream.capacity }}
volumeMode: Filesystem
accessModes:
- ReadWriteOnce
storageClassName: {{ .Values.persistence.storageClass }}
---
apiVersion: v1
kind: PersistentVolumeClaim kind: PersistentVolumeClaim
metadata: metadata:
annotations: annotations:
helm.sh/resource-policy: keep helm.sh/resource-policy: keep
name: dendrite-jetstream-pvc name: {{ .Release.Name }}-jetstream-pvc
labels:
app: dendrite
spec: spec:
accessModes: accessModes:
- ReadWriteOnce - ReadWriteOnce
@ -65,27 +33,11 @@ spec:
{{ if not .Values.persistence.search.existingClaim }} {{ if not .Values.persistence.search.existingClaim }}
--- ---
apiVersion: v1 apiVersion: v1
kind: PersistentVolume
metadata:
annotations:
helm.sh/resource-policy: keep
name: dendrite-search
spec:
capacity:
storage: {{ .Values.persistence.search.capacity }}
volumeMode: Filesystem
accessModes:
- ReadWriteOnce
storageClassName: {{ .Values.persistence.storageClass }}
---
apiVersion: v1
kind: PersistentVolumeClaim kind: PersistentVolumeClaim
metadata: metadata:
annotations: annotations:
helm.sh/resource-policy: keep helm.sh/resource-policy: keep
name: dendrite-search-pvc name: {{ .Release.Name }}-search-pvc
labels:
app: dendrite
spec: spec:
accessModes: accessModes:
- ReadWriteOnce - ReadWriteOnce

7
helm/dendrite/templates/secrets.yaml
View file

@ -3,7 +3,7 @@
apiVersion: v1 apiVersion: v1
kind: Secret kind: Secret
metadata: metadata:
name: {{ .Chart.Name }}-appservices-conf name: {{ .Release.Name }}-appservices-conf
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
type: Opaque type: Opaque
data: data:
@ -16,7 +16,7 @@ kind: Secret
metadata: metadata:
annotations: annotations:
helm.sh/resource-policy: keep helm.sh/resource-policy: keep
name: {{ .Chart.Name }}-signing-key name: {{ .Release.Name }}-signing-key
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
type: Opaque type: Opaque
{{ end }} {{ end }}
@ -30,12 +30,13 @@ apiVersion: v1
kind: Secret kind: Secret
type: Opaque type: Opaque
metadata: metadata:
name: {{ .Chart.Name }}-conf name: {{ .Release.Name }}-conf
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
stringData: stringData:
dendrite.yaml: | dendrite.yaml: |
version: 2 version: 2
global: global:
server_name: {{ .Values.configuration.server_name }}
private_key: /etc/dendrite/secrets/signing.key private_key: /etc/dendrite/secrets/signing.key
key_id: ed25519:auto key_id: ed25519:auto
key_validity_period: {{ .Values.configuration.key_validity_period | quote }} key_validity_period: {{ .Values.configuration.key_validity_period | quote }}

8
helm/dendrite/values.yaml
View file

@ -6,7 +6,7 @@ image:
configuration: configuration:
# -- Servername for this Dendrite deployment # -- Servername for this Dendrite deployment
servername: "" server_name: ""
# -- The server name to delegate server-server communications to, with optional port # -- The server name to delegate server-server communications to, with optional port
# e.g. localhost:443 # e.g. localhost:443
@ -151,13 +151,13 @@ persistence:
storageClass: local-path storageClass: local-path
jetstream: jetstream:
existingClaim: "" existingClaim: ""
capacity: "5Gi" capacity: "1Gi"
media: media:
existingClaim: "" existingClaim: ""
capacity: "10Gi" capacity: "1Gi"
search: search:
existingClaim: "" existingClaim: ""
capacity: "5Gi" capacity: "1Gi"
clientapi: clientapi:
registration: registration: