steffen/kubedeploy-k3s
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

paperless init

Browse Source
This commit is contained in:
Steffen Illium
2024-04-02 13:56:29 +02:00
parent f8578d337b
commit 761a6222fa
13 changed files with 272 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
apps/gitea/kustomization.yaml
View File

@ -7,7 +7,7 @@ resources:
- base/gitea-ingress.yaml
- base/gitea-service.yaml
- base/gitea-deployment.yaml
- base/gitea-data-pvc.yaml
# - base/gitea-data-pvc.yaml
- base/gitea-namespace.yaml
patches:

11
apps/newcloud/base/nextcloud-secret.yaml Normal file
View File

@ -0,0 +1,11 @@
apiVersion: v1
kind: Secret
metadata:
name: nextcloud-secret
namespace: nextcloud
annotations:
sealedsecrets.bitnami.com/namespace-wide: "true"
data:
MYSQL_PASSWORD: <pass>
MYSQL_ROOT_PASSWORD: <pass>

11
apps/paperless/base/ftp-secret.yaml Normal file
View File

@ -0,0 +1,11 @@
apiVersion: v1
kind: Secret
metadata:
name: ftp-secret
namespace: paperless
annotations:
sealedsecrets.bitnami.com/namespace-wide: "true"
type: Opaque
data:
FTP_USER: <user>
FTP_PASS: <pass>

14
apps/paperless/base/ftp-service.yaml Normal file
View File

@ -0,0 +1,14 @@
apiVersion: v1
kind: Service
metadata:
name: ftp-server-service
namespace: paperless
labels:
app: ftp-server
spec:
type: NodePort
ports:
- port: 21
targetPort: 21
selector:
app: ftp-server

39
apps/paperless/base/ftp.yaml Normal file
View File

@ -0,0 +1,39 @@
apiVersion: apps/v1beta1 # for versions before 1.6.0 use extensions/v1beta1
kind: Deployment
metadata:
name: ftp-server
namespace: paperless
spec:
replicas: 1
template:
metadata:
labels:
app: ftp-server
spec:
containers:
- name: ftp-server-container
image: fauria/vsftpd
ports:
- containerPort: 21
protocol: TCP
name: ftp-server
env:
- name: FTP_USER
valueFrom:
secretKeyRef:
name: ftp-secret
key: FTP_USER
- name: FTP_PASS
valueFrom:
secretKeyRef:
name: ftp-secret
key: FTP_PASS
volumeMounts:
- mountPath: "/home/vsftpd"
name: cache-volume
resources: {}
volumes:
- name: cache-volume
emptyDir:
sizeLimit: 100Mi

23
apps/paperless/base/paperless-broker.yaml Normal file
View File

@ -0,0 +1,23 @@
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: paperless-broker
name: paperless-broker
spec:
replicas: 1
selector:
matchLabels:
app: paperless-broker
strategy: {}
template:
metadata:
labels:
app: paperless-broker
spec:
containers:
- image: docker.io/library/redis:7
name: paperless-broker
resources: {}
restartPolicy: Always
status: {}

13
apps/paperless/base/paperless-db-pvc.yaml Normal file
View File

@ -0,0 +1,13 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
labels:
app: paperless-db-pvc
name: paperless-db-pvc
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 10Gi
status: {}

44
apps/paperless/base/paperless-db.yaml Normal file
View File

@ -0,0 +1,44 @@
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: paperless-db
name: paperless-db
spec:
replicas: 1
selector:
matchLabels:
app: paperless-db
strategy:
type: Recreate
template:
metadata:
labels:
app: paperless-db
spec:
containers:
- env:
- name: POSTGRES_DB
value: paperless
- name: POSTGRES_USER
valueFrom:
secretKeyRef:
name: paperless-secret
key: POSTGRES_USER
- name: POSTGRES_PASSWORD
valueFrom:
secretKeyRef:
name: paperless-secret
key: POSTGRES_PASSWORD
image: docker.io/library/postgres:13
name: paperless-db
resources: {}
volumeMounts:
- mountPath: /var/lib/postgresql/data
name: paperless-db-pvc
restartPolicy: Always
volumes:
- name: paperless-db-pvc
persistentVolumeClaim:
claimName: paperless-db-pvc
status: {}

13
apps/paperless/base/webserver-pvc.yaml Normal file
View File

@ -0,0 +1,13 @@
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
labels:
app: paperless-webserver-pvc
name: paperless-webserver-pvc
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 20Gi
status: {}

15
apps/paperless/base/webserver-service.yaml Normal file
View File

@ -0,0 +1,15 @@
apiVersion: v1
kind: Service
metadata:
labels:
app: paperless-webserver
name: paperless_webserver
spec:
ports:
- name: http
port: 8000
targetPort: 8000
selector:
app: paperless-webserver
status:
loadBalancer: {}

85
apps/paperless/base/webserver.yaml Normal file
View File

@ -0,0 +1,85 @@
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: paperless-webserver
name: paperless-webserver
spec:
replicas: 1
selector:
matchLabels:
app: paperless-webserver
strategy:
type: Recreate
template:
metadata:
labels:
app: paperless-webserver
spec:
containers:
- env:
- name: DEBUG
value: "false"
- name: PAPERLESS_ALLOWED_HOSTS
value: steffenillium.de,localhost
- name: PAPERLESS_CONSUMER_RECURSIVE
value: "true"
- name: PAPERLESS_CORS_ALLOWED_HOSTS
value: http://localhost:8000
- name: PAPERLESS_DBHOST
value: paperless-db.paperless.svc.cluster.local
- name: PAPERLESS_ENABLE_HTTP_REMOTE_USER
value: "true"
- name: PAPERLESS_OCR_LANGUAGE
value: deu
- name: PAPERLESS_OCR_LANGUAGES
value: eng deu
- name: PAPERLESS_OCR_ROTATE_PAGES
value: "true"
- name: PAPERLESS_OCR_ROTATE_PAGES_THRESHOLD
value: "10"
- name: PAPERLESS_REDIS
value: redis://paperless-broker.paperless.svc.cluster.local:6379
- name: PAPERLESS_TIME_ZONE
value: Europe/Berlin
- name: PAPERLESS_URL
value: https://documents.steffenillium.de
image: ghcr.io/paperless-ngx/paperless-ngx:latest
livenessProbe:
exec:
command:
- 'curl -fs -S --max-time "2" http://localhost:8000'
failureThreshold: 5
periodSeconds: 30
timeoutSeconds: 10
name: paperless-webserver
ports:
- containerPort: 8000
hostPort: 8300
protocol: TCP
resources: {}
volumeMounts:
- mountPath: /usr/src/paperless/data
name: paperless-webserver-pvc
- mountPath: /usr/src/paperless/media
name: paperless-webserver-media
- mountPath: /usr/src/paperless/consume
name: paperless-webserver-consume
restartPolicy: Always
volumes:
- name: paperless-webserver-pvc
persistentVolumeClaim:
claimName: paperless-webserver-pvc
- name: paperless-webserver-media
nfs:
server: 192.168.178.4
path: /mnt/storage/paperless
readOnly: false
- name: paperless-webserver-consume
nfs:
server: ftp-server.paperless.svc.cluster.local
path: /tmp
readOnly: false
status: {}

2
apps/vaultwarden/kustomization.yaml
View File

@ -5,7 +5,7 @@ namespace: vaultwarden
resources:
- base/vaultwarden-ingress.yaml
- base/vaultwarden-data-pvc.yaml
# - base/vaultwarden-data-pvc.yaml
- base/vaultwarden-deployment.yaml
- base/vaultwarden-namespace.yaml
- base/vaultwarden-secret-sealed.yaml

2
infrastructure/04-longhorn/base/values.yaml
View File

@ -38,6 +38,8 @@ defaultSettings:
createDefaultDiskLabeledNodes: false
# -- Default number of replicas for volumes created using the Longhorn UI. For Kubernetes configuration, modify the `numberOfReplicas` field in the StorageClass. The default value is "3".
defaultReplicaCount: 1
systemManagedComponentsNodeSelector: "region:local"
longhornManager:
# -- Node selector for Longhorn Manager. Specify the nodes allowed to run Longhorn Manager.