diff --git a/01_onsite/00_infra/keycloack/deployment.yaml b/01_onsite/00_infra/keycloack/deployment.yaml index 11b41bd..0923515 100644 --- a/01_onsite/00_infra/keycloack/deployment.yaml +++ b/01_onsite/00_infra/keycloack/deployment.yaml @@ -75,6 +75,13 @@ spec: backend: serviceName: keycloack-srv servicePort: 8080 + - host: keycloak.semapp.lan + http: + paths: + - path: / + backend: + serviceName: keycloack-srv + servicePort: 8080 diff --git a/01_onsite/01_dev/efc-shop/deployment.yaml b/01_onsite/01_dev/efc-shop/deployment.yaml index e320436..d3a9f88 100644 --- a/01_onsite/01_dev/efc-shop/deployment.yaml +++ b/01_onsite/01_dev/efc-shop/deployment.yaml @@ -60,6 +60,7 @@ metadata: data: REACT_APP_PROD_API_URL: "http://efc-shop-dev.k3s.semapp.lan/" REACT_APP_DEV_API_URL: http://efc-shop-dev.k3s.semapp.lan/ + REACT_APP_BASE_URL: "http://efc-dev.k3s.semapp.lan/" --- diff --git a/01_onsite/01_dev/efc/deployment.yaml b/01_onsite/01_dev/efc/deployment.yaml index 2c74d88..3757ee9 100644 --- a/01_onsite/01_dev/efc/deployment.yaml +++ b/01_onsite/01_dev/efc/deployment.yaml @@ -107,6 +107,7 @@ data: PORT_FRONTEND: '8500' SHOP_FRONTEND_URL: "http://efc-shop-dev.k3s.semapp.lan" SHOP_PORT_FRONTEND: '8501' + REACT_APP_BASE_URL: "http://efc-dev.k3s.semapp.lan/" --- apiVersion: v1 diff --git a/01_onsite/02_qa/efc-shop/deployment.yaml b/01_onsite/02_qa/efc-shop/deployment.yaml new file mode 100644 index 0000000..333a53a --- /dev/null +++ b/01_onsite/02_qa/efc-shop/deployment.yaml @@ -0,0 +1,155 @@ +# Deployment description +apiVersion: apps/v1 +kind: Deployment +metadata: + name: efc-shop-deployment + namespace: qa-environment + labels: + app: efc-shop-qa +spec: + strategy: + type: Recreate + replicas: 1 + selector: + matchLabels: + app: efc-shop-qa + template: + metadata: + labels: + app: efc-shop-qa + spec: + containers: + - name: efc-shop-frontend + image: packages.semapp.lan:5000/efc-shop_frontend:$IMAGE_TAG + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 8501 + name: efc-shop-http + protocol: TCP + volumeMounts: + - mountPath: /etc/nginx/conf.d + readOnly: true + name: nginx-shop-qa + imagePullPolicy: Always + envFrom: + - configMapRef: + name: efc-shop-qa-config + volumes: + - name: nginx-shop-qa + configMap: + name: nginx-shop-qa + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: qa-environment + name: efc-shop-qa-config + labels: + app: efc-shop-qa +data: + REACT_APP_PROD_API_URL: "http://efc-shop-qa.k3s.semapp.lan/" + REACT_APP_DEV_API_URL: http://efc-shop-qa.k3s.semapp.lan/ + REACT_APP_BASE_URL: "http://efc-qa.k3s.semapp.lan/" + + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: qa-environment + name: nginx-shop-qa +data: + default.conf: | + upstream backend { + server efc-backend-qa:5500; + } + + server { + listen 8501; + access_log /var/log/nginx/access.log; + charset utf-8; + client_max_body_size 1G; + + location / { + root /srv/efc-shop; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location ~ ^/api { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /storage { + proxy_pass http://backend/storage; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + error_page 404 =200 /index.html; + + add_header 'Cache-Control' 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0'; + + expires off; + open_file_cache off; + sendfile off; + } + +--- +# EFC Service +apiVersion: v1 +kind: Service +metadata: + name: efc-shop-frontend-qa + namespace: qa-environment +spec: + selector: + app: efc-shop-qa + ports: + - name: efc-http + port: 8501 + targetPort: efc-shop-http + type: NodePort + +--- + +# Ingress description +apiVersion: networking.k8s.io/v1beta1 +kind: Ingress +metadata: + name: efc-shop-qa-ingress + namespace: qa-environment + annotations: + kubernetes.io/ingress.class: "traefik" +spec: + rules: + - host: efc-shop-qa.k3s.semapp.lan + http: + paths: + - path: / + backend: + serviceName: efc-shop-frontend-qa + servicePort: 8501 \ No newline at end of file diff --git a/01_onsite/02_qa/efc/deployment.yaml b/01_onsite/02_qa/efc/deployment.yaml new file mode 100644 index 0000000..6ce69a2 --- /dev/null +++ b/01_onsite/02_qa/efc/deployment.yaml @@ -0,0 +1,252 @@ +# Deployment description +apiVersion: apps/v1 +kind: Deployment +metadata: + name: efc-deployment + namespace: qa-environment + labels: + app: efc-qa +spec: + strategy: + type: Recreate + replicas: 1 + selector: + matchLabels: + app: efc-qa + template: + metadata: + labels: + app: efc-qa + spec: + containers: + - name: efc-frontend + image: packages.semapp.lan:5000/efc-admin_frontend:$IMAGE_TAG + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 8500 + name: efc-http + protocol: TCP + volumeMounts: + - mountPath: /etc/nginx/conf.d + readOnly: true + name: nginx-conf-qa + imagePullPolicy: Always + envFrom: + - configMapRef: + name: efc-qa-config + - name: efc-backend + image: packages.semapp.lan:5000/efc-admin_backend:$IMAGE_TAG + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 5500 + name: efc-backend + protocol: TCP + imagePullPolicy: Always + volumeMounts: + - mountPath: /opt/efc/storage + name: efc-pv-qa + envFrom: + - configMapRef: + name: efc-qa-config + volumes: + - name: nginx-conf-qa + configMap: + name: nginx-conf-qa + - name: efc-pv-qa + persistentVolumeClaim: + claimName: efc-pvc-qa + +--- +# Persistent Volume Claim description +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: efc-pvc-qa + namespace: qa-environment + labels: + app: efc-qa +spec: + storageClassName: longhorn + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 2Gi + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: qa-environment + name: efc-qa-config + labels: + app: efc-qa +data: + DJANGO_DB_ENGINE: "django.db.backends.postgresql_psycopg2" + DJANGO_DB_NAME: "efc_qa" + DJANGO_DB_USER: "efc" + DJANGO_DB_PASSWORD: "O35iWjsO6RjvQulI2yti" + DJANGO_DB_HOST: "dbpg11.semapp.lan" + DJANGO_DB_PORT: "5432" + ALLOWED_HOSTS: '["*"]' + FRONTEND_URL: "http://efc-qa.k3s.semapp.lan" + REACT_APP_PROD_API_URL: "http://efc-qa.k3s.semapp.lan/" + REACT_APP_DEV_API_URL: http://efc-qa.k3s.semapp.lan/ + REACT_APP_BASE_URL: "http://efc-qa.k3s.semapp.lan/" + PORT_FRONTEND: '8500' + SHOP_FRONTEND_URL: "http://efc-shop-qa.k3s.semapp.lan" + SHOP_PORT_FRONTEND: '8501' + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: qa-environment + name: nginx-conf-qa +data: + default.conf: | + upstream backend { + server efc-backend-qa:5500; + } + + server { + listen 8500; + access_log /var/log/nginx/access.log; + charset utf-8; + client_max_body_size 1G; + + location / { + root /srv/efc; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location /administration { + root /srv/efc; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location ~ ^/api { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /storage { + proxy_pass http://backend/storage; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /admin { + proxy_pass http://backend/admin; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /static-backend { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + error_page 404 =200 /index.html; + + add_header 'Cache-Control' 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0'; + + expires off; + open_file_cache off; + sendfile off; + } + +--- +# EFC Service +apiVersion: v1 +kind: Service +metadata: + name: efc-frontend-qa + namespace: qa-environment +spec: + selector: + app: efc-qa + ports: + - name: efc-http + port: 8500 + targetPort: efc-http + type: NodePort + +--- +# EFC backend +apiVersion: v1 +kind: Service +metadata: + name: efc-backend-qa + namespace: qa-environment +spec: + selector: + app: efc-qa + ports: + - name: efc-backend + port: 5500 + targetPort: efc-backend + type: NodePort +--- + +# Ingress description +apiVersion: networking.k8s.io/v1beta1 +kind: Ingress +metadata: + name: efc-qa-ingress + namespace: qa-environment + annotations: + kubernetes.io/ingress.class: "traefik" +spec: + rules: + - host: efc-qa.k3s.semapp.lan + http: + paths: + - path: / + backend: + serviceName: efc-frontend-qa + servicePort: 8500 \ No newline at end of file diff --git a/02_hetzner/01_prod/efc-shop/deployment.yaml b/02_hetzner/01_prod/efc-shop/deployment.yaml new file mode 100644 index 0000000..ce99c11 --- /dev/null +++ b/02_hetzner/01_prod/efc-shop/deployment.yaml @@ -0,0 +1,163 @@ +# Deployment description +apiVersion: apps/v1 +kind: Deployment +metadata: + name: efc-shop-deployment + namespace: prod-environment + labels: + app: efc-shop +spec: + strategy: + type: Recreate + replicas: 1 + selector: + matchLabels: + app: efc-shop + template: + metadata: + labels: + app: efc-shop + spec: + containers: + - name: efc-shop-frontend + image: packages.semapp.lan:5000/efc-shop_frontend:prod + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 8501 + name: efc-shop-http + protocol: TCP + volumeMounts: + - mountPath: /etc/nginx/conf.d + readOnly: true + name: nginx-shop-prod + imagePullPolicy: Always + envFrom: + - configMapRef: + name: efc-shop-config-prod + volumes: + - name: nginx-shop-prod + configMap: + name: nginx-shop-prod + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: prod-environment + name: efc-shop-config-prod + labels: + app: efc-shop +data: + REACT_APP_PROD_API_URL: "http://efc-shop.k8s.semprod.local" + REACT_APP_DEV_API_URL: "http://efc-shop.k8s.semprod.local" + REACT_APP_BASE_URL: "http://efc-admin.k8s.semprod.local/" + + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: prod-environment + name: nginx-shop-prod +data: + default.conf: | + upstream backend { + server efc-backend-prod:5500; + } + + server { + listen 8501; + access_log /var/log/nginx/access.log; + charset utf-8; + client_max_body_size 1G; + + location / { + root /srv/efc-shop; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location ~ ^/api { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /storage { + proxy_pass http://backend/storage; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + error_page 404 =200 /index.html; + + add_header 'Cache-Control' 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0'; + + expires off; + open_file_cache off; + sendfile off; + } + +--- +# EFC Service +apiVersion: v1 +kind: Service +metadata: + name: efc-shop-frontend-prod + namespace: prod-environment +spec: + selector: + app: efc-shop + ports: + - name: efc-http + port: 8501 + targetPort: efc-shop-http + type: NodePort + +--- + +# Ingress description +apiVersion: networking.k8s.io/v1beta1 +kind: Ingress +metadata: + name: efc-shop-ingress + namespace: prod-environment + annotations: + kubernetes.io/ingress.class: "traefik" +spec: + rules: + - host: efc-shop.k8s.semprod.local + http: + paths: + - path: / + backend: + serviceName: efc-shop-frontend-prod + servicePort: 8501 + + - host: shop.inferno-fulda.de + http: + paths: + - path: / + backend: + serviceName: efc-shop-frontend-prod + servicePort: 8501 \ No newline at end of file diff --git a/02_hetzner/01_prod/efc/deployment.yaml b/02_hetzner/01_prod/efc/deployment.yaml new file mode 100644 index 0000000..72398ad --- /dev/null +++ b/02_hetzner/01_prod/efc/deployment.yaml @@ -0,0 +1,253 @@ +# Deployment description +apiVersion: apps/v1 +kind: Deployment +metadata: + name: efc-deployment + namespace: prod-environment + labels: + app: efc +spec: + strategy: + type: Recreate + replicas: 1 + selector: + matchLabels: + app: efc + template: + metadata: + labels: + app: efc + spec: + containers: + - name: efc-frontend + image: packages.semapp.lan:5000/efc-admin_frontend:prod + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 8500 + name: efc-http + protocol: TCP + volumeMounts: + - mountPath: /etc/nginx/conf.d + readOnly: true + name: efc-prod-nginx + imagePullPolicy: Always + envFrom: + - configMapRef: + name: efc-prod-config + - name: efc-backend + image: packages.semapp.lan:5000/efc-admin_backend:prod + resources: + requests: + memory: "256Mi" + cpu: "100m" + limits: + memory: "512Mi" + cpu: "4" + ports: + - containerPort: 5500 + name: efc-backend + protocol: TCP + imagePullPolicy: Always + volumeMounts: + - mountPath: /opt/efc/storage + name: efc-pv-prod + envFrom: + - configMapRef: + name: efc-prod-config + volumes: + - name: efc-prod-nginx + configMap: + name: efc-prod-nginx + - name: efc-pv-prod + persistentVolumeClaim: + claimName: efc-pvc-prod + +--- +# Persistent Volume Claim description +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: efc-pvc-prod + namespace: prod-environment + labels: + app: efc +spec: + storageClassName: longhorn + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 2Gi + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: prod-environment + name: efc-prod-config + labels: + app: efc +data: + DJANGO_DB_ENGINE: "django.db.backends.postgresql_psycopg2" + DJANGO_DB_NAME: "efc-prod" + DJANGO_DB_USER: "efc-prod" + DJANGO_DB_PASSWORD: "O35iWjsO6RjvQulI2yti" + DJANGO_DB_HOST: "psql.semprod.local" + DJANGO_DB_PORT: "5432" + ALLOWED_HOSTS: '["*"]' + FRONTEND_URL: "http://efc-admin.k8s.semprod.local" + REACT_APP_PROD_API_URL: "http://efc-admin.k8s.semprod.local" + REACT_APP_DEV_API_URL: "http://efc-admin.k8s.semprod.local" + REACT_APP_BASE_URL: "http://efc-admin.k8s.semprod.local/" + PORT_FRONTEND: '8500' + SHOP_FRONTEND_URL: "http://efc-shop.k8s.semprod.local" + SHOP_PORT_FRONTEND: '8501' + +--- +apiVersion: v1 +kind: ConfigMap +metadata: + namespace: prod-environment + name: efc-prod-nginx +data: + default.conf: | + upstream backend { + server efc-backend-prod:5500; + } + + server { + listen 8500; + access_log /var/log/nginx/access.log; + charset utf-8; + client_max_body_size 1G; + + location / { + root /srv/efc; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location /administration { + root /srv/efc; + index index.html index.htm; + try_files $uri $uri /index.html =404; + } + + location ~ ^/api { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /storage { + proxy_pass http://backend/storage; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /admin { + proxy_pass http://backend/admin; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + location /static-backend { + proxy_pass http://backend; + proxy_redirect off; + + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + + proxy_read_timeout 300s; + proxy_send_timeout 300s; + send_timeout 300s; + } + + error_page 404 =200 /index.html; + + add_header 'Cache-Control' 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0'; + + expires off; + open_file_cache off; + sendfile off; + } + +--- +# EFC Service +apiVersion: v1 +kind: Service +metadata: + name: efc-frontend-prod + namespace: prod-environment +spec: + selector: + app: efc + ports: + - name: efc-http + port: 8500 + targetPort: efc-http + type: NodePort + +--- +# EFC backend +apiVersion: v1 +kind: Service +metadata: + name: efc-backend-prod + namespace: prod-environment +spec: + selector: + app: efc + ports: + - name: efc-backend + port: 5500 + targetPort: efc-backend + type: NodePort +--- + +# Ingress description +apiVersion: networking.k8s.io/v1beta1 +kind: Ingress +metadata: + name: efc-prod-ingress + namespace: prod-environment + annotations: + kubernetes.io/ingress.class: "traefik" +spec: + rules: + - host: efc-admin.k8s.semprod.local + http: + paths: + - path: / + backend: + serviceName: efc-frontend-prod + servicePort: 8500 + \ No newline at end of file