Updates Secrets Creation
This commit is contained in:
11
deploy.sh
11
deploy.sh
@@ -16,12 +16,11 @@ function application_deploy() {
|
|||||||
|
|
||||||
kubectl apply -f ./deployment/portfolio-namespace.yaml;
|
kubectl apply -f ./deployment/portfolio-namespace.yaml;
|
||||||
|
|
||||||
|
kubectl create secret generic backend-secret -n portfolio --from-env-file <(jq -r "to_entries|map(\"\(.key)=\(.value|tostring)\")|.[]" ./deployment/secrets/backendSecret.json);
|
||||||
kubectl apply -f ./deployment/postgres/postgres-secret.yaml;
|
kubectl create secret generic frontend-secret -n portfolio --from-env-file <(jq -r "to_entries|map(\"\(.key)=\(.value|tostring)\")|.[]" ./deployment/secrets/frontendSecret.json);
|
||||||
kubectl apply -f ./deployment/redis/redis-secret.yaml;
|
kubectl create secret generic postgres-secret -n portfolio --from-env-file <(jq -r "to_entries|map(\"\(.key)=\(.value|tostring)\")|.[]" ./deployment/secrets/postgresSecret.json);
|
||||||
kubectl apply -f ./deployment/storage/storage-secret.yaml;
|
kubectl create secret generic redis-secret -n portfolio --from-env-file <(jq -r "to_entries|map(\"\(.key)=\(.value|tostring)\")|.[]" ./deployment/secrets/redisSecret.json);
|
||||||
kubectl apply -f ./deployment/backend/backend-secret.yaml;
|
kubectl create secret generic storage-secret -n portfolio --from-env-file <(jq -r "to_entries|map(\"\(.key)=\(.value|tostring)\")|.[]" ./deployment/secrets/storageSecret.json);
|
||||||
kubectl apply -f ./deployment/frontend/frontend-secret.yaml;
|
|
||||||
|
|
||||||
kubectl apply -f \
|
kubectl apply -f \
|
||||||
./deployment/cert-manager/cert-manager-certificate.yaml;
|
./deployment/cert-manager/cert-manager-certificate.yaml;
|
||||||
|
|||||||
@@ -24,49 +24,49 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: frontend-secret
|
name: frontend-secret
|
||||||
key: frontend_path
|
key: frontendPath
|
||||||
|
|
||||||
- name: TOKEN_SECRET
|
- name: TOKEN_SECRET
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: token_secret
|
key: tokenSecret
|
||||||
|
|
||||||
- name: ACCESS_TOKEN_DURATION
|
- name: ACCESS_TOKEN_DURATION
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: access_token_duration
|
key: accessTokenDuration
|
||||||
|
|
||||||
- name: REFRESH_TOKEN_DURATION
|
- name: REFRESH_TOKEN_DURATION
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: refresh_token_duration
|
key: refreshTokenDuration
|
||||||
|
|
||||||
- name: DEFAULT_USER_FULLNAME
|
- name: DEFAULT_USER_FULLNAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: default_user_fullname
|
key: defaultUserFullName
|
||||||
|
|
||||||
- name: DEFAULT_USER_EMAIL
|
- name: DEFAULT_USER_EMAIL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: default_user_email
|
key: defaultUserEmail
|
||||||
|
|
||||||
- name: DEFAULT_USER_USERNAME
|
- name: DEFAULT_USER_USERNAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: default_user_username
|
key: defaultUserUsername
|
||||||
|
|
||||||
- name: DEFAULT_USER_PASSWORD
|
- name: DEFAULT_USER_PASSWORD
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: default_user_password
|
key: defaultUserPassword
|
||||||
|
|
||||||
- name: PORT
|
- name: PORT
|
||||||
valueFrom:
|
valueFrom:
|
||||||
@@ -78,37 +78,37 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: google_client_id
|
key: googleClientId
|
||||||
|
|
||||||
- name: GOOGLE_CLIENT_SECRET
|
- name: GOOGLE_CLIENT_SECRET
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: google_client_secret
|
key: googleClientSecret
|
||||||
|
|
||||||
- name: GOOGLE_REDIRECT_URL
|
- name: GOOGLE_REDIRECT_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: google_redirect_url
|
key: googleRedirectUrl
|
||||||
|
|
||||||
- name: GITHUB_CLIENT_ID
|
- name: GITHUB_CLIENT_ID
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: github_client_id
|
key: githubClientId
|
||||||
|
|
||||||
- name: GITHUB_CLIENT_SECRET
|
- name: GITHUB_CLIENT_SECRET
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: github_client_secret
|
key: githubClientSecret
|
||||||
|
|
||||||
- name: GITHUB_REDIRECT_URL
|
- name: GITHUB_REDIRECT_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: github_redirect_url
|
key: githubRedirectUrl
|
||||||
|
|
||||||
- name: POSTGRES_URL
|
- name: POSTGRES_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
@@ -120,7 +120,7 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: postgres-secret
|
name: postgres-secret
|
||||||
key: POSTGRES_DB
|
key: postgresDatabase
|
||||||
|
|
||||||
- name: DATABASE_URL
|
- name: DATABASE_URL
|
||||||
value: "postgresql://$(POSTGRES_URL):5432/$(POSTGRES_DB)"
|
value: "postgresql://$(POSTGRES_URL):5432/$(POSTGRES_DB)"
|
||||||
@@ -129,13 +129,13 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: postgres-secret
|
name: postgres-secret
|
||||||
key: POSTGRES_USER
|
key: postgresUser
|
||||||
|
|
||||||
- name: DATABASE_PASSWORD
|
- name: DATABASE_PASSWORD
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: postgres-secret
|
name: postgres-secret
|
||||||
key: POSTGRES_PASSWORD
|
key: postgresPassword
|
||||||
|
|
||||||
- name: REDIS_URL
|
- name: REDIS_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
@@ -153,7 +153,7 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: redis-secret
|
name: redis-secret
|
||||||
key: redis-password
|
key: redisPassword
|
||||||
|
|
||||||
- name: STORAGE_SERVICE_URL
|
- name: STORAGE_SERVICE_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
|
|||||||
@@ -28,12 +28,12 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: frontend-secret
|
name: frontend-secret
|
||||||
key: backend_url
|
key: backendUrl
|
||||||
- name: BACKEND_OAUTH_URL
|
- name: BACKEND_OAUTH_URL
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: frontend-secret
|
name: frontend-secret
|
||||||
key: backend_oauth_url
|
key: backendOAuthUrl
|
||||||
|
|
||||||
---
|
---
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
|
|||||||
@@ -19,9 +19,24 @@ spec:
|
|||||||
imagePullPolicy: "IfNotPresent"
|
imagePullPolicy: "IfNotPresent"
|
||||||
ports:
|
ports:
|
||||||
- containerPort: 5432
|
- containerPort: 5432
|
||||||
envFrom:
|
env:
|
||||||
- secretRef:
|
- name: POSTGRES_PASSWORD
|
||||||
name: postgres-secret
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: postgres-secret
|
||||||
|
key: postgresPassword
|
||||||
|
|
||||||
|
- name: POSTGRES_USER
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: postgres-secret
|
||||||
|
key: postgresUser
|
||||||
|
|
||||||
|
- name: POSTGRES_DB
|
||||||
|
valueFrom:
|
||||||
|
secretKeyRef:
|
||||||
|
name: postgres-secret
|
||||||
|
key: postgresDatabase
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
- mountPath: /var/lib/postgresql/data
|
- mountPath: /var/lib/postgresql/data
|
||||||
name: postgredb
|
name: postgredb
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: redis-secret
|
name: redis-secret
|
||||||
key: redis-password
|
key: redisPassword
|
||||||
|
|
||||||
---
|
---
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
|
|||||||
@@ -20,7 +20,7 @@ spec:
|
|||||||
args: [ "-q" ]
|
args: [ "-q" ]
|
||||||
imagePullPolicy: "Always"
|
imagePullPolicy: "Always"
|
||||||
env:
|
env:
|
||||||
- name: REDIS_BASE_URL
|
- name: REDIS_HOST
|
||||||
valueFrom:
|
valueFrom:
|
||||||
configMapKeyRef:
|
configMapKeyRef:
|
||||||
name: redis-config
|
name: redis-config
|
||||||
@@ -36,49 +36,46 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: redis-secret
|
name: redis-secret
|
||||||
key: redis-password
|
key: redisPassword
|
||||||
|
|
||||||
- name: REDIS_URL
|
|
||||||
value: "redis://:$(REDIS_PASSWORD)@$(REDIS_BASE_URL):$(REDIS_PORT)"
|
|
||||||
|
|
||||||
- name: STORAGE_TYPE
|
- name: STORAGE_TYPE
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: storage_type
|
key: storageType
|
||||||
|
|
||||||
- name: AWS_ACCESS_KEY_ID
|
- name: AWS_ACCESS_KEY_ID
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_access_key_id
|
key: awsAccessKeyId
|
||||||
|
|
||||||
- name: AWS_SECRET_ACCESS_KEY
|
- name: AWS_SECRET_ACCESS_KEY
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_access_access_key
|
key: awsSecretAccessKey
|
||||||
|
|
||||||
- name: AWS_REGION_NAME
|
- name: AWS_REGION_NAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_region_name
|
key: awsRegion
|
||||||
|
|
||||||
- name: AWS_BUCKET_NAME
|
- name: AWS_BUCKET_NAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_bucket_name
|
key: awsBucket
|
||||||
|
|
||||||
- name: VIRUS_CHECKER_TYPE
|
- name: VIRUS_CHECKER_TYPE
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: virus_checker_type
|
key: virusCheckerType
|
||||||
|
|
||||||
- name: VIRUS_CHECKER_API_KEY
|
- name: VIRUS_CHECKER_API_KEY
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: virus_checher_api_key
|
key: virusCheckerApiKey
|
||||||
@@ -24,13 +24,13 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: frontend-secret
|
name: frontend-secret
|
||||||
key: backend_url
|
key: frontendPath
|
||||||
|
|
||||||
- name: EXPIRES_IN
|
- name: EXPIRES_IN
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: backend-secret
|
name: backend-secret
|
||||||
key: access_token_duration
|
key: accessTokenDuration
|
||||||
|
|
||||||
- name: SERVER_PORT
|
- name: SERVER_PORT
|
||||||
valueFrom:
|
valueFrom:
|
||||||
@@ -54,49 +54,49 @@ spec:
|
|||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: redis-secret
|
name: redis-secret
|
||||||
key: redis-password
|
key: redisPassword
|
||||||
|
|
||||||
- name: STORAGE_TYPE
|
- name: STORAGE_TYPE
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: storage_type
|
key: storageType
|
||||||
|
|
||||||
- name: AWS_ACCESS_KEY_ID
|
- name: AWS_ACCESS_KEY_ID
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_access_key_id
|
key: awsAccessKeyId
|
||||||
|
|
||||||
- name: AWS_SECRET_ACCESS_KEY
|
- name: AWS_SECRET_ACCESS_KEY
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_access_access_key
|
key: awsSecretAccessKey
|
||||||
|
|
||||||
- name: AWS_REGION_NAME
|
- name: AWS_REGION_NAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_region_name
|
key: awsRegion
|
||||||
|
|
||||||
- name: AWS_BUCKET_NAME
|
- name: AWS_BUCKET_NAME
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: aws_bucket_name
|
key: awsBucket
|
||||||
|
|
||||||
- name: VIRUS_CHECKER_TYPE
|
- name: VIRUS_CHECKER_TYPE
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: virus_checker_type
|
key: virusCheckerType
|
||||||
|
|
||||||
- name: VIRUS_CHECKER_API_KEY
|
- name: VIRUS_CHECKER_API_KEY
|
||||||
valueFrom:
|
valueFrom:
|
||||||
secretKeyRef:
|
secretKeyRef:
|
||||||
name: storage-secret
|
name: storage-secret
|
||||||
key: virus_checher_api_key
|
key: virusCheckerApiKey
|
||||||
|
|
||||||
---
|
---
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
|
|||||||
Reference in New Issue
Block a user